XSS, www.wcax.com, Cross Site Scripting, CWE-79, CAPEC-86 CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Report generated by XSS.CX at Tue Apr 12 10:32:42 CDT 2011. Loading
1. Cross-site scripting (reflected)
1.1. http://www.wcax.com/Global/link.asp [name of an arbitrarily supplied request parameter]
1.2. http://www.wcax.com/global/interface/httprequest/hrproxy.asp [url parameter]
1.3. http://www.wcax.com/global/link.asp [function parameter]
1.4. http://www.wcax.com/global/link.asp [mode parameter]
1.5. http://www.wcax.com/global/link.asp [referrer parameter]
2. Cleartext submission of password
3. Password field with autocomplete enabled
3.1. http://www.wcax.com/global/PM/registration.asp
3.2. http://www.wcax.com/global/PM/registration.asp
4. Cross-domain Referer leakage
4.1. http://www.wcax.com/Global/category.asp
4.2. http://www.wcax.com/Global/category.asp
4.3. http://www.wcax.com/Global/category.asp
4.4. http://www.wcax.com/Global/category.asp
4.5. http://www.wcax.com/Global/category.asp
4.6. http://www.wcax.com/Global/link.asp
4.7. http://www.wcax.com/Global/story.asp
4.8. http://www.wcax.com/Global/story.asp
4.9. http://www.wcax.com/Global/story.asp
4.10. http://www.wcax.com/Global/story.asp
4.11. http://www.wcax.com/build.asp
4.12. http://www.wcax.com/global/link.asp
5. Cross-domain script include
5.1. http://www.wcax.com/
5.2. http://www.wcax.com/Global/category.asp
5.3. http://www.wcax.com/Global/category.asp
5.4. http://www.wcax.com/Global/category.asp
5.5. http://www.wcax.com/Global/link.asp
5.6. http://www.wcax.com/Global/story.asp
5.7. http://www.wcax.com/Global/story.asp
5.8. http://www.wcax.com/build.asp
6. Email addresses disclosed
6.1. http://www.wcax.com/Global/story.asp
6.2. http://www.wcax.com/build.asp
1. Cross-site scripting (reflected)
next
There are 5 instances of this issue:
Issue background
Reflected cross-site scripting vulnerabilities arise when data is copied from a request and echoed into the application's immediate response in an unsafe way. An attacker can use the vulnerability to construct a request which, if issued by another application user, will cause JavaScript code supplied by the attacker to execute within the user's browser in the context of that user's session with the application.
Remediation background
In most situations where user-controllable data is copied into application responses, cross-site scripting attacks can be prevented using two layers of defences:Input should be validated as strictly as possible on arrival, given the kind of content which it is expected to contain. For example, personal names should consist of alphabetical and a small range of typographical characters, and be relatively short; a year of birth should consist of exactly four numerals; email addresses should match a well-defined regular expression. Input which fails the validation should be rejected, not sanitised. User input should be HTML-encoded at any point where it is copied into application responses. All HTML metacharacters, including < > " ' and =, should be replaced with the corresponding HTML entities (< > etc).
1.1. http://www.wcax.com/Global/link.asp [name of an arbitrarily supplied request parameter]
next
Summary
Severity:
High
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/link.asp
Issue detail
The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 1ae67'-alert(1)-'3ecbfdbef18 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.
Remediation detail
Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.
Request
GET /Global/link.asp?L=408799&1ae67'-alert(1)-'3ecbfdbef18 =1 HTTP/1.1,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.34972ac84d1302352164716:lv=1302352293178:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... 'http://www.vermontopia.com/event/?L=408799&1ae67'-alert(1)-'3ecbfdbef18 =1&referrerDomain=www.wcax.com');...[SNIP]...
1.2. http://www.wcax.com/global/interface/httprequest/hrproxy.asp [url parameter]
previous
next
Summary
Severity:
High
Confidence:
Firm
Host:
http://www.wcax.com
Path:
/global/interface/httprequest/hrproxy.asp
Issue detail
The value of the url request parameter is copied into the HTML document as plain text between tags. The payload c6a9e<a>86d1ec594e was submitted in the url parameter. This input was echoed unmodified in the application's response.
Request
GET /global/interface/httprequest/hrproxy.asp?url=http%3A%2F%2Fwp.myweather.net%2Fwxdata%2Ffiveday.asp%3Fpub%3Dwdnw%26s%3Dkbtvc6a9e<a>86d1ec594e &rand=98263 HTTP/1.1/Global/category.asp?C=18197;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352451310:ss=1302352164716
Response
HTTP/1.1 200 OKC6A9E<A>86D1EC594E not found
1.3. http://www.wcax.com/global/link.asp [function parameter]
previous
next
Summary
Severity:
High
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/global/link.asp
Issue detail
The value of the function request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 38f44'-alert(1)-'4014e68a00c was submitted in the function parameter. This input was echoed unmodified in the application's response.
Remediation detail
Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.
Request
GET /global/link.asp?L=104054&function=manageprofile38f44'-alert(1)-'4014e68a00c &mode=create&referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D398823 HTTP/1.1/Global/link.asp?L=398823,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352689361:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... /global/PM/registration.asp?L=104054&function=manageprofile38f44'-alert(1)-'4014e68a00c &mode=create&referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D398823&referrerDomain=www.wcax.com');...[SNIP]...
1.4. http://www.wcax.com/global/link.asp [mode parameter]
previous
next
Summary
Severity:
High
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/global/link.asp
Issue detail
The value of the mode request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 3a495'-alert(1)-'4b87acb98b2 was submitted in the mode parameter. This input was echoed unmodified in the application's response.
Remediation detail
Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.
Request
GET /global/link.asp?L=104054&function=manageprofile&mode=create3a495'-alert(1)-'4b87acb98b2 &referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D398823 HTTP/1.1/Global/link.asp?L=398823,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352689361:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... /global/PM/registration.asp?L=104054&function=manageprofile&mode=create3a495'-alert(1)-'4b87acb98b2 &referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D398823&referrerDomain=www.wcax.com');...[SNIP]...
1.5. http://www.wcax.com/global/link.asp [referrer parameter]
previous
next
Summary
Severity:
High
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/global/link.asp
Issue detail
The value of the referrer request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 8fdd3'-alert(1)-'cdf0dafd5c5 was submitted in the referrer parameter. This input was echoed unmodified in the application's response.
Remediation detail
Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.
Request
GET /global/link.asp?L=104054&function=manageprofile&mode=create&referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D3988238fdd3'-alert(1)-'cdf0dafd5c5 HTTP/1.1/Global/link.asp?L=398823,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352689361:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... /global/PM/registration.asp?L=104054&function=manageprofile&mode=create&referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D3988238fdd3'-alert(1)-'cdf0dafd5c5 &referrerDomain=www.wcax.com');...[SNIP]...
2. Cleartext submission of password
previous
next
Summary
Severity:
High
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/global/PM/registration.asp
Issue detail
The page contains a form with the following action URL, which is submitted over clear-text HTTP:http://www.wcax.com/global/PM/UserProfile.aspx?L=104054&function=manageprofile&mode=create&referrer=http%3a%2f%2fwww.wcax.com%2fGlobal%2flink.asp%3fL%3d398823&referrerDomain=www.wcax.com
Issue background
Passwords submitted over an unencrypted connection are vulnerable to capture by an attacker who is suitably positioned on the network. This includes any malicious party located on the user's own network, within their ISP, within the ISP used by the application, and within the application's hosting infrastructure. Even if switched networks are employed at some of these locations, techniques exist to circumvent this defence and monitor the traffic passing through switches.
Issue remediation
The application should use transport-level encryption (SSL or TLS) to protect all sensitive communications passing between the client and the server. Communications that should be protected include the login mechanism and related functionality, and any functions where sensitive data can be accessed or privileged actions can be performed. These areas of the application should employ their own session handling mechanism, and the session tokens used should never be transmitted over unencrypted communications. If HTTP cookies are used for transmitting session tokens, then the secure flag should be set to prevent transmission over clear-text HTTP.
Request
GET /global/PM/registration.asp?L=104054&function=manageprofile&mode=create&referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D398823&referrerDomain=www.wcax.com HTTP/1.1/global/link.asp?L=104054&function=manageprofile&mode=create&referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D398823,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352695263:ss=1302352164716
Response
HTTP/1.1 200 OK.js" type="text/javasc...[SNIP]... <form name="form1" method="post" action="UserProfile.aspx?L=104054&function=manageprofile&mode=create&referrer=http%3a%2f%2fwww.wcax.com%2fGlobal%2flink.asp%3fL%3d398823&referrerDomain=www.wcax.com" id="form1" onsubmit="return Validate();"> jU2NDE0NQ9kFgICAw9kFhACAQ8WAh4EVGV4dAXIATxzY3JpcHQgdHlwZT0idGV4dC9qYXZhc2NyaXB0IiBsYW5ndWFnZT0iamF2YXNjcmlwdCI+CjwhLS0KdmF...[SNIP]... <input id="Password" type="password" maxLength="60" size="32" name="Password" value="" /> ...[SNIP]... <input id="VerifyPassword" type="password" maxLength="60" size="32" name="VerifyPassword" value="" /> ...[SNIP]...
3. Password field with autocomplete enabled
previous
next
There are 2 instances of this issue:
Issue background
Most browsers have a facility to remember user credentials that are entered into HTML forms. This function can be configured by the user and also by applications which employ user credentials. If the function is enabled, then credentials entered by the user are stored on their local computer and retrieved by the browser on future visits to the same application.
Issue remediation
To prevent browsers from storing credentials entered into HTML forms, you should include the attribute autocomplete="off" within the FORM tag (to protect all form fields) or within the relevant INPUT tags (to protect specific individual fields).
3.1. http://www.wcax.com/global/PM/registration.asp
previous
next
Summary
Severity:
Low
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/global/PM/registration.asp
Issue detail
The page contains a form with the following action URL:http://www.wcax.com/global/PM/UserProfile.aspx?L=104054&function=manageprofile&mode=create&referrer=http%3a%2f%2fwww.wcax.com%2fGlobal%2flink.asp%3fL%3d398823&referrerDomain=www.wcax.com
Request
GET /global/PM/registration.asp?L=104054&function=manageprofile&mode=create&referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D398823&referrerDomain=www.wcax.com HTTP/1.1/global/link.asp?L=104054&function=manageprofile&mode=create&referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D398823,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352695263:ss=1302352164716
Response
HTTP/1.1 200 OK.js" type="text/javasc...[SNIP]... <form name="form1" method="post" action="UserProfile.aspx?L=104054&function=manageprofile&mode=create&referrer=http%3a%2f%2fwww.wcax.com%2fGlobal%2flink.asp%3fL%3d398823&referrerDomain=www.wcax.com" id="form1" onsubmit="return Validate();"> jU2NDE0NQ9kFgICAw9kFhACAQ8WAh4EVGV4dAXIATxzY3JpcHQgdHlwZT0idGV4dC9qYXZhc2NyaXB0IiBsYW5ndWFnZT0iamF2YXNjcmlwdCI+CjwhLS0KdmF...[SNIP]... <input id="Password" type="password" maxLength="60" size="32" name="Password" value="" /> ...[SNIP]... <input id="VerifyPassword" type="password" maxLength="60" size="32" name="VerifyPassword" value="" /> ...[SNIP]...
3.2. http://www.wcax.com/global/PM/registration.asp
previous
next
Summary
Severity:
Low
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/global/PM/registration.asp
Issue detail
The page contains a form with the following action URL:http://www.wcax.com/global/PM/Login.aspx?L=104054&function=manageprofile&mode=login&referrer=http%3a%2f%2fwww.wcax.com%2fglobal%2flink.asp%3fL%3d104054%26function%3dmanageprofile%26mode%3dcreate%26referrer%3dhttp%253A%2f%2fwww.wcax.com%2fGlobal%2flink.asp%253FL%253D398823&referrerDomain=www.wcax.com
Request
GET /global/PM/registration.asp?L=104054&function=manageprofile&mode=login&referrer=http%3A//www.wcax.com/global/link.asp%3FL%3D104054%26function%3Dmanageprofile%26mode%3Dcreate%26referrer%3Dhttp%253A//www.wcax.com/Global/link.asp%253FL%253D398823&referrerDomain=www.wcax.com HTTP/1.1/global/link.asp?L=104054&function=manageprofile&mode=login&referrer=http%3A//www.wcax.com/global/link.asp%3FL%3D104054%26function%3Dmanageprofile%26mode%3Dcreate%26referrer%3Dhttp%253A//www.wcax.com/Global/link.asp%253FL%253D398823,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352702175:ss=1302352164716
Response
HTTP/1.1 200 OK=20090220" type="text/javascript"></...[SNIP]... <form name="form1" method="post" action="Login.aspx?L=104054&function=manageprofile&mode=login&referrer=http%3a%2f%2fwww.wcax.com%2fglobal%2flink.asp%3fL%3d104054%26function%3dmanageprofile%26mode%3dcreate%26referrer%3dhttp%253A%2f%2fwww.wcax.com%2fGlobal%2flink.asp%253FL%253D398823&referrerDomain=www.wcax.com" id="form1" onsubmit="return Validate();"> zU4ODMxMTEPZBYCAgMPZBYEAgUPD2QWBB4FY2xhc3MFBGJvZHkeBXN0eWxlBRJmb250LXdlaWdodDogYm9sZDtkAgsPFgIeB1Zpc2libGVoZGTWhfTIea1ZJa4...[SNIP]... <input name="LoginPassword" type="password" id="LoginPassword" tabIndex="2" maxlength="60" size="25" /> ...[SNIP]...
4. Cross-domain Referer leakage
previous
next
There are 12 instances of this issue:
Issue background
When a web browser makes a request for a resource, it typically adds an HTTP header, called the "Referer" header, indicating the URL of the resource from which the request originated. This occurs in numerous situations, for example when a web page loads an image or script, or when a user clicks on a link or submits a form.
Issue remediation
The application should never transmit any sensitive information within the URL query string. In addition to being leaked in the Referer header, such information may be logged in various locations and may be visible on-screen to untrusted parties.
