Domain git.mbgft.de
Germany
Software information
nginx 1.22.1
tcp/443 tcp/80 tcp/8443
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
First seen 2025-10-20 23:27
Last seen 2026-01-02 13:31
Open for 73 days-
Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d603073f8703073f8703073f8703073f8703073f87GraphQL introspection enabled at /api/graphql Detected: GitLab
Found on 2026-01-02 13:31 -
Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6GraphQL introspection enabled at /api/graphql
Found on 2025-12-01 16:08 -
Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6fa8f57cf1f8f335de3915213dc94b0cbd146c80eGraphQL introspection enabled at /api/graphql Types: 1600 (by kind: ENUM: 183, INPUT_OBJECT: 305, INTERFACE: 26, OBJECT: 961, SCALAR: 117, UNION: 8) Operations: - Query: Query | fields: abuseReport, abuseReportLabels, adminGroups, adminProjects, auditEventDefinitions - Mutation: Mutation | fields: abuseReportLabelCreate, achievementsAward, achievementsCreate, achievementsDelete, achievementsRevoke - Subscription: Subscription | fields: ciJobProcessed, ciJobStatusUpdated, ciPipelineScheduleStatusUpdated, ciPipelineStatusUpdated, issuableAssigneesUpdated Directives: deprecated, gl_introduced, include, oneOf, skip, specifiedBy (total: 6)
Found on 2025-11-23 12:122.7 MBytes
-
-
Gitlab instance looks outdated
The following Gitlab instance is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible to avoid account takeover.
Severity is mitigated by the need of a valid email address.
Reference:
First seen 2024-01-20 08:50
Last seen 2024-02-03 00:16
Open for 13 days-
Severity: high
Fingerprint: db64c48d331961cce5776b3a892edddd892edddd892edddd892edddd892eddddFound vulnerable Gitlab instance Affected by CVE-2023-7028
Found on 2024-02-03 00:16
-
-
Open service 185.162.248.67:443 · git.mbgft.de
2026-01-09 07:48
HTTP/1.1 302 Found Server: nginx/1.22.1 Date: Fri, 09 Jan 2026 07:48:55 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.mbgft.de/users/sign_in Nel: {"max_age": 0} Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01KEGVNP9ZF1G0KP0175NYY7GQ","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01KEGVNP9ZF1G0KP0175NYY7GQ X-Runtime: 0.066391 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: DENY X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block <html><body>You are being <a href="https://git.mbgft.de/users/sign_in">redirected</a>.</body></html>Found 3 days ago by HttpPluginCreate report
-
Open service 185.162.248.67:443 · git.mbgft.de
2026-01-02 13:31
HTTP/1.1 302 Found Server: nginx/1.22.1 Date: Fri, 02 Jan 2026 13:31:51 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.mbgft.de/users/sign_in Nel: {"max_age": 0} Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01KDZEGJHCKHJZ0H5T61F6Z9JP","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01KDZEGJHCKHJZ0H5T61F6Z9JP X-Runtime: 0.042019 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: DENY X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block <html><body>You are being <a href="https://git.mbgft.de/users/sign_in">redirected</a>.</body></html>Found 2026-01-02 by HttpPluginCreate report
-
Open service 185.162.248.67:443 · git.mbgft.de
2025-12-22 21:03
HTTP/1.1 302 Found Server: nginx/1.22.1 Date: Mon, 22 Dec 2025 21:03:03 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.mbgft.de/users/sign_in Nel: {"max_age": 0} Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01KD3XYVEHR2WCJ8F8DV39DXVV","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01KD3XYVEHR2WCJ8F8DV39DXVV X-Runtime: 0.056347 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: DENY X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block <html><body>You are being <a href="https://git.mbgft.de/users/sign_in">redirected</a>.</body></html>Found 2025-12-22 by HttpPluginCreate report
-
Open service 185.162.248.67:443 · git.mbgft.de
2025-12-20 23:22
HTTP/1.1 302 Found Server: nginx/1.22.1 Date: Sat, 20 Dec 2025 23:22:11 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.mbgft.de/users/sign_in Nel: {"max_age": 0} Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01KCZ145HHS4B9XAHFWSYEG1PP","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01KCZ145HHS4B9XAHFWSYEG1PP X-Runtime: 0.049385 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: DENY X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block <html><body>You are being <a href="https://git.mbgft.de/users/sign_in">redirected</a>.</body></html>Found 2025-12-20 by HttpPluginCreate report
-
Open service 2a03:4000:1a:59:986e:ceff:fe4f:18c1:80 · git.mbgft.de
2025-12-19 01:14
HTTP/1.1 301 Moved Permanently Server: nginx/1.22.1 Date: Fri, 19 Dec 2025 01:14:21 GMT Content-Type: text/html Content-Length: 169 Connection: close Location: https://git.mbgft.de:443/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.22.1</center> </body> </html>
Found 2025-12-19 by HttpPluginCreate report
-
Open service 185.162.248.67:8443 · git.mbgft.de
2025-12-19 01:14
HTTP/1.1 302 Server: nginx/1.22.1 Date: Fri, 19 Dec 2025 01:14:19 GMT Content-Length: 0 Connection: close Location: /manage
Found 2025-12-19 by HttpPluginCreate report
-
Open service 2a03:4000:1a:59:986e:ceff:fe4f:18c1:8443 · git.mbgft.de
2025-12-19 01:14
HTTP/1.1 302 Server: nginx/1.22.1 Date: Fri, 19 Dec 2025 01:14:20 GMT Content-Length: 0 Connection: close Location: /manage
Found 2025-12-19 by HttpPluginCreate report
-
Open service 185.162.248.67:80 · git.mbgft.de
2025-12-19 01:14
HTTP/1.1 301 Moved Permanently Server: nginx/1.22.1 Date: Fri, 19 Dec 2025 01:14:19 GMT Content-Type: text/html Content-Length: 169 Connection: close Location: https://git.mbgft.de:443/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.22.1</center> </body> </html>
Found 2025-12-19 by HttpPluginCreate report
-
Open service 185.162.248.67:443 · git.mbgft.de
2025-12-19 01:14
HTTP/1.1 302 Found Server: nginx/1.22.1 Date: Fri, 19 Dec 2025 01:14:19 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.mbgft.de/users/sign_in Nel: {"max_age": 0} Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01KCT2R2BPCND1TP3DD8DVT94K","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01KCT2R2BPCND1TP3DD8DVT94K X-Runtime: 0.041448 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: DENY X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block <html><body>You are being <a href="https://git.mbgft.de/users/sign_in">redirected</a>.</body></html>Found 2025-12-19 by HttpPluginCreate report
-
Open service 2a03:4000:1a:59:986e:ceff:fe4f:18c1:443 · git.mbgft.de
2025-12-19 01:14
HTTP/1.1 302 Found Server: nginx/1.22.1 Date: Fri, 19 Dec 2025 01:14:19 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://git.mbgft.de/users/sign_in Nel: {"max_age": 0} Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01KCT2R28KK4YCE1B5T37TWGYK","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01KCT2R28KK4YCE1B5T37TWGYK X-Runtime: 0.060982 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Frame-Options: DENY X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block <html><body>You are being <a href="https://git.mbgft.de/users/sign_in">redirected</a>.</body></html>Found 2025-12-19 by HttpPluginCreate report