Hallvord R. M. Steen

Taleo - The Leader in On Demand Unbalanced Quotes

Sunday, 18. January 2009, 04:15:15

Load getacooljob.com in Opera, see error page (http://aac.taleo.net/servlets/CareerSection?art_ip_action=FlowDispatcher&flowTypeNo=13&pageSeq=1&art_servlet_language=en&csNo=2'%3E%3C/head%3E%3Cbody%20bgcolor=). At first sight it might look like a standard browser sniffer saying "go away and don't dare becoming our customer until you've found a browser we like"... until you look a bit closer at that address. See the junk at the end?

&csNo=2'%3E%3C/head%3E%3Cbody%20bgcolor= decodes to

&csNo=2'></head><body bgcolor=

and it's caused by the lack of a closing quote for the META tag's content attribute on the previous page:

<META HTTP-EQUIV="refresh" content="01; url='http://aac.recruitsoft.com/servlets/CareerSection?art_ip_action=FlowDispatcher&amp;flowTypeNo=13&amp;pageSeq=1&amp;art_servlet_language=en&amp;csNo=2'>

The site apparently belongs to Taleo which is the "Leader in On Demand Talent Management". As they aren't talented enough to balance their quotes or use a validator to spot markup mistakes, the level of hype obviously exceeds their technical competence..

See also statements like "this Career Section does not allow the use of the BACK or FORWARD browser buttons during the application process" (source), the hideous sniffing here

function stopEvent() {
var userAgent = window.navigator.userAgent;
var appName = window.navigator.appName;
if ((appName.indexOf("Explorer") >= 0) && (userAgent.indexOf("Mozilla/3") >= 0) && (userAgent.indexOf("Mac") >= 0)) {
return (true);
} else {
return (false);
}
}

and their "anti-multiple-tabs" JavaScript

//---------------------------------------------------------------------
// This method increments the count of browser using the career section
// on the current session in the document's cookie.
// This code is inserted only when IE browser is used
//---------------------------------------------------------------------
function setMultiBrowserDetection()
{
if (window.navigator.cookieEnabled)
{
// The multibrowser problem doesn't occur where cookies are not available
var cs_cnt = -1;
var index = document.cookie.indexOf("cs_cnt");
var countbegin = -1;
var countend = -1;
if (index == -1)
{
cs_cnt = 1;
}
else
{
countbegin = (document.cookie.indexOf("=", index) + 1);
countend = document.cookie.indexOf(";", index);
if (countend == -1)
{
countend = document.cookie.length;
cs_cnt = eval(document.cookie.substring(countbegin, countend));
}
else
{
if (countend < countbegin)
{
cs_cnt = 0;
}
else
{
cs_cnt = eval(document.cookie.substring(countbegin, countend));
}
}
if (cs_cnt < 1)
{
cs_cnt = 1;
}
else
{
cs_cnt = cs_cnt + 1;
}
}
document.cookie = "cs_cnt="+cs_cnt;
if (cs_cnt > 1)
{
// More than one browser is using the current session
window.document.location = "http://aac.taleo.net/servlets/CareerSection?art_ip_action=MultipleBrowserConflict";
}
}
}

complete with eval() instead of parseInt() (meaning that anyone who can get a cookie set on this site can XSS them).. When you stop shaking your head, I'd like you to opine on how much less talented a web site could possibly get..

Google Maps vs. DOM2 specification 1-0Dragonfly articles

Comments

Chas4 # 18. January 2009, 04:38

A system error has occurred.

Please do as follows to correct the problem:

1- Verify the version of your Internet browser. The minimum requirements are Microsoft Internet Explorer 5.01 SP1, Netscape Navigator 7, Firefox 1.0, or AOL 7. Free browser upgrades are available at www.microsoft.com, www.netscape.com, www.mozilla.com/firefox, and www.aol.com.

2- Close all your Internet browsers.

3- Open your Internet browser and apply again on the job. Avoid using Back and Forward buttons; use the Continue button instead.

4- If the problem persists, please visit http://www.taleo.com/support.

Thank you.

Error Reference Number: aac (20090117112120492)

Tells you that the page was written a while ago

most of the browsers listed are EOL

on http://www.taleo.com/support/

Welcome to Our Technical Support Page

Please take a moment to read the following answers to the most frequently asked questions about the online application process.

1- This Career Section supports the following browsers and versions:
Browsers
Supported Versions
Where can I get it?
Internet Explorer*6.0 Download a free version at:
www.microsoft.com
Netscape Navigator7.x Download a free version at:
home.netscape.com
AOL9 and above Download a free version at:
free.aol.com
Firefox*1.0Download a free version at:
http://www.mozilla.com/firefox/

2-
If your browser does not read the Career Section properly, you may need to empty your Temporary Internet Files (or cache).

Please click here for information about emptying your Temporary Internet Files.

3-
Because BACK and FORWARD buttons interrupt the application process and may cause you to lose valuable data you have entered, this Career Section does not allow the use of the BACK or FORWARD browser buttons during the application process.

If you have been using the BACK and FORWARD browser buttons while applying, please close your browser, re-start the application, and be sure to use ONLY the CONTINUE buttons within the actual web pages.

wow bad codeing

sirnh1 # 18. January 2009, 09:23

That's still considered coding?

