LeakIX - Host aspaas.stdev.ro

Domain aspaas.stdev.ro

Romania

Soft Technica SRL

Ubuntu

Software information

Apache Apache 2.4.41

tcp/443

Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 176.124.59.46
Domain: aspaas.stdev.ro
Port: 443
URL: https://aspaas.stdev.ro/_profiler/empty/search/results

First seen 2022-09-22 03:34
Last seen 2024-05-01 00:28
Open for 586 days
- Fingerprint: 407cf4363b0e62fafca67e079d1349e79d1349e79d1349e79d1349e79d1349e7
```
Symfony profiler enabled:
https://aspaas.stdev.ro/_profiler/empty/search/results
```
  Found on 2024-05-01 00:28
Create report

Open service 176.124.59.46:443 · aspaas.stdev.ro

2024-05-01 00:28

HTTP/1.1 302 Found
Date: Wed, 01 May 2024 00:28:20 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
X-Debug-Token: de538b
X-Debug-Token-Link: https://aspaas.stdev.ro/_profiler/de538b
X-Robots-Tag: noindex
Expires: Wed, 01 May 2024 00:28:20 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%22de538b%22%2C%22route%22%3A%22user_homepage%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CAuthController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Faspaas%5C%2Fsrc%5C%2FController%5C%2FAuthController.php%22%2C%22line%22%3A211%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Location: /autentificare?workspace=auditor
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /autentificare?workspace=auditor

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/autentificare?workspace=auditor'" />

        <title>Redirecting to /autentificare?workspace=auditor</title>
    </head>
    <body>
        Redirecting to <a href="/autentificare?workspace=auditor">/autentificare?workspace=auditor</a>.
    </body>
</html>

Found 10 hours ago by HttpPlugin

Create report

Open service 176.124.59.46:443 · aspaas.stdev.ro

2024-04-28 19:51

HTTP/1.1 302 Found
Date: Sun, 28 Apr 2024 19:51:50 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
X-Debug-Token: 0bdda5
X-Debug-Token-Link: https://aspaas.stdev.ro/_profiler/0bdda5
X-Robots-Tag: noindex
Expires: Sun, 28 Apr 2024 19:51:50 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%220bdda5%22%2C%22route%22%3A%22user_homepage%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CAuthController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Faspaas%5C%2Fsrc%5C%2FController%5C%2FAuthController.php%22%2C%22line%22%3A211%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Location: /autentificare?workspace=auditor
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /autentificare?workspace=auditor

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/autentificare?workspace=auditor'" />

        <title>Redirecting to /autentificare?workspace=auditor</title>
    </head>
    <body>
        Redirecting to <a href="/autentificare?workspace=auditor">/autentificare?workspace=auditor</a>.
    </body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 176.124.59.46:443 · aspaas.stdev.ro

2024-04-18 05:05

HTTP/1.1 302 Found
Date: Thu, 18 Apr 2024 05:05:51 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
X-Debug-Token: 92a124
X-Debug-Token-Link: https://aspaas.stdev.ro/_profiler/92a124
X-Robots-Tag: noindex
Expires: Thu, 18 Apr 2024 05:05:51 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%2292a124%22%2C%22route%22%3A%22user_homepage%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CAuthController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Faspaas%5C%2Fsrc%5C%2FController%5C%2FAuthController.php%22%2C%22line%22%3A211%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Location: /autentificare?workspace=auditor
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /autentificare?workspace=auditor

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/autentificare?workspace=auditor'" />

        <title>Redirecting to /autentificare?workspace=auditor</title>
    </head>
    <body>
        Redirecting to <a href="/autentificare?workspace=auditor">/autentificare?workspace=auditor</a>.
    </body>
</html>

Found 2024-04-18 by HttpPlugin

Create report

Open service 176.124.59.46:443 · aspaas.stdev.ro

2024-04-10 15:52

HTTP/1.1 302 Found
Date: Wed, 10 Apr 2024 15:52:54 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: max-age=0, must-revalidate, private
X-Debug-Token: 725548
X-Debug-Token-Link: https://aspaas.stdev.ro/_profiler/725548
X-Robots-Tag: noindex
Expires: Wed, 10 Apr 2024 15:52:54 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%22725548%22%2C%22route%22%3A%22user_homepage%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CAuthController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Faspaas%5C%2Fsrc%5C%2FController%5C%2FAuthController.php%22%2C%22line%22%3A211%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Location: /autentificare?workspace=auditor
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /autentificare?workspace=auditor

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/autentificare?workspace=auditor'" />

        <title>Redirecting to /autentificare?workspace=auditor</title>
    </head>
    <body>
        Redirecting to <a href="/autentificare?workspace=auditor">/autentificare?workspace=auditor</a>.
    </body>
</html>

Found 2024-04-10 by HttpPlugin

Create report

api-freya-analyzer.stdev.roapi-freya-sync.stdev.roapi-isf-process.stdev.roapi-vitall.stdev.roapi2-vitall.stdev.roaspaas.stdev.robdo.stdev.rocrm-sync-service.stdev.rodefault.stdev.rodigital-menu.stdev.rodispecer.stdev.rodoor.stdev.roebazaar.stdev.rofreya-analyzer.stdev.rofreya-shop-crawler.stdev.rofreya-sync.stdev.roinsieme.stdev.roisf-process.stdev.rojobs.stdev.roseats-booking.stdev.rovitall.stdev.ro

Fingerprint:

e290016932c6cdaccd98a4cc56862afbfea8a844502aa81cc27ccc3548dac7e4

CN:

api-freya-analyzer.stdev.ro

Key:

RSA-2048

Issuer:

Not before:

2024-04-18 04:04

Not after:

2024-07-17 04:04

api-freya-analyzer.stdev.roapi-freya-sync.stdev.roapi-isf-process.stdev.roapi-vitall.stdev.roapi2-vitall.stdev.roaspaas.stdev.robdo.stdev.rocrm-sync-service.stdev.rodefault.stdev.rodigital-menu.stdev.rodispecer.stdev.rodoor.stdev.roebazaar.stdev.rofreya-analyzer.stdev.rofreya-shop-crawler.stdev.rofreya-sync.stdev.roinsieme.stdev.roisf-process.stdev.rojobs.stdev.roseats-booking.stdev.rovitall.stdev.ro

Fingerprint:

6a088003d95091d1e04f7a90905c9d7c4f0abe10c4ef3e2090e76fede738dc48

CN:

api-freya-analyzer.stdev.ro

Key:

RSA-2048

Issuer:

Not before:

2024-02-18 00:25

Not after:

2024-05-18 00:25

Domain summary

aspaas.stdev.ro 4

1 recorded

IP summary

176.124.59.46 2

1 recorded

Domain aspaas.stdev.ro

Romania

Software information

Symfony developement panel enabled

Create report

Create report

Create report

Create report

Domain summary

IP summary