harte-hanks.com, XSS, CWE-79, CAPEC-86, Cross Site Scripting

Reflected cross-site scripting vulnerabilities arise when data is copied from a request and echoed into the application's immediate response in an unsafe way. An attacker can use the vulnerability to construct a request which, if issued by another application user, will cause JavaScript code supplied by the attacker to execute within the user's browser in the context of that user's session with the application.

The attacker-supplied code can perform a wide variety of actions, such as stealing the victim's session token or login credentials, performing arbitrary actions on the victim's behalf, and logging their keystrokes.

Users can be induced to issue the attacker's crafted request in various ways. For example, the attacker can send a victim a link containing a malicious URL in an email or instant message. They can submit the link to popular web sites that allow content authoring, for example in blog comments. And they can create an innocuous looking web site which causes anyone viewing it to make arbitrary cross-domain requests to the vulnerable application (using either the GET or the POST method).

The security impact of cross-site scripting vulnerabilities is dependent upon the nature of the vulnerable application, the kinds of data and functionality which it contains, and the other applications which belong to the same domain and organisation. If the application is used only to display non-sensitive public content, with no authentication or access control functionality, then a cross-site scripting flaw may be considered low risk. However, if the same application resides on a domain which can access cookies for other more security-critical applications, then the vulnerability could be used to attack those other applications, and so may be considered high risk. Similarly, if the organisation which owns the application is a likely target for phishing attacks, then the vulnerability could be leveraged to lend credibility to such attacks, by injecting Trojan functionality into the vulnerable application, and exploiting users' trust in the organisation in order to capture credentials for other applications which it owns. In many kinds of application, such as those providing online banking functionality, cross-site scripting should always be considered high risk.

Remediation background

In most situations where user-controllable data is copied into application responses, cross-site scripting attacks can be prevented using two layers of defenses:

Input should be validated as strictly as possible on arrival, given the kind of content which it is expected to contain. For example, personal names should consist of alphabetical and a small range of typographical characters, and be relatively short; a year of birth should consist of exactly four numerals; email addresses should match a well-defined regular expression. Input which fails the validation should be rejected, not sanitised.
User input should be HTML-encoded at any point where it is copied into application responses. All HTML metacharacters, including < > " ' and =, should be replaced with the corresponding HTML entities (< > etc).

In cases where the application's functionality allows users to author content using a restricted subset of HTML tags and attributes (for example, blog comments which allow limited formatting and linking), it is necessary to parse the supplied HTML to validate that it does not use any dangerous syntax; this is a non-trivial task.

1.1. http://www.harte-hanks.com/casestudies/default/current [REST URL parameter 2] next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/casestudies/default/current

Issue detail

The value of REST URL parameter 2 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload fd1cd'%3b4d3255d41cf was submitted in the REST URL parameter 2. This input was echoed as fd1cd';4d3255d41cf in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /casestudies/defaultfd1cd'%3b4d3255d41cf/current HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:06:22 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:06:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13394

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildCaseStudies('defaultfd1cd';4d3255d41cf','current', '#dynamiccontentarea');});</script>
...[SNIP]...

1.2. http://www.harte-hanks.com/casestudies/default/current [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/casestudies/default/current

Issue detail

The value of REST URL parameter 3 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload e4b1c'%3be2c588790ef was submitted in the REST URL parameter 3. This input was echoed as e4b1c';e2c588790ef in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /casestudies/default/currente4b1c'%3be2c588790ef HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:06:23 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:06:23 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13394

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildCaseStudies('default','currente4b1c';e2c588790ef', '#dynamiccontentarea');});</script>
...[SNIP]...

1.3. http://www.harte-hanks.com/page/NewsArticle/HHArticle61_2010/ [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/NewsArticle/HHArticle61_2010/

Issue detail

The value of REST URL parameter 3 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 3e841'%3b3d5b9c7f274 was submitted in the REST URL parameter 3. This input was echoed as 3e841';3d5b9c7f274 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/NewsArticle/HHArticle61_20103e841'%3b3d5b9c7f274/ HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13998

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.GetNewsArticle('HHArticle61_20103e841';3d5b9c7f274', '#dynamiccontentarea');});</script>
...[SNIP]...

1.4. http://www.harte-hanks.com/page/NewsArticle/HHArticle62_2010/ [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/NewsArticle/HHArticle62_2010/

Issue detail

The value of REST URL parameter 3 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 2de17'%3bc83de1925ee was submitted in the REST URL parameter 3. This input was echoed as 2de17';c83de1925ee in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/NewsArticle/HHArticle62_20102de17'%3bc83de1925ee/ HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13998

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.GetNewsArticle('HHArticle62_20102de17';c83de1925ee', '#dynamiccontentarea');});</script>
...[SNIP]...

1.5. http://www.harte-hanks.com/page/earnings_release/current [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/earnings_release/current

Issue detail

The value of REST URL parameter 3 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 9c037'%3b4cb5d4721df was submitted in the REST URL parameter 3. This input was echoed as 9c037';4cb5d4721df in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/earnings_release/current9c037'%3b4cb5d4721df HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:50 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14470

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('EarningsRelease','current9c037';4cb5d4721df', '#releasecurrent');});</script>
...[SNIP]...

1.6. http://www.harte-hanks.com/page/financial_news/current [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/financial_news/current

Issue detail

The value of REST URL parameter 3 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload c44b9'%3ba1c0557011a was submitted in the REST URL parameter 3. This input was echoed as c44b9';a1c0557011a in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/financial_news/currentc44b9'%3ba1c0557011a HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:53 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13837

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('FinancialNews','currentc44b9';a1c0557011a', '#dynamiccontentarea');});</script>
...[SNIP]...

1.7. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2005 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2005

Issue detail

The value of REST URL parameter 4 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload c8a5b'%3b2cdc11cfebe was submitted in the REST URL parameter 4. This input was echoed as c8a5b';2cdc11cfebe in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/defaultc8a5b'%3b2cdc11cfebe/2005 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10211

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('defaultc8a5b';2cdc11cfebe','2005', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataType
...[SNIP]...

1.8. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2005 [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2005

Issue detail

The value of REST URL parameter 5 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 5cbd0'%3b707945d3c11 was submitted in the REST URL parameter 5. This input was echoed as 5cbd0';707945d3c11 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/default/20055cbd0'%3b707945d3c11 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:39 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:39 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10211

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('default','20055cbd0';707945d3c11', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataType: 'text
...[SNIP]...

1.9. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2006 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2006

Issue detail

The value of REST URL parameter 4 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 561c8'%3b90835aec301 was submitted in the REST URL parameter 4. This input was echoed as 561c8';90835aec301 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/default561c8'%3b90835aec301/2006 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10211

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('default561c8';90835aec301','2006', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataType
...[SNIP]...

