Domain exchanges.moon.dev.access-program.org
United States
Software information
nginx 1.20.1
tcp/443 tcp/80
-
Symfony developement panel enabled
The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
- System configuration
- Request log, including POST request with credentials and/or api keys
IP: 206.189.190.222
Domain: exchanges.moon.dev.access-program.org
Port: 443
URL: https://exchanges.moon.dev.access-program.org/_profiler/empty/search/resultsFirst seen 2022-09-12 12:00
Last seen 2024-09-12 13:40
Open for 731 days-
Fingerprint: 407cf4363b0e62fafca67e07320dd2f6320dd2f6320dd2f6320dd2f6320dd2f6
Symfony profiler enabled: https://exchanges.moon.dev.access-program.org/_profiler/empty/search/results
Found on 2024-09-12 13:40
-
Open service 206.189.190.222:80 · exchanges.moon.dev.access-program.org
2024-09-27 19:04
HTTP/1.1 301 Moved Permanently Server: nginx/1.20.1 Date: Fri, 27 Sep 2024 19:04:53 GMT Content-Type: text/html Content-Length: 169 Connection: close Location: https://exchanges.moon.dev.access-program.org/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.20.1</center> </body> </html>
Found 10 hours ago by HttpPluginCreate report
-
Open service 206.189.190.222:443 · exchanges.moon.dev.access-program.org
2024-09-27 19:04
HTTP/1.1 200 OK Server: nginx/1.20.1 Date: Fri, 27 Sep 2024 19:04:54 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/7.4.29 Strict-Transport-Security: max-age=31536000; includeSubdomains
Found 10 hours ago by HttpPluginCreate report
-
Open service 206.189.190.222:443 · exchanges.moon.dev.access-program.org
2024-09-26 09:23
HTTP/1.1 200 OK Server: nginx/1.20.1 Date: Thu, 26 Sep 2024 09:23:27 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/7.4.29 Strict-Transport-Security: max-age=31536000; includeSubdomains
Found 2 days ago by HttpPluginCreate report
-
Open service 206.189.190.222:443 · exchanges.moon.dev.access-program.org
2024-09-24 08:48
HTTP/1.1 200 OK Server: nginx/1.20.1 Date: Tue, 24 Sep 2024 08:48:53 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/7.4.29 Strict-Transport-Security: max-age=31536000; includeSubdomains
Found 2024-09-24 by HttpPluginCreate report
-
Open service 206.189.190.222:443 · exchanges.moon.dev.access-program.org
2024-09-14 20:13
HTTP/1.1 200 OK Server: nginx/1.20.1 Date: Sat, 14 Sep 2024 20:14:00 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/7.4.29 Strict-Transport-Security: max-age=31536000; includeSubdomains
Found 2024-09-14 by HttpPluginCreate report
-
Open service 206.189.190.222:443 · exchanges.moon.dev.access-program.org
2024-09-12 13:40
HTTP/1.1 302 Found Server: nginx/1.20.1 Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/7.4.29 Set-Cookie: PHPSESSID=iv7jagdj9691mdeb6f8sbuku2l; expires=Thu, 12-Sep-2024 21:40:17 GMT; Max-Age=28800; path=/; secure; HttpOnly; SameSite=lax Cache-Control: max-age=0, must-revalidate, private Date: Thu, 12 Sep 2024 13:40:17 GMT Location: https://exchanges.moon.dev.access-program.org/login X-Debug-Token: 011fa5 X-Debug-Token-Link: https://exchanges.moon.dev.access-program.org/_profiler/011fa5 X-Robots-Tag: noindex Expires: Thu, 12 Sep 2024 13:40:17 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%22011fa5%22%2C%22route%22%3A%22exchange-index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CFHI360%5C%5CAccess%5C%5CExchange%5C%5CController%5C%5CDashboardController%22%2C%22method%22%3A%22indexAction%22%2C%22file%22%3A%22%5C%2Fhome%5C%2Fsites%5C%2Fportal%5C%2Fsrc%5C%2FFHI360%5C%2FAccess%5C%2FExchange%5C%2FController%5C%2FDashboardController.php%22%2C%22line%22%3A20%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Strict-Transport-Security: max-age=31536000; includeSubdomains Page title: Redirecting to https://exchanges.moon.dev.access-program.org/login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://exchanges.moon.dev.access-program.org/login'" /> <title>Redirecting to https://exchanges.moon.dev.access-program.org/login</title> </head> <body> Redirecting to <a href="https://exchanges.moon.dev.access-program.org/login">https://exchanges.moon.dev.access-program.org/login</a>. </body> </html>Found 2024-09-12 by HttpPluginCreate report
-
Open service 206.189.190.222:443 · exchanges.moon.dev.access-program.org
2024-09-10 12:37
