Domain floor.sym.tora.idp.lu
Germany
Software information
Apache
tcp/443
-
Symfony developement panel enabled
The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
- System configuration
- Request log, including POST request with credentials and/or api keys
IP: 157.90.88.250
Domain: floor.sym.tora.idp.lu
Port: 443
URL: https://floor.sym.tora.idp.lu/_profiler/empty/search/resultsFirst seen 2023-03-01 08:38
Last seen 2026-01-09 02:25
Open for 1044 days-
Fingerprint: 407cf4363b0e62fafca67e077cea4f6c7cea4f6c7cea4f6c7cea4f6c7cea4f6c
Symfony profiler enabled: https://floor.sym.tora.idp.lu/_profiler/empty/search/results
Found on 2026-01-09 02:25
-
Open service 157.90.88.250:443 · floor.sym.tora.idp.lu
2026-01-09 02:25
HTTP/1.1 200 OK Date: Fri, 09 Jan 2026 02:25:55 GMT Server: Apache Cache-Control: max-age=0, must-revalidate, private X-Content-Type-Options: nosniff Referrer-Policy: no-referrer, strict-origin-when-cross-origin X-Frame-Options: DENY Content-Security-Policy: default-src 'self'; base-uri 'self'; block-all-mixed-content ; connect-src 'self' region1.analytics.google.com stats.g.doubleclick.net; font-src 'self' fonts.googleapis.com pro.fontawesome.com use.typekit.net p.typekit.net fonts.gstatic.com cdnjs.cloudflare.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net; frame-ancestors 'none'; img-src 'self' google.lu; script-src 'self' cdn.jsdelivr.net cdn.tutorialjinni.com cdnjs.cloudflare.com code.jquery.com www.googletagmanager.com google.com google.lu cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-nkVHsy/8tnW8/nhdK6d3Qg==' 'nonce-44955ce4e2582fc494260f0245a7f230'; style-src 'self' cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net pro.fontawesome.com cdn.tutorialjinni.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-8a92116ea9d74c08f1fd9f7f6f1aeaac'; report-uri /nelmio/csp/report X-Content-Security-Policy: default-src 'self'; base-uri 'self'; block-all-mixed-content ; connect-src 'self' region1.analytics.google.com stats.g.doubleclick.net; font-src 'self' fonts.googleapis.com pro.fontawesome.com use.typekit.net p.typekit.net fonts.gstatic.com cdnjs.cloudflare.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net; frame-ancestors 'none'; img-src 'self' google.lu; script-src 'self' cdn.jsdelivr.net cdn.tutorialjinni.com cdnjs.cloudflare.com code.jquery.com www.googletagmanager.com google.com google.lu cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-nkVHsy/8tnW8/nhdK6d3Qg==' 'nonce-44955ce4e2582fc494260f0245a7f230'; style-src 'self' cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net pro.fontawesome.com cdn.tutorialjinni.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-8a92116ea9d74c08f1fd9f7f6f1aeaac'; report-uri /nelmio/csp/report X-XSS-Protection: 1; mode=block X-Debug-Token: a72016 X-Debug-Token-Link: https://floor.sym.tora.idp.lu/_profiler/a72016 X-Robots-Tag: noindex Expires: Fri, 09 Jan 2026 02:25:55 GMT Set-Cookie: PHPSESSID=b4se7n2jqk26ggftn2bl97m4sm; path=/; secure; httponly; samesite=lax Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found one day ago by HttpPluginCreate report
-
Open service 157.90.88.250:443 · floor.sym.tora.idp.lu
2026-01-02 01:24
HTTP/1.1 200 OK Date: Fri, 02 Jan 2026 01:24:36 GMT Server: Apache Cache-Control: max-age=0, must-revalidate, private X-Content-Type-Options: nosniff Referrer-Policy: no-referrer, strict-origin-when-cross-origin X-Frame-Options: DENY Content-Security-Policy: default-src 'self'; base-uri 'self'; block-all-mixed-content ; connect-src 'self' region1.analytics.google.com stats.g.doubleclick.net; font-src 'self' fonts.googleapis.com pro.fontawesome.com use.typekit.net p.typekit.net fonts.gstatic.com cdnjs.cloudflare.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net; frame-ancestors 'none'; img-src 'self' google.lu; script-src 'self' cdn.jsdelivr.net cdn.tutorialjinni.com cdnjs.cloudflare.com code.jquery.com www.googletagmanager.com google.com google.lu cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-s/b37DTu0G8g/FPJc7KPkw==' 'nonce-6343b0eba34d3b7a58ce2b3a268fd5f3'; style-src 'self' cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net pro.fontawesome.com cdn.tutorialjinni.