1.10. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2006 [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2006

Issue detail

The value of REST URL parameter 5 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 75ba0'%3b42c8ba80e5c was submitted in the REST URL parameter 5. This input was echoed as 75ba0';42c8ba80e5c in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/default/200675ba0'%3b42c8ba80e5c HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10211

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('default','200675ba0';42c8ba80e5c', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataType: 'text
...[SNIP]...

1.11. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2007 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2007

Issue detail

The value of REST URL parameter 4 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload f8227'%3b10809486c54 was submitted in the REST URL parameter 4. This input was echoed as f8227';10809486c54 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/defaultf8227'%3b10809486c54/2007 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10211

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('defaultf8227';10809486c54','2007', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataType
...[SNIP]...

1.12. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2007 [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2007

Issue detail

The value of REST URL parameter 5 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload deb05'%3b199aa0ddf29 was submitted in the REST URL parameter 5. This input was echoed as deb05';199aa0ddf29 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/default/2007deb05'%3b199aa0ddf29 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:25 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10211

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('default','2007deb05';199aa0ddf29', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataType: 'text
...[SNIP]...

1.13. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2008 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2008

Issue detail

The value of REST URL parameter 4 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 5253d'%3bc2860c38542 was submitted in the REST URL parameter 4. This input was echoed as 5253d';c2860c38542 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/default5253d'%3bc2860c38542/2008 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:25 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10211

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('default5253d';c2860c38542','2008', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataType
...[SNIP]...

1.14. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2008 [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2008

Issue detail

The value of REST URL parameter 5 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload d7667'%3b081c2aa60b7 was submitted in the REST URL parameter 5. This input was echoed as d7667';081c2aa60b7 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/default/2008d7667'%3b081c2aa60b7 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:31 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10211

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('default','2008d7667';081c2aa60b7', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataType: 'text
...[SNIP]...

1.15. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2009 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2009

Issue detail

The value of REST URL parameter 4 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 9e1d1'%3befca26a9047 was submitted in the REST URL parameter 4. This input was echoed as 9e1d1';efca26a9047 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/default9e1d1'%3befca26a9047/2009 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10211

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('default9e1d1';efca26a9047','2009', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataType
...[SNIP]...

1.16. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2009 [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2009

Issue detail

The value of REST URL parameter 5 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload dcc0d'%3bce341ff7fdf was submitted in the REST URL parameter 5. This input was echoed as dcc0d';ce341ff7fdf in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/default/2009dcc0d'%3bce341ff7fdf HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10211

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('default','2009dcc0d';ce341ff7fdf', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataType: 'text
...[SNIP]...

1.17. http://www.harte-hanks.com/page/newsreleases/aboutus/default/current [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/current

Issue detail

The value of REST URL parameter 4 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 3fa96'%3bf6192b768f5 was submitted in the REST URL parameter 4. This input was echoed as 3fa96';f6192b768f5 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/default3fa96'%3bf6192b768f5/current HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:56:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:56:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10214

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('default3fa96';f6192b768f5','current', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataT
...[SNIP]...

1.18. http://www.harte-hanks.com/page/newsreleases/aboutus/default/current [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/current

Issue detail

The value of REST URL parameter 5 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload d543d'%3be7769930487 was submitted in the REST URL parameter 5. This input was echoed as d543d';e7769930487 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/aboutus/default/currentd543d'%3be7769930487 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:56:49 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:56:49 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10214

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('default','currentd543d';e7769930487', '#newsreleasearea');$('div.body').attr('id', 'aboutus'); $('#h1-banner').attr('title', 'ABOUT US');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_AboutUs_NewsRel/',data: {},dataType: 'text
...[SNIP]...

1.19. http://www.harte-hanks.com/page/newsreleases/resources/default/current [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/resources/default/current

Issue detail

The value of REST URL parameter 4 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload ee4c9'%3b5c9a86cfbb5 was submitted in the REST URL parameter 4. This input was echoed as ee4c9';5c9a86cfbb5 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/resources/defaultee4c9'%3b5c9a86cfbb5/current HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:25 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10219

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('defaultee4c9';5c9a86cfbb5','current', '#newsreleasearea');$('div.body').attr('id', 'resources'); $('#h1-banner').attr('title', 'RESOURCES');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_Resources_NewsRel/',data: {},
...[SNIP]...

1.20. http://www.harte-hanks.com/page/newsreleases/resources/default/current [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/resources/default/current

Issue detail

The value of REST URL parameter 5 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 21095'%3b788a718f10b was submitted in the REST URL parameter 5. This input was echoed as 21095';788a718f10b in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /page/newsreleases/resources/default/current21095'%3b788a718f10b HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:31 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10219

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildNewsReleases('default','current21095';788a718f10b', '#newsreleasearea');$('div.body').attr('id', 'resources'); $('#h1-banner').attr('title', 'RESOURCES');$.ajax({type: 'POST',url: '/PartialPage/Content_Page_Nav_Resources_NewsRel/',data: {},dataType:
...[SNIP]...

1.21. http://www.harte-hanks.com/whitepapers/default/current [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/whitepapers/default/current

Issue detail

The value of REST URL parameter 2 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 10e0f'%3b0b347b7168c was submitted in the REST URL parameter 2. This input was echoed as 10e0f';0b347b7168c in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /whitepapers/default10e0f'%3b0b347b7168c/current HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:06:24 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:06:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21868

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildWhitePapers('default10e0f';0b347b7168c','current', '#dynamiccontentarea');});</script>
...[SNIP]...

1.22. http://www.harte-hanks.com/whitepapers/default/current [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/whitepapers/default/current

Issue detail

The value of REST URL parameter 3 is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 488ff'%3b7c3cf1c8100 was submitted in the REST URL parameter 3. This input was echoed as 488ff';7c3cf1c8100 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /whitepapers/default/current488ff'%3b7c3cf1c8100 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:06:26 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:06:26 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21868

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<script language="JavaScript" type = "text/javascript">$(document).ready(function() { RegistrationServices.BuildWhitePapers('default','current488ff';7c3cf1c8100', '#dynamiccontentarea');});</script>
...[SNIP]...