Anyway, when I open up that page (http://aac.taleo.net/servlets/CareerSection?art_ip_action=FlowDispatcher&flowTypeNo=13&pageSeq=1&art_servlet_language=en&csNo=2) in IE7, go to the source and scroll to the bottom, it says:

<script type="text/javascript" language="javascript"><!--
window.document.write('<img src="\x2f700\x2f700PRD.11.0.7.3.0\x2fhtdocs\x2fimages\x2fCareerSection\x2flogo_powered_by.gif"  border="0" alt="Taleo logo"><\/td>');
window.document.write('<td nowrap><img src="\x2f700\x2f700PRD.11.0.7.3.0\x2fhtdocs\x2fimages\x2fCareerSection\x2f_shim_1px1p_transparent.gif" alt="" height="3" width="3"><\/td>');
window.document.write('<td nowrap><a href=\"http:\x2f\x2fwww.taleo.com\"  title=\"This service is powered by Taleo - Access Taleo\'s Web site\" onClick=\"openWindow(\'http:\x2f\x2fwww.taleo.com\', \'taleo\', \'790\', \'630\', \'yes\', \'yes\', \'0\', \'0\'); return stopEvent();\"><span >Powered by Taleo<\/span><\/a>');
//-->
</script>
<noscript>
<img src="/700/700PRD.11.0.7.3.0/htdocs/images/CareerSection/logo_powered_by.gif"  border="0" alt="Taleo logo"></td>
<td nowrap><img src="/700/700PRD.11.0.7.3.0/htdocs/images/CareerSection/_shim_1px1p_transparent.gif" alt="" height="3" width="3"></td>
<td nowrap><a href="http://www.taleo.com"  title="This service is powered by Taleo - Access Taleo's Web site" target="_blank"><span >Powered by Taleo</span></a>
</noscript>

If I'm not mistaken. That's 2 times the same thing, (once as a script and once in the 'noscript tag') couldn't they just remove the javascript and the noscript tags? (Shows how much they where thinking. ) It wont break anything, but still... Why write some javascript that writes an image and a link when then the same link and image are in the noscript tag?

Andrew Gregory # 18. January 2009, 12:26

This doesn't do much to change my view that most people building web sites don't actually know very much about building web sites.

mabdul # 20. January 2009, 16:14

I am really shoked... I mean I can read only js, and understand most of them, but thats all. I don't have any js coding skills... that is REALLY bad...

Anonymous # 23. January 2009, 15:46

Brak writes:

@sirnh1: They did that because one of the links issues a Javascript window.open method at a certain size. The noscript version just opens a new window via target="_blank".

Speaking of which, since the attribute "target" goes away in XHTML, what replaces it? How do we get that functionality back? Wasn't it important enough to keep? Are we honestly supposed to attach new onclick events to any specially designated "A" tag that we want to load in a new window and use javascript to open them from now on?

oion # 19. February 2009, 18:00

Dammit, as an Opera user, I hate Taleo with a passion. Grrrr. I get a retarded error all the time if I'm going through multiple Taleo sites or accidentally hit Z to go back in history. AND TO TOP IT OFF, most Taleo-using sites employ iframes or frames, which just ups the "how incompetent can you be?" meter.

The first thing I do on any Taleo site is to R-click and force the Taleo URL out of the frame. (Frame > Open or Open in New Tab) Then depending on the type of Taleo trickery, I may Edit Site Preferences and disable Javascript for that Taleo URL, or delete cookies, etc.

Chas4 # 19. February 2009, 18:55

A system error has occurred.

Please do as follows to correct the problem:

1- Verify the version of your Internet browser. The minimum requirements are Microsoft Internet Explorer 5.01 SP1, Netscape Navigator 7, Firefox 1.0, or AOL 7. Free browser upgrades are available at www.microsoft.com, www.netscape.com, www.mozilla.com/firefox, and www.aol.com.

2- Close all your Internet browsers.

3- Open your Internet browser and apply again on the job. Avoid using Back and Forward buttons; use the Continue button instead.

4- If the problem persists, please visit http://www.taleo.com/support.

Thank you.

Error Reference Number: aac (20090219014956263)

strange different reference number this time

http://www.taleo.com/support/

has a different list

Browsers
Supported Versions
Where can I get it?
Internet Explorer*6.0 Download a free version at:
www.microsoft.com
Netscape Navigator7.x Download a free version at:
home.netscape.com
AOL9 and above Download a free version at:
free.aol.com
Firefox*1.0Download a free version at:
http://www.mozilla.com/firefox/

only one of the browsers in the list is still active by there company

If I set Safari to the user agent of Opera/9.25 (Macintosh; Intel Mac OS X; U; en) I don't get blocked

hallvors # 22. February 2009, 01:03

as an Opera user, I hate Taleo with a passion

I can imagine! :-] The horror of not being able to use multiple tabs, not being "allowed" to go back and forward etc. The site is screaming for a User JavaScript that can neutralise all its user-unfriendlyness.. or perhaps just a clueful webmaster

Chas4 # 22. February 2009, 01:17

Should Taleo be nicknamed the stoneage site

Anonymous # 11. March 2009, 05:58

Anonymous writes:

GO TO HELL TALEO WHOEVER DESIGNED YOU WILL PAY!!!!!!

Anonymous # 8. April 2009, 22:14

Anonymous writes:

And after all that.. is www.getacooljob.com functioning properly for *anyone*? Pain in the !!!!!

Anonymous # 21. July 2009, 17:14

Anonymous writes:

Taleo is so fucking bad I've skipped over jobs because it was too difficult to apply. They say they work in Firefox, but the last time through their craptasm, I had to use Safari because none of the buttons worked in Firefox. I heard horror stories about that shithole 5 years ago, and apparently it hasn't gotten any better as the last time I used it was 6 months ago. I gave them my resume and their auto-prase function filled in my personal details with random words from the body. Of course my name is Mr. AIX CVS, and I live on Widows 9x/NT, OS/2, Netware... fucktards. Die in a fire!

Anonymous # 29. September 2009, 20:33

Anonymous writes:

Yes, TALEO SUCKS!!!