#http://www.lidovky.cz/

1. Target:http://www.lidovky.cz/
2. 1.Cleartext Password Over Http:
3. ============================================================================
4. >HIGH< ;D
5. *GET /design.aspx
6. *GET /diskuse.aspx?iddiskuse=A110106_123226_ln_redakce_glu
7. *GET /diskuse.aspx
8. *GET /Dokumenty.aspx
9. *GET /lide.aspx
10. *GET /patek.aspx
11. *GET /pieta-za-padle-vojaky.aspx
12. *GET /shp.aspx
13. *GET /zpravy-archiv.aspx
14. ============================================================================
15. 2.Cross-Site Script:
16. *GET /foto.aspx
17. *=*Local domain: www.lidovky.cz
18. Script source: http://1gr.cz/m/js/galerie.js?rr=075
19. ============================================================================
20. 3.Flash Cross-Domain Wildcard Allow-Access-From Domain:
21. <*#*>GET /machacek-kdovi-zda-je-brexit-hotova-vec-dyj-/crossdomain.xml
22. :<?xml version="1.0"?>
23. <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
24. <cross-domain-policy>
25. <allow-access-from domain="*" secure="false" />
26. <allow-http-request-headers-from domain="*.lidovky.cz" headers="*" />
27. </cross-domain-policy>
28. ============================================================================
29. 4.Local Filesystem Paths Found:
30. <GET /kapitulace-pred-autoritarem-erdoganem-bulhari-vydali-ankare-teroristu-13x-/zpravy-svet.aspx?c=A160817_112300_ln_zahranici_msl>
31. <@>=/media/video.aspx
32. ============================================================================
33. 5.Flash Cross-Domain Allow-Access-From Secure Flag False:
34. <GET /machacek-kdovi-zda-je-brexit-hotova-vec-dyj-/crossdomain.xml>
35. :<>;<?xml version="1.0"?>
36. <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
37. <cross-domain-policy>
38. <allow-access-from domain="*" secure="false" />
39. <allow-http-request-headers-from domain="*.lidovky.cz" headers="*" />
40. </cross-domain-policy>
41. ============================================================================
42. 6.Form Password With Autocomplete Enabled:
43. *GET /design.aspx
44. *GET /diskuse.aspx?iddiskuse=A110106_123226_ln_redakce_glu
45. *GET /Dokumenty.aspx
46. *GET /lide.aspx
47. *GET /patek.aspx
48. *GET /pieta-za-padle-vojaky.aspx
49. *GET /shp.aspx
50. *GET /zpravy-archiv.aspx
51. *GET /
52. ============================================================================
53. 7.Flash Cross-Domain Wildcard Allow-HTTP-Request-Headers-From Headers:
54. <GET /machacek-kdovi-zda-je-brexit-hotova-vec-dyj-/crossdomain.xml>
55. :<?xml version="1.0"?>
56. <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
57. <cross-domain-policy>
58. <allow-access-from domain="*" secure="false" />
59. <allow-http-request-headers-from domain="*.lidovky.cz" headers="*" />
60. </cross-domain-policy>
61. ============================================================================
62. 8.Interesting Meta Tag:
63. <GET /?setver=touch>
64. ;<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1, user-scalable=no">
65. ============================================================================
66. 9.Permissive Cookie Domain Scope (/):
67. <GET /?setver=touch>
68. ;<personalizace=setver=touch; domain=.lidovky.cz; expires=Fri, 01-Feb-2019 23:00:00 GMT; path=/
69. >
70. ============================================================================
71. 10./Data.aspx/ 2.:
72. *<#>personalizace=setver=touch; domain=.lidovky.cz; expires=Fri, 01-Feb-2019 23:00:00 GMT; path=/
73. *<#>mUID=42c1b139335b679e75a58b7d6f1038ca; expires=Thu, 31-Dec-2099 23:00:00 GMT; path=/
74. ============================================================================
75. ;D