2. Cross-domain script include previous next
There are 131 instances of this issue:

/Page/Industries
/casestudies/default/current
/page/NewsArticle/HHArticle61_2010/
/page/NewsArticle/HHArticle62_2010/
/page/aboutus
/page/agency_marketing
/page/analyst_coverage
/page/annual_reports
/page/asia
/page/audit_committee_charter
/page/automotive_dealermaterials
/page/automotive_digital_marketing
/page/automotive_loyalty
/page/automotive_marketing
/page/automotive_prospects
/page/automotive_sales_strategies
/page/automotive_staffandbudgetcuts
/page/business_conduct_policy
/page/businessleads_marketing
/page/careers
/page/careers_why_harte_hanks
/page/cautionary_note
/page/code_of_ethics_policy
/page/companyhistory
/page/compensation_committee_charter
/page/consumerbrands_customerloyalty
/page/consumerbrands_greenmarketing
/page/consumerbrands_marketing
/page/consumerbrands_marketplace
/page/consumerbrands_pilotprograms
/page/consumerbrands_seasonal_peaks
/page/consumerbrands_staffandbudgetcuts
/page/consumerbrands_warrantymarketing
/page/contactcenter_marketing
/page/contactus
/page/copyright
/page/corporate_governance_principles
/page/corporategovt
/page/data_management
/page/databasemarketing_marketing
/page/directors_and_officers
/page/earnings_release/current
/page/emaildelivery_marketing
/page/europe
/page/financial_accountconversion
/page/financial_advisoronboarding
/page/financial_customer_acquisition
/page/financial_customeronboarding
/page/financial_lendingprograms
/page/financial_lifecycle
/page/financial_marketing
/page/financial_news/current
/page/financial_staffandbudgetcuts
/page/fulfillment_marketing
/page/general_crowdedmarketplace
/page/general_digital_marketing
/page/general_marketing
/page/general_retention_marketing
/page/general_staffandbudgetcuts
/page/harte_hanks_employee
/page/insurance_crowdedmarketplace
/page/insurance_customers
/page/insurance_digital_marketing
/page/insurance_enrollement
/page/insurance_marketing
/page/insurance_targeted_marketing
/page/investors
/page/latin_america
/page/locations
/page/mailingservices_marketing
/page/newsreleases/aboutus/default/2005
/page/newsreleases/aboutus/default/2006
/page/newsreleases/aboutus/default/2007
/page/newsreleases/aboutus/default/2008
/page/newsreleases/aboutus/default/2009
/page/newsreleases/aboutus/default/current
/page/newsreleases/resources/default/current
/page/nominating_and_corporate_governance
/page/nonprofit_digital_marketing
/page/nonprofit_donor_acq
/page/nonprofit_fulfillment
/page/nonprofit_marketing
/page/nonprofit_membercare
/page/nonprofit_memberkits
/page/nonprofit_productioncosts
/page/pharmaceutical_brand_messaging
/page/pharmaceutical_crowdedmarketplace
/page/pharmaceutical_marketing
/page/pharmaceutical_non-manpowered
/page/pharmaceutical_staffandbudgetcuts
/page/privacypolicy
/page/publicsector_constituent_marketing
/page/publicsector_contracts
/page/publicsector_digital_marketing
/page/publicsector_management
/page/publicsector_marketing
/page/publicsector_recruitment
/page/resources
/page/resources_capabilities
/page/resources_events
/page/resources_webinars
/page/retail_analytics
/page/retail_customer_retention
/page/retail_customerview
/page/retail_digital_marketing
/page/retail_marketing
/page/retail_optimization
/page/retail_postal
/page/retail_vendor_cons
/page/services
/page/shareholder_communication_process
/page/shopperspub_marketing
/page/stockinfo
/page/technology_channel_management
/page/technology_digital_marketing
/page/technology_globaldata
/page/technology_lead_management
/page/technology_marketing
/page/technology_marketing_operations
/page/telecom_b2bmarketing
/page/telecom_bundle
/page/telecom_digital_marketing
/page/telecom_marketing
/page/telecom_ourcustomers
/page/telecom_productrecalls
/page/telecom_rebates
/page/telecom_staffandbudgetcuts
/page/termsandconditions
/page/whoweare
/page/working_at_harte_hanks
/whitepapers/default/current

Issue background

When an application includes a script from an external domain, this script is executed by the browser within the security context of the invoking application. The script can therefore do anything that the application's own scripts can do, such as accessing application data and performing actions within the context of the current user.

If you include a script from an external domain, then you are trusting that domain with the data and functionality of your application, and you are trusting the domain's own security to prevent an attacker from modifying the script to perform malicious actions within your application.

Issue remediation

Scripts should not be included from untrusted domains. If you have a requirement which a third-party script appears to fulfil, then you should ideally copy the contents of that script onto your own domain and include it from there. If that is not possible (e.g. for licensing reasons) then you should consider reimplementing the script's functionality within your own code.

2.1. http://www.harte-hanks.com/Page/Industries previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/Page/Industries

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /Page/Industries HTTP/1.1
Host: www.harte-hanks.com
Proxy-Connection: keep-alive
Referer: http://www.harte-hanks.com/static/base/hh_mainmenu.swf
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __utmc=37878714; __utmb=37878714.1.10.1294058762

Response

HTTP/1.1 200 OK
Date: Mon, 03 Jan 2011 12:47:02 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:47:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21022

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.2. http://www.harte-hanks.com/casestudies/default/current previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/casestudies/default/current

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /casestudies/default/current HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:48 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13376

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.3. http://www.harte-hanks.com/page/NewsArticle/HHArticle61_2010/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/NewsArticle/HHArticle61_2010/

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/NewsArticle/HHArticle61_2010/ HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:11 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13980

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.4. http://www.harte-hanks.com/page/NewsArticle/HHArticle62_2010/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/NewsArticle/HHArticle62_2010/

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/NewsArticle/HHArticle62_2010/ HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

2.5. http://www.harte-hanks.com/page/aboutus previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/aboutus

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/aboutus HTTP/1.1
Host: www.harte-hanks.com
Proxy-Connection: keep-alive
Referer: http://www.harte-hanks.com/static/base/hh_mainmenu.swf
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __utmc=37878714; __utmb=37878714.1.10.1294058762

Response

HTTP/1.1 200 OK
Date: Mon, 03 Jan 2011 12:47:02 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:47:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 15488

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.6. http://www.harte-hanks.com/page/agency_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/agency_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/agency_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:24 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 18281

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.7. http://www.harte-hanks.com/page/analyst_coverage previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/analyst_coverage

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/analyst_coverage HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13495

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.8. http://www.harte-hanks.com/page/annual_reports previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/annual_reports

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/annual_reports HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14686

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.9. http://www.harte-hanks.com/page/asia previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/asia

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/asia HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:55 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 16064

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.10. http://www.harte-hanks.com/page/audit_committee_charter previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/audit_committee_charter

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/audit_committee_charter HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:47 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 31219

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.11. http://www.harte-hanks.com/page/automotive_dealermaterials previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_dealermaterials

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/automotive_dealermaterials HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:12 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21869

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.12. http://www.harte-hanks.com/page/automotive_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_digital_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/automotive_digital_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:11 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21757

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.13. http://www.harte-hanks.com/page/automotive_loyalty previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_loyalty

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/automotive_loyalty HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21585

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.14. http://www.harte-hanks.com/page/automotive_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/automotive_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 23231

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.15. http://www.harte-hanks.com/page/automotive_prospects previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_prospects

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/automotive_prospects HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:11 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21735

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.16. http://www.harte-hanks.com/page/automotive_sales_strategies previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_sales_strategies

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/automotive_sales_strategies HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:20 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21804

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.17. http://www.harte-hanks.com/page/automotive_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_staffandbudgetcuts

