LeakIX - Host gitlab.enrsoft.ru

Domain gitlab.enrsoft.ru

Russia

Internet-Pro LLC

Software information

nginx nginx

tcp/443

Gitlab instance looks outdated
The following Gitlab instance is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible to avoid account takeover.

Severity is mitigated by the need of a valid email address.

Reference:

https://www.cvedetails.com/cve/CVE-2023-7028
IP: 5.181.255.249
Domain: gitlab.enrsoft.ru
Port: 443
URL: https://gitlab.enrsoft.ru

First seen 2024-09-22 09:30
Last seen 2024-12-22 04:20
Open for 90 days
- Severity: high
  Fingerprint: db64c48d331961cce5776b3a892edddd892edddd892edddd892edddd892edddd
```
Found vulnerable Gitlab instance
Affected by CVE-2023-7028
```
  Found on 2024-12-22 04:20
Create report

Open service 5.181.255.249:443 · gitlab.enrsoft.ru

2024-12-22 04:20

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 22 Dec 2024 04:21:07 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.enrsoft.ru/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JFP9HXJ3R7H7VY4S8A6RDYFH","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JFP9HXJ3R7H7VY4S8A6RDYFH
X-Runtime: 0.047361
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://gitlab.enrsoft.ru/users/sign_in">redirected</a>.</body></html>

Found 6 hours ago by HttpPlugin

Create report

Open service 5.181.255.249:443 · gitlab.enrsoft.ru

2024-12-20 08:18

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 20 Dec 2024 08:18:37 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.enrsoft.ru/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JFHJBB7JA4JTQTASXYMX2736","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JFHJBB7JA4JTQTASXYMX2736
X-Runtime: 0.034292
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://gitlab.enrsoft.ru/users/sign_in">redirected</a>.</body></html>

Found 2 days ago by HttpPlugin

Create report

Open service 5.181.255.249:443 · gitlab.enrsoft.ru

2024-12-19 01:57

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 19 Dec 2024 01:57:12 GMT
Content-Type: text/html
Content-Length: 650
Connection: close

Page title: 400 The plain HTTP request was sent to HTTPS port

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->

Found 2024-12-19 by HttpPlugin

Create report

Open service 5.181.255.249:443 · gitlab.enrsoft.ru

2024-12-14 12:21

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 14 Dec 2024 12:22:07 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.enrsoft.ru/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JF2HWWT8YTKGBM6D5QEWYEY4","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JF2HWWT8YTKGBM6D5QEWYEY4
X-Runtime: 0.043722
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://gitlab.enrsoft.ru/users/sign_in">redirected</a>.</body></html>

Found 2024-12-14 by HttpPlugin

Create report

Open service 5.181.255.249:443 · gitlab.enrsoft.ru

2024-12-13 02:26

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 13 Dec 2024 02:26:37 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.enrsoft.ru/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JEYXDS81D8ME7X38ND2GB8HE","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JEYXDS81D8ME7X38ND2GB8HE
X-Runtime: 0.068290
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://gitlab.enrsoft.ru/users/sign_in">redirected</a>.</body></html>

Found 2024-12-13 by HttpPlugin

Create report

Open service 5.181.255.249:443 · gitlab.enrsoft.ru

2024-12-02 21:44

HTTP/1.1 302 Found
Server: nginx
Date: Mon, 02 Dec 2024 21:44:10 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.enrsoft.ru/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JE4N9DR355REAQWWXSK1AX48","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JE4N9DR355REAQWWXSK1AX48
X-Runtime: 0.020915
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://gitlab.enrsoft.ru/users/sign_in">redirected</a>.</body></html>

Found 2024-12-02 by HttpPlugin

Create report

Open service 5.181.255.249:443 · gitlab.enrsoft.ru

2024-11-30 21:45

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 30 Nov 2024 21:46:01 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.enrsoft.ru/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JDZGKBVDVZKQSZQ0ZFRXMZD7","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JDZGKBVDVZKQSZQ0ZFRXMZD7
X-Runtime: 0.023256
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://gitlab.enrsoft.ru/users/sign_in">redirected</a>.</body></html>

Found 2024-11-30 by HttpPlugin

Create report

Open service 5.181.255.249:443 · gitlab.enrsoft.ru

2024-11-28 10:59

HTTP/1.1 302 Found
Server: nginx
Date: Thu, 28 Nov 2024 10:59:14 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.enrsoft.ru/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JDS6SKY258S2ZYC7TYKEMEW2","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JDS6SKY258S2ZYC7TYKEMEW2
X-Runtime: 0.081283
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://gitlab.enrsoft.ru/users/sign_in">redirected</a>.</body></html>

Found 2024-11-28 by HttpPlugin

Create report

Open service 5.181.255.249:443 · gitlab.enrsoft.ru

2024-11-20 18:22

HTTP/1.1 302 Found
Server: nginx
Date: Wed, 20 Nov 2024 18:23:17 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://gitlab.enrsoft.ru/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JD5D0YNNFEVXJ5B9W660GK56","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JD5D0YNNFEVXJ5B9W660GK56
X-Runtime: 0.084237
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://gitlab.enrsoft.ru/users/sign_in">redirected</a>.</body></html>

Found 2024-11-20 by HttpPlugin

Create report

gl.optimo.energoproject.pro

Fingerprint:

6202e08af2674fcb3d599f42de8156c249637a64a90a1f8c77f5cc148aa3d4dc

CN:

gl.optimo.energoproject.pro

Key:

RSA-2048

Issuer:

R10

Not before:

2024-12-15 08:31

Not after:

2025-03-15 08:31

gl.optimo.energoproject.pro

Fingerprint:

1cb971e3878152c1b7171e9b0d14389004a48b196d9f124c114a7134f8c0c74a

CN:

gl.optimo.energoproject.pro

Key:

RSA-2048

Issuer:

R10

Not before:

2024-10-14 19:34

Not after:

2025-01-12 19:34

Domain summary

gitlab.enrsoft.ru 9

1 recorded

IP summary

5.181.255.249 2

1 recorded

Domain gitlab.enrsoft.ru

Russia

Software information

Gitlab instance looks outdated

gl.optimo.energoproject.pro

gl.optimo.energoproject.pro

Domain summary

IP summary