1. Cross-site scripting (reflected)
2. Cookie scoped to parent domain
3. Cross-domain script include
4. Cookie without HttpOnly flag set
5. HTML does not specify charset
Severity: | High |
Confidence: | Certain |
Host: | http://www.vivaladeals |
Path: | /p-282-peerless-universal |
GET /p-282-peerless-universal Host: www.vivaladeals.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Date: Sun, 26 Dec 2010 14:31:07 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sun, 26 Dec 2010 14:31:07 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: ASP.NET_SessionId Set-Cookie: SkinID=1; domain=vivaladeals.com; expires=Mon, 26-Dec-2011 14:31:07 GMT; path=/ Set-Cookie: LastViewedEntityName Set-Cookie: LastViewedEntityInst Set-Cookie: LastViewedEntityInst Vary: Accept-Encoding Content-Length: 65074 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content- ...[SNIP]... tID) { window.open('rateit.aspx } </SCRIPT> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.vivaladeals |
Path: | /p-282-peerless-universal |
GET /p-282-peerless-universal Host: www.vivaladeals.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Date: Sun, 26 Dec 2010 14:23:15 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sun, 26 Dec 2010 14:23:15 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: ASP.NET_SessionId Set-Cookie: SkinID=1; domain=vivaladeals.com; expires=Mon, 26-Dec-2011 14:23:15 GMT; path=/ Set-Cookie: LastViewedEntityName Set-Cookie: LastViewedEntityInst Set-Cookie: LastViewedEntityInst Vary: Accept-Encoding Content-Length: 64602 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content- ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.vivaladeals |
Path: | /p-282-peerless-universal |
GET /p-282-peerless-universal Host: www.vivaladeals.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Date: Sun, 26 Dec 2010 14:23:15 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sun, 26 Dec 2010 14:23:15 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: ASP.NET_SessionId Set-Cookie: SkinID=1; domain=vivaladeals.com; expires=Mon, 26-Dec-2011 14:23:15 GMT; path=/ Set-Cookie: LastViewedEntityName Set-Cookie: LastViewedEntityInst Set-Cookie: LastViewedEntityInst Vary: Accept-Encoding Content-Length: 64602 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content- ...[SNIP]... </a><script type="text/javascript" src="http://s7.addthis ...[SNIP]... <div id="digicertsitesealcode" style="width: 81px; margin: 5px auto 5px 5px;" align="center"><script language="javascript" type="text/javascript" src="https://www.digicert ...[SNIP]... </a> <script src="//upfront.thefind ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.vivaladeals |
Path: | /p-282-peerless-universal |
GET /p-282-peerless-universal Host: www.vivaladeals.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Date: Sun, 26 Dec 2010 14:23:15 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sun, 26 Dec 2010 14:23:15 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: ASP.NET_SessionId Set-Cookie: SkinID=1; domain=vivaladeals.com; expires=Mon, 26-Dec-2011 14:23:15 GMT; path=/ Set-Cookie: LastViewedEntityName Set-Cookie: LastViewedEntityInst Set-Cookie: LastViewedEntityInst Vary: Accept-Encoding Content-Length: 64602 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content- ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.vivaladeals |
Path: | /empty.htm |
GET /empty.htm HTTP/1.1 Host: www.vivaladeals.com Proxy-Connection: keep-alive Referer: http://www.vivaladeals Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Cache-Control: max-age=3600 Content-Type: text/html Last-Modified: Thu, 29 Apr 2010 13:38:47 GMT Accept-Ranges: bytes Vary: Accept-Encoding Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Date: Sun, 26 Dec 2010 14:23:17 GMT Content-Length: 172 <html> <head> <title>Worker Window</title> </head> <body bgcolor="#FFFFFF" topmargin="0" leftmargin="0" marginwidth="0" marginheight="0"> </body> </html> |