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/automotive_staffandbudgetcuts HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21973

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.18. http://www.harte-hanks.com/page/business_conduct_policy previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/business_conduct_policy

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/business_conduct_policy HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:56:04 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:56:04 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 82981

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.19. http://www.harte-hanks.com/page/businessleads_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/businessleads_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/businessleads_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:36 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 17507

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.20. http://www.harte-hanks.com/page/careers previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/careers

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/careers HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:09 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 15099

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.21. http://www.harte-hanks.com/page/careers_why_harte_hanks previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/careers_why_harte_hanks

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/careers_why_harte_hanks HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:43 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:43 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 19078

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.22. http://www.harte-hanks.com/page/cautionary_note previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/cautionary_note

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/cautionary_note HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 16702

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.23. http://www.harte-hanks.com/page/code_of_ethics_policy previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/code_of_ethics_policy

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/code_of_ethics_policy HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:39 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:39 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 16867

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.24. http://www.harte-hanks.com/page/companyhistory previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/companyhistory

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/companyhistory HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:26 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:26 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 16380

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.25. http://www.harte-hanks.com/page/compensation_committee_charter previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/compensation_committee_charter

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/compensation_committee_charter HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:56:04 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:56:04 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 24005

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.26. http://www.harte-hanks.com/page/consumerbrands_customerloyalty previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_customerloyalty

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/consumerbrands_customerloyalty HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:25 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22250

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.27. http://www.harte-hanks.com/page/consumerbrands_greenmarketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_greenmarketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/consumerbrands_greenmarketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:26 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:26 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21697

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.28. http://www.harte-hanks.com/page/consumerbrands_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/consumerbrands_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:01 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:01 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 23777

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.29. http://www.harte-hanks.com/page/consumerbrands_marketplace previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_marketplace

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/consumerbrands_marketplace HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:24 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22228

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.30. http://www.harte-hanks.com/page/consumerbrands_pilotprograms previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_pilotprograms

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/consumerbrands_pilotprograms HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21641

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.31. http://www.harte-hanks.com/page/consumerbrands_seasonal_peaks previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_seasonal_peaks

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/consumerbrands_seasonal_peaks HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:26 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:26 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21896

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.32. http://www.harte-hanks.com/page/consumerbrands_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_staffandbudgetcuts

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/consumerbrands_staffandbudgetcuts HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:25 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22377

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.33. http://www.harte-hanks.com/page/consumerbrands_warrantymarketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_warrantymarketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/consumerbrands_warrantymarketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 20820

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.34. http://www.harte-hanks.com/page/contactcenter_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/contactcenter_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/contactcenter_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 18610

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.35. http://www.harte-hanks.com/page/contactus previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/contactus

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/contactus HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:52:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:52:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 15047

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.36. http://www.harte-hanks.com/page/copyright previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/copyright

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/copyright HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

2.37. http://www.harte-hanks.com/page/corporate_governance_principles previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/corporate_governance_principles

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/corporate_governance_principles HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:57:09 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:57:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 26389

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.38. http://www.harte-hanks.com/page/corporategovt previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/corporategovt

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/corporategovt HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13712

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.39. http://www.harte-hanks.com/page/data_management previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/data_management

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/data_management HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:31 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 17487

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.40. http://www.harte-hanks.com/page/databasemarketing_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/databasemarketing_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/databasemarketing_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 18121

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.41. http://www.harte-hanks.com/page/directors_and_officers previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/directors_and_officers

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/directors_and_officers HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:50 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14892

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.42. http://www.harte-hanks.com/page/earnings_release/current previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/earnings_release/current

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/earnings_release/current HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14452

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.43. http://www.harte-hanks.com/page/emaildelivery_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/emaildelivery_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/emaildelivery_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:31 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 18192

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.44. http://www.harte-hanks.com/page/europe previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/europe

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/europe HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:57 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21583

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.45. http://www.harte-hanks.com/page/financial_accountconversion previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_accountconversion

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/financial_accountconversion HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:49 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:49 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21605

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.46. http://www.harte-hanks.com/page/financial_advisoronboarding previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_advisoronboarding

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/financial_advisoronboarding HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21690

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.47. http://www.harte-hanks.com/page/financial_customer_acquisition previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_customer_acquisition

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/financial_customer_acquisition HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:59 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22019

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.48. http://www.harte-hanks.com/page/financial_customeronboarding previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_customeronboarding

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/financial_customeronboarding HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:59 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21900

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.49. http://www.harte-hanks.com/page/financial_lendingprograms previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_lendingprograms

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/financial_lendingprograms HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21831

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.50. http://www.harte-hanks.com/page/financial_lifecycle previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_lifecycle

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/financial_lifecycle HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:00:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:00:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21934

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.51. http://www.harte-hanks.com/page/financial_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/financial_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:02 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 23791

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.52. http://www.harte-hanks.com/page/financial_news/current previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_news/current

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/financial_news/current HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:48 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13819

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.53. http://www.harte-hanks.com/page/financial_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_staffandbudgetcuts

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/financial_staffandbudgetcuts HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:40 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21808

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.54. http://www.harte-hanks.com/page/fulfillment_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/fulfillment_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/fulfillment_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:32 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 18592

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.55. http://www.harte-hanks.com/page/general_crowdedmarketplace previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/general_crowdedmarketplace

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/general_crowdedmarketplace HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21553

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.56. http://www.harte-hanks.com/page/general_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/general_digital_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/general_digital_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21795

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.57. http://www.harte-hanks.com/page/general_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/general_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/general_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:23 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:23 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 23637

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.58. http://www.harte-hanks.com/page/general_retention_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/general_retention_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/general_retention_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:47 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21921

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.59. http://www.harte-hanks.com/page/general_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/general_staffandbudgetcuts

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/general_staffandbudgetcuts HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22020

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.60. http://www.harte-hanks.com/page/harte_hanks_employee previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/harte_hanks_employee

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/harte_hanks_employee HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 15020

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.61. http://www.harte-hanks.com/page/insurance_crowdedmarketplace previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/insurance_crowdedmarketplace

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/insurance_crowdedmarketplace HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:01:10 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:01:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21887

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.62. http://www.harte-hanks.com/page/insurance_customers previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/insurance_customers

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/insurance_customers HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:00:58 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:00:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21870

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.63. http://www.harte-hanks.com/page/insurance_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/insurance_digital_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/insurance_digital_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:52 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21745

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.64. http://www.harte-hanks.com/page/insurance_enrollement previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/insurance_enrollement

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/insurance_enrollement HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:52 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21787

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.65. http://www.harte-hanks.com/page/insurance_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/insurance_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/insurance_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:07 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 23516

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.66. http://www.harte-hanks.com/page/insurance_targeted_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/insurance_targeted_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/insurance_targeted_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:52 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21622

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.67. http://www.harte-hanks.com/page/investors previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/investors