4.1. http://www.wcax.com/Global/category.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/category.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/Global/category.asp?C=189321 http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://s7.addthis.com/static/btn/sm-share-en.gif http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/global/images/google/google-logo.gif http://wcax.images.worldnow.com/images/12533287_SS.jpg http://wcax.images.worldnow.com/images/12658085_SS.jpg http://wcax.images.worldnow.com/images/12661178_SS.jpg http://wcax.images.worldnow.com/images/13279741_SS.jpg http://wcax.images.worldnow.com/images/189321_CH.jpg http://wcax.images.worldnow.com/images/272499_G.gif http://wcax.images.worldnow.com/images/272501_G.gif http://wcax.images.worldnow.com/images/272503_G.gif http://wcax.images.worldnow.com/images/272505_G.gif http://wcax.images.worldnow.com/images/272508_G.gif http://wcax.images.worldnow.com/images/272510_G.gif http://wcax.images.worldnow.com/images/272512_G.gif http://wcax.images.worldnow.com/images/272514_G.gif http://wcax.images.worldnow.com/images/272517_G.gif http://wcax.images.worldnow.com/images/static/container-e/icon_video_included.gif http://wcax.images.worldnow.com/images/static/container-e/wn_powerby.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_branding.jpg http://wcax.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56 http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://www.addthis.com/bookmark.php?v=250&pub=xa-4a6f307d7c62c8a7 http://www.worldnow.com/
Request
GET /Global/category.asp?C=189321 HTTP/1.1/Global/story.asp?S=465801,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302353981562:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script><link type="text/css" rel="stylesheet" media="all" href="http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600"> <link type="text/css" rel="stylesheet" media="all" href="http://WCAX.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56"> ...[SNIP]... <link rel="stylesheet" type="text/css" href="http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css" media="screen"> <link rel="stylesheet" href="http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600" type="text/css"> <style type="text/css">...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... -headertop-google_cs">WEB SEARCH BY <img src='http://WCAX.images.worldnow.com/global/images/google/google-logo.gif' alt='Google' class='wnSearchBoxLabelImg-google'> </label>...[SNIP]... <img id="WNBrandingImage" usemap="#wnBrandingMap" alt="" border="0" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_branding.jpg"> <map name="wnBrandingMap">...[SNIP]... .asp?C=18195"><img src="http://WCAX.images.worldnow.com/images/272499_G.gif" width="37" height="29" border="0" alt="Home WCAX.com" title="Home WCAX.com" onsrc="http://WCAX.images.worldnow.com/images/272500_G.gif"> </a>...[SNIP]... .asp?C=18197"><img src="http://WCAX.images.worldnow.com/images/272501_G.gif" width="34" height="29" border="0" alt="Local News" title="Local News" onsrc="http://WCAX.images.worldnow.com/images/272502_G.gif"> </a>...[SNIP]... .asp?C=18196"><img src="http://WCAX.images.worldnow.com/images/272503_G.gif" width="54" height="29" border="0" alt="Weather" title="Weather" onsrc="http://WCAX.images.worldnow.com/images/272504_G.gif"> </a>...[SNIP]... .asp?C=18198"><img src="http://WCAX.images.worldnow.com/images/272505_G.gif" width="43" height="29" border="0" alt="Sports" title="Sports" onsrc="http://WCAX.images.worldnow.com/images/272506_G.gif"> </a>...[SNIP]... =408799"><img src="http://WCAX.images.worldnow.com/images/272508_G.gif" width="74" height="29" border="0" alt="WCAX Vermontopia Community Calendar" title="WCAX Vermontopia Community Calendar" onsrc="http://WCAX.images.worldnow.com/images/272509_G.gif"> </a>...[SNIP]... 'http://www.vermontopia.com||height=768,width=1024,location=yes,resizable=yes,scrollbars=yes,toolbar=yes');"><img src="http://WCAX.images.worldnow.com/images/272510_G.gif" width="82" height="29" border="0" alt="Vermontopia.com" title="Vermontopia.com" onsrc="http://WCAX.images.worldnow.com/images/272511_G.gif"> </a>...[SNIP]... =398823"><img src="http://WCAX.images.worldnow.com/images/272512_G.gif" width="74" height="29" border="0" alt="WCAX Promotions" title="WCAX Promotions" onsrc="http://WCAX.images.worldnow.com/images/272513_G.gif"> </a>...[SNIP]... .asp?C=68446"><img src="http://WCAX.images.worldnow.com/images/272514_G.gif" width="54" height="29" border="0" alt="LIFESTYLE" title="LIFESTYLE" onsrc="http://WCAX.images.worldnow.com/images/272516_G.gif"> </a>...[SNIP]... .asp?C=18836"><img src="http://WCAX.images.worldnow.com/images/272517_G.gif" width="60" height="29" border="0" alt="Contact Us" title="Contact Us" onsrc="http://WCAX.images.worldnow.com/images/272518_G.gif"> </a>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/189321_CH.jpg" alt="" title="" border="0" width="325" class="wnImage wnImageCenter wnImageWidth-325"> ...[SNIP]... <a href="http://www.addthis.com/bookmark.php?v=250&pub=xa-4a6f307d7c62c8a7" ()" onclick="return addthis_sendto()"> <img src="http://s7.addthis.com/static/btn/sm-share-en.gif" width="83" height="16" alt="Bookmark and Share" style="border:0"/> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =13279741"><img src="http://WCAX.images.worldnow.com/images/13279741_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =12661178"><img src="http://WCAX.images.worldnow.com/images/12661178_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =12533287"><img src="http://WCAX.images.worldnow.com/images/12533287_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =12658085"><img src="http://WCAX.images.worldnow.com/images/12658085_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <a href="http://www.worldnow.com" target="_blank"> <img src="http://WCAX.images.worldnow.com/images/static/container-e/wn_powerby.gif" alt="Powered by WorldNow" border="0"> </a>...[SNIP]... <img src="http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com" name="DCSIMG" width="1" height="1" border="0" alt=""> </noscript>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
4.2. http://www.wcax.com/Global/category.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/category.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/Global/category.asp?C=18196 http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/httprequest/httprequest.js http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://ftpcontent.worldnow.com/wcax/custom/branding_feature_i.html http://tags.crwdcntrl.net/c/492/cc.js http://twitter.com/wcaxweather http://wcax.images.worldnow.com/global/images/google/google-logo.gif http://wcax.images.worldnow.com/images/272308_G.gif http://wcax.images.worldnow.com/images/272310_G.gif http://wcax.images.worldnow.com/images/272312_G.gif http://wcax.images.worldnow.com/images/272313_G.gif http://wcax.images.worldnow.com/images/272314_G.gif http://wcax.images.worldnow.com/images/272315_G.gif http://wcax.images.worldnow.com/images/272316_G.gif http://wcax.images.worldnow.com/images/272318_G.gif http://wcax.images.worldnow.com/images/272319_G.gif http://wcax.images.worldnow.com/images/272499_G.gif http://wcax.images.worldnow.com/images/272501_G.gif http://wcax.images.worldnow.com/images/272503_G.gif http://wcax.images.worldnow.com/images/272505_G.gif http://wcax.images.worldnow.com/images/272508_G.gif http://wcax.images.worldnow.com/images/272510_G.gif http://wcax.images.worldnow.com/images/272512_G.gif http://wcax.images.worldnow.com/images/272514_G.gif http://wcax.images.worldnow.com/images/272517_G.gif http://wcax.images.worldnow.com/images/309858_G.gif http://wcax.images.worldnow.com/images/38198_G.gif http://wcax.images.worldnow.com/images/38202_G.gif http://wcax.images.worldnow.com/images/38205_G.gif http://wcax.images.worldnow.com/images/incoming/WEB_warnings.jpg http://wcax.images.worldnow.com/images/static/container-e/wn_powerby.gif http://wcax.images.worldnow.com/images/static/gfx/pxl_trans.gif http://wcax.images.worldnow.com/images/static/gfx/wx_cloudy.gif http://wcax.images.worldnow.com/images/static/gfx/wx_partlycloudy.gif http://wcax.images.worldnow.com/images/static/gfx/wx_rain.gif http://wcax.images.worldnow.com/images/static/gfx/wx_sunny.gif http://wcax.images.worldnow.com/images/static/gfx/wx_thunderstorms.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_branding.jpg http://wcax.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56 http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://wcax.mycapture.com/mycapture/photos/Album.aspx?EventID=1072176&CategoryID=63494 http://widgets.twimg.com/j/2/widget.js http://www.511vt.com/ http://www.511vt.org/ http://www.facebook.com/plugins/likebox.php?id=140859045441&width=292&connections=10&stream=true&header=true&height=587 http://www.wcax.worldnow.com/global/Category.asp?c=176269 http://www.worldnow.com/ http://www.worldnow.com/global/interface/jq.js
Request
GET /Global/category.asp?C=18196 HTTP/1.1,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.34972ac84d1302352164716:lv=1302352164716:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script><link type="text/css" rel="stylesheet" media="all" href="http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600"> <link type="text/css" rel="stylesheet" media="all" href="http://WCAX.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56"> ...[SNIP]... <link rel="stylesheet" type="text/css" href="http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css" media="screen"> <link rel="stylesheet" href="http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600" type="text/css"> <style type="text/css">...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... -headertop-google_cs">WEB SEARCH BY <img src='http://WCAX.images.worldnow.com/global/images/google/google-logo.gif' alt='Google' class='wnSearchBoxLabelImg-google'> </label>...[SNIP]... <iframe id="WNLinksContent391987" name="WNLinksContent391987" class="wnLinksContentIframe" src="http://ftpcontent.worldnow.com/wcax/custom/branding_feature_i.html" width="100%" height="70" scrolling="no" frameborder="0" marginwidth="0" marginheight="0"> [Your user agent does not support frames or is currently configured to not display frames. However, you may visit <a href="http://ftpcontent.worldnow.com/wcax/custom/branding_feature_i.html"> the related document.</a>...[SNIP]... <img id="WNBrandingImage" usemap="#wnBrandingMap" alt="" border="0" onload="if (window.WNElement) WNElement.positionOver('WNDS70', 'WNBrandingImage', { horizontal : 'right', vertical : 'middle' });" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_branding.jpg"> <map name="wnBrandingMap">...[SNIP]... .asp?C=18195"><img src="http://WCAX.images.worldnow.com/images/272499_G.gif" width="37" height="29" border="0" alt="Home WCAX.com" title="Home WCAX.com" onsrc="http://WCAX.images.worldnow.com/images/272500_G.gif"> </a>...[SNIP]... .asp?C=18197"><img src="http://WCAX.images.worldnow.com/images/272501_G.gif" width="34" height="29" border="0" alt="Local News" title="Local News" onsrc="http://WCAX.images.worldnow.com/images/272502_G.gif"> </a>...[SNIP]... .asp?C=18196"><img src="http://WCAX.images.worldnow.com/images/272503_G.gif" width="54" height="29" border="0" alt="Weather" title="Weather" onsrc="http://WCAX.images.worldnow.com/images/272504_G.gif"> </a>...[SNIP]... .asp?C=18198"><img src="http://WCAX.images.worldnow.com/images/272505_G.gif" width="43" height="29" border="0" alt="Sports" title="Sports" onsrc="http://WCAX.images.worldnow.com/images/272506_G.gif"> </a>...[SNIP]... =408799"><img src="http://WCAX.images.worldnow.com/images/272508_G.gif" width="74" height="29" border="0" alt="WCAX Vermontopia Community Calendar" title="WCAX Vermontopia Community Calendar" onsrc="http://WCAX.images.worldnow.com/images/272509_G.gif"> </a>...[SNIP]... 'http://www.vermontopia.com||height=768,width=1024,location=yes,resizable=yes,scrollbars=yes,toolbar=yes');"><img src="http://WCAX.images.worldnow.com/images/272510_G.gif" width="82" height="29" border="0" alt="Vermontopia.com" title="Vermontopia.com" onsrc="http://WCAX.images.worldnow.com/images/272511_G.gif"> </a>...[SNIP]... =398823"><img src="http://WCAX.images.worldnow.com/images/272512_G.gif" width="74" height="29" border="0" alt="WCAX Promotions" title="WCAX Promotions" onsrc="http://WCAX.images.worldnow.com/images/272513_G.gif"> </a>...[SNIP]... .asp?C=68446"><img src="http://WCAX.images.worldnow.com/images/272514_G.gif" width="54" height="29" border="0" alt="LIFESTYLE" title="LIFESTYLE" onsrc="http://WCAX.images.worldnow.com/images/272516_G.gif"> </a>...[SNIP]... .asp?C=18836"><img src="http://WCAX.images.worldnow.com/images/272517_G.gif" width="60" height="29" border="0" alt="Contact Us" title="Contact Us" onsrc="http://WCAX.images.worldnow.com/images/272518_G.gif"> </a>...[SNIP]... <script type="text/javascript" src="http://www.worldnow.com/global/interface/jq.js"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/httprequest/httprequest.js"> </script>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/38205_G.gif" alt="Today's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/38198_G.gif" alt="Saturday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/38202_G.gif" alt="Sunday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/38202_G.gif" alt="Monday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/38202_G.gif" alt="Tuesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/38205_G.gif" alt="Wednesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_partlycloudy.gif" alt="Saturday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_cloudy.gif" alt="Sunday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_thunderstorms.gif" alt="Monday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_sunny.gif" alt="Tuesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_sunny.gif" alt="Wednesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_partlycloudy.gif" alt="Saturday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_rain.gif" alt="Sunday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_thunderstorms.gif" alt="Monday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_sunny.gif" alt="Tuesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_sunny.gif" alt="Wednesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_partlycloudy.gif" alt="Saturday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_cloudy.gif" alt="Sunday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_thunderstorms.gif" alt="Monday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_rain.gif" alt="Tuesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_sunny.gif" alt="Wednesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_partlycloudy.gif" alt="Saturday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_rain.gif" alt="Sunday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_thunderstorms.gif" alt="Monday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_sunny.gif" alt="Tuesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_sunny.gif" alt="Wednesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/pxl_trans.gif" alt="Saturday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_rain.gif" alt="Sunday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_thunderstorms.gif" alt="Monday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/pxl_trans.gif" alt="Tuesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/pxl_trans.gif" alt="Wednesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_partlycloudy.gif" alt="Saturday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_rain.gif" alt="Sunday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_thunderstorms.gif" alt="Monday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_sunny.gif" alt="Tuesday's Forecast Image"> <ul>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/static/gfx/wx_sunny.gif" alt="Wednesday's Forecast Image"> <ul>...