Domain gpe-dev.dievorschau.de
Germany
Software information
Apache
tcp/443 tcp/80
-
Symfony developement panel enabled
The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
- System configuration
- Request log, including POST request with credentials and/or api keys
IP: 176.52.243.71
Domain: gpe-dev.dievorschau.de
Port: 80
URL: http://gpe-dev.dievorschau.de/_profiler/empty/search/resultsFirst seen 2023-05-21 22:56
Last seen 2024-06-30 15:58
Open for 405 days-
Fingerprint: 407cf4363b0e62fafca67e070d8b38040d8b38040d8b38040d8b38040d8b3804
Symfony profiler enabled: http://gpe-dev.dievorschau.de/_profiler/empty/search/results
Found on 2024-06-30 15:58
-
Symfony developement panel enabled
The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
- System configuration
- Request log, including POST request with credentials and/or api keys
IP: 176.52.243.71
Domain: gpe-dev.dievorschau.de
Port: 443
URL: https://gpe-dev.dievorschau.de/_profiler/empty/search/resultsFirst seen 2023-05-21 22:56
Last seen 2024-09-26 15:54
Open for 493 days-
Fingerprint: 407cf4363b0e62fafca67e0779271fcd79271fcd79271fcd79271fcd79271fcd
Symfony profiler enabled: https://gpe-dev.dievorschau.de/_profiler/empty/search/results
Found on 2024-09-26 15:54
-
Open service 176.52.243.71:443 · gpe-dev.dievorschau.de
2024-09-26 15:54
HTTP/1.1 200 OK Date: Thu, 26 Sep 2024 15:54:11 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: ea06c9 X-Debug-Token-Link: https://gpe-dev.dievorschau.de/_profiler/ea06c9 X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=i077hqt55ld7n4q9ibhp3cppmc; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=i077hqt55ld7n4q9ibhp3cppmc; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.switch-language]=82c0b6e2b3d0ac41d0c9f.dOrHi98KOa8G83nqycm_YwuFxTPsdHqEMe_Enkl8gZA.EYuF4Y1QTupWkAiT-4_mM3mwg3SWMTbcWZ2d6yEy08VAmp7Ii18B5mysGg; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=240b.Q8ukmjCPHi2SsVgDJs2raDoCDlfqMf2pIo0QgSdorAE.FLyT6378LUPFiSl1XP3RInFjeRS-V6vDeOxVrEA95UwmieP-V_lMZdrICQ; path=/; secure; httponly; samesite=lax Vary: User-Agent,Accept-Encoding Upgrade: h2,h2c Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2 days ago by HttpPluginCreate report
-
Open service 176.52.243.71:443 · gpe-dev.dievorschau.de
2024-09-08 17:52
HTTP/1.1 200 OK Date: Sun, 08 Sep 2024 17:52:52 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: 5a43ef X-Debug-Token-Link: https://gpe-dev.dievorschau.de/_profiler/5a43ef X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=abe1v62dklglhv0kj798utajtk; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=abe1v62dklglhv0kj798utajtk; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.switch-language]=6109a20b355.ykiLzbPL4wdRuwbRP4iPk6tujz-F_OJXItvBtBkCL-E.kxffgf2hi0oei22fRtzn4tMf1Wn3tKtgEOuR2kxpcI6bAsqD9ImTYGfBYQ; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=7e6ee.BLhlob_ENCP8d2BbA1yCOrrA9Ppgm-KrTpoEDwzPOBw.ZvEykdGuYm6NQiw6NR2xTvOtuq8NydTeHvlTbDyYdXR9zlXLjbBgcsUOMQ; path=/; secure; httponly; samesite=lax Vary: User-Agent,Accept-Encoding Upgrade: h2,h2c Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-09-08 by HttpPluginCreate report
-
Open service 176.52.243.71:443 · gpe-dev.dievorschau.de
2024-09-06 13:46
HTTP/1.1 200 OK Date: Fri, 06 Sep 2024 13:46:44 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: f8db5a X-Debug-Token-Link: https://gpe-dev.dievorschau.de/_profiler/f8db5a X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=pgh97jkod8icef8td6a31gorgq; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=pgh97jkod8icef8td6a31gorgq; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.checkout.switch-language]=3b33502e48dcec.rT0pA686Shg0VvBIt0fixfLA-m3mti4JI1czQVur_SI.5XAdYsFjJXBwHIF_3Q6Rl52Lg12V-WpHTzpnF23kn0ucUGRX1l8AcwNimw; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=73.wZUiUvnRJ6EQ8ECDdLA_z0qKbS0GEvOJMCGKTqKBGvc.ktFnNMiTTJFVsgXrHMFnmye9GWQ3a7bjWBDnJ8POKq6i8xEiuoNkxErAeA; path=/; secure; httponly; samesite=lax Vary: User-Agent,Accept-Encoding Upgrade: h2,h2c Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-09-06 by HttpPluginCreate report
-
Open service 176.52.243.71:80 · gpe-dev.dievorschau.de
2024-08-18 01:53
HTTP/1.1 301 Moved Permanently Date: Sun, 18 Aug 2024 01:53:30 GMT Server: Apache Location: https://gpe-dev.dievorschau.de/ Content-Length: 239 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 301 Moved Permanently <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>301 Moved Permanently</title> </head><body> <h1>Moved Permanently</h1> <p>The document has moved <a href="https://gpe-dev.dievorschau.de/">here</a>.</p> </body></html>
Found 2024-08-18 by HttpPluginCreate report