Domain git.jsbestop.com
China
Software information
nginx 1.20.2
tcp/443 tcp/80
-
Gitlab instance looks outdated
The following Gitlab instance is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible to avoid account takeover.
Severity is mitigated by the need of a valid email address.
Reference:
First seen 2024-02-24 12:32
Last seen 2024-12-21 04:56
Open for 300 days-
Severity: high
Fingerprint: db64c48d331961cce5776b3a892edddd892edddd892edddd892edddd892eddddFound vulnerable Gitlab instance Affected by CVE-2023-7028
Found on 2024-12-21 04:56
-
-
Open service 222.188.92.86:80 · git.jsbestop.com
2024-12-21 04:56
HTTP/1.1 301 Moved Permanently Server: nginx/1.20.2 Date: Sat, 21 Dec 2024 04:56:11 GMT Content-Type: text/html Content-Length: 169 Connection: close Location: https://git.jsbestop.com/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.20.2</center> </body> </html>
Found one day ago by HttpPluginCreate report
-
Open service 222.188.92.86:443 · git.jsbestop.com
2024-12-21 04:56
HTTP/1.1 302 Found Server: nginx/1.20.2 Date: Sat, 21 Dec 2024 04:56:12 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://git.jsbestop.com/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFKS5DE79WQ0QJT43V93BFGD","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFKS5DE79WQ0QJT43V93BFGD X-Runtime: 0.021720 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Cache-Control: no-cache Cache-Control: no-cache Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS <html><body>You are being <a href="http://git.jsbestop.com/users/sign_in">redirected</a>.</body></html>Found one day ago by HttpPluginCreate report
-
Open service 222.188.92.86:443 · git.jsbestop.com
2024-12-20 19:20
HTTP/1.1 302 Found Server: nginx/1.20.2 Date: Fri, 20 Dec 2024 19:20:21 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://git.jsbestop.com/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFJR70GSS2X9SXATT7RGT3VV","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFJR70GSS2X9SXATT7RGT3VV X-Runtime: 0.083147 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Cache-Control: no-cache Cache-Control: no-cache Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS <html><body>You are being <a href="http://git.jsbestop.com/users/sign_in">redirected</a>.</body></html>Found one day ago by HttpPluginCreate report
-
Open service 222.188.92.86:443 · git.jsbestop.com
2024-12-18 19:33
HTTP/1.1 302 Found Server: nginx/1.20.2 Date: Wed, 18 Dec 2024 19:33:29 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://git.jsbestop.com/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFDM5M9NB88C3X39NNSG5R9Y","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFDM5M9NB88C3X39NNSG5R9Y X-Runtime: 0.022816 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Cache-Control: no-cache Cache-Control: no-cache Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS <html><body>You are being <a href="http://git.jsbestop.com/users/sign_in">redirected</a>.</body></html>Found 2024-12-18 by HttpPluginCreate report
-
Open service 222.188.92.86:443 · git.jsbestop.com
2024-12-12 13:46
HTTP/1.1 302 Found Server: nginx/1.20.2 Date: Thu, 12 Dec 2024 13:47:10 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://git.jsbestop.com/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JEXHZ69K3YZ9SVBNW3QSWND5","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JEXHZ69K3YZ9SVBNW3QSWND5 X-Runtime: 0.071349 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Cache-Control: no-cache Cache-Control: no-cache Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS <html><body>You are being <a href="http://git.jsbestop.com/users/sign_in">redirected</a>.</body></html>Found 2024-12-12 by HttpPluginCreate report
-
Open service 222.188.92.86:443 · git.jsbestop.com
2024-12-03 01:38
HTTP/1.1 302 Found Server: nginx/1.20.2 Date: Tue, 03 Dec 2024 01:38:52 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://git.jsbestop.com/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JE52Q5MG1STJQAEM7P16WMYQ","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JE52Q5MG1STJQAEM7P16WMYQ X-Runtime: 0.033508 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Cache-Control: no-cache Cache-Control: no-cache Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS <html><body>You are being <a href="http://git.jsbestop.com/users/sign_in">redirected</a>.</body></html>Found 2024-12-03 by HttpPluginCreate report
-
Open service 222.188.92.86:443 · git.jsbestop.com
2024-11-30 20:23
HTTP/1.1 302 Found Server: nginx/1.20.2 Date: Sat, 30 Nov 2024 20:23:23 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://git.jsbestop.com/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JDZBW2H3RPB4X4YH37APQY8K","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JDZBW2H3RPB4X4YH37APQY8K X-Runtime: 0.047386 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Cache-Control: no-cache Cache-Control: no-cache Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS <html><body>You are being <a href="http://git.jsbestop.com/users/sign_in">redirected</a>.</body></html>Found 2024-11-30 by HttpPluginCreate report
-
Open service 222.188.92.86:443 · git.jsbestop.com
2024-11-28 22:25
HTTP/1.1 302 Found Server: nginx/1.20.2 Date: Thu, 28 Nov 2024 22:25:36 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://git.jsbestop.com/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JDTE2CWE5GFV9RECHRVAR5F1","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JDTE2CWE5GFV9RECHRVAR5F1 X-Runtime: 0.097909 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Cache-Control: no-cache Cache-Control: no-cache Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS <html><body>You are being <a href="http://git.jsbestop.com/users/sign_in">redirected</a>.</body></html>Found 2024-11-28 by HttpPluginCreate report
-
Open service 222.188.92.86:443 · git.jsbestop.com
2024-11-26 20:18
HTTP/1.1 302 Found Server: nginx/1.20.2 Date: Tue, 26 Nov 2024 20:18:24 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://git.jsbestop.com/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JDN2027PZRS8697R6D2R53YE","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JDN2027PZRS8697R6D2R53YE X-Runtime: 0.041338 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Cache-Control: no-cache Cache-Control: no-cache Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS <html><body>You are being <a href="http://git.jsbestop.com/users/sign_in">redirected</a>.</body></html>Found 2024-11-26 by HttpPluginCreate report
-
Open service 222.188.92.86:443 · git.jsbestop.com
2024-11-20 20:53
HTTP/1.1 302 Found Server: nginx/1.20.2 Date: Wed, 20 Nov 2024 20:53:16 GMT Content-Type: text/html; charset=utf-8 Content-Length: 103 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://git.jsbestop.com/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JD5NKKDBMXJC1XS0DRRZSPGR","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JD5NKKDBMXJC1XS0DRRZSPGR X-Runtime: 0.031935 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Cache-Control: no-cache Cache-Control: no-cache Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS <html><body>You are being <a href="http://git.jsbestop.com/users/sign_in">redirected</a>.</body></html>Found 2024-11-20 by HttpPluginCreate report