[SNIP]... <A HREF="http://wcax.mycapture.com/mycapture/photos/Album.aspx?EventID=1072176&CategoryID=63494" <IMG.wcax.com/graphics/wcax/weather-ad.jpg"...[SNIP]... /Global/story.asp?S=6330547"><img class="col2_3_ql_icon" src="http://WCAX.images.worldnow.com/images/272308_G.gif" /> </a>...[SNIP]... /Global/link.asp?L=47952"><img class="col2_3_ql_icon" src="http://WCAX.images.worldnow.com/images/272310_G.gif" /> </a>...[SNIP]... /Global/category.asp?C=76533"><img class="col2_3_ql_icon" src="http://WCAX.images.worldnow.com/images/272314_G.gif" /> </a>...[SNIP]... /Global/category.asp?C=120654&nav=menu183_3_2"><img class="col2_3_ql_icon" src="http://WCAX.images.worldnow.com/images/272312_G.gif" /> </a>...[SNIP]... /Global/category.asp?C=80035&nav=menu183_3_4"><img class="col2_3_ql_icon" src="http://WCAX.images.worldnow.com/images/272315_G.gif" /> </a>...[SNIP]... /Global/link.asp?L=257090&nav=menu183_2_7"><img class="col2_3_ql_icon" src="http://WCAX.images.worldnow.com/images/272316_G.gif" /> </a>...[SNIP]... <a href="http://www.511vt.org"> <img class="col2_3_ql_icon" src="http://WCAX.images.worldnow.com/images/272318_G.gif" /> </a>...[SNIP]... _text"><a title="Road Conditions" style="font:bold 8pt Arial,Verdana,San-serif; color:#666666; line-height:11px;" href="http://www.511vt.com"> Road Conditions</a>...[SNIP]... <a href="http://www.wcax.worldnow.com/global/Category.asp?c=176269"> <img class="col2_3_ql_icon" src="http://WCAX.images.worldnow.com/images/309858_G.gif" /> </a>...[SNIP]... /global/link.asp?L=445290"><img class="col2_3_ql_icon" src="http://WCAX.images.worldnow.com/images/272313_G.gif" /> </a>...[SNIP]... <a href="http://twitter.com/wcaxweather"> <img class="col2_3_ql_icon" src="http://WCAX.images.worldnow.com/images/272319_G.gif" /> </a>...[SNIP]... _text"><a title="Twitter" style="font:bold 8pt Arial,Verdana,San-serif; color:#666666; line-height:11px;" href="http://twitter.com/wcaxweather"> Twitter</a>...[SNIP]... /Global/link.asp?L=394983"><img class="aw_img" src="http://wcax.images.worldnow.com/images/incoming/WEB_warnings.jpg" /> </a>...[SNIP]... <iframe src="http://www.facebook.com/plugins/likebox.php?id=140859045441&width=292&connections=10&stream=true&header=true&height=587" scrolling="no" frameborder="0" style="border:none; overflow:hidden; width:292px; height:587px;" allowTransparency="true"> </iframe></div><div class="wnDVUtilityBlock"><script src="http://widgets.twimg.com/j/2/widget.js"> </script>...[SNIP]... <a href="http://www.worldnow.com" target="_blank"> <img src="http://WCAX.images.worldnow.com/images/static/container-e/wn_powerby.gif" alt="Powered by WorldNow" border="0"> </a>...[SNIP]... <img src="http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com" name="DCSIMG" width="1" height="1" border="0" alt=""> </noscript>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
4.3. http://www.wcax.com/Global/category.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/category.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/Global/category.asp?C=18963 http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://ftpcontent.worldnow.com/wcax/custom/branding_feature_i.html http://pagead2.googlesyndication.com/pagead/show_ads.js http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/global/images/google/google-logo.gif http://wcax.images.worldnow.com/images/1048744_SS.jpg http://wcax.images.worldnow.com/images/10876888_SS.jpg http://wcax.images.worldnow.com/images/10883466_SS.jpg http://wcax.images.worldnow.com/images/10883514_SS.jpg http://wcax.images.worldnow.com/images/10883519_SS.jpg http://wcax.images.worldnow.com/images/10925688_SS.jpg http://wcax.images.worldnow.com/images/10926020_SS.jpg http://wcax.images.worldnow.com/images/11280673_SS.jpg http://wcax.images.worldnow.com/images/11280686_SS.jpg http://wcax.images.worldnow.com/images/11280710_SS.jpg http://wcax.images.worldnow.com/images/11471372_SS.jpg http://wcax.images.worldnow.com/images/11522781_SS.jpg http://wcax.images.worldnow.com/images/11522841_SS.jpg http://wcax.images.worldnow.com/images/11522911_SS.jpg http://wcax.images.worldnow.com/images/11529474_SS.jpg http://wcax.images.worldnow.com/images/11921157_SS.jpg http://wcax.images.worldnow.com/images/12799373_SS.jpg http://wcax.images.worldnow.com/images/12839072_SS.jpg http://wcax.images.worldnow.com/images/12840575_SS.jpg http://wcax.images.worldnow.com/images/13073817_SS.jpg http://wcax.images.worldnow.com/images/13230909_SS.jpg http://wcax.images.worldnow.com/images/13270759_SS.jpg http://wcax.images.worldnow.com/images/13288895_SS.jpg http://wcax.images.worldnow.com/images/14005481_SS.jpg http://wcax.images.worldnow.com/images/1755776_SS.jpg http://wcax.images.worldnow.com/images/272499_G.gif http://wcax.images.worldnow.com/images/272501_G.gif http://wcax.images.worldnow.com/images/272503_G.gif http://wcax.images.worldnow.com/images/272505_G.gif http://wcax.images.worldnow.com/images/272508_G.gif http://wcax.images.worldnow.com/images/272510_G.gif http://wcax.images.worldnow.com/images/272512_G.gif http://wcax.images.worldnow.com/images/272514_G.gif http://wcax.images.worldnow.com/images/272517_G.gif http://wcax.images.worldnow.com/images/451691_SS.jpg http://wcax.images.worldnow.com/images/452737_SS.jpg http://wcax.images.worldnow.com/images/452746_SS.jpg http://wcax.images.worldnow.com/images/452752_SS.jpg http://wcax.images.worldnow.com/images/452767_SS.jpg http://wcax.images.worldnow.com/images/452787_SS.jpg http://wcax.images.worldnow.com/images/452830_SS.jpg http://wcax.images.worldnow.com/images/452838_SS.jpg http://wcax.images.worldnow.com/images/452854_SS.jpg http://wcax.images.worldnow.com/images/452861_SS.jpg http://wcax.images.worldnow.com/images/452867_SS.jpg http://wcax.images.worldnow.com/images/452870_SS.jpg http://wcax.images.worldnow.com/images/452936_SS.jpg http://wcax.images.worldnow.com/images/7415644_SS.jpg http://wcax.images.worldnow.com/images/8748030_SS.jpg http://wcax.images.worldnow.com/images/923402_SS.jpg http://wcax.images.worldnow.com/images/static/container-e/wn_powerby.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_branding.jpg http://wcax.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56 http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://www.worldnow.com/
Request
GET /Global/category.asp?C=18963 HTTP/1.1/Global/category.asp?C=18836,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352460288:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script><link type="text/css" rel="stylesheet" media="all" href="http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600"> <link type="text/css" rel="stylesheet" media="all" href="http://WCAX.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56"> ...[SNIP]... <link rel="stylesheet" type="text/css" href="http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css" media="screen"> <link rel="stylesheet" href="http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600" type="text/css"> <style type="text/css">...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... -headertop-google_cs">WEB SEARCH BY <img src='http://WCAX.images.worldnow.com/global/images/google/google-logo.gif' alt='Google' class='wnSearchBoxLabelImg-google'> </label>...[SNIP]... <iframe id="WNLinksContent391987" name="WNLinksContent391987" class="wnLinksContentIframe" src="http://ftpcontent.worldnow.com/wcax/custom/branding_feature_i.html" width="100%" height="70" scrolling="no" frameborder="0" marginwidth="0" marginheight="0"> [Your user agent does not support frames or is currently configured to not display frames. However, you may visit <a href="http://ftpcontent.worldnow.com/wcax/custom/branding_feature_i.html"> the related document.</a>...[SNIP]... <img id="WNBrandingImage" usemap="#wnBrandingMap" alt="" border="0" onload="if (window.WNElement) WNElement.positionOver('WNDS70', 'WNBrandingImage', { horizontal : 'right', vertical : 'middle' });" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_branding.jpg"> <map name="wnBrandingMap">...[SNIP]... .asp?C=18195"><img src="http://WCAX.images.worldnow.com/images/272499_G.gif" width="37" height="29" border="0" alt="Home WCAX.com" title="Home WCAX.com" onsrc="http://WCAX.images.worldnow.com/images/272500_G.gif"> </a>...[SNIP]... .asp?C=18197"><img src="http://WCAX.images.worldnow.com/images/272501_G.gif" width="34" height="29" border="0" alt="Local News" title="Local News" onsrc="http://WCAX.images.worldnow.com/images/272502_G.gif"> </a>...[SNIP]... .asp?C=18196"><img src="http://WCAX.images.worldnow.com/images/272503_G.gif" width="54" height="29" border="0" alt="Weather" title="Weather" onsrc="http://WCAX.images.worldnow.com/images/272504_G.gif"> </a>...[SNIP]... .asp?C=18198"><img src="http://WCAX.images.worldnow.com/images/272505_G.gif" width="43" height="29" border="0" alt="Sports" title="Sports" onsrc="http://WCAX.images.worldnow.com/images/272506_G.gif"> </a>...[SNIP]... =408799"><img src="http://WCAX.images.worldnow.com/images/272508_G.gif" width="74" height="29" border="0" alt="WCAX Vermontopia Community Calendar" title="WCAX Vermontopia Community Calendar" onsrc="http://WCAX.images.worldnow.com/images/272509_G.gif"> </a>...[SNIP]... 'http://www.vermontopia.com||height=768,width=1024,location=yes,resizable=yes,scrollbars=yes,toolbar=yes');"><img src="http://WCAX.images.worldnow.com/images/272510_G.gif" width="82" height="29" border="0" alt="Vermontopia.com" title="Vermontopia.com" onsrc="http://WCAX.images.worldnow.com/images/272511_G.gif"> </a>...[SNIP]... =398823"><img src="http://WCAX.images.worldnow.com/images/272512_G.gif" width="74" height="29" border="0" alt="WCAX Promotions" title="WCAX Promotions" onsrc="http://WCAX.images.worldnow.com/images/272513_G.gif"> </a>...[SNIP]... .asp?C=68446"><img src="http://WCAX.images.worldnow.com/images/272514_G.gif" width="54" height="29" border="0" alt="LIFESTYLE" title="LIFESTYLE" onsrc="http://WCAX.images.worldnow.com/images/272516_G.gif"> </a>...[SNIP]... .asp?C=18836"><img src="http://WCAX.images.worldnow.com/images/272517_G.gif" width="60" height="29" border="0" alt="Contact Us" title="Contact Us" onsrc="http://WCAX.images.worldnow.com/images/272518_G.gif"> </a>...[SNIP]... =452838"><img src="http://WCAX.images.worldnow.com/images/452838_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452767"><img src="http://WCAX.images.worldnow.com/images/452767_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =1755776"><img src="http://WCAX.images.worldnow.com/images/1755776_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452737"><img src="http://WCAX.images.worldnow.com/images/452737_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =7415644"><img src="http://WCAX.images.worldnow.com/images/7415644_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452787"><img src="http://WCAX.images.worldnow.com/images/452787_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452936"><img src="http://WCAX.images.worldnow.com/images/452936_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452752"><img src="http://WCAX.images.worldnow.com/images/452752_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =1048744"><img src="http://WCAX.images.worldnow.com/images/1048744_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =12839072"><img src="http://WCAX.images.worldnow.com/images/12839072_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =11921157"><img src="http://WCAX.images.worldnow.com/images/11921157_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =11522841"><img src="http://WCAX.images.worldnow.com/images/11522841_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =451691"><img src="http://WCAX.images.worldnow.com/images/451691_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452830"><img src="http://WCAX.images.worldnow.com/images/452830_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =12799373"><img src="http://WCAX.images.worldnow.com/images/12799373_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452746"><img src="http://WCAX.images.worldnow.com/images/452746_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =11471372"><img src="http://WCAX.images.worldnow.com/images/11471372_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14005481"><img src="http://WCAX.images.worldnow.com/images/14005481_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =923402"><img src="http://WCAX.images.worldnow.com/images/923402_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452854"><img src="http://WCAX.images.worldnow.com/images/452854_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452861"><img src="http://WCAX.images.worldnow.com/images/452861_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452867"><img src="http://WCAX.images.worldnow.com/images/452867_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452870"><img src="http://WCAX.images.worldnow.com/images/452870_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =13270759"><img src="http://WCAX.images.worldnow.com/images/13270759_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =452936"><img src="http://WCAX.images.worldnow.com/images/452936_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =8748030"><img