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-a07fa9106483db112935f4a95bc97e5f'; report-uri /nelmio/csp/report X-Content-Security-Policy: default-src 'self'; base-uri 'self'; block-all-mixed-content ; connect-src 'self' region1.analytics.google.com stats.g.doubleclick.net; font-src 'self' fonts.googleapis.com pro.fontawesome.com use.typekit.net p.typekit.net fonts.gstatic.com cdnjs.cloudflare.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net; frame-ancestors 'none'; img-src 'self' google.lu; script-src 'self' cdn.jsdelivr.net cdn.tutorialjinni.com cdnjs.cloudflare.com code.jquery.com www.googletagmanager.com google.com google.lu cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-s/b37DTu0G8g/FPJc7KPkw==' 'nonce-6343b0eba34d3b7a58ce2b3a268fd5f3'; style-src 'self' cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net pro.fontawesome.com cdn.tutorialjinni.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-a07fa9106483db112935f4a95bc97e5f'; report-uri /nelmio/csp/report X-XSS-Protection: 1; mode=block X-Debug-Token: 8deae5 X-Debug-Token-Link: https://floor.sym.tora.idp.lu/_profiler/8deae5 X-Robots-Tag: noindex Expires: Fri, 02 Jan 2026 01:24:36 GMT Set-Cookie: PHPSESSID=2c4joc4lstemnt75rtp3dkevdj; path=/; secure; httponly; samesite=lax Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2026-01-02 by HttpPluginCreate report
-
Open service 157.90.88.250:443 · floor.sym.tora.idp.lu
2025-12-30 12:56
HTTP/1.1 200 OK Date: Tue, 30 Dec 2025 12:56:56 GMT Server: Apache Cache-Control: max-age=0, must-revalidate, private X-Content-Type-Options: nosniff Referrer-Policy: no-referrer, strict-origin-when-cross-origin X-Frame-Options: DENY Content-Security-Policy: default-src 'self'; base-uri 'self'; block-all-mixed-content ; connect-src 'self' region1.analytics.google.com stats.g.doubleclick.net; font-src 'self' fonts.googleapis.com pro.fontawesome.com use.typekit.net p.typekit.net fonts.gstatic.com cdnjs.cloudflare.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net; frame-ancestors 'none'; img-src 'self' google.lu; script-src 'self' cdn.jsdelivr.net cdn.tutorialjinni.com cdnjs.cloudflare.com code.jquery.com www.googletagmanager.com google.com google.lu cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-E5Ic5DfqMqZS5CJIf6I8AQ==' 'nonce-818fb303c6472d59abee22ebe18f690c'; style-src 'self' cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net pro.fontawesome.com cdn.tutorialjinni.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-2ef4ff5fba26485e1d246fe32f1f04e0'; report-uri /nelmio/csp/report X-Content-Security-Policy: default-src 'self'; base-uri 'self'; block-all-mixed-content ; connect-src 'self' region1.analytics.google.com stats.g.doubleclick.net; font-src 'self' fonts.googleapis.com pro.fontawesome.com use.typekit.net p.typekit.net fonts.gstatic.com cdnjs.cloudflare.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net; frame-ancestors 'none'; img-src 'self' google.lu; script-src 'self' cdn.jsdelivr.net cdn.tutorialjinni.com cdnjs.cloudflare.com code.jquery.com www.googletagmanager.com google.com google.lu cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-E5Ic5DfqMqZS5CJIf6I8AQ==' 'nonce-818fb303c6472d59abee22ebe18f690c'; style-src 'self' cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net pro.fontawesome.com cdn.tutorialjinni.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-2ef4ff5fba26485e1d246fe32f1f04e0'; report-uri /nelmio/csp/report X-XSS-Protection: 1; mode=block X-Debug-Token: 7d3357 X-Debug-Token-Link: https://floor.sym.tora.idp.lu/_profiler/7d3357 X-Robots-Tag: noindex Expires: Tue, 30 Dec 2025 12:56:57 GMT Set-Cookie: PHPSESSID=36igackvicv3gu7cep0vrtcs6h; path=/; secure; httponly; samesite=lax Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2025-12-30 by HttpPluginCreate report
-
Open service 157.90.88.250:443 · floor.sym.tora.idp.lu
2025-12-22 07:36
