Domain caroline-system6.dev.signundsinn.de
Germany
Software information
Apache
tcp/443 tcp/80
-
Symfony developement panel enabled
The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
- System configuration
- Request log, including POST request with credentials and/or api keys
IP: 185.215.157.221
Domain: caroline-system6.dev.signundsinn.de
Port: 443
URL: https://caroline-system6.dev.signundsinn.de/_profiler/empty/search/resultsFirst seen 2023-06-24 22:54
Last seen 2024-09-24 21:39
Open for 457 days-
Fingerprint: 407cf4363b0e62fafca67e07f1106d8ef1106d8ef1106d8ef1106d8ef1106d8e
Symfony profiler enabled: https://caroline-system6.dev.signundsinn.de/_profiler/empty/search/results
Found on 2024-09-24 21:39
-
Open service 185.215.157.221:443 · caroline-system6.dev.signundsinn.de
2024-09-24 21:39
HTTP/1.1 200 OK Date: Tue, 24 Sep 2024 21:39:45 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: 64f498 X-Debug-Token-Link: https://caroline-system6.dev.signundsinn.de/_profiler/64f498 X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=ivkieavv6em469gh7imkcvtp2q; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=ivkieavv6em469gh7imkcvtp2q; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.switch-language]=1db2f0ff9.aMg2hbLPSLwf_XqUYR2_Vmxax9FXQjk6862WrT0tuuQ.IYsPzNT_eN4ojzfLIE7sHxgVoIU2FUp7sczb_09PwJVY_wDG4JsmiXG5Ow; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.line-item.add]=6d5b600f922d23107.kF3Nt1Ffz_sq_Z4tyzEK4U_W7aStTkoMTTJuJVHHYwo.oh7__w4Yop1uoq9YgHg8sBmOnpTlPyZ9JwQ2czKkGTj-cP34OzCF1kub-Q; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=37826d6d22e00b84f80e14a7afb078.vTAqhsIw1gVob--i5b0I4fVw5-VgQ-PzpabQPWffluY.3Gdc4qZZumtdJIrhkIhjrp4VsL8ibqnKw8maVSqb9bTVQV_jpR3gbD4jug; path=/; secure; httponly; samesite=lax Vary: User-Agent,Accept-Encoding Upgrade: h2,h2c Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-09-24 by HttpPluginCreate report
-
Open service 185.215.157.221:443 · caroline-system6.dev.signundsinn.de
2024-09-14 17:04
HTTP/1.1 200 OK Date: Sat, 14 Sep 2024 17:04:28 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: 3168b5 X-Debug-Token-Link: https://caroline-system6.dev.signundsinn.de/_profiler/3168b5 X-Robots-Tag: noindex sw-invalidation-states: Age: 1 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=g821oojem8jf6rt0hush7rupfi; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=g821oojem8jf6rt0hush7rupfi; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.switch-language]=451ececd7976.y-pRlMGF-firq0ZLgRKqsJLOyvQS5dLHYvP-FRgkip8.qKge__ffz66dzx56sHTG1vO-m6tE3KSAEou7cFRrvc2vgB-n8cDJiYb6Fw; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.line-item.add]=e06d16a01fa675820f0b7.FBDQ108Xr353caqpDufZRPZuW5uo3yzdkA4LTWM93nE.fD2xgCBZ_AkgM5rvRY2tCc4GY-nxgB-a0n5SPjkLvzJ6RbquPnn5NDMBxQ; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=ea943b7a06d83fbb63804d.tTeHa2MmZrUH3Fs9j35ELw-sn3X7GSLprw_IOWH3guM.4nq1ChdsMM90siJnziQ2a0bpx1i5UFa_zW2xfTCc867FA-UdN3lX02WEaw; path=/; secure; httponly; samesite=lax Vary: User-Agent,Accept-Encoding Upgrade: h2,h2c Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-09-14 by HttpPluginCreate report
-
Open service 185.215.157.221:443 · caroline-system6.dev.signundsinn.de
2024-09-12 17:39
HTTP/1.1 200 OK Date: Thu, 12 Sep 2024 17:39:51 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: ea830b X-Debug-Token-Link: https://caroline-system6.dev.signundsinn.de/_profiler/ea830b X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=v0ubd77qigmmguqc38hoen1qqj; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=v0ubd77qigmmguqc38hoen1qqj; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.switch-language]=a3d6e27649.ybuq6mMMViCaiBxEum6gw7v1FGNiq1kH03kbGbgKbLI.ot_-vzkhBnnp3nMB9ADrsouAcxRXniw__hIoXMo6A_OI7_CmFGc7bc66UQ; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.line-item.add]=675507853782f9f6ec153455.1w7-BdPPdKVQ7vdutIMDf6ZxV0fsPuKI6vDcJWlp32E.nFTJbf6gPvEP3sIZ9uwyCuo8ZQyOb43Zq6PkXAZcqxm0RchwhJ8r9CS2nA; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=de5aa5e2d7ff.S8cRL-SKLn7VQxw6K4TuC938FZLKYOcf-3cHk1JavVs.coUiea7Lej2yCGZJHtLfZO67fKKDUN9PlzBGo2oAzzwMjUgdnut6CrkNdw; path=/; secure; httponly; samesite=lax Vary: User-Agent,Accept-Encoding Upgrade: h2,h2c Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-09-12 by HttpPluginCreate report