src="http://WCAX.images.worldnow.com/images/8748030_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =13230909"><img src="http://WCAX.images.worldnow.com/images/13230909_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =12840575"><img src="http://WCAX.images.worldnow.com/images/12840575_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =11522911"><img src="http://WCAX.images.worldnow.com/images/11522911_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =11529474"><img src="http://WCAX.images.worldnow.com/images/11529474_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =11522781"><img src="http://WCAX.images.worldnow.com/images/11522781_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =10925688"><img src="http://WCAX.images.worldnow.com/images/10925688_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =13288895"><img src="http://WCAX.images.worldnow.com/images/13288895_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =11280686"><img src="http://WCAX.images.worldnow.com/images/11280686_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =10883466"><img src="http://WCAX.images.worldnow.com/images/10883466_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =10883519"><img src="http://WCAX.images.worldnow.com/images/10883519_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =13073817"><img src="http://WCAX.images.worldnow.com/images/13073817_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =11280673"><img src="http://WCAX.images.worldnow.com/images/11280673_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =10926020"><img src="http://WCAX.images.worldnow.com/images/10926020_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =10883514"><img src="http://WCAX.images.worldnow.com/images/10883514_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =10876888"><img src="http://WCAX.images.worldnow.com/images/10876888_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =11280710"><img src="http://WCAX.images.worldnow.com/images/11280710_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <a href="http://www.worldnow.com" target="_blank"> <img src="http://WCAX.images.worldnow.com/images/static/container-e/wn_powerby.gif" alt="Powered by WorldNow" border="0"> </a>...[SNIP]... <img src="http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com" name="DCSIMG" width="1" height="1" border="0" alt=""> </noscript>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
4.4. http://www.wcax.com/Global/category.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/category.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/Global/category.asp?C=18197 http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/httprequest/httprequest.js http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://ftpcontent.worldnow.com/wcax/custom/branding_feature_i.html http://pagead2.googlesyndication.com/pagead/show_ads.js http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/global/images/google/google-logo.gif http://wcax.images.worldnow.com/images/13611251_SS.jpg http://wcax.images.worldnow.com/images/14400516_SS.jpg http://wcax.images.worldnow.com/images/14400531_SS.jpg http://wcax.images.worldnow.com/images/14400642_SS.jpg http://wcax.images.worldnow.com/images/14403029_SS.jpg http://wcax.images.worldnow.com/images/14403054_SS.jpg http://wcax.images.worldnow.com/images/14403127_SS.jpg http://wcax.images.worldnow.com/images/14404311_SS.jpg http://wcax.images.worldnow.com/images/14404425_SS.jpg http://wcax.images.worldnow.com/images/14404540_SS.jpg http://wcax.images.worldnow.com/images/14404717_SS.jpg http://wcax.images.worldnow.com/images/14404916_SS.jpg http://wcax.images.worldnow.com/images/14404978_SS.jpg http://wcax.images.worldnow.com/images/14405018_SS.jpg http://wcax.images.worldnow.com/images/14405593_SS.jpg http://wcax.images.worldnow.com/images/14406263_SS.jpg http://wcax.images.worldnow.com/images/14406338_SS.jpg http://wcax.images.worldnow.com/images/14406368_SS.jpg http://wcax.images.worldnow.com/images/14406637_SS.jpg http://wcax.images.worldnow.com/images/14406704_SS.jpg http://wcax.images.worldnow.com/images/14408216_SS.jpg http://wcax.images.worldnow.com/images/14408271_SS.jpg http://wcax.images.worldnow.com/images/14408340_SS.jpg http://wcax.images.worldnow.com/images/14408811_SS.jpg http://wcax.images.worldnow.com/images/14409898_SS.jpg http://wcax.images.worldnow.com/images/14409902_SS.jpg http://wcax.images.worldnow.com/images/14410537_SS.jpg http://wcax.images.worldnow.com/images/14410562_SS.jpg http://wcax.images.worldnow.com/images/14411911_SS.jpg http://wcax.images.worldnow.com/images/14411968_SS.jpg http://wcax.images.worldnow.com/images/14412419_SS.jpg http://wcax.images.worldnow.com/images/14412836_SS.jpg http://wcax.images.worldnow.com/images/14412893_SS.jpg http://wcax.images.worldnow.com/images/14412906_SS.jpg http://wcax.images.worldnow.com/images/14412949_SS.jpg http://wcax.images.worldnow.com/images/14413215_SS.jpg http://wcax.images.worldnow.com/images/14413273_SS.jpg http://wcax.images.worldnow.com/images/14413381_SS.jpg http://wcax.images.worldnow.com/images/14413603_SS.jpg http://wcax.images.worldnow.com/images/272319_G.gif http://wcax.images.worldnow.com/images/272351_G.gif http://wcax.images.worldnow.com/images/272354_G.gif http://wcax.images.worldnow.com/images/272355_G.gif http://wcax.images.worldnow.com/images/272356_G.gif http://wcax.images.worldnow.com/images/272446_G.gif http://wcax.images.worldnow.com/images/272447_G.gif http://wcax.images.worldnow.com/images/272448_G.gif http://wcax.images.worldnow.com/images/272449_G.gif http://wcax.images.worldnow.com/images/272450_G.gif http://wcax.images.worldnow.com/images/272499_G.gif http://wcax.images.worldnow.com/images/272501_G.gif http://wcax.images.worldnow.com/images/272503_G.gif http://wcax.images.worldnow.com/images/272505_G.gif http://wcax.images.worldnow.com/images/272508_G.gif http://wcax.images.worldnow.com/images/272510_G.gif http://wcax.images.worldnow.com/images/272512_G.gif http://wcax.images.worldnow.com/images/272514_G.gif http://wcax.images.worldnow.com/images/272517_G.gif http://wcax.images.worldnow.com/images/static/container-e/icon_video_included.gif http://wcax.images.worldnow.com/images/static/container-e/wn_powerby.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_branding.jpg http://wcax.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56 http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://widgets.twimg.com/j/2/widget.js http://www.facebook.com/pages/South-Burlington-VT/WCAX-TV/140859045441 http://www.facebook.com/plugins/likebox.php?id=140859045441&width=292&connections=10&stream=true&header=true&height=587 http://www.worldnow.com/ http://www.worldnow.com/global/interface/jq.js
Request
GET /Global/category.asp?C=18197 HTTP/1.1,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352442619:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script><link type="text/css" rel="stylesheet" media="all" href="http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600"> <link type="text/css" rel="stylesheet" media="all" href="http://WCAX.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56"> ...[SNIP]... <link rel="stylesheet" type="text/css" href="http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css" media="screen"> <link rel="stylesheet" href="http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600" type="text/css"> <style type="text/css">...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... -headertop-google_cs">WEB SEARCH BY <img src='http://WCAX.images.worldnow.com/global/images/google/google-logo.gif' alt='Google' class='wnSearchBoxLabelImg-google'> </label>...[SNIP]... <iframe id="WNLinksContent391987" name="WNLinksContent391987" class="wnLinksContentIframe" src="http://ftpcontent.worldnow.com/wcax/custom/branding_feature_i.html" width="100%" height="70" scrolling="no" frameborder="0" marginwidth="0" marginheight="0"> [Your user agent does not support frames or is currently configured to not display frames. However, you may visit <a href="http://ftpcontent.worldnow.com/wcax/custom/branding_feature_i.html"> the related document.</a>...[SNIP]... <img id="WNBrandingImage" usemap="#wnBrandingMap" alt="" border="0" onload="if (window.WNElement) WNElement.positionOver('WNDS70', 'WNBrandingImage', { horizontal : 'right', vertical : 'middle' });" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_branding.jpg"> <map name="wnBrandingMap">...[SNIP]... .asp?C=18195"><img src="http://WCAX.images.worldnow.com/images/272499_G.gif" width="37" height="29" border="0" alt="Home WCAX.com" title="Home WCAX.com" onsrc="http://WCAX.images.worldnow.com/images/272500_G.gif"> </a>...[SNIP]... .asp?C=18197"><img src="http://WCAX.images.worldnow.com/images/272501_G.gif" width="34" height="29" border="0" alt="Local News" title="Local News" onsrc="http://WCAX.images.worldnow.com/images/272502_G.gif"> </a>...[SNIP]... .asp?C=18196"><img src="http://WCAX.images.worldnow.com/images/272503_G.gif" width="54" height="29" border="0" alt="Weather" title="Weather" onsrc="http://WCAX.images.worldnow.com/images/272504_G.gif"> </a>...[SNIP]... .asp?C=18198"><img src="http://WCAX.images.worldnow.com/images/272505_G.gif" width="43" height="29" border="0" alt="Sports" title="Sports" onsrc="http://WCAX.images.worldnow.com/images/272506_G.gif"> </a>...[SNIP]... =408799"><img src="http://WCAX.images.worldnow.com/images/272508_G.gif" width="74" height="29" border="0" alt="WCAX Vermontopia Community Calendar" title="WCAX Vermontopia Community Calendar" onsrc="http://WCAX.images.worldnow.com/images/272509_G.gif"> </a>...[SNIP]... 'http://www.vermontopia.com||height=768,width=1024,location=yes,resizable=yes,scrollbars=yes,toolbar=yes');"><img src="http://WCAX.images.worldnow.com/images/272510_G.gif" width="82" height="29" border="0" alt="Vermontopia.com" title="Vermontopia.com" onsrc="http://WCAX.images.worldnow.com/images/272511_G.gif"> </a>...[SNIP]... =398823"><img src="http://WCAX.images.worldnow.com/images/272512_G.gif" width="74" height="29" border="0" alt="WCAX Promotions" title="WCAX Promotions" onsrc="http://WCAX.images.worldnow.com/images/272513_G.gif"> </a>...[SNIP]... .asp?C=68446"><img src="http://WCAX.images.worldnow.com/images/272514_G.gif" width="54" height="29" border="0" alt="LIFESTYLE" title="LIFESTYLE" onsrc="http://WCAX.images.worldnow.com/images/272516_G.gif"> </a>...[SNIP]... .asp?C=18836"><img src="http://WCAX.images.worldnow.com/images/272517_G.gif" width="60" height="29" border="0" alt="Contact Us" title="Contact Us" onsrc="http://WCAX.images.worldnow.com/images/272518_G.gif"> </a>...[SNIP]... <script type="text/javascript" src="http://www.worldnow.com/global/interface/jq.js"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/httprequest/httprequest.js"> </script>...[SNIP]... =14408216"><img src="http://WCAX.images.worldnow.com/images/14408216_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14409898"><img src="http://WCAX.images.worldnow.com/images/14409898_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14408340"><img src="http://WCAX.images.worldnow.com/images/14408340_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14412893"><img src="http://WCAX.images.worldnow.com/images/14412893_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14412836"><img src="http://WCAX.images.worldnow.com/images/14412836_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14412419"><img src="http://WCAX.images.worldnow.com/images/14412419_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14413273"><img src="http://WCAX.images.worldnow.com/images/14413273_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14412949"><img src="http://WCAX.images.worldnow.com/images/14412949_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14413603"><img src="http://WCAX.images.worldnow.com/images/14413603_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14413215"><img src="http://WCAX.images.worldnow.com/images/14413215_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14412906"><img src="http://WCAX.images.worldnow.com/images/14412906_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14410562"><img src="http://WCAX.images.worldnow.com/images/14410562_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14408271"><img src="http://WCAX.images.worldnow.com/images/14408271_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14409902"><img src="http://WCAX.images.worldnow.com/images/14409902_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14413381"><img src="http://WCAX.images.worldnow.com/images/14413381_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =13611251"><img src="http://WCAX.images.worldnow.com/images/13611251_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14411911"><img src="http://WCAX.images.worldnow.com/images/14411911_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14411968"><img src="http://WCAX.images.worldnow.com/images/14411968_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14408811"><img src="http://WCAX.images.worldnow.com/images/14408811_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14400516"><img src="http://WCAX.images.worldnow.com/images/14400516_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14410537"><img src="http://WCAX.images.worldnow.com/images/14410537_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14404717"><img src="http://WCAX.images.worldnow.com/images/14404717_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14404311"><img src="http://WCAX.images.worldnow.com/images/14404311_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14403127"><img src="http://WCAX.images.worldnow.com/images/14403127_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14403029"><img src="http://WCAX.images.worldnow.com/images/14403029_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14400642"><img src="http://WCAX.images.worldnow.com/images/14400642_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14406263"><img src="http://WCAX.images.worldnow.com/images/14406263_SS.jpg" alt="" title="" border="0" width="50"> </a>...