LeakIX - Host gitlab.elchwei.de

Domain gitlab.elchwei.de

Germany

IONOS SE

Software information

nginx nginx

tcp/443 tcp/80

Gitlab instance looks outdated
The following Gitlab instance is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible to avoid account takeover.

Severity is mitigated by the need of a valid email address.

Reference:

https://www.cvedetails.com/cve/CVE-2023-7028
IP: 85.215.59.236
Domain: gitlab.elchwei.de
Port: 443
URL: https://gitlab.elchwei.de

First seen 2024-01-20 08:59
Last seen 2024-12-21 06:30
Open for 335 days
- Severity: high
  Fingerprint: db64c48d331961cce5776b3a892edddd892edddd892edddd892edddd892edddd
```
Found vulnerable Gitlab instance
Affected by CVE-2023-7028
```
  Found on 2024-12-21 06:30
Create report

Open service 85.215.59.236:443 · gitlab.elchwei.de

2024-12-21 06:30

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 21 Dec 2024 06:30:54 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 105
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.elchwei.de/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JFKYJTXSENAHMVR46978G4YT","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JFKYJTXSENAHMVR46978G4YT
X-Runtime: 0.039403
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains


<html><body>You are being <a href="https://gitlab.elchwei.de/users/sign_in">redirected</a>.</body></html>

Found 23 hours ago by HttpPlugin

Create report

Open service 85.215.59.236:80 · gitlab.elchwei.de

2024-12-21 06:30

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 21 Dec 2024 06:30:54 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://elchwei.de/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx</center>
</body>
</html>

Found 23 hours ago by HttpPlugin

Create report

Open service 85.215.59.236:443 · gitlab.elchwei.de

2024-12-20 19:13

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 20 Dec 2024 19:13:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 105
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.elchwei.de/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JFJQT7PNG0Q8JD8VCP8N68NB","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JFJQT7PNG0Q8JD8VCP8N68NB
X-Runtime: 0.038420
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains


<html><body>You are being <a href="https://gitlab.elchwei.de/users/sign_in">redirected</a>.</body></html>

Found one day ago by HttpPlugin

Create report

Open service 85.215.59.236:443 · gitlab.elchwei.de

2024-12-18 21:30

HTTP/1.1 302 Found
Server: nginx
Date: Wed, 18 Dec 2024 21:30:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 105
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.elchwei.de/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JFDTVY5DXRSHGA3K9PH71SF0","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JFDTVY5DXRSHGA3K9PH71SF0
X-Runtime: 0.050057
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains


<html><body>You are being <a href="https://gitlab.elchwei.de/users/sign_in">redirected</a>.</body></html>

Found 2024-12-18 by HttpPlugin

Create report

Open service 85.215.59.236:443 · gitlab.elchwei.de

2024-12-14 10:35

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 14 Dec 2024 10:35:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 105
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.elchwei.de/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JF2BRT53WTRFENQS15HCEXFW","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JF2BRT53WTRFENQS15HCEXFW
X-Runtime: 0.019614
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains


<html><body>You are being <a href="https://gitlab.elchwei.de/users/sign_in">redirected</a>.</body></html>

Found 2024-12-14 by HttpPlugin

Create report

Open service 85.215.59.236:443 · gitlab.elchwei.de

2024-12-12 22:17

HTTP/1.1 302 Found
Server: nginx
Date: Thu, 12 Dec 2024 22:17:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 105
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.elchwei.de/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JEYF4X2XNGP4675YXC2SJW2Z","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JEYF4X2XNGP4675YXC2SJW2Z
X-Runtime: 0.019993
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains


<html><body>You are being <a href="https://gitlab.elchwei.de/users/sign_in">redirected</a>.</body></html>

Found 2024-12-12 by HttpPlugin

Create report

Open service 85.215.59.236:443 · gitlab.elchwei.de

2024-12-02 17:28

HTTP/1.1 302 Found
Server: nginx
Date: Mon, 02 Dec 2024 17:28:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 105
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.elchwei.de/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JE46N9J445FK2KZQQX2PDCV3","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JE46N9J445FK2KZQQX2PDCV3
X-Runtime: 0.019471
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains


<html><body>You are being <a href="https://gitlab.elchwei.de/users/sign_in">redirected</a>.</body></html>

Found 2024-12-02 by HttpPlugin

Create report

Open service 85.215.59.236:443 · gitlab.elchwei.de

2024-11-30 19:38

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 30 Nov 2024 19:38:04 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 105
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.elchwei.de/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JDZ992SD0J0QH75FC94M5QRB","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JDZ992SD0J0QH75FC94M5QRB
X-Runtime: 0.017720
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains


<html><body>You are being <a href="https://gitlab.elchwei.de/users/sign_in">redirected</a>.</body></html>

Found 2024-11-30 by HttpPlugin

Create report

Open service 85.215.59.236:443 · gitlab.elchwei.de

2024-11-28 17:25

HTTP/1.1 302 Found
Server: nginx
Date: Thu, 28 Nov 2024 17:25:04 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 105
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.elchwei.de/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JDSWW3D91XV4VPZWEYDGC9A3","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JDSWW3D91XV4VPZWEYDGC9A3
X-Runtime: 0.017363
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains


<html><body>You are being <a href="https://gitlab.elchwei.de/users/sign_in">redirected</a>.</body></html>

Found 2024-11-28 by HttpPlugin

Create report

Open service 85.215.59.236:443 · gitlab.elchwei.de

2024-11-26 16:13

HTTP/1.1 302 Found
Server: nginx
Date: Tue, 26 Nov 2024 16:13:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 105
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.elchwei.de/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JDMKZP10F1YK3MARWXF04Q7K","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JDMKZP10F1YK3MARWXF04Q7K
X-Runtime: 0.022047
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains


<html><body>You are being <a href="https://gitlab.elchwei.de/users/sign_in">redirected</a>.</body></html>

Found 2024-11-26 by HttpPlugin

Create report

Open service 85.215.59.236:443 · gitlab.elchwei.de

2024-11-20 10:00

HTTP/1.1 302 Found
Server: nginx
Date: Wed, 20 Nov 2024 10:00:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 105
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.elchwei.de/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JD4G7K7CR86C0XNTM0WCP55F","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JD4G7K7CR86C0XNTM0WCP55F
X-Runtime: 0.042811
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains


<html><body>You are being <a href="https://gitlab.elchwei.de/users/sign_in">redirected</a>.</body></html>

Found 2024-11-20 by HttpPlugin

Create report

elchwei.degitlab.elchwei.deseafile.elchwei.dewww.elchwei.de

Fingerprint:

ca547e5e8fb87671e40e746ed0d8dda65450d7e23e0f4d0441e91ad48132cd9a

CN:

elchwei.de

Key:

ECDSA-256

Issuer:

Not before:

2024-12-21 05:31

Not after:

2025-03-21 05:31

elchwei.degitlab.elchwei.deseafile.elchwei.dewww.elchwei.de

Fingerprint:

cd4c99bc71eaa3118acbf7d81bc7ed032505540f7927c0a17ab3b2f2cf972c0b

CN:

elchwei.de

Key:

ECDSA-256

Issuer:

Not before:

2024-10-22 05:34

Not after:

2025-01-20 05:34

Domain summary

gitlab.elchwei.de 11

1 recorded

IP summary

85.215.59.236 2

1 recorded

Domain gitlab.elchwei.de

Germany

Software information

Gitlab instance looks outdated

elchwei.degitlab.elchwei.deseafile.elchwei.dewww.elchwei.de

elchwei.degitlab.elchwei.deseafile.elchwei.dewww.elchwei.de

Domain summary

IP summary