HTTP/1.1 302 Found Server: nginx/1.20.1 Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/7.4.29 Set-Cookie: PHPSESSID=2uftoaq1tvcfuo9ebkg0r3ar30; expires=Tue, 10-Sep-2024 20:38:01 GMT; Max-Age=28800; path=/; secure; HttpOnly; SameSite=lax Cache-Control: max-age=0, must-revalidate, private Date: Tue, 10 Sep 2024 12:38:01 GMT Location: https://exchanges.moon.dev.access-program.org/login X-Debug-Token: f94b49 X-Debug-Token-Link: https://exchanges.moon.dev.access-program.org/_profiler/f94b49 X-Robots-Tag: noindex Expires: Tue, 10 Sep 2024 12:38:01 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%22f94b49%22%2C%22route%22%3A%22exchange-index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CFHI360%5C%5CAccess%5C%5CExchange%5C%5CController%5C%5CDashboardController%22%2C%22method%22%3A%22indexAction%22%2C%22file%22%3A%22%5C%2Fhome%5C%2Fsites%5C%2Fportal%5C%2Fsrc%5C%2FFHI360%5C%2FAccess%5C%2FExchange%5C%2FController%5C%2FDashboardController.php%22%2C%22line%22%3A20%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Strict-Transport-Security: max-age=31536000; includeSubdomains Page title: Redirecting to https://exchanges.moon.dev.access-program.org/login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://exchanges.moon.dev.access-program.org/login'" /> <title>Redirecting to https://exchanges.moon.dev.access-program.org/login</title> </head> <body> Redirecting to <a href="https://exchanges.moon.dev.access-program.org/login">https://exchanges.moon.dev.access-program.org/login</a>. </body> </html>Found 2024-09-10 by HttpPluginCreate report
-
Open service 206.189.190.222:443 · exchanges.moon.dev.access-program.org
2024-09-08 09:17
HTTP/1.1 302 Found Server: nginx/1.20.1 Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/7.4.29 Set-Cookie: PHPSESSID=edfbihqq2skvfkrt7rbul6a2jr; expires=Sun, 08-Sep-2024 17:18:01 GMT; Max-Age=28800; path=/; secure; HttpOnly; SameSite=lax Cache-Control: max-age=0, must-revalidate, private Date: Sun, 08 Sep 2024 09:18:01 GMT Location: https://exchanges.moon.dev.access-program.org/login X-Debug-Token: 39c6b0 X-Debug-Token-Link: https://exchanges.moon.dev.access-program.org/_profiler/39c6b0 X-Robots-Tag: noindex Expires: Sun, 08 Sep 2024 09:18:01 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%2239c6b0%22%2C%22route%22%3A%22exchange-index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CFHI360%5C%5CAccess%5C%5CExchange%5C%5CController%5C%5CDashboardController%22%2C%22method%22%3A%22indexAction%22%2C%22file%22%3A%22%5C%2Fhome%5C%2Fsites%5C%2Fportal%5C%2Fsrc%5C%2FFHI360%5C%2FAccess%5C%2FExchange%5C%2FController%5C%2FDashboardController.php%22%2C%22line%22%3A20%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Strict-Transport-Security: max-age=31536000; includeSubdomains Page title: Redirecting to https://exchanges.moon.dev.access-program.org/login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://exchanges.moon.dev.access-program.org/login'" /> <title>Redirecting to https://exchanges.moon.dev.access-program.org/login</title> </head> <body> Redirecting to <a href="https://exchanges.moon.dev.access-program.org/login">https://exchanges.moon.dev.access-program.org/login</a>. </body> </html>Found 2024-09-08 by HttpPluginCreate report
-
Open service 206.189.190.222:443 · exchanges.moon.dev.access-program.org
2024-08-18 09:45
HTTP/1.1 302 Found Server: nginx/1.20.1 Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/7.4.29 Set-Cookie: PHPSESSID=cbcqq9ip2o610iq537rfsgfotu; expires=Sun, 18-Aug-2024 17:45:23 GMT; Max-Age=28800; path=/; secure; HttpOnly; SameSite=lax Cache-Control: max-age=0, must-revalidate, private Date: Sun, 18 Aug 2024 09:45:23 GMT Location: https://exchanges.moon.dev.access-program.org/login X-Debug-Token: 64aac2 X-Robots-Tag: noindex Expires: Sun, 18 Aug 2024 09:45:23 GMT Set-Cookie: sf_redirect=%7B%22token%22%3A%2264aac2%22%2C%22route%22%3A%22exchange-index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CFHI360%5C%5CAccess%5C%5CExchange%5C%5CController%5C%5CDashboardController%22%2C%22method%22%3A%22indexAction%22%2C%22file%22%3A%22%5C%2Fhome%5C%2Fsites%5C%2Fportal%5C%2Fsrc%5C%2FFHI360%5C%2FAccess%5C%2FExchange%5C%2FController%5C%2FDashboardController.php%22%2C%22line%22%3A20%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Strict-Transport-Security: max-age=31536000; includeSubdomains Page title: Redirecting to https://exchanges.moon.dev.access-program.org/login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='https://exchanges.moon.dev.access-program.org/login'" /> <title>Redirecting to https://exchanges.moon.dev.access-program.org/login</title> </head> <body> Redirecting to <a href="https://exchanges.moon.dev.access-program.org/login">https://exchanges.moon.dev.access-program.org/login</a>. </body> </html>Found 2024-08-18 by HttpPluginCreate report