[SNIP]... =14404540"><img src="http://WCAX.images.worldnow.com/images/14404540_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14406338"><img src="http://WCAX.images.worldnow.com/images/14406338_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14400531"><img src="http://WCAX.images.worldnow.com/images/14400531_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14406368"><img src="http://WCAX.images.worldnow.com/images/14406368_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14406637"><img src="http://WCAX.images.worldnow.com/images/14406637_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14404425"><img src="http://WCAX.images.worldnow.com/images/14404425_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14406704"><img src="http://WCAX.images.worldnow.com/images/14406704_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14403054"><img src="http://WCAX.images.worldnow.com/images/14403054_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... =14405593"><img src="http://WCAX.images.worldnow.com/images/14405593_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14404916"><img src="http://WCAX.images.worldnow.com/images/14404916_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14405018"><img src="http://WCAX.images.worldnow.com/images/14405018_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =14404978"><img src="http://WCAX.images.worldnow.com/images/14404978_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <script src="http://widgets.twimg.com/j/2/widget.js"> </script>...[SNIP]... /Global/category.asp?C=18830&nav=menu183_7"><img class="col3_ql_icon" src="http://WCAX.images.worldnow.com/images/272448_G.gif" /> </a>...[SNIP]... /Global/category.asp?C=74837&nav=menu183_8"><img class="col3_ql_icon" src="http://WCAX.images.worldnow.com/images/272449_G.gif" /> </a>...[SNIP]... /Global/category.asp?C=142185&nav=menu183_9"><img class="col3_ql_icon" src="http://WCAX.images.worldnow.com/images/272447_G.gif" /> </a>...[SNIP]... /Global/category.asp?C=157019&nav=menu183_10"><img class="col3_ql_icon" src="http://WCAX.images.worldnow.com/images/272446_G.gif" /> </a>...[SNIP]... /global/category.asp?c=13544"><img class="col3_ql_icon" src="http://WCAX.images.worldnow.com/images/272450_G.gif" /> </a>...[SNIP]... /global/Story.asp?s=3588651"><img class="col3_ql_icon" src="http://WCAX.images.worldnow.com/images/272351_G.gif" /> </a>...[SNIP]... /global/Story.asp?s=11107870"><img class="col3_ql_icon" src="http://WCAX.images.worldnow.com/images/272319_G.gif" /> </a>...[SNIP]... <a href="http://www.facebook.com/pages/South-Burlington-VT/WCAX-TV/140859045441"> <img class="col3_ql_icon" src="http://WCAX.images.worldnow.com/images/272354_G.gif" /> </a>...[SNIP]... ><a title="Facebook" style="font:bold 8pt Arial,Verdana,San-serif; color:#666666; line-height:11px;" href="http://www.facebook.com/pages/South-Burlington-VT/WCAX-TV/140859045441"> Facebook</a>...[SNIP]... /global/Story.asp?s=10540419"><img class="col3_ql_icon" src="http://WCAX.images.worldnow.com/images/272356_G.gif" /> </a>...[SNIP]... /Global/link.asp?L=186750"><img class="col3_ql_icon" src="http://WCAX.images.worldnow.com/images/272355_G.gif" /> </a>...[SNIP]... <iframe src="http://www.facebook.com/plugins/likebox.php?id=140859045441&width=292&connections=10&stream=true&header=true&height=587" scrolling="no" frameborder="0" style="border:none; overflow:hidden; width:292px; height:587px;" allowTransparency="true"> </iframe>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <a href="http://www.worldnow.com" target="_blank"> <img src="http://WCAX.images.worldnow.com/images/static/container-e/wn_powerby.gif" alt="Powered by WorldNow" border="0"> </a>...[SNIP]... <img src="http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com" name="DCSIMG" width="1" height="1" border="0" alt=""> </noscript>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
4.5. http://www.wcax.com/Global/category.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/category.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/Global/category.asp?C=68446 http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/httprequest/httprequest.js http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://ftpcontent.worldnow.com/revenue/js/ellipses-function.js http://ftpcontent.worldnow.com/revenue/tsr/food/food-content_tsr_back.png http://ftpcontent.worldnow.com/revenue/tsr/food/food-content_tsr_forward.png http://ftpcontent.worldnow.com/revenue/tsr/food/food-content_tsr_pause.png http://images.worldnow.com/Cmedia/images/38921_CS.jpg http://images.worldnow.com/Revenue/images/120651_CS.jpg http://images.worldnow.com/Revenue/images/120652_CS.jpg http://images.worldnow.com/Revenue/images/120657_CS.jpg http://images.worldnow.com/Revenue/images/23748_CS.jpg http://images.worldnow.com/Revenue/images/29878_CS.jpg http://images.worldnow.com/Revenue/images/36210_CS.jpg http://images.worldnow.com/Revenue/images/37891_CS.jpg http://images.worldnow.com/Revenue/images/39546_CS.jpg http://images.worldnow.com/Revenue/images/41934_CS.jpg http://images.worldnow.com/Revenue/images/58532_CS.jpg http://images.worldnow.com/Revenue/images/73801_CS.jpg http://images.worldnow.com/Revenue/images/92036_CS.jpg http://studio-5.financialcontent.com/worldnow?Module=snapshot&OutputMode=JS http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/global/images/google/google-logo.gif http://wcax.images.worldnow.com/images/272499_G.gif http://wcax.images.worldnow.com/images/272501_G.gif http://wcax.images.worldnow.com/images/272503_G.gif http://wcax.images.worldnow.com/images/272505_G.gif http://wcax.images.worldnow.com/images/272508_G.gif http://wcax.images.worldnow.com/images/272510_G.gif http://wcax.images.worldnow.com/images/272512_G.gif http://wcax.images.worldnow.com/images/272514_G.gif http://wcax.images.worldnow.com/images/272517_G.gif http://wcax.images.worldnow.com/images/static/container-e/wn_powerby.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_branding.jpg http://wcax.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56 http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://www.worldnow.com/
Request
GET /Global/category.asp?C=68446 HTTP/1.1,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.34972ac84d1302352164716:lv=1302352436393:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script><link type="text/css" rel="stylesheet" media="all" href="http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600"> <link type="text/css" rel="stylesheet" media="all" href="http://WCAX.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56"> ...[SNIP]... <link rel="stylesheet" type="text/css" href="http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css" media="screen"> <link rel="stylesheet" href="http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600" type="text/css"> <style type="text/css">...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... -headertop-google_cs">WEB SEARCH BY <img src='http://WCAX.images.worldnow.com/global/images/google/google-logo.gif' alt='Google' class='wnSearchBoxLabelImg-google'> </label>...[SNIP]... <img id="WNBrandingImage" usemap="#wnBrandingMap" alt="" border="0" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_branding.jpg"> <map name="wnBrandingMap">...[SNIP]... .asp?C=18195"><img src="http://WCAX.images.worldnow.com/images/272499_G.gif" width="37" height="29" border="0" alt="Home WCAX.com" title="Home WCAX.com" onsrc="http://WCAX.images.worldnow.com/images/272500_G.gif"> </a>...[SNIP]... .asp?C=18197"><img src="http://WCAX.images.worldnow.com/images/272501_G.gif" width="34" height="29" border="0" alt="Local News" title="Local News" onsrc="http://WCAX.images.worldnow.com/images/272502_G.gif"> </a>...[SNIP]... .asp?C=18196"><img src="http://WCAX.images.worldnow.com/images/272503_G.gif" width="54" height="29" border="0" alt="Weather" title="Weather" onsrc="http://WCAX.images.worldnow.com/images/272504_G.gif"> </a>...[SNIP]... .asp?C=18198"><img src="http://WCAX.images.worldnow.com/images/272505_G.gif" width="43" height="29" border="0" alt="Sports" title="Sports" onsrc="http://WCAX.images.worldnow.com/images/272506_G.gif"> </a>...[SNIP]... =408799"><img src="http://WCAX.images.worldnow.com/images/272508_G.gif" width="74" height="29" border="0" alt="WCAX Vermontopia Community Calendar" title="WCAX Vermontopia Community Calendar" onsrc="http://WCAX.images.worldnow.com/images/272509_G.gif"> </a>...[SNIP]... 'http://www.vermontopia.com||height=768,width=1024,location=yes,resizable=yes,scrollbars=yes,toolbar=yes');"><img src="http://WCAX.images.worldnow.com/images/272510_G.gif" width="82" height="29" border="0" alt="Vermontopia.com" title="Vermontopia.com" onsrc="http://WCAX.images.worldnow.com/images/272511_G.gif"> </a>...[SNIP]... =398823"><img src="http://WCAX.images.worldnow.com/images/272512_G.gif" width="74" height="29" border="0" alt="WCAX Promotions" title="WCAX Promotions" onsrc="http://WCAX.images.worldnow.com/images/272513_G.gif"> </a>...[SNIP]... .asp?C=68446"><img src="http://WCAX.images.worldnow.com/images/272514_G.gif" width="54" height="29" border="0" alt="LIFESTYLE" title="LIFESTYLE" onsrc="http://WCAX.images.worldnow.com/images/272516_G.gif"> </a>...[SNIP]... .asp?C=18836"><img src="http://WCAX.images.worldnow.com/images/272517_G.gif" width="60" height="29" border="0" alt="Contact Us" title="Contact Us" onsrc="http://WCAX.images.worldnow.com/images/272518_G.gif"> </a>...[SNIP]... <img src="http://ftpcontent.worldnow.com/revenue/tsr/food/food-content_tsr_back.png" border=0 width="22" height="19" rel="b" title="back" alt="back" /> <img src="http://ftpcontent.worldnow.com/revenue/tsr/food/food-content_tsr_pause.png" border=0 width="22" height="19" rel="ps" title="play/pause" alt="play/pause" /> <img src="http://ftpcontent.worldnow.com/revenue/tsr/food/food-content_tsr_forward.png" border=0 width="22" height="19" rel="f" title="forward" alt="forward" /> ...[SNIP]... <script type="text/javascript" src="http://ftpcontent.worldnow.com/revenue/js/ellipses-function.js"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/httprequest/httprequest.js"> </script>...[SNIP]... .asp?C=36210"><img src="http://images.worldnow.com/Revenue/images/36210_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=37891"><img src="http://images.worldnow.com/Revenue/images/37891_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=38921"><img src="http://images.worldnow.com/Cmedia/images/38921_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=120651"><img src="http://images.worldnow.com/Revenue/images/120651_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=120652"><img src="http://images.worldnow.com/Revenue/images/120652_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=39546"><img src="http://images.worldnow.com/Revenue/images/39546_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=23748"><img src="http://images.worldnow.com/Revenue/images/23748_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=29878"><img src="http://images.worldnow.com/Revenue/images/29878_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=58532"><img src="http://images.worldnow.com/Revenue/images/58532_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=41934"><img src="http://images.worldnow.com/Revenue/images/41934_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=73801"><img src="http://images.worldnow.com/Revenue/images/73801_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=92036"><img src="http://images.worldnow.com/Revenue/images/92036_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... .asp?C=120657"><img src="http://images.worldnow.com/Revenue/images/120657_CS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... Module"><script .financialcontent.com/worldnow?Module=snapshot&OutputMode=JS"> </script>...[SNIP]... <a href="http://www.worldnow.com" target="_blank"> <img src="http://WCAX.images.worldnow.com/images/static/container-e/wn_powerby.gif" alt="Powered by WorldNow" border="0"> </a>...[SNIP]... <img src="http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com" name="DCSIMG" width="1" height="1" border="0" alt=""> </noscript>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
4.6. http://www.wcax.com/Global/link.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/link.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/Global/link.asp?L=408799 http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/global/images/google/google-logo.gif http://wcax.images.worldnow.com/images/272499_G.gif http://wcax.images.worldnow.com/images/272501_G.gif http://wcax.images.worldnow.com/images/272503_G.gif http://wcax.images.worldnow.com/images/272505_G.gif http://wcax.images.worldnow.com/images/272508_G.gif http://wcax.images.worldnow.com/images/272510_G.gif http://wcax.images.worldnow.com/images/272512_G.gif http://wcax.images.worldnow.com/images/272514_G.gif http://wcax.images.worldnow.com/images/272517_G.gif http://wcax.images.worldnow.com/images/static/container-e/wn_powerby.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_branding.jpg http://wcax.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56 http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://www.vermontopia.com/event/ http://www.worldnow.com/
Request