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/investors HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 15402

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.68. http://www.harte-hanks.com/page/latin_america previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/latin_america

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/latin_america HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:10 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14369

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.69. http://www.harte-hanks.com/page/locations previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/locations

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/locations HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:52:44 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:52:44 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14913

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.70. http://www.harte-hanks.com/page/mailingservices_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/mailingservices_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/mailingservices_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:32 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 18411

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.71. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2005 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2005

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/newsreleases/aboutus/default/2005 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10193

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.72. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2006 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2006

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/newsreleases/aboutus/default/2006 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:54:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:54:59 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10193

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.73. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2007 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2007

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/newsreleases/aboutus/default/2007 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:54:57 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:54:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10193

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.74. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2008 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2008

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/newsreleases/aboutus/default/2008 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:54:56 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:54:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10193

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.75. http://www.harte-hanks.com/page/newsreleases/aboutus/default/2009 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/2009

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/newsreleases/aboutus/default/2009 HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

2.76. http://www.harte-hanks.com/page/newsreleases/aboutus/default/current previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/aboutus/default/current

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/newsreleases/aboutus/default/current HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:55 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10196

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.77. http://www.harte-hanks.com/page/newsreleases/resources/default/current previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/newsreleases/resources/default/current

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/newsreleases/resources/default/current HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10201

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.78. http://www.harte-hanks.com/page/nominating_and_corporate_governance previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nominating_and_corporate_governance

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/nominating_and_corporate_governance HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:40 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22925

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.79. http://www.harte-hanks.com/page/nonprofit_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_digital_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/nonprofit_digital_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:01 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:01 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22203

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.80. http://www.harte-hanks.com/page/nonprofit_donor_acq previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_donor_acq

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/nonprofit_donor_acq HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:03 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:03 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21636

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.81. http://www.harte-hanks.com/page/nonprofit_fulfillment previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_fulfillment

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/nonprofit_fulfillment HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:55 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21786

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.82. http://www.harte-hanks.com/page/nonprofit_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/nonprofit_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:07 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 23441

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.83. http://www.harte-hanks.com/page/nonprofit_membercare previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_membercare

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/nonprofit_membercare HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21660

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.84. http://www.harte-hanks.com/page/nonprofit_memberkits previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_memberkits

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/nonprofit_memberkits HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:54 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21604

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.85. http://www.harte-hanks.com/page/nonprofit_productioncosts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_productioncosts

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/nonprofit_productioncosts HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:52 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22047

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.86. http://www.harte-hanks.com/page/pharmaceutical_brand_messaging previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/pharmaceutical_brand_messaging

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/pharmaceutical_brand_messaging HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:20 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21822

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.87. http://www.harte-hanks.com/page/pharmaceutical_crowdedmarketplace previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/pharmaceutical_crowdedmarketplace

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/pharmaceutical_crowdedmarketplace HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:06 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21910

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.88. http://www.harte-hanks.com/page/pharmaceutical_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/pharmaceutical_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/pharmaceutical_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:08 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 23053

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.89. http://www.harte-hanks.com/page/pharmaceutical_non-manpowered previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/pharmaceutical_non-manpowered

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/pharmaceutical_non-manpowered HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:12 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21928

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.90. http://www.harte-hanks.com/page/pharmaceutical_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/pharmaceutical_staffandbudgetcuts

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/pharmaceutical_staffandbudgetcuts HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:11 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22271

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.91. http://www.harte-hanks.com/page/privacypolicy previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/privacypolicy

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/privacypolicy HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:22 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 25289

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.92. http://www.harte-hanks.com/page/publicsector_constituent_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/publicsector_constituent_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/publicsector_constituent_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22695

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.93. http://www.harte-hanks.com/page/publicsector_contracts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/publicsector_contracts

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/publicsector_contracts HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22092

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.94. http://www.harte-hanks.com/page/publicsector_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/publicsector_digital_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/publicsector_digital_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:39 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:39 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21822

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.95. http://www.harte-hanks.com/page/publicsector_management previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/publicsector_management

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/publicsector_management HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21884

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.96. http://www.harte-hanks.com/page/publicsector_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/publicsector_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/publicsector_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 24166

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.97. http://www.harte-hanks.com/page/publicsector_recruitment previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/publicsector_recruitment

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/publicsector_recruitment HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22336

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.98. http://www.harte-hanks.com/page/resources previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/resources

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/resources HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 10775

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.99. http://www.harte-hanks.com/page/resources_capabilities previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/resources_capabilities

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/resources_capabilities HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:37 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 15387

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.100. http://www.harte-hanks.com/page/resources_events previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/resources_events

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/resources_events HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:42 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:42 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 11165

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.101. http://www.harte-hanks.com/page/resources_webinars previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/resources_webinars

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/resources_webinars HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:42 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:42 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 27409

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.102. http://www.harte-hanks.com/page/retail_analytics previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_analytics

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/retail_analytics HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:40 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21685

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.103. http://www.harte-hanks.com/page/retail_customer_retention previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_customer_retention

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/retail_customer_retention HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:43 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:43 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21543

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.104. http://www.harte-hanks.com/page/retail_customerview previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_customerview

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/retail_customerview HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:42 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:42 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22055

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.105. http://www.harte-hanks.com/page/retail_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_digital_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/retail_digital_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:50 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21751

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.106. http://www.harte-hanks.com/page/retail_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/retail_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 23466

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.107. http://www.harte-hanks.com/page/retail_optimization previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_optimization

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/retail_optimization HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:40 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21626

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.108. http://www.harte-hanks.com/page/retail_postal previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_postal

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/retail_postal HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:39 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:39 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21988

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.109. http://www.harte-hanks.com/page/retail_vendor_cons previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_vendor_cons

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/retail_vendor_cons HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:54 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21940

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.110. http://www.harte-hanks.com/page/services previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/services

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/services HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:15 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 15494

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.111. http://www.harte-hanks.com/page/shareholder_communication_process previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/shareholder_communication_process

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/shareholder_communication_process HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:45 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13713

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.112. http://www.harte-hanks.com/page/shopperspub_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/shopperspub_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/shopperspub_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14219

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.113. http://www.harte-hanks.com/page/stockinfo previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/stockinfo

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/stockinfo HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:50 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13508

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.114. http://www.harte-hanks.com/page/technology_channel_management previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/technology_channel_management

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/technology_channel_management HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:54 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21750

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.115. http://www.harte-hanks.com/page/technology_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/technology_digital_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/technology_digital_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:58 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21697

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.116. http://www.harte-hanks.com/page/technology_globaldata previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/technology_globaldata

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/technology_globaldata HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:57 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21856

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.117. http://www.harte-hanks.com/page/technology_lead_management previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/technology_lead_management

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/technology_lead_management HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:55 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22136

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.118. http://www.harte-hanks.com/page/technology_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/technology_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/technology_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 23446

