Domain gitlab.badgerbox.co
United States
Software information
nginx 1.18.0
tcp/443 tcp/80
-
Gitlab instance looks outdated
The following Gitlab instance is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible to avoid account takeover.
Severity is mitigated by the need of a valid email address.
Reference:
First seen 2024-01-20 08:43
Last seen 2024-12-21 02:04
Open for 335 days-
Severity: high
Fingerprint: db64c48d331961cce5776b3a892edddd892edddd892edddd892edddd892eddddFound vulnerable Gitlab instance Affected by CVE-2023-7028
Found on 2024-12-21 02:04
-
-
Open service 107.142.37.143:443 · gitlab.badgerbox.co
2024-12-21 02:04
HTTP/1.1 302 Found Server: nginx/1.18.0 (Ubuntu) Date: Sat, 21 Dec 2024 02:04:55 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Location: https://gitlab.badgerbox.co/users/sign_in Connection: close Cache-Control: no-cache Content-Security-Policy: Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFKFBSFKD9JKAJMPTVVWKADA","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFKFBSFKD9JKAJMPTVVWKADA X-Runtime: 0.023143 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://192.168.0.154/users/sign_in">redirected</a>.</body></html>Found one day ago by HttpPluginCreate report
-
Open service 107.142.37.143:443 · gitlab.badgerbox.co
2024-12-19 03:21
HTTP/1.1 302 Found Server: nginx/1.18.0 (Ubuntu) Date: Thu, 19 Dec 2024 03:21:24 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Location: https://gitlab.badgerbox.co/users/sign_in Connection: close Cache-Control: no-cache Content-Security-Policy: Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFEEYCV19H9P4XD32VW4JHWR","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFEEYCV19H9P4XD32VW4JHWR X-Runtime: 0.027167 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://192.168.0.154/users/sign_in">redirected</a>.</body></html>Found 2024-12-19 by HttpPluginCreate report
-
Open service 107.142.37.143:443 · gitlab.badgerbox.co
2024-12-14 14:30
HTTP/1.1 302 Found Server: nginx/1.18.0 (Ubuntu) Date: Sat, 14 Dec 2024 14:30:58 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Location: https://gitlab.badgerbox.co/users/sign_in Connection: close Cache-Control: no-cache Content-Security-Policy: Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JF2S8TM0CT0RSB0GQ0BWZFND","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JF2S8TM0CT0RSB0GQ0BWZFND X-Runtime: 0.010123 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://192.168.0.154/users/sign_in">redirected</a>.</body></html>Found 2024-12-14 by HttpPluginCreate report
-
Open service 107.142.37.143:443 · gitlab.badgerbox.co
2024-12-12 13:41
HTTP/1.1 302 Found Server: nginx/1.18.0 (Ubuntu) Date: Thu, 12 Dec 2024 13:42:03 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Location: https://gitlab.badgerbox.co/users/sign_in Connection: close Cache-Control: no-cache Content-Security-Policy: Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JEXHNT612QG9G5ZJEW4WD7CD","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JEXHNT612QG9G5ZJEW4WD7CD X-Runtime: 0.012082 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://192.168.0.154/users/sign_in">redirected</a>.</body></html>Found 2024-12-12 by HttpPluginCreate report
-
Open service 107.142.37.143:80 · gitlab.badgerbox.co
2024-12-03 15:20
HTTP/1.1 301 Moved Permanently Server: nginx/1.18.0 (Ubuntu) Date: Tue, 03 Dec 2024 15:20:47 GMT Content-Type: text/html Content-Length: 178 Connection: close Location: https://gitlab.badgerbox.co/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.18.0 (Ubuntu)</center> </body> </html>
Found 2024-12-03 by HttpPluginCreate report
-
Open service 107.142.37.143:443 · gitlab.badgerbox.co
2024-12-03 15:20
HTTP/1.1 302 Found Server: nginx/1.18.0 (Ubuntu) Date: Tue, 03 Dec 2024 15:20:51 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Location: https://gitlab.badgerbox.co/users/sign_in Connection: close Cache-Control: no-cache Content-Security-Policy: Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JE6HR83E00ANYXNX8ZARC90W","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JE6HR83E00ANYXNX8ZARC90W X-Runtime: 0.017892 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://192.168.0.154/users/sign_in">redirected</a>.</body></html>Found 2024-12-03 by HttpPluginCreate report
-
Open service 107.142.37.143:443 · gitlab.badgerbox.co
2024-12-02 11:01
HTTP/1.1 302 Found Server: nginx/1.18.0 (Ubuntu) Date: Mon, 02 Dec 2024 11:01:26 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Location: https://gitlab.badgerbox.co/users/sign_in Connection: close Cache-Control: no-cache Content-Security-Policy: Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JE3GGH0H0NM91K22279V7JC1","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JE3GGH0H0NM91K22279V7JC1 X-Runtime: 0.009704 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://192.168.0.154/users/sign_in">redirected</a>.</body></html>Found 2024-12-02 by HttpPluginCreate report
-
Open service 107.142.37.143:443 · gitlab.badgerbox.co
2024-11-28 17:56
HTTP/1.1 302 Found Server: nginx/1.18.0 (Ubuntu) Date: Thu, 28 Nov 2024 17:56:43 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Location: https://gitlab.badgerbox.co/users/sign_in Connection: close Cache-Control: no-cache Content-Security-Policy: Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JDSYP22BAKPTCQ3522H8Z20Y","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JDSYP22BAKPTCQ3522H8Z20Y X-Runtime: 0.010045 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://192.168.0.154/users/sign_in">redirected</a>.</body></html>Found 2024-11-28 by HttpPluginCreate report
-
Open service 107.142.37.143:443 · gitlab.badgerbox.co
2024-11-26 16:12
HTTP/1.1 302 Found Server: nginx/1.18.0 (Ubuntu) Date: Tue, 26 Nov 2024 16:12:57 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Location: https://gitlab.badgerbox.co/users/sign_in Connection: close Cache-Control: no-cache Content-Security-Policy: Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JDMKYM0KAHBS3G9MEVGHB0NG","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JDMKYM0KAHBS3G9MEVGHB0NG X-Runtime: 0.021466 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://192.168.0.154/users/sign_in">redirected</a>.</body></html>Found 2024-11-26 by HttpPluginCreate report
-
Open service 107.142.37.143:80 · gitlab.badgerbox.co
2024-11-26 16:12
HTTP/1.1 301 Moved Permanently Server: nginx/1.18.0 (Ubuntu) Date: Tue, 26 Nov 2024 16:12:56 GMT Content-Type: text/html Content-Length: 178 Connection: close Location: https://gitlab.badgerbox.co/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.18.0 (Ubuntu)</center> </body> </html>
Found 2024-11-26 by HttpPluginCreate report
-
Open service 107.142.37.143:443 · gitlab.badgerbox.co
2024-11-21 02:49
HTTP/1.1 302 Found Server: nginx/1.18.0 (Ubuntu) Date: Thu, 21 Nov 2024 02:49:15 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Location: https://gitlab.badgerbox.co/users/sign_in Connection: close Cache-Control: no-cache Content-Security-Policy: Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JD69ZD55DM7F6PDH96E8Q86E","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JD69ZD55DM7F6PDH96E8Q86E X-Runtime: 0.021918 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://192.168.0.154/users/sign_in">redirected</a>.</body></html>Found 2024-11-21 by HttpPluginCreate report