GET /Global/link.asp?L=408799 HTTP/1.1,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.34972ac84d1302352164716:lv=1302352293178:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script><link type="text/css" rel="stylesheet" media="all" href="http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600"> <link type="text/css" rel="stylesheet" media="all" href="http://WCAX.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56"> ...[SNIP]... <link rel="stylesheet" type="text/css" href="http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css" media="screen"> <link rel="stylesheet" href="http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600" type="text/css"> <style type="text/css">...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... -headertop-google_cs">WEB SEARCH BY <img src='http://WCAX.images.worldnow.com/global/images/google/google-logo.gif' alt='Google' class='wnSearchBoxLabelImg-google'> </label>...[SNIP]... <img id="WNBrandingImage" usemap="#wnBrandingMap" alt="" border="0" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_branding.jpg"> <map name="wnBrandingMap">...[SNIP]... .asp?C=18195"><img src="http://WCAX.images.worldnow.com/images/272499_G.gif" width="37" height="29" border="0" alt="Home WCAX.com" title="Home WCAX.com" onsrc="http://WCAX.images.worldnow.com/images/272500_G.gif"> </a>...[SNIP]... .asp?C=18197"><img src="http://WCAX.images.worldnow.com/images/272501_G.gif" width="34" height="29" border="0" alt="Local News" title="Local News" onsrc="http://WCAX.images.worldnow.com/images/272502_G.gif"> </a>...[SNIP]... .asp?C=18196"><img src="http://WCAX.images.worldnow.com/images/272503_G.gif" width="54" height="29" border="0" alt="Weather" title="Weather" onsrc="http://WCAX.images.worldnow.com/images/272504_G.gif"> </a>...[SNIP]... .asp?C=18198"><img src="http://WCAX.images.worldnow.com/images/272505_G.gif" width="43" height="29" border="0" alt="Sports" title="Sports" onsrc="http://WCAX.images.worldnow.com/images/272506_G.gif"> </a>...[SNIP]... =408799"><img src="http://WCAX.images.worldnow.com/images/272508_G.gif" width="74" height="29" border="0" alt="WCAX Vermontopia Community Calendar" title="WCAX Vermontopia Community Calendar" onsrc="http://WCAX.images.worldnow.com/images/272509_G.gif"> </a>...[SNIP]... 'http://www.vermontopia.com||height=768,width=1024,location=yes,resizable=yes,scrollbars=yes,toolbar=yes');"><img src="http://WCAX.images.worldnow.com/images/272510_G.gif" width="82" height="29" border="0" alt="Vermontopia.com" title="Vermontopia.com" onsrc="http://WCAX.images.worldnow.com/images/272511_G.gif"> </a>...[SNIP]... =398823"><img src="http://WCAX.images.worldnow.com/images/272512_G.gif" width="74" height="29" border="0" alt="WCAX Promotions" title="WCAX Promotions" onsrc="http://WCAX.images.worldnow.com/images/272513_G.gif"> </a>...[SNIP]... .asp?C=68446"><img src="http://WCAX.images.worldnow.com/images/272514_G.gif" width="54" height="29" border="0" alt="LIFESTYLE" title="LIFESTYLE" onsrc="http://WCAX.images.worldnow.com/images/272516_G.gif"> </a>...[SNIP]... .asp?C=18836"><img src="http://WCAX.images.worldnow.com/images/272517_G.gif" width="60" height="29" border="0" alt="Contact Us" title="Contact Us" onsrc="http://WCAX.images.worldnow.com/images/272518_G.gif"> </a>...[SNIP]... <iframe id="Frame1" name="Frame1" class="wnLinksContentIframe" src="http://www.vermontopia.com/event/" width="100%" height="1500" frameborder="0" marginwidth="0" marginheight="0"> [Your user agent does not support frames or is currently configured to not display frames. However, you may visit <a href="http://www.vermontopia.com/event/"> the related document.</a>...[SNIP]... <a href="http://www.worldnow.com" target="_blank"> <img src="http://WCAX.images.worldnow.com/images/static/container-e/wn_powerby.gif" alt="Powered by WorldNow" border="0"> </a>...[SNIP]... <img src="http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com" name="DCSIMG" width="1" height="1" border="0" alt=""> </noscript>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
4.7. http://www.wcax.com/Global/story.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/story.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/Global/story.asp?S=14408244 http://addthis.com/bookmark.php?v=250&username=xa-4bbcc485014c0ab2 http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/drag_drop.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://js-kit.com/comments.js http://pagead2.googlesyndication.com/pagead/show_ads.js http://s7.addthis.com/js/250/addthis_widget.js http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/global/images/google/google-logo.gif http://wcax.images.worldnow.com/images/272499_G.gif http://wcax.images.worldnow.com/images/272501_G.gif http://wcax.images.worldnow.com/images/272503_G.gif http://wcax.images.worldnow.com/images/272505_G.gif http://wcax.images.worldnow.com/images/272508_G.gif http://wcax.images.worldnow.com/images/272510_G.gif http://wcax.images.worldnow.com/images/272512_G.gif http://wcax.images.worldnow.com/images/272514_G.gif http://wcax.images.worldnow.com/images/272517_G.gif http://wcax.images.worldnow.com/images/static/container-e/wn_powerby.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_607x37.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_branding.jpg http://wcax.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56 http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://www.worldnow.com/
Request
GET /Global/story.asp?S=14408244 HTTP/1.1/Global/category.asp?C=18197,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352451310:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script><link type="text/css" rel="stylesheet" media="all" href="http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600"> <link type="text/css" rel="stylesheet" media="all" href="http://WCAX.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56"> ...[SNIP]... <link rel="stylesheet" type="text/css" href="http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css" media="screen"> <link rel="stylesheet" href="http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600" type="text/css"> <style type="text/css">...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... -headertop-google_cs">WEB SEARCH BY <img src='http://WCAX.images.worldnow.com/global/images/google/google-logo.gif' alt='Google' class='wnSearchBoxLabelImg-google'> </label>...[SNIP]... <img id="WNBrandingImage" usemap="#wnBrandingMap" alt="" border="0" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_branding.jpg"> <map name="wnBrandingMap">...[SNIP]... .asp?C=18195"><img src="http://WCAX.images.worldnow.com/images/272499_G.gif" width="37" height="29" border="0" alt="Home WCAX.com" title="Home WCAX.com" onsrc="http://WCAX.images.worldnow.com/images/272500_G.gif"> </a>...[SNIP]... .asp?C=18197"><img src="http://WCAX.images.worldnow.com/images/272501_G.gif" width="34" height="29" border="0" alt="Local News" title="Local News" onsrc="http://WCAX.images.worldnow.com/images/272502_G.gif"> </a>...[SNIP]... .asp?C=18196"><img src="http://WCAX.images.worldnow.com/images/272503_G.gif" width="54" height="29" border="0" alt="Weather" title="Weather" onsrc="http://WCAX.images.worldnow.com/images/272504_G.gif"> </a>...[SNIP]... .asp?C=18198"><img src="http://WCAX.images.worldnow.com/images/272505_G.gif" width="43" height="29" border="0" alt="Sports" title="Sports" onsrc="http://WCAX.images.worldnow.com/images/272506_G.gif"> </a>...[SNIP]... =408799"><img src="http://WCAX.images.worldnow.com/images/272508_G.gif" width="74" height="29" border="0" alt="WCAX Vermontopia Community Calendar" title="WCAX Vermontopia Community Calendar" onsrc="http://WCAX.images.worldnow.com/images/272509_G.gif"> </a>...[SNIP]... 'http://www.vermontopia.com||height=768,width=1024,location=yes,resizable=yes,scrollbars=yes,toolbar=yes');"><img src="http://WCAX.images.worldnow.com/images/272510_G.gif" width="82" height="29" border="0" alt="Vermontopia.com" title="Vermontopia.com" onsrc="http://WCAX.images.worldnow.com/images/272511_G.gif"> </a>...[SNIP]... =398823"><img src="http://WCAX.images.worldnow.com/images/272512_G.gif" width="74" height="29" border="0" alt="WCAX Promotions" title="WCAX Promotions" onsrc="http://WCAX.images.worldnow.com/images/272513_G.gif"> </a>...[SNIP]... .asp?C=68446"><img src="http://WCAX.images.worldnow.com/images/272514_G.gif" width="54" height="29" border="0" alt="LIFESTYLE" title="LIFESTYLE" onsrc="http://WCAX.images.worldnow.com/images/272516_G.gif"> </a>...[SNIP]... .asp?C=18836"><img src="http://WCAX.images.worldnow.com/images/272517_G.gif" width="60" height="29" border="0" alt="Contact Us" title="Contact Us" onsrc="http://WCAX.images.worldnow.com/images/272518_G.gif"> </a>...[SNIP]... <a href="http://addthis.com/bookmark.php?v=250&username=xa-4bbcc485014c0ab2" class="addthis_button_compact"> Share</a>...[SNIP]... <script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#username=xa-4bbcc485014c0ab2"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/drag_drop.js?ver=201011111600"> </script>...[SNIP]... <img class="wnCommentsBranding" alt="Branding" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_607x37.gif"> <div id="wnCommentsAd">...[SNIP]... <script type="text/javascript" src="http://js-kit.com/comments.js"> </script>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <a href="http://www.worldnow.com" target="_blank"> <img src="http://WCAX.images.worldnow.com/images/static/container-e/wn_powerby.gif" alt="Powered by WorldNow" border="0"> </a>...[SNIP]... <img src="http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com" name="DCSIMG" width="1" height="1" border="0" alt=""> </noscript>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
4.8. http://www.wcax.com/Global/story.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/story.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/Global/story.asp?S=503137 http://addthis.com/bookmark.php?v=250&username=xa-4bbcc485014c0ab2 http://ads.adbrite.com/mb/text_group.php?sid=640921&zs=3436385f3630 http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://files.adbrite.com/mb/images/adbrite-your-ad-here-banner.gif http://pagead2.googlesyndication.com/pagead/show_ads.js http://s7.addthis.com/js/250/addthis_widget.js http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/global/images/google/google-logo.gif http://wcax.images.worldnow.com/images/272499_G.gif http://wcax.images.worldnow.com/images/272501_G.gif http://wcax.images.worldnow.com/images/272503_G.gif http://wcax.images.worldnow.com/images/272505_G.gif http://wcax.images.worldnow.com/images/272508_G.gif http://wcax.images.worldnow.com/images/272510_G.gif http://wcax.images.worldnow.com/images/272512_G.gif http://wcax.images.worldnow.com/images/272514_G.gif http://wcax.images.worldnow.com/images/272517_G.gif http://wcax.images.worldnow.com/images/static/container-e/wn_powerby.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_branding.jpg http://wcax.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56 http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://www.adbrite.com/mb/commerce/purchase_form.php?opid=640921&afsid=1 http://www.worldnow.com/
Request
GET /Global/story.asp?S=503137 HTTP/1.1/Global/category.asp?C=18197,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352522776:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script><link type="text/css" rel="stylesheet" media="all" href="http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600"> <link type="text/css" rel="stylesheet" media="all" href="http://WCAX.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56"> ...[SNIP]... <link rel="stylesheet" type="text/css" href="http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css" media="screen"> <link rel="stylesheet" href="http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600" type="text/css"> <style type="text/css">...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... -headertop-google_cs">WEB SEARCH BY <img src='http://WCAX.images.worldnow.com/global/images/google/google-logo.gif' alt='Google' class='wnSearchBoxLabelImg-google'> </label>...[SNIP]... <img id="WNBrandingImage" usemap="#wnBrandingMap" alt="" border="0" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_branding.jpg"> <map name="wnBrandingMap">...[SNIP]... .asp?C=18195"><img src="http://WCAX.images.worldnow.com/images/272499_G.gif" width="37" height="29" border="0" alt="Home WCAX.com" title="Home WCAX.com" onsrc="http://WCAX.images.worldnow.com/images/272500_G.gif"> </a>...[SNIP]... .asp?C=18197"><img src="http://WCAX.images.worldnow.com/images/272501_G.gif" width="34" height="29" border="0" alt="Local News" title="Local News" onsrc="http://WCAX.images.worldnow.com/images/272502_G.gif"> </a>...[SNIP]... .asp?C=18196"><img src="http://WCAX.images.worldnow.com/images/272503_G.gif" width="54" height="29" border="0" alt="Weather" title="Weather" onsrc="http://WCAX.images.worldnow.com/images/272504_G.gif"> </a>...[SNIP]... .asp?C=18198"><img src="http://WCAX.images.worldnow.com/images/272505_G.gif" width="43" height="29" border="0" alt="Sports" title="Sports" onsrc="http://WCAX.images.worldnow.com/images/272506_G.gif"> </a>...[SNIP]... =408799"><img src="http://WCAX.images.worldnow.com/images/272508_G.gif" width="74" height="29" border="0" alt="WCAX Vermontopia Community Calendar" title="WCAX Vermontopia Community Calendar" onsrc="http://WCAX.images.worldnow.com/images/272509_G.gif"> </a>...[SNIP]... 'http://www.vermontopia.com||height=768,width=1024,location=yes,resizable=yes,scrollbars=yes,toolbar=yes');"><img src="http://WCAX.images.worldnow.com/images/272510_G.gif" width="82" height="29" border="0" alt="Vermontopia.com" title="Vermontopia.com" onsrc="http://WCAX.images.worldnow.com/images/272511_G.gif"> </a>...[SNIP]... =398823"><img src="http://WCAX.images.worldnow.com/images/272512_G.gif" width="74" height="29" border="0" alt="WCAX Promotions" title="WCAX Promotions" onsrc="http://WCAX.images.worldnow.com/images/272513_G.gif"> </a>...[SNIP]... .asp?C=68446"><img src="http://WCAX.images.worldnow.com/images/272514_G.gif" width="54" height="29" border="0" alt="LIFESTYLE" title="LIFESTYLE" onsrc="http://WCAX.images.worldnow.com/images/272516_G.gif"> </a>...[SNIP]... .asp?C=18836"><img src="http://WCAX.images.worldnow.com/images/272517_G.gif" width="60" height="29" border="0" alt="Contact Us" title="Contact Us" onsrc="http://WCAX.images.worldnow.com/images/272518_G.gif"> </a>...[SNIP]... ;"><script src="http://ads.adbrite.com/mb/text_group.php?sid=640921&zs=3436385f3630" type="text/javascript"> </script><!--<a target="_top" href="http://www.adbrite.com/mb/commerce/purchase_form.php?opid=640921&afsid=1"> <img src="http://files.adbrite.com/mb/images/adbrite-your-ad-here-banner.gif" style="background-color:#CCCCCC;border:none;padding:0;margin:0;" alt="Your Ad Here" width="11" height="60" border="0" /> </a>...[SNIP]... <a href="http://addthis.com/bookmark.php?v=250&username=xa-4bbcc485014c0ab2" class="addthis_button_compact"> Share</a>...[SNIP]... <script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#username=xa-4bbcc485014c0ab2"> </script>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <a href="http://www.worldnow.com" target="_blank"> <img src="http://WCAX.images.worldnow.com/images/static/container-e/wn_powerby.gif" alt="Powered by WorldNow" border="0"> </a>...[SNIP]... <img src="http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com" name="DCSIMG" width="1" height="1" border="0" alt=""> </noscript>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
4.9. http://www.wcax.com/Global/story.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/story.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/Global/story.asp?S=465801 http://addthis.com/bookmark.php?v=250&username=xa-4bbcc485014c0ab2 http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://pagead2.googlesyndication.com/pagead/show_ads.js http://s7.addthis.com/js/250/addthis_widget.js http://tags.crwdcntrl.net/c/492/cc.js http://twitter.com/wcaxnewsdesk http://wcax.images.worldnow.com/global/images/google/google-logo.gif http://wcax.images.worldnow.com/images/272499_G.gif http://wcax.images.worldnow.com/images/272501_G.gif http://wcax.images.worldnow.com/images/272503_G.gif http://wcax.images.worldnow.com/images/272505_G.gif http://wcax.images.worldnow.com/images/272508_G.gif http://wcax.images.worldnow.com/images/272510_G.gif http://wcax.images.worldnow.com/images/272512_G.gif http://wcax.images.worldnow.com/images/272514_G.gif http://wcax.images.worldnow.com/images/272517_G.gif http://wcax.images.worldnow.com/images/37412_G.jpg http://wcax.images.worldnow.com/images/465801_BG4.jpg http://wcax.images.worldnow.com/images/static/container-e/wn_powerby.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_branding.jpg http://wcax.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56 http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://www.worldnow.com/