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.119. http://www.harte-hanks.com/page/technology_marketing_operations previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/technology_marketing_operations

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/technology_marketing_operations HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:55 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21877

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.120. http://www.harte-hanks.com/page/telecom_b2bmarketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_b2bmarketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/telecom_b2bmarketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:13 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22216

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.121. http://www.harte-hanks.com/page/telecom_bundle previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_bundle

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/telecom_bundle HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:04:04 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:04:04 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21789

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.122. http://www.harte-hanks.com/page/telecom_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_digital_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/telecom_digital_marketing HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:04:08 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:04:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21779

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.123. http://www.harte-hanks.com/page/telecom_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_marketing

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/telecom_marketing HTTP/1.1
Host: www.harte-hanks.com
Proxy-Connection: keep-alive
Referer: http://www.harte-hanks.com/Page/Industries
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __utmc=37878714; __utmb=37878714.2.10.1294058762

Response

HTTP/1.1 200 OK
Date: Mon, 03 Jan 2011 12:49:02 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:49:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 23268

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.124. http://www.harte-hanks.com/page/telecom_ourcustomers previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_ourcustomers

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/telecom_ourcustomers HTTP/1.1
Host: www.harte-hanks.com
Proxy-Connection: keep-alive
Referer: http://www.harte-hanks.com/page/telecom_marketing
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __utmc=37878714; __utmb=37878714.3.10.1294058762

Response

HTTP/1.1 200 OK
Date: Mon, 03 Jan 2011 12:49:15 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:49:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 20136

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.125. http://www.harte-hanks.com/page/telecom_productrecalls previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_productrecalls

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/telecom_productrecalls HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:09 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21643

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.126. http://www.harte-hanks.com/page/telecom_rebates previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_rebates

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/telecom_rebates HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:04:05 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:04:05 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21672

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.127. http://www.harte-hanks.com/page/telecom_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_staffandbudgetcuts

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/telecom_staffandbudgetcuts HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:45 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21831

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.128. http://www.harte-hanks.com/page/termsandconditions previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/termsandconditions

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/termsandconditions HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

2.129. http://www.harte-hanks.com/page/whoweare previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/whoweare

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/whoweare HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:25 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 16734

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.130. http://www.harte-hanks.com/page/working_at_harte_hanks previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/working_at_harte_hanks

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /page/working_at_harte_hanks HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:55:47 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:55:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 15429

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

2.131. http://www.harte-hanks.com/whitepapers/default/current previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/whitepapers/default/current

Issue detail

The response dynamically includes the following script from another domain:

http://s7.addthis.com/js/250/addthis_widget.js

Request

GET /whitepapers/default/current HTTP/1.1
Host: www.harte-hanks.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmc=37878714; __utmb=37878714.2.10.1294058762;

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:48 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21850

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
</div><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=xa-4b1d7530630a004e"></script>
...[SNIP]...

3. Email addresses disclosed previous next
There are 71 instances of this issue:

/casestudies/default/current
/page/aboutus
/page/asia
/page/automotive_dealermaterials
/page/automotive_digital_marketing
/page/automotive_loyalty
/page/automotive_prospects
/page/automotive_sales_strategies
/page/automotive_staffandbudgetcuts
/page/consumerbrands_customerloyalty
/page/consumerbrands_greenmarketing
/page/consumerbrands_marketplace
/page/consumerbrands_pilotprograms
/page/consumerbrands_seasonal_peaks
/page/consumerbrands_staffandbudgetcuts
/page/consumerbrands_warrantymarketing
/page/copyright
/page/europe
/page/financial_accountconversion
/page/financial_advisoronboarding
/page/financial_customer_acquisition
/page/financial_customeronboarding
/page/financial_lendingprograms
/page/financial_lifecycle
/page/financial_staffandbudgetcuts
/page/general_crowdedmarketplace
/page/general_digital_marketing
/page/general_retention_marketing
/page/general_staffandbudgetcuts
/page/insurance_crowdedmarketplace
/page/insurance_customers
/page/insurance_digital_marketing
/page/insurance_enrollement
/page/insurance_targeted_marketing
/page/latin_america
/page/locations
/page/nonprofit_digital_marketing
/page/nonprofit_donor_acq
/page/nonprofit_fulfillment
/page/nonprofit_membercare
/page/nonprofit_memberkits
/page/nonprofit_productioncosts
/page/pharmaceutical_brand_messaging
/page/pharmaceutical_crowdedmarketplace
/page/pharmaceutical_non-manpowered
/page/pharmaceutical_staffandbudgetcuts
/page/privacypolicy
/page/publicsector_constituent_marketing
/page/publicsector_contracts
/page/publicsector_digital_marketing
/page/publicsector_management
/page/publicsector_recruitment
/page/retail_analytics
/page/retail_customer_retention
/page/retail_customerview
/page/retail_digital_marketing
/page/retail_optimization
/page/retail_postal
/page/retail_vendor_cons
/page/stockinfo
/page/technology_channel_management
/page/technology_digital_marketing
/page/technology_globaldata
/page/technology_lead_management
/page/technology_marketing_operations
/page/telecom_bundle
/page/telecom_digital_marketing
/page/telecom_productrecalls
/page/telecom_rebates
/page/telecom_staffandbudgetcuts
/page/termsandconditions

Issue background

The presence of email addresses within application responses does not necessarily constitute a security vulnerability. Email addresses may appear intentionally within contact information, and many applications (such as web mail) include arbitrary third-party email addresses within their core content.

However, email addresses of developers and other individuals (whether appearing on-screen or hidden within page source) may disclose information that is useful to an attacker; for example, they may represent usernames that can be used at the application's login, and they may be used in social engineering attacks against the organisation's personnel. Unnecessary or excessive disclosure of email addresses may also lead to an increase in the volume of spam email received.

Issue remediation

You should review the email addresses being disclosed by the application, and consider removing any that are unnecessary, or replacing personal addresses with anonymous mailbox addresses (such as helpdesk@example.com).

3.1. http://www.harte-hanks.com/casestudies/default/current previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/casestudies/default/current

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:48 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13376

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.2. http://www.harte-hanks.com/page/aboutus previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/aboutus

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Date: Mon, 03 Jan 2011 12:47:02 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:47:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 15488

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">
...[SNIP]...

