LeakIX - Host bigbasssplash.pl

Domain bigbasssplash.pl

CLOUDFLARENET

Software information

cloudflare

tcp/443 tcp/80 tcp/8443

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 188.114.97.3
Domain: bigbasssplash.pl
Port: 443
URL: https://bigbasssplash.pl

First seen 2025-12-22 16:45
Last seen 2026-01-23 12:48
Open for 31 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c684e525d684e525dfb28aa85d366783d0e29351d2779c701
```
Found 27 files trough .DS_Store spidering:

/admin
/admin/img
/admin/js
/build
/build/admin
/build/frontend
/bundles
/css
/flags
/frontend
/frontend/img
/img
/media
/media/cache
/media/cache/casino_list
/media/cache/game
/media/cache/game/uploads
/media/cache/game/uploads/media
/media/cache/game/uploads/media/games
/media/cache/pb_b_image
/nav-icons
/pagebuilder
/svg
/svg/games
/svg/socials
/uploads
/uploads/media
```
  Found on 2026-01-23 12:48
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0f8dcf020f8dcf02fd94b99ecd0a1eee92fd4608e0247fbb
```
Found 24 files trough .DS_Store spidering:

/admin
/admin/img
/admin/js
/build
/build/admin
/build/frontend
/bundles
/css
/flags
/frontend
/frontend/img
/img
/media
/media/cache
/media/cache/casino_list
/media/cache/game
/media/cache/game/uploads
/media/cache/game/uploads/media
/media/cache/game/uploads/media/games
/media/cache/pb_b_image
/nav-icons
/pagebuilder
/svg
/uploads
```
  Found on 2025-12-22 16:45
Create report
Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 2a06:98c1:3120::3
Domain: bigbasssplash.pl
Port: 443
URL: https://bigbasssplash.pl/_profiler/empty/search/results

First seen 2025-12-22 16:45
- Fingerprint: 407cf4363b0e62fafca67e07ed0a416fed0a416fed0a416fed0a416fed0a416f
```
Symfony profiler enabled:
https://bigbasssplash.pl/_profiler/empty/search/results
```
  Found on 2025-12-22 16:45
Create report

Open service 188.114.97.3:443 · bigbasssplash.pl

2026-01-23 12:48

HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 12:48:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
alt-svc: h3=":443"; ma=86400
Cache-Control: no-cache, private
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Dx1ILJY9JLa%2BVLnOqbd8O%2BJPsZh7LN9RdiCfEmrLuQkfacr2lkf4knc6WuSbEbNRs3h9nO6B20QGr33Z55AbRQisNjAMOwvJLy207zOsiKI%3D"}]}
Server: cloudflare
Set-Cookie: geo_country=us; expires=Mon, 23 Feb 2026 12:48:38 GMT; Max-Age=2678400; path=/; samesite=lax
vary: Accept-Encoding
x-powered-by: PHP/8.3.29
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
CF-RAY: 9c27680cab94d22b-FRA

Found 2026-01-23 by HttpPlugin

Create report

Open service 2a06:98c1:3120::3:443 · bigbasssplash.pl

2026-01-22 18:51

HTTP/1.1 200 OK
Date: Thu, 22 Jan 2026 18:51:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
alt-svc: h3=":443"; ma=86400
Cache-Control: no-cache, private
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=o3ffRDFGzsOY2Q7Il4omnyC391K3FrVvwkeZVyX7uDA5V3HLjQwAZ97arQ6hizRldWCjRx7NddMBhaQJU5JZzJyXDsszBrOD5EP28VIs9WDUE2aiszeN0tBEGGY%3D"}]}
Server: cloudflare
Set-Cookie: geo_country=us; expires=Sun, 22 Feb 2026 18:51:48 GMT; Max-Age=2678400; path=/; samesite=lax
vary: Accept-Encoding
x-powered-by: PHP/8.3.29
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
CF-RAY: 9c213ea83d5c6642-AMS