Request
GET /Global/story.asp?S=465801 HTTP/1.1/Global/category.asp?C=18836,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352790930:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script><link type="text/css" rel="stylesheet" media="all" href="http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600"> <link type="text/css" rel="stylesheet" media="all" href="http://WCAX.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56"> ...[SNIP]... <link rel="stylesheet" type="text/css" href="http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css" media="screen"> <link rel="stylesheet" href="http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600" type="text/css"> <style type="text/css">...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... -headertop-google_cs">WEB SEARCH BY <img src='http://WCAX.images.worldnow.com/global/images/google/google-logo.gif' alt='Google' class='wnSearchBoxLabelImg-google'> </label>...[SNIP]... <img id="WNBrandingImage" usemap="#wnBrandingMap" alt="" border="0" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_branding.jpg"> <map name="wnBrandingMap">...[SNIP]... .asp?C=18195"><img src="http://WCAX.images.worldnow.com/images/272499_G.gif" width="37" height="29" border="0" alt="Home WCAX.com" title="Home WCAX.com" onsrc="http://WCAX.images.worldnow.com/images/272500_G.gif"> </a>...[SNIP]... .asp?C=18197"><img src="http://WCAX.images.worldnow.com/images/272501_G.gif" width="34" height="29" border="0" alt="Local News" title="Local News" onsrc="http://WCAX.images.worldnow.com/images/272502_G.gif"> </a>...[SNIP]... .asp?C=18196"><img src="http://WCAX.images.worldnow.com/images/272503_G.gif" width="54" height="29" border="0" alt="Weather" title="Weather" onsrc="http://WCAX.images.worldnow.com/images/272504_G.gif"> </a>...[SNIP]... .asp?C=18198"><img src="http://WCAX.images.worldnow.com/images/272505_G.gif" width="43" height="29" border="0" alt="Sports" title="Sports" onsrc="http://WCAX.images.worldnow.com/images/272506_G.gif"> </a>...[SNIP]... =408799"><img src="http://WCAX.images.worldnow.com/images/272508_G.gif" width="74" height="29" border="0" alt="WCAX Vermontopia Community Calendar" title="WCAX Vermontopia Community Calendar" onsrc="http://WCAX.images.worldnow.com/images/272509_G.gif"> </a>...[SNIP]... 'http://www.vermontopia.com||height=768,width=1024,location=yes,resizable=yes,scrollbars=yes,toolbar=yes');"><img src="http://WCAX.images.worldnow.com/images/272510_G.gif" width="82" height="29" border="0" alt="Vermontopia.com" title="Vermontopia.com" onsrc="http://WCAX.images.worldnow.com/images/272511_G.gif"> </a>...[SNIP]... =398823"><img src="http://WCAX.images.worldnow.com/images/272512_G.gif" width="74" height="29" border="0" alt="WCAX Promotions" title="WCAX Promotions" onsrc="http://WCAX.images.worldnow.com/images/272513_G.gif"> </a>...[SNIP]... .asp?C=68446"><img src="http://WCAX.images.worldnow.com/images/272514_G.gif" width="54" height="29" border="0" alt="LIFESTYLE" title="LIFESTYLE" onsrc="http://WCAX.images.worldnow.com/images/272516_G.gif"> </a>...[SNIP]... .asp?C=18836"><img src="http://WCAX.images.worldnow.com/images/272517_G.gif" width="60" height="29" border="0" alt="Contact Us" title="Contact Us" onsrc="http://WCAX.images.worldnow.com/images/272518_G.gif"> </a>...[SNIP]... <a href="http://addthis.com/bookmark.php?v=250&username=xa-4bbcc485014c0ab2" class="addthis_button_compact"> Share</a>...[SNIP]... <script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#username=xa-4bbcc485014c0ab2"> </script>...[SNIP]... <img src="http://WCAX.images.worldnow.com/images/465801_BG4.jpg" alt="WCAX Assignment Editor Scott Waterman" title="WCAX Assignment Editor Scott Waterman" border="0" width="180"> ...[SNIP]... <a href="http://twitter.com/wcaxnewsdesk" target="_blank"> WCAX Newsdesk via Twitter!</a>...[SNIP]... .asp?C=18830"><img src="http://WCAX.images.worldnow.com/images/37412_G.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <a href="http://www.worldnow.com" target="_blank"> <img src="http://WCAX.images.worldnow.com/images/static/container-e/wn_powerby.gif" alt="Powered by WorldNow" border="0"> </a>...[SNIP]... <img src="http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com" name="DCSIMG" width="1" height="1" border="0" alt=""> </noscript>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
4.10. http://www.wcax.com/Global/story.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/story.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/Global/story.asp?S=452989 http://addthis.com/bookmark.php?v=250&username=xa-4bbcc485014c0ab2 http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://pagead2.googlesyndication.com/pagead/show_ads.js http://s7.addthis.com/js/250/addthis_widget.js http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/global/images/google/google-logo.gif http://wcax.images.worldnow.com/images/186750_LS.jpg http://wcax.images.worldnow.com/images/272499_G.gif http://wcax.images.worldnow.com/images/272501_G.gif http://wcax.images.worldnow.com/images/272503_G.gif http://wcax.images.worldnow.com/images/272505_G.gif http://wcax.images.worldnow.com/images/272508_G.gif http://wcax.images.worldnow.com/images/272510_G.gif http://wcax.images.worldnow.com/images/272512_G.gif http://wcax.images.worldnow.com/images/272514_G.gif http://wcax.images.worldnow.com/images/272517_G.gif http://wcax.images.worldnow.com/images/451085_SS.jpg http://wcax.images.worldnow.com/images/static/container-e/icon_video_included.gif http://wcax.images.worldnow.com/images/static/container-e/wn_powerby.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_branding.jpg http://wcax.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56 http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://www.worldnow.com/
Request
GET /Global/story.asp?S=452989 HTTP/1.1/Global/category.asp?C=189321,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302353981562:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script><link type="text/css" rel="stylesheet" media="all" href="http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600"> <link type="text/css" rel="stylesheet" media="all" href="http://WCAX.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56"> ...[SNIP]... <link rel="stylesheet" type="text/css" href="http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css" media="screen"> <link rel="stylesheet" href="http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600" type="text/css"> <style type="text/css">...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... -headertop-google_cs">WEB SEARCH BY <img src='http://WCAX.images.worldnow.com/global/images/google/google-logo.gif' alt='Google' class='wnSearchBoxLabelImg-google'> </label>...[SNIP]... <img id="WNBrandingImage" usemap="#wnBrandingMap" alt="" border="0" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_branding.jpg"> <map name="wnBrandingMap">...[SNIP]... .asp?C=18195"><img src="http://WCAX.images.worldnow.com/images/272499_G.gif" width="37" height="29" border="0" alt="Home WCAX.com" title="Home WCAX.com" onsrc="http://WCAX.images.worldnow.com/images/272500_G.gif"> </a>...[SNIP]... .asp?C=18197"><img src="http://WCAX.images.worldnow.com/images/272501_G.gif" width="34" height="29" border="0" alt="Local News" title="Local News" onsrc="http://WCAX.images.worldnow.com/images/272502_G.gif"> </a>...[SNIP]... .asp?C=18196"><img src="http://WCAX.images.worldnow.com/images/272503_G.gif" width="54" height="29" border="0" alt="Weather" title="Weather" onsrc="http://WCAX.images.worldnow.com/images/272504_G.gif"> </a>...[SNIP]... .asp?C=18198"><img src="http://WCAX.images.worldnow.com/images/272505_G.gif" width="43" height="29" border="0" alt="Sports" title="Sports" onsrc="http://WCAX.images.worldnow.com/images/272506_G.gif"> </a>...[SNIP]... =408799"><img src="http://WCAX.images.worldnow.com/images/272508_G.gif" width="74" height="29" border="0" alt="WCAX Vermontopia Community Calendar" title="WCAX Vermontopia Community Calendar" onsrc="http://WCAX.images.worldnow.com/images/272509_G.gif"> </a>...[SNIP]... 'http://www.vermontopia.com||height=768,width=1024,location=yes,resizable=yes,scrollbars=yes,toolbar=yes');"><img src="http://WCAX.images.worldnow.com/images/272510_G.gif" width="82" height="29" border="0" alt="Vermontopia.com" title="Vermontopia.com" onsrc="http://WCAX.images.worldnow.com/images/272511_G.gif"> </a>...[SNIP]... =398823"><img src="http://WCAX.images.worldnow.com/images/272512_G.gif" width="74" height="29" border="0" alt="WCAX Promotions" title="WCAX Promotions" onsrc="http://WCAX.images.worldnow.com/images/272513_G.gif"> </a>...[SNIP]... .asp?C=68446"><img src="http://WCAX.images.worldnow.com/images/272514_G.gif" width="54" height="29" border="0" alt="LIFESTYLE" title="LIFESTYLE" onsrc="http://WCAX.images.worldnow.com/images/272516_G.gif"> </a>...[SNIP]... .asp?C=18836"><img src="http://WCAX.images.worldnow.com/images/272517_G.gif" width="60" height="29" border="0" alt="Contact Us" title="Contact Us" onsrc="http://WCAX.images.worldnow.com/images/272518_G.gif"> </a>...[SNIP]... <a href="http://addthis.com/bookmark.php?v=250&username=xa-4bbcc485014c0ab2" class="addthis_button_compact"> Share</a>...[SNIP]... <script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#username=xa-4bbcc485014c0ab2"> </script>...[SNIP]... =186750"><img src="http://WCAX.images.worldnow.com/images/186750_LS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <img class="wnVideoIncluded" src="http://WCAX.images.worldnow.com/images/static/container-e/icon_video_included.gif" alt="Video included" border="0"> </a>...[SNIP]... =451085"><img src="http://WCAX.images.worldnow.com/images/451085_SS.jpg" alt="" title="" border="0" width="90"> </a>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <a href="http://www.worldnow.com" target="_blank"> <img src="http://WCAX.images.worldnow.com/images/static/container-e/wn_powerby.gif" alt="Powered by WorldNow" border="0"> </a>...[SNIP]... <img src="http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com" name="DCSIMG" width="1" height="1" border="0" alt=""> </noscript>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
4.11. http://www.wcax.com/build.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/build.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/build.asp?buildtype=buildpagexmlrequest&featureType=S&featureid=503137&affiliateno=183&clientgroupid=1&rnd=152692 http://ads.adbrite.com/mb/text_group.php?sid=640921&zs=3436385f3630 http://content.worldnow.com/global/interface/google/googleads.css?ver=200711031508 http://content.worldnow.com/global/interface/google/googleads.css?ver=200901240400 http://content.worldnow.com/global/interface/google/googleads.js?ver=200711031508 http://content.worldnow.com/global/interface/google/googleads.js?ver=200901240400 http://content.worldnow.com/global/interface/google/googlecsearch.js http://content.worldnow.com/global/interface/httprequest/httprequest.js?ver=200711031508 http://files.adbrite.com/mb/images/adbrite-your-ad-here-banner.gif http://pagead2.googlesyndication.com/pagead/show_ads.js http://www.adbrite.com/mb/commerce/purchase_form.php?opid=640921&afsid=1 http://www.google.com/afsonline/show_afs_ads.js http://www.microsoft.com/windows/windowsmedia/download/default.asp
Request
GET /build.asp?buildtype=buildpagexmlrequest&featureType=S&featureid=503137&affiliateno=183&clientgroupid=1&rnd=152692 HTTP/1.1/global/video/flash/widgets/WNGallery.swf?ver=201010090400;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352546556:ss=1302352164716
Response
HTTP/1.1 200 OK<DEFAULT><CURRENT><TYPE>S</TYPE><ID>503137</ID><STATUS>L</STATUS><owner><affiliateno>183</affiliateno><affiliatename>WCAX</affiliatename><baseurl>www.wcax.com</ba...[SNIP]... ;"><script src="http://ads.adbrite.com/mb/text_group.php?sid=640921&zs=3436385f3630" type="text/javascript"> </script><!--<a target="_top" href="http://www.adbrite.com/mb/commerce/purchase_form.php?opid=640921&afsid=1"> <img src="http://files.adbrite.com/mb/images/adbrite-your-ad-here-banner.gif" style="background-color:#CCCCCC;border:none;padding:0;margin:0;" alt="Your Ad Here" width="11" height="60" border="0" /> </a>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <a class='Help' href='http://www.microsoft.com/windows/windowsmedia/download/default.asp' target='_blank'> here</a>...[SNIP]... <script language='JavaScript' src='http://www.google.com/afsonline/show_afs_ads.js'> </script>...[SNIP]... <script type='text/javascript' src='http://content.worldnow.com/global/interface/google/googleads.js?ver=200901240400'> </script><link rel='stylesheet' type='text/css' href='http://content.worldnow.com/global/interface/google/googleads.css?ver=200901240400'> ]]>...[SNIP]... <script type='text/javascript' src='http://content.worldnow.com/global/interface/google/googlecsearch.js'> </script>...[SNIP]... <script language="JavaScript" src="http://www.google.com/afsonline/show_afs_ads.js"> </script>...[SNIP]... <script type='text/javascript' src='http://content.worldnow.com/global/interface/httprequest/httprequest.js?ver=200711031508'> </script><script type='text/javascript' src='http://content.worldnow.com/global/interface/google/googleads.js?ver=200711031508'> </script><link rel='stylesheet' type='text/css' href='http://content.worldnow.com/global/interface/google/googleads.css?ver=200711031508'> ]]>...[SNIP]... <script type='text/javascript' src='http://content.worldnow.com/global/interface/httprequest/httprequest.js?ver=200711031508'> </script><script type='text/javascript' src='http://content.worldnow.com/global/interface/google/googleads.js?ver=200711031508'> </script><link rel='stylesheet' type='text/css' href='http://content.worldnow.com/global/interface/google/googleads.css?ver=200711031508'> ]]>...[SNIP]... <script language='JavaScript' src='http://www.google.com/afsonline/show_afs_ads.js'> </script>...[SNIP]...