3.3. http://www.harte-hanks.com/page/asia previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/asia

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:55 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 16064

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.4. http://www.harte-hanks.com/page/automotive_dealermaterials previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_dealermaterials

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:12 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21869

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.5. http://www.harte-hanks.com/page/automotive_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_digital_marketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:11 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21757

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.6. http://www.harte-hanks.com/page/automotive_loyalty previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_loyalty

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21585

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.7. http://www.harte-hanks.com/page/automotive_prospects previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_prospects

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:11 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21735

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.8. http://www.harte-hanks.com/page/automotive_sales_strategies previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_sales_strategies

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:20 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21804

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.9. http://www.harte-hanks.com/page/automotive_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/automotive_staffandbudgetcuts

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:19 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21973

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.10. http://www.harte-hanks.com/page/consumerbrands_customerloyalty previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_customerloyalty

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:25 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22250

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.11. http://www.harte-hanks.com/page/consumerbrands_greenmarketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_greenmarketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:26 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:26 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21697

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.12. http://www.harte-hanks.com/page/consumerbrands_marketplace previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_marketplace

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:24 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22228

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.13. http://www.harte-hanks.com/page/consumerbrands_pilotprograms previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_pilotprograms

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21641

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.14. http://www.harte-hanks.com/page/consumerbrands_seasonal_peaks previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_seasonal_peaks

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:26 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:26 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21896

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.15. http://www.harte-hanks.com/page/consumerbrands_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_staffandbudgetcuts

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:25 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22377

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.16. http://www.harte-hanks.com/page/consumerbrands_warrantymarketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/consumerbrands_warrantymarketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 20820

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.17. http://www.harte-hanks.com/page/copyright previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/copyright

Issue detail

The following email address was disclosed in the response:

psac@harte-hanks.com

Request

Response

3.18. http://www.harte-hanks.com/page/europe previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/europe

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:57 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21583

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.19. http://www.harte-hanks.com/page/financial_accountconversion previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_accountconversion

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:49 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:49 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21605

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.20. http://www.harte-hanks.com/page/financial_advisoronboarding previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_advisoronboarding

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21690

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.21. http://www.harte-hanks.com/page/financial_customer_acquisition previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_customer_acquisition

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:59 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22019

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.22. http://www.harte-hanks.com/page/financial_customeronboarding previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_customeronboarding

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:59 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21900

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.23. http://www.harte-hanks.com/page/financial_lendingprograms previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_lendingprograms

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21831

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.24. http://www.harte-hanks.com/page/financial_lifecycle previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_lifecycle

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:00:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:00:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21934

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.25. http://www.harte-hanks.com/page/financial_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/financial_staffandbudgetcuts

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:40 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21808

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.26. http://www.harte-hanks.com/page/general_crowdedmarketplace previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/general_crowdedmarketplace

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21553

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.27. http://www.harte-hanks.com/page/general_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/general_digital_marketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21795

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.28. http://www.harte-hanks.com/page/general_retention_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/general_retention_marketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:47 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21921

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.29. http://www.harte-hanks.com/page/general_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/general_staffandbudgetcuts

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:46 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22020

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.30. http://www.harte-hanks.com/page/insurance_crowdedmarketplace previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/insurance_crowdedmarketplace

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:01:10 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:01:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21887

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.31. http://www.harte-hanks.com/page/insurance_customers previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/insurance_customers

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:00:58 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:00:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21870

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.32. http://www.harte-hanks.com/page/insurance_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/insurance_digital_marketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:52 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21745

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.33. http://www.harte-hanks.com/page/insurance_enrollement previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/insurance_enrollement

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:52 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21787

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.34. http://www.harte-hanks.com/page/insurance_targeted_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/insurance_targeted_marketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:52 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21622

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.35. http://www.harte-hanks.com/page/latin_america previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/latin_america

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:59:10 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:59:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14369

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.36. http://www.harte-hanks.com/page/locations previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/locations

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:52:44 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:52:44 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 14913

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">
ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.37. http://www.harte-hanks.com/page/nonprofit_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_digital_marketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:01 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:01 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22203

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.38. http://www.harte-hanks.com/page/nonprofit_donor_acq previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_donor_acq

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:03 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:03 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21636

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.39. http://www.harte-hanks.com/page/nonprofit_fulfillment previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_fulfillment

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:55 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21786

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.40. http://www.harte-hanks.com/page/nonprofit_membercare previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_membercare

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21660

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.41. http://www.harte-hanks.com/page/nonprofit_memberkits previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_memberkits

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:54 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21604

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.42. http://www.harte-hanks.com/page/nonprofit_productioncosts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/nonprofit_productioncosts

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:02:52 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:02:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22047

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.43. http://www.harte-hanks.com/page/pharmaceutical_brand_messaging previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/pharmaceutical_brand_messaging

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:20 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:20 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21822

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.44. http://www.harte-hanks.com/page/pharmaceutical_crowdedmarketplace previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/pharmaceutical_crowdedmarketplace

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:06 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21910

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.45. http://www.harte-hanks.com/page/pharmaceutical_non-manpowered previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/pharmaceutical_non-manpowered

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:12 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21928

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.46. http://www.harte-hanks.com/page/pharmaceutical_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/pharmaceutical_staffandbudgetcuts

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:11 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22271

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.47. http://www.harte-hanks.com/page/privacypolicy previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/privacypolicy

Issue detail

The following email address was disclosed in the response:

PSAC@harte-hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:22 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 25289

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:PSAC@harte-hanks.com">PSAC@harte-hanks.com</a>
...[SNIP]...

3.48. http://www.harte-hanks.com/page/publicsector_constituent_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/publicsector_constituent_marketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22695

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.49. http://www.harte-hanks.com/page/publicsector_contracts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/publicsector_contracts

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:29 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:29 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22092

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.50. http://www.harte-hanks.com/page/publicsector_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/publicsector_digital_marketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:39 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:39 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21822

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.51. http://www.harte-hanks.com/page/publicsector_management previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/publicsector_management

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21884

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.52. http://www.harte-hanks.com/page/publicsector_recruitment previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/publicsector_recruitment

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22336

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.53. http://www.harte-hanks.com/page/retail_analytics previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_analytics

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:40 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21685

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.54. http://www.harte-hanks.com/page/retail_customer_retention previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_customer_retention

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:43 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:43 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21543

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.55. http://www.harte-hanks.com/page/retail_customerview previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_customerview

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:42 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:42 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22055

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.56. http://www.harte-hanks.com/page/retail_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_digital_marketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:50 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21751

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.57. http://www.harte-hanks.com/page/retail_optimization previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_optimization

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:40 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:40 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21626

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.58. http://www.harte-hanks.com/page/retail_postal previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_postal

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:39 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:39 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21988

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.59. http://www.harte-hanks.com/page/retail_vendor_cons previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/retail_vendor_cons

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:54 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21940

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.60. http://www.harte-hanks.com/page/stockinfo previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/stockinfo

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:58:50 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:58:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13508

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">
...[SNIP]...