Found 2026-01-22 by HttpPlugin

Create report

Open service 188.114.97.3:443 · bigbasssplash.pl

2026-01-09 16:08

HTTP/1.1 200 OK
Date: Fri, 09 Jan 2026 16:09:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
alt-svc: h3=":443"; ma=86400
Cache-Control: no-cache, private
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2Bkp595fiq%2FWi205l9SxXxV%2F4gAwlo1QoFewBru2ezkV77pFmiRhW9ygq5Uf4vKDyWCBV5vWCkqVMHm070EuqbxK7Z8bKwj8YdLTY%2BjvOz1Q%3D"}]}
Server: cloudflare
Set-Cookie: geo_country=us; expires=Mon, 09 Feb 2026 16:09:01 GMT; Max-Age=2678400; path=/; samesite=lax
vary: Accept-Encoding
x-powered-by: PHP/8.3.29
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
CF-RAY: 9bb532575c7d65dd-FRA

Found 2026-01-09 by HttpPlugin

Create report

Open service 2a06:98c1:3120::3:443 · bigbasssplash.pl

2026-01-09 03:56

HTTP/1.1 200 OK
Date: Fri, 09 Jan 2026 03:56:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
alt-svc: h3=":443"; ma=86400
Cache-Control: no-cache, private
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=u3awxtGHHNiLi9dXzDCb8imdaOpglrI02jfRz%2BZfK1QXew0uhXRyLltNLjmXvedsCH3QPGYE93RFdDu77QDCq6kcAZxueF6Nc14wAo9cGGoBUhWTwr8YnH42GOY%3D"}]}
Server: cloudflare
Set-Cookie: geo_country=us; expires=Mon, 09 Feb 2026 03:56:29 GMT; Max-Age=2678400; path=/; samesite=lax
vary: Accept-Encoding
x-powered-by: PHP/8.3.29
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=14,cfOrigin;dur=1234
CF-RAY: 9bb101427b1cc8b5-SIN

Found 2026-01-09 by HttpPlugin

Create report

Open service 188.114.97.3:443 · bigbasssplash.pl

2026-01-02 22:09

HTTP/1.1 200 OK
Date: Fri, 02 Jan 2026 22:09:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
alt-svc: h3=":443"; ma=86400
Cache-Control: no-cache, private
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jj0ToAtr4%2BXxJiPcVxnu%2FRt9qV2ZsixyHXVkL8djqZD1SJRXr4cSok0bwbQUmPbyfC6jDNJPQQNVZq%2BX3MYFPyZQNKTvLsgA1RSXOko30Xw%3D"}]}
Server: cloudflare
Set-Cookie: geo_country=us; expires=Mon, 02 Feb 2026 22:09:50 GMT; Max-Age=2678400; path=/; samesite=lax
vary: Accept-Encoding
x-powered-by: PHP/8.3.29
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
CF-RAY: 9b7d953c0caa65d7-FRA

Found 2026-01-02 by HttpPlugin

Create report

Open service 2a06:98c1:3120::3:443 · bigbasssplash.pl

2026-01-02 04:43

HTTP/1.1 200 OK
Date: Fri, 02 Jan 2026 04:43:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
alt-svc: h3=":443"; ma=86400
Cache-Control: no-cache, private
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TQMoZG%2BF8QsCljrIaTFdrwRTY5oH2Zv7taLfKh0LsUspGpI7qazG9GI8qkZxe9JhnxMH6gVt%2BGykCwTjCNkQ%2B9o5%2Bgg7QZpqt1EAACZw8g9Zy%2B8NYZpRrBzeXkY%3D"}]}
Server: cloudflare
Set-Cookie: geo_country=us; expires=Mon, 02 Feb 2026 04:43:29 GMT; Max-Age=2678400; path=/; samesite=lax
vary: Accept-Encoding
x-powered-by: PHP/8.3.29
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=8,cfOrigin;dur=1175
CF-RAY: 9b7798804b58760e-SJC

Found 2026-01-02 by HttpPlugin