4.12. http://www.wcax.com/global/link.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/global/link.asp
Issue detail
The page was loaded from a URL containing a query string:http://www.wcax.com/global/link.asp?L=104054&function=manageprofile&mode=create&referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D398823 http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/global/images/google/google-logo.gif http://wcax.images.worldnow.com/global/images/pm/loading.gif http://wcax.images.worldnow.com/images/272499_G.gif http://wcax.images.worldnow.com/images/272501_G.gif http://wcax.images.worldnow.com/images/272503_G.gif http://wcax.images.worldnow.com/images/272505_G.gif http://wcax.images.worldnow.com/images/272508_G.gif http://wcax.images.worldnow.com/images/272510_G.gif http://wcax.images.worldnow.com/images/272512_G.gif http://wcax.images.worldnow.com/images/272514_G.gif http://wcax.images.worldnow.com/images/272517_G.gif http://wcax.images.worldnow.com/images/static/container-e/wn_powerby.gif http://wcax.images.worldnow.com/images/static/hdr/hdr_branding.jpg http://wcax.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56 http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://www.worldnow.com/
Request
GET /global/link.asp?L=104054&function=manageprofile&mode=create&referrer=http%3A//www.wcax.com/Global/link.asp%3FL%3D398823 HTTP/1.1/Global/link.asp?L=398823,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352689361:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script><link type="text/css" rel="stylesheet" media="all" href="http://content.worldnow.com/global/interface/container-e/core.css?ver=201011111600"> <link type="text/css" rel="stylesheet" media="all" href="http://WCAX.images.worldnow.com/interface/css/container-e.css?ver=2011-03-26%2003%3A55%3A56"> ...[SNIP]... <link rel="stylesheet" type="text/css" href="http://content.worldnow.com/global/interface/integration/jquery.fancybox-1.3.1.css" media="screen"> <link rel="stylesheet" href="http://content.worldnow.com/global/interface/menu/menu.css?ver=201011111600" type="text/css"> <style type="text/css">...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... -headertop-google_cs">WEB SEARCH BY <img src='http://WCAX.images.worldnow.com/global/images/google/google-logo.gif' alt='Google' class='wnSearchBoxLabelImg-google'> </label>...[SNIP]... <img id="WNBrandingImage" usemap="#wnBrandingMap" alt="" border="0" src="http://WCAX.images.worldnow.com/images/static/hdr/hdr_branding.jpg"> <map name="wnBrandingMap">...[SNIP]... .asp?C=18195"><img src="http://WCAX.images.worldnow.com/images/272499_G.gif" width="37" height="29" border="0" alt="Home WCAX.com" title="Home WCAX.com" onsrc="http://WCAX.images.worldnow.com/images/272500_G.gif"> </a>...[SNIP]... .asp?C=18197"><img src="http://WCAX.images.worldnow.com/images/272501_G.gif" width="34" height="29" border="0" alt="Local News" title="Local News" onsrc="http://WCAX.images.worldnow.com/images/272502_G.gif"> </a>...[SNIP]... .asp?C=18196"><img src="http://WCAX.images.worldnow.com/images/272503_G.gif" width="54" height="29" border="0" alt="Weather" title="Weather" onsrc="http://WCAX.images.worldnow.com/images/272504_G.gif"> </a>...[SNIP]... .asp?C=18198"><img src="http://WCAX.images.worldnow.com/images/272505_G.gif" width="43" height="29" border="0" alt="Sports" title="Sports" onsrc="http://WCAX.images.worldnow.com/images/272506_G.gif"> </a>...[SNIP]... =408799"><img src="http://WCAX.images.worldnow.com/images/272508_G.gif" width="74" height="29" border="0" alt="WCAX Vermontopia Community Calendar" title="WCAX Vermontopia Community Calendar" onsrc="http://WCAX.images.worldnow.com/images/272509_G.gif"> </a>...[SNIP]... 'http://www.vermontopia.com||height=768,width=1024,location=yes,resizable=yes,scrollbars=yes,toolbar=yes');"><img src="http://WCAX.images.worldnow.com/images/272510_G.gif" width="82" height="29" border="0" alt="Vermontopia.com" title="Vermontopia.com" onsrc="http://WCAX.images.worldnow.com/images/272511_G.gif"> </a>...[SNIP]... =398823"><img src="http://WCAX.images.worldnow.com/images/272512_G.gif" width="74" height="29" border="0" alt="WCAX Promotions" title="WCAX Promotions" onsrc="http://WCAX.images.worldnow.com/images/272513_G.gif"> </a>...[SNIP]... .asp?C=68446"><img src="http://WCAX.images.worldnow.com/images/272514_G.gif" width="54" height="29" border="0" alt="LIFESTYLE" title="LIFESTYLE" onsrc="http://WCAX.images.worldnow.com/images/272516_G.gif"> </a>...[SNIP]... .asp?C=18836"><img src="http://WCAX.images.worldnow.com/images/272517_G.gif" width="60" height="29" border="0" alt="Contact Us" title="Contact Us" onsrc="http://WCAX.images.worldnow.com/images/272518_G.gif"> </a>...[SNIP]... <iframe id="spinner" scrolling="no" frameborder="0" marginwidth="0" marginheight="0" src="http://WCAX.images.worldnow.com/global/images/pm/loading.gif"> </iframe>...[SNIP]... <a href="http://www.worldnow.com" target="_blank"> <img src="http://WCAX.images.worldnow.com/images/static/container-e/wn_powerby.gif" alt="Powered by WorldNow" border="0"> </a>...[SNIP]... <img src="http://analytics.worldnow.com/dcsuhch2hzersfqyzf2de5tct_4d8l/njs.gif?dcsuri=/nojavascript&WT.js=No&WT.tv=8.0.0&WT.sp=WCAX&dcssip=www.wcax.com" name="DCSIMG" width="1" height="1" border="0" alt=""> </noscript>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
5. Cross-domain script include
previous
next
There are 8 instances of this issue:
Issue background
When an application includes a script from an external domain, this script is executed by the browser within the security context of the invoking application. The script can therefore do anything that the application's own scripts can do, such as accessing application data and performing actions within the context of the current user.
Issue remediation
Scripts should not be included from untrusted domains. If you have a requirement which a third-party script appears to fulfil, then you should ideally copy the contents of that script onto your own domain and include it from there. If that is not possible (e.g. for licensing reasons) then you should consider reimplementing the script's functionality within your own code.
5.1. http://www.wcax.com/
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/
Issue detail
The response dynamically includes the following scripts from other domains:http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/httprequest/httprequest.js http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://ftpcontent.worldnow.com/revenue/js/checktimezone.js http://ftpcontent.worldnow.com/revenue/js/ellipses-function.js http://ftpcontent.worldnow.com/revenue/js/jquery-1.3.2.min.js http://ftpcontent.worldnow.com/revenue/js/timeDifference.js http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://www.worldnow.com/global/interface/jq.js
Request
GET / HTTP/1.1,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://www.worldnow.com/global/interface/jq.js"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/httprequest/httprequest.js"> </script>...[SNIP]... <script type="text/javascript" src="http://ftpcontent.worldnow.com/revenue/js/jquery-1.3.2.min.js"> </script><script type="text/javascript" src="http://ftpcontent.worldnow.com/revenue/js/checktimezone.js"> </script><script type="text/javascript" src="http://ftpcontent.worldnow.com/revenue/js/ellipses-function.js"> </script><script type="text/javascript" src="http://ftpcontent.worldnow.com/revenue/js/timeDifference.js"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/httprequest/httprequest.js"> </script>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
5.2. http://www.wcax.com/Global/category.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/category.asp
Issue detail
The response dynamically includes the following scripts from other domains:http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/httprequest/httprequest.js http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://pagead2.googlesyndication.com/pagead/show_ads.js http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600 http://widgets.twimg.com/j/2/widget.js http://www.worldnow.com/global/interface/jq.js
Request
GET /Global/category.asp?C=18197 HTTP/1.1,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352442619:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://www.worldnow.com/global/interface/jq.js"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/httprequest/httprequest.js"> </script>...[SNIP]... <script src="http://widgets.twimg.com/j/2/widget.js"> </script>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
5.3. http://www.wcax.com/Global/category.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/category.asp
Issue detail
The response dynamically includes the following scripts from other domains:http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://pagead2.googlesyndication.com/pagead/show_ads.js http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600
Request
GET /Global/category.asp?C=18836 HTTP/1.1,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.34972ac84d1302352164716:lv=1302352436393:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
5.4. http://www.wcax.com/Global/category.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/category.asp
Issue detail
The response dynamically includes the following scripts from other domains:http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/httprequest/httprequest.js http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://ftpcontent.worldnow.com/revenue/js/ellipses-function.js http://studio-5.financialcontent.com/worldnow?Module=snapshot&OutputMode=JS http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600
Request
GET /Global/category.asp?C=68446 HTTP/1.1,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.34972ac84d1302352164716:lv=1302352436393:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://ftpcontent.worldnow.com/revenue/js/ellipses-function.js"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/httprequest/httprequest.js"> </script>...[SNIP]... Module"><script .financialcontent.com/worldnow?Module=snapshot&OutputMode=JS"> </script>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
5.5. http://www.wcax.com/Global/link.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/link.asp
Issue detail
The response dynamically includes the following scripts from other domains:http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600
Request
GET /Global/link.asp?L=408799 HTTP/1.1,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.34972ac84d1302352164716:lv=1302352293178:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
5.6. http://www.wcax.com/Global/story.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/story.asp
Issue detail
The response dynamically includes the following scripts from other domains:http://ads.adbrite.com/mb/text_group.php?sid=640921&zs=3436385f3630 http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://pagead2.googlesyndication.com/pagead/show_ads.js http://s7.addthis.com/js/250/addthis_widget.js http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600
Request
GET /Global/story.asp?S=503137 HTTP/1.1/Global/category.asp?C=18197,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352522776:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... ;"><script src="http://ads.adbrite.com/mb/text_group.php?sid=640921&zs=3436385f3630" type="text/javascript"> </script>...[SNIP]... <script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#username=xa-4bbcc485014c0ab2"> </script>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
5.7. http://www.wcax.com/Global/story.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/story.asp
Issue detail
The response dynamically includes the following scripts from other domains:http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600 http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600 http://content.worldnow.com/global/interface/drag_drop.js?ver=201011111600 http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600 http://content.worldnow.com/global/interface/globals.js?ver=201011111600 http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600 http://content.worldnow.com/global/interface/jq.js?ver=201011111600 http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600 http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600 http://js-kit.com/comments.js http://pagead2.googlesyndication.com/pagead/show_ads.js http://s7.addthis.com/js/250/addthis_widget.js http://tags.crwdcntrl.net/c/492/cc.js http://wcax.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600 http://wcax.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600
Request
GET /Global/story.asp?S=14408244 HTTP/1.1/Global/category.asp?C=18197,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352451310:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/analytics/sdctag.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/globals.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/jq.js?ver=201011111600"> </script><script type="text/javascript" src="http://content.worldnow.com/global/interface/container-e/core.js?ver=201011111600"> </script><script type="text/javascript" language="JavaScript1.3" src="http://content.worldnow.com/global/tools/video/VideoFunctions.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnadmanager.js?ver=201011111600"> </script><script type="text/javascript" src="http://WCAX.images.worldnow.com/interface/js/wnvideo.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/menu/menu.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/integration/thirdparty.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#username=xa-4bbcc485014c0ab2"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/drag_drop.js?ver=201011111600"> </script>...[SNIP]... <script type="text/javascript" src="http://js-kit.com/comments.js"> </script>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <script type="text/javascript" src="http://tags.crwdcntrl.net/c/492/cc.js"> </script>...[SNIP]... <script type="text/javascript" src="http://content.worldnow.com/global/interface/global_zoom.js?ver=201011111600"> </script>...[SNIP]...
5.8. http://www.wcax.com/build.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/build.asp
Issue detail
The response dynamically includes the following scripts from other domains:http://ads.adbrite.com/mb/text_group.php?sid=640921&zs=3436385f3630 http://content.worldnow.com/global/interface/google/googleads.js?ver=200711031508 http://content.worldnow.com/global/interface/google/googleads.js?ver=200901240400 http://content.worldnow.com/global/interface/google/googlecsearch.js http://content.worldnow.com/global/interface/httprequest/httprequest.js?ver=200711031508 http://pagead2.googlesyndication.com/pagead/show_ads.js http://www.google.com/afsonline/show_afs_ads.js
Request
GET /build.asp?buildtype=buildpagexmlrequest&featureType=S&featureid=503137&affiliateno=183&clientgroupid=1&rnd=152692 HTTP/1.1/global/video/flash/widgets/WNGallery.swf?ver=201010090400;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352546556:ss=1302352164716
Response
HTTP/1.1 200 OK<DEFAULT><CURRENT><TYPE>S</TYPE><ID>503137</ID><STATUS>L</STATUS><owner><affiliateno>183</affiliateno><affiliatename>WCAX</affiliatename><baseurl>www.wcax.com</ba...[SNIP]... ;"><script src="http://ads.adbrite.com/mb/text_group.php?sid=640921&zs=3436385f3630" type="text/javascript"> </script>...[SNIP]... <script type="text/javascript".googlesyndication.com/pagead/show_ads.js"> ...[SNIP]... <script language='JavaScript' src='http://www.google.com/afsonline/show_afs_ads.js'> </script>...[SNIP]... <script type='text/javascript' src='http://content.worldnow.com/global/interface/google/googleads.js?ver=200901240400'> </script>...[SNIP]... <script type='text/javascript' src='http://content.worldnow.com/global/interface/google/googlecsearch.js'> </script>...[SNIP]... <script language="JavaScript" src="http://www.google.com/afsonline/show_afs_ads.js"> </script>...[SNIP]... <script type='text/javascript' src='http://content.worldnow.com/global/interface/httprequest/httprequest.js?ver=200711031508'> </script><script type='text/javascript' src='http://content.worldnow.com/global/interface/google/googleads.js?ver=200711031508'> </script>...[SNIP]... <script type='text/javascript' src='http://content.worldnow.com/global/interface/httprequest/httprequest.js?ver=200711031508'> </script><script type='text/javascript' src='http://content.worldnow.com/global/interface/google/googleads.js?ver=200711031508'> </script>...[SNIP]... <script language='JavaScript' src='http://www.google.com/afsonline/show_afs_ads.js'> </script>...[SNIP]...
6. Email addresses disclosed
previous
There are 2 instances of this issue:
Issue background
The presence of email addresses within application responses does not necessarily constitute a security vulnerability. Email addresses may appear intentionally within contact information, and many applications (such as web mail) include arbitrary third-party email addresses within their core content.
Issue remediation
You should review the email addresses being disclosed by the application, and consider removing any that are unnecessary, or replacing personal addresses with anonymous mailbox addresses (such as helpdesk@example.com).
6.1. http://www.wcax.com/Global/story.asp
previous
next
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/Global/story.asp
Issue detail
The following email address was disclosed in the response:
Request
GET /Global/story.asp?S=14408244 HTTP/1.1/Global/category.asp?C=18197,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5;q=0.3-1302352442492; WT_FPC=id=20d5f21d8a4972ac84d1302352164716:lv=1302352451310:ss=1302352164716
Response
HTTP/1.1 200 OK/html4/loose.dtd"><html lang="en-us"><head>...[SNIP]... news@wcax.com " target="_blank">...[SNIP]...
6.2. http://www.wcax.com/build.asp
previous
Summary
Severity:
Information
Confidence:
Certain
Host:
http://www.wcax.com
Path:
/build.asp
Issue detail
The following email address was disclosed in the response:worldnownotification@gmail.com
Request
GET /build.asp?buildtype=buildpagexmlrequest&featureType=C&featureid=63459&affiliateno=183&clientgroupid=1&rnd=552930 HTTP/1.1/global/video/flash/widgets/WNGallery.swf?ver=201010090400;q=0.34972ac84d1302352164716:lv=1302352164716:ss=1302352164716
Response
HTTP/1.1 200 OK<DEFAULT><CURRENT><TYPE>C</TYPE><ID>63459</ID><STATUS>L</STATUS><owner><affiliateno>183</affiliateno><affiliatename>WCAX</affiliatename><baseurl>www.wcax.com</bas...[SNIP]... worldnownotification@gmail.com </email>...[SNIP]... worldnownotification@gmail.com </email>...[SNIP]...
Report generated by XSS.CX at Tue Apr 12 10:32:42 CDT 2011.