3.61. http://www.harte-hanks.com/page/technology_channel_management previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/technology_channel_management

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:54 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21750

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.62. http://www.harte-hanks.com/page/technology_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/technology_digital_marketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:58 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21697

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.63. http://www.harte-hanks.com/page/technology_globaldata previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/technology_globaldata

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:57 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21856

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.64. http://www.harte-hanks.com/page/technology_lead_management previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/technology_lead_management

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:55 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 22136

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.65. http://www.harte-hanks.com/page/technology_marketing_operations previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/technology_marketing_operations

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:03:55 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:03:55 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21877

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.66. http://www.harte-hanks.com/page/telecom_bundle previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_bundle

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:04:04 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:04:04 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21789

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.67. http://www.harte-hanks.com/page/telecom_digital_marketing previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_digital_marketing

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:04:08 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:04:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21779

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.68. http://www.harte-hanks.com/page/telecom_productrecalls previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_productrecalls

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:09 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21643

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.69. http://www.harte-hanks.com/page/telecom_rebates previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_rebates

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:04:05 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:04:05 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21672

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.70. http://www.harte-hanks.com/page/telecom_staffandbudgetcuts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/telecom_staffandbudgetcuts

Issue detail

The following email address was disclosed in the response:

ContactUs@Harte-Hanks.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 13:05:45 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 13:05:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 21831

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
<a href="mailto:ContactUs@Harte-Hanks.com">ContactUs@Harte-Hanks.com</a>
...[SNIP]...

3.71. http://www.harte-hanks.com/page/termsandconditions previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.harte-hanks.com
Path:	/page/termsandconditions

Issue detail

The following email address was disclosed in the response:

memberservices@aberdeen.com

Request

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 03 Jan 2011 12:53:21 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Cache-Control: private
Expires: Mon, 03 Jan 2011 12:53:21 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 40341

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Ty
...[SNIP]...
arch product and the analysis it provides. Aberdeen analysts are always available to discuss their findings with you about industry trends in their area of expertise and you can contact us directly at memberservices@aberdeen.com, or by calling 617-723-7890. By registering to receive Aberdeen research products, you acknowledge and agree to the following terms. If you do not agree to these terms, do not register or access our V
...[SNIP]...

4. Content type incorrectly stated previous
There are 4 instances of this issue:

/PartialPage/Base/CSS_Main
/partialpage/base/flash-styles.css
/partialpage/base/industries-header.xml
/partialpage/base/main.xml

Issue background

If a web response specifies an incorrect content type, then browsers may process the response in unexpected ways. If the specified content type is a renderable text-based format, then the browser will usually attempt to parse and render the response in that format. If the specified type is an image format, then the browser will usually detect the anomaly and will analyse the actual content and attempt to determine its MIME type. Either case can lead to unexpected results, and if the content contains any user-controllable data may lead to cross-site scripting or other client-side vulnerabilities.

In most cases, the presence of an incorrect content type statement does not constitute a security flaw, particularly if the response contains static content. You should review the contents of the response and the context in which it appears to determine whether any vulnerability exists.

Issue remediation

For every response containing a message body, the application should include a single Content-type header which correctly and unambiguously states the MIME type of the content in the response body.

4.1. http://www.harte-hanks.com/PartialPage/Base/CSS_Main previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/PartialPage/Base/CSS_Main

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain CSS.

Request

GET /PartialPage/Base/CSS_Main HTTP/1.1
Host: www.harte-hanks.com
Proxy-Connection: keep-alive
Referer: http://www.harte-hanks.com/
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded
Accept: */*
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M

Response

HTTP/1.1 200 OK
Date: Mon, 03 Jan 2011 12:46:50 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Content-disposition: inline
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 58557

@charset "utf-8";
/**************************************************************** ***** ***** ********************************************************************/
/********************************
...[SNIP]...

4.2. http://www.harte-hanks.com/partialpage/base/flash-styles.css previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/partialpage/base/flash-styles.css

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain CSS.

Request

GET /partialpage/base/flash-styles.css HTTP/1.1
Host: www.harte-hanks.com
Proxy-Connection: keep-alive
Referer: http://www.harte-hanks.com/static/base/hdm_105_header_animation.swf?1294058896143
Accept: */*
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __utmc=37878714; __utmb=37878714.3.10.1294058762

Response

HTTP/1.1 200 OK
Date: Mon, 03 Jan 2011 12:49:08 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Content-disposition: inline
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 912

p { font-size: 24px; font-family: Helvetica; color: #FFFFFF;}.bold { font-family: Helvetica; font-weight: bold;}.subhead { font-size: 20px; font-family: Helvetica; font-weight: bold; letter-spacing:
...[SNIP]...

4.3. http://www.harte-hanks.com/partialpage/base/industries-header.xml previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/partialpage/base/industries-header.xml

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain XML.

Request

GET /partialpage/base/industries-header.xml HTTP/1.1
Host: www.harte-hanks.com
Proxy-Connection: keep-alive
Referer: http://www.harte-hanks.com/static/base/hdm_105_header_animation.swf?1294058896143
Accept: */*
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __utmc=37878714; __utmb=37878714.3.10.1294058762

Response

HTTP/1.1 200 OK
Date: Mon, 03 Jan 2011 12:49:08 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Content-disposition: inline
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 5071

<?xml version="1.0" encoding="UTF-8"?>
<?xml version="1.0" encoding="UTF-8"?><section imgPath="/static/base/" leftPlacement="20"><colour graphics="0x157E90" subhead="0x5FF7F5" /><header id="automotive
...[SNIP]...

4.4. http://www.harte-hanks.com/partialpage/base/main.xml previous

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.harte-hanks.com
Path:	/partialpage/base/main.xml

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain XML.

Request

GET /partialpage/base/main.xml HTTP/1.1
Host: www.harte-hanks.com
Proxy-Connection: keep-alive
Referer: http://www.harte-hanks.com/static/base/hh_mainmenu.swf
Accept: */*
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HarteHanksPortal=m7KnH9bhywEkAAAAYTlkOGM3ODYtM2E3My00OTg4LTk0ZGEtNzY0YmNkYWQ4OTg0w42JMv82hWjYTcSOtoBpK2E6GQw1; __RequestVerificationToken_Lw__=cMQRBonm3yLlcry88muR5P9iFQ+Rbqeju0a42Q5k/jgTucQsl1o5DY9z7r0mjH7M; __utmz=37878714.1294058762.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=37878714.1873032052.1294058762.1294058762.1294058762.1; __utmc=37878714; __utmb=37878714.1.10.1294058762

Response

HTTP/1.1 200 OK
Date: Mon, 03 Jan 2011 12:47:01 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
X-AspNetMvc-Version: 1.0
Content-disposition: inline
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 152

<?xml version="1.0" encoding="UTF-8"?>
<LINK>/page/aboutus</LINK> <LINK>/Page/Industries</LINK> <LINK>/Page/Services</LINK> <LINK>/Page/Resources</LINK>

Report generated by XSS.CX at Mon Jan 03 07:16:47 CST 2011.

harte-hanks.com, XSS, CWE-79, CAPEC-86, Cross Site Scripting

XSS in harte-hanks.com | Vulnerability Crawler Report

Contents

Issue background

Remediation background

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response

Summary

Issue detail

Remediation detail

Request

Response