HTTP/1.1 200 OK Date: Mon, 22 Dec 2025 07:36:59 GMT Server: Apache Cache-Control: max-age=0, must-revalidate, private X-Content-Type-Options: nosniff Referrer-Policy: no-referrer, strict-origin-when-cross-origin X-Frame-Options: DENY Content-Security-Policy: default-src 'self'; base-uri 'self'; block-all-mixed-content ; connect-src 'self' region1.analytics.google.com stats.g.doubleclick.net; font-src 'self' fonts.googleapis.com pro.fontawesome.com use.typekit.net p.typekit.net fonts.gstatic.com cdnjs.cloudflare.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net; frame-ancestors 'none'; img-src 'self' google.lu; script-src 'self' cdn.jsdelivr.net cdn.tutorialjinni.com cdnjs.cloudflare.com code.jquery.com www.googletagmanager.com google.com google.lu cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-BSfqc7lnG31RUFoT2rNZQg==' 'nonce-c4e45c3d631eda91f69bc6fcc9683f28'; style-src 'self' cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net pro.fontawesome.com cdn.tutorialjinni.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-c8ac06134901a8074ec9a7c87ee9d0e8'; report-uri /nelmio/csp/report X-Content-Security-Policy: default-src 'self'; base-uri 'self'; block-all-mixed-content ; connect-src 'self' region1.analytics.google.com stats.g.doubleclick.net; font-src 'self' fonts.googleapis.com pro.fontawesome.com use.typekit.net p.typekit.net fonts.gstatic.com cdnjs.cloudflare.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net; frame-ancestors 'none'; img-src 'self' google.lu; script-src 'self' cdn.jsdelivr.net cdn.tutorialjinni.com cdnjs.cloudflare.com code.jquery.com www.googletagmanager.com google.com google.lu cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-BSfqc7lnG31RUFoT2rNZQg==' 'nonce-c4e45c3d631eda91f69bc6fcc9683f28'; style-src 'self' cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net pro.fontawesome.com cdn.tutorialjinni.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-c8ac06134901a8074ec9a7c87ee9d0e8'; report-uri /nelmio/csp/report X-XSS-Protection: 1; mode=block X-Debug-Token: 81ecad X-Debug-Token-Link: https://floor.sym.tora.idp.lu/_profiler/81ecad X-Robots-Tag: noindex Expires: Mon, 22 Dec 2025 07:36:59 GMT Set-Cookie: PHPSESSID=ri79i8ecqb937b4jsba3rtgg1f; path=/; secure; httponly; samesite=lax Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2025-12-22 by HttpPluginCreate report
-
Open service 157.90.88.250:443 · floor.sym.tora.idp.lu
2025-12-20 07:23
HTTP/1.1 200 OK Date: Sat, 20 Dec 2025 07:23:06 GMT Server: Apache Cache-Control: max-age=0, must-revalidate, private X-Content-Type-Options: nosniff Referrer-Policy: no-referrer, strict-origin-when-cross-origin X-Frame-Options: DENY Content-Security-Policy: default-src 'self'; base-uri 'self'; block-all-mixed-content ; connect-src 'self' region1.analytics.google.com stats.g.doubleclick.net; font-src 'self' fonts.googleapis.com pro.fontawesome.com use.typekit.net p.typekit.net fonts.gstatic.com cdnjs.cloudflare.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net; frame-ancestors 'none'; img-src 'self' google.lu; script-src 'self' cdn.jsdelivr.net cdn.tutorialjinni.com cdnjs.cloudflare.com code.jquery.com www.googletagmanager.com google.com google.lu cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-0WgQMq0kFv36QuyVx3XALQ==' 'nonce-97edb8f58b4e065e83f67dbe2d1b75fb'; style-src 'self' cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net pro.fontawesome.com cdn.tutorialjinni.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-5b5d48460632ccb7c272e5480523b36e'; report-uri /nelmio/csp/report X-Content-Security-Policy: default-src 'self'; base-uri 'self'; block-all-mixed-content ; connect-src 'self' region1.analytics.google.com stats.g.doubleclick.net; font-src 'self' fonts.googleapis.com pro.fontawesome.com use.typekit.net p.typekit.net fonts.gstatic.com cdnjs.cloudflare.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net; frame-ancestors 'none'; img-src 'self' google.lu; script-src 'self' cdn.jsdelivr.net cdn.tutorialjinni.com cdnjs.cloudflare.com code.jquery.com www.googletagmanager.com google.com google.lu cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-0WgQMq0kFv36QuyVx3XALQ==' 'nonce-97edb8f58b4e065e83f67dbe2d1b75fb'; style-src 'self' cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net pro.fontawesome.com cdn.tutorialjinni.com cdn2.tutorialjinni.com code.ionicframework.com cdn.datatables.net 'unsafe-inline' 'nonce-5b5d48460632ccb7c272e5480523b36e'; report-uri /nelmio/csp/report X-XSS-Protection: 1; mode=block X-Debug-Token: da4c05 X-Debug-Token-Link: https://floor.sym.tora.idp.lu/_profiler/da4c05 X-Robots-Tag: noindex Expires: Sat, 20 Dec 2025 07:23:07 GMT Set-Cookie: PHPSESSID=31lbnc7ijvhee4j16oo545n4ev; path=/; secure; httponly; samesite=lax Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2025-12-20 by HttpPluginCreate report