nginx
tcp/443 tcp/80
The following Gitlab instance is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible to avoid account takeover.
Severity is mitigated by the need of a valid email address.
Reference:
Severity: high
Fingerprint: db64c48d331961cce5776b3a892edddd892edddd892edddd892edddd892edddd
Found vulnerable Gitlab instance Affected by CVE-2023-7028
Open service 42.193.18.42:443 · git.emat.com.cn
2024-05-27 21:07
HTTP/1.1 302 Found Server: nginx Date: Mon, 27 May 2024 21:07:39 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.emat.com.cn/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01HYXY2PBD72B5CJSG483GSPT2","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01HYXY2PBD72B5CJSG483GSPT2 X-Runtime: 0.047783 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://git.emat.com.cn/users/sign_in">redirected</a>.</body></html>
Open service 42.193.18.42:443 · git.emat.com.cn
2024-05-26 19:24
HTTP/1.1 302 Found Server: nginx Date: Sun, 26 May 2024 19:24:48 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.emat.com.cn/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01HYV5SNWRESRGHWC4JZ9KX28B","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01HYV5SNWRESRGHWC4JZ9KX28B X-Runtime: 0.020463 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://git.emat.com.cn/users/sign_in">redirected</a>.</body></html>
Open service 42.193.18.42:443 · git.emat.com.cn
2024-05-25 17:51
HTTP/1.1 302 Found Server: nginx Date: Sat, 25 May 2024 17:51:39 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.emat.com.cn/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01HYRE2CVVPY3G0YHDB25VBZ0K","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01HYRE2CVVPY3G0YHDB25VBZ0K X-Runtime: 0.032583 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://git.emat.com.cn/users/sign_in">redirected</a>.</body></html>
Open service 42.193.18.42:443 · git.emat.com.cn
2024-05-24 00:07
HTTP/1.1 302 Found Server: nginx Date: Fri, 24 May 2024 00:07:42 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.emat.com.cn/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01HYKYSGGQAB9SBN2SAZNXFDHS","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01HYKYSGGQAB9SBN2SAZNXFDHS X-Runtime: 0.020867 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://git.emat.com.cn/users/sign_in">redirected</a>.</body></html>
Open service 42.193.18.42:443 · git.emat.com.cn
2024-05-23 14:34
HTTP/1.1 302 Found Server: nginx Date: Thu, 23 May 2024 14:34:25 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.emat.com.cn/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01HYJXZSES9FJF7CBPNV5S79K2","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01HYJXZSES9FJF7CBPNV5S79K2 X-Runtime: 0.024906 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://git.emat.com.cn/users/sign_in">redirected</a>.</body></html>
Open service 42.193.18.42:443 · git.emat.com.cn
2024-05-15 04:32
HTTP/1.1 302 Found Server: nginx Date: Wed, 15 May 2024 04:32:24 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.emat.com.cn/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01HXX8BQ9HM5TN4Z865GV3HCZA","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01HXX8BQ9HM5TN4Z865GV3HCZA X-Runtime: 0.022737 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://git.emat.com.cn/users/sign_in">redirected</a>.</body></html>
Open service 42.193.18.42:80 · git.emat.com.cn
2024-05-15 04:32
HTTP/1.1 301 Moved Permanently Server: nginx Date: Wed, 15 May 2024 04:32:14 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://git.emat.com.cn:443/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>
Open service 42.193.18.42:443 · git.emat.com.cn
2024-05-12 22:01
HTTP/1.1 302 Found Server: nginx Date: Sun, 12 May 2024 22:01:31 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.emat.com.cn/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01HXQD6J5XCS1JSC3MGAJXQXFC","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01HXQD6J5XCS1JSC3MGAJXQXFC X-Runtime: 0.043361 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://git.emat.com.cn/users/sign_in">redirected</a>.</body></html>
Open service 42.193.18.42:443 · git.emat.com.cn
2024-05-08 18:23
HTTP/1.1 302 Found Server: nginx Date: Wed, 08 May 2024 18:23:19 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.emat.com.cn/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01HXCQ44M6P5FAPH74RV1EQTHA","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01HXCQ44M6P5FAPH74RV1EQTHA X-Runtime: 0.052341 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://git.emat.com.cn/users/sign_in">redirected</a>.</body></html>