-
Open service 185.215.157.221:443 · caroline-system6.dev.signundsinn.de
2024-09-08 02:42
HTTP/1.1 200 OK Date: Sun, 08 Sep 2024 02:42:53 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: 5fcc8a X-Debug-Token-Link: https://caroline-system6.dev.signundsinn.de/_profiler/5fcc8a X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=v7oo2phgjmkfn08m2cmqiv4kkq; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=v7oo2phgjmkfn08m2cmqiv4kkq; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.switch-language]=013767007b4d74eeb6f91455e229.u1wWva-Xmtm4RVvKdYkJgPOTfdcuWPsjbachwBHlRkY.9W1G3tzc4PTBNB6kRu9Q2rzcN4hkILEVGuZC913dICrNGm7oxOH14eoXDg; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.line-item.add]=cad546026b8be201307a89d3bc637.nHtKdW0bWOyOFI7vzz_7C4C2LckYuBhyWvWhe3yhwd0.0BQvRQV4FZ75ZrymrAucQcPxWLtgylxEPsXyLjCMhZDVCS1CCV5v2dZ5_Q; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=502f4853a74c2ac9.z4-0GAmKpHnLd_XPiAYNziLMahWZzMhEgO55BZBtQO0.uOD2XmT9xR69HYS6z3VhrUn-KFbzja592JYQUMVacLz6yOJwOeKRAaciuA; path=/; secure; httponly; samesite=lax Vary: User-Agent,Accept-Encoding Upgrade: h2,h2c Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-09-08 by HttpPluginCreate report
-
Open service 185.215.157.221:443 · caroline-system6.dev.signundsinn.de
2024-09-06 11:50
HTTP/1.1 200 OK Date: Fri, 06 Sep 2024 11:50:56 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: 97f7cd X-Debug-Token-Link: https://caroline-system6.dev.signundsinn.de/_profiler/97f7cd X-Robots-Tag: noindex sw-invalidation-states: Age: 1 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=k12pd1t4hi7g8p265p48c5jok3; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=k12pd1t4hi7g8p265p48c5jok3; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.switch-language]=8c.gQR62KmcfV7jiRAee4LDWNAF2diVddG-lyxP6K2xnZM.0TUO793KRSeOuyFmLrCBLv1Kqe_ZRejf_B0Q0Nfu9-D0cSjox_86aNHvXQ; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.line-item.add]=15d8aa68c3606405.T0Tpy2fXmr97zkazV1r_A67lmc7JcktrEVfnN3xw7FA.IQqqpVGT8cs9jxGBIDuPbcCv7_msGQozaxO4Rx4nmSEtANuMPpDpiT2cEw; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=cff964.ZRsKyASLRpJ26hp41mO6Ojon2J_3qYzxWRGzeYycOCw.B1NvoH3oMMg3gHI7oizOaEN3j9G5m764KmDZPMbTDUUsWU-cS-AnwxG4Kg; path=/; secure; httponly; samesite=lax Vary: User-Agent,Accept-Encoding Upgrade: h2,h2c Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-09-06 by HttpPluginCreate report
-
Open service 185.215.157.221:80 · caroline-system6.dev.signundsinn.de
2024-08-16 22:54
HTTP/1.1 500 Internal Server Error Date: Fri, 16 Aug 2024 22:54:24 GMT Server: Apache X-Debug-Exception: Unable%20to%20find%20a%20matching%20sales%20channel%20for%20the%20request%3A%20http%3A%2F%2Fcaroline-system6.dev.signundsinn.de%2F%22.%20Please%20make%20sure%20the%20domain%20mapping%20is%20correct. X-Debug-Exception-File: %2Fhtml%2Fshopware6-dev%2Fvendor%2Fshopware%2Fstorefront%2FFramework%2FRouting%2FRequestTransformer.php:146 Upgrade: h2,h2c Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-08-16 by HttpPluginCreate report
-
Open service 185.215.157.221:443 · caroline-system6.dev.signundsinn.de
2024-08-16 22:54
HTTP/1.1 200 OK Date: Fri, 16 Aug 2024 22:54:26 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: 546fde X-Debug-Token-Link: https://caroline-system6.dev.signundsinn.de/_profiler/546fde X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=1oe7un9p54a89s1e6h282gtmh2; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=1oe7un9p54a89s1e6h282gtmh2; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.switch-language]=cb68741.RkRal0SFwnlzWYLmSRW88hRnbmbCkV0AbLcR2OF5OSQ.DXQRxyLtkT4-GLCxO2fItlUlIyCS6BI2NuVylb4JChYcBw7zadagECEU5Q; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.line-item.add]=b90bef62e9388.bHFSU8i4lTB7OEardXJyQbsp9tETeDc33DqDTxiFjDE.LkUiZI3f5kUjC37_FyMFHt59v5ZXLVRSqU3RfU_ouFQvJRk6nYD8Rgh5Hw; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=47e1f41a1.6IAwpC2Pia201aeGkctPzlJZp40POwa6U44E8IYINlk.kbhFxXjHw_rw59XH64UK_WcK89U6YlfyGfZ2tNViWByB81zIXLzCncWS5g; path=/; secure; httponly; samesite=lax Upgrade: h2,h2c Connection: Upgrade, close Vary: Accept-Encoding Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-08-16 by HttpPluginCreate report