Domain holidayblvd.com
United States
Software information
LiteSpeed
tcp/443
cloudflare
tcp/443
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.IP: 45.35.0.150
Domain: bookingsystem.holidayblvd.com
Port: 443
URL: https://bookingsystem.holidayblvd.comFirst seen 2021-10-03 18:36
Last seen 2023-03-13 04:51
Open for 525 days-
Severity: high
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652227ad03da[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://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@github.com/waqardeveloper/apartment-managnment-system.git/ fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Found on 2022-07-17 04:50332 Bytes -
Severity: high
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522525b1b93[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://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@github.com/waqardeveloper/apartment-managnment-system.git/ fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Found on 2021-10-03 18:36332 Bytes
-
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.IP: 45.35.0.150
Domain: bookingsystem.holidayblvd.com
Port: 80
URL: http://bookingsystem.holidayblvd.comFirst seen 2022-07-17 04:51-
Severity: high
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652227ad03da[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://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@github.com/waqardeveloper/apartment-managnment-system.git/ fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Found on 2022-07-17 04:51332 Bytes
-
-
Detected HTTP traversal vulnerability
An attacker can make use of this vulnerability to step out of the root directory and access other parts of the file system.
This might give the attacker the ability to view restricted files, which could provide the attacker with more information required to further compromise the system.
https://www.acunetix.com/websitesecurity/directory-traversal/
IP: 45.35.0.150
Domain: bookingsystem.holidayblvd.com
Port: 443
URL: https://bookingsystem.holidayblvd.com/cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/hostsFirst seen 2021-10-05 18:58-
Severity: critical
Fingerprint: ac4d53c4832b2491bf8f6062aa22f2e9c11a784682812d0d4eded15d4eded15dFound host file through Apache traversal: 127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4 ::1 localhost localhost.localdomain localhost6 localhost6.localdomain6 127.0.0.1 srv1.tvdit.com 127.0.0.1 autoreply.srv1.tvdit.com
Found on 2021-10-05 18:58
-
-
Open service 188.114.97.3:443 · pantheon.holidayblvd.com
2026-01-23 06:18
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 06:18:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/7.4.33 Link: <https://pantheon.holidayblvd.com/wp-json/>; rel="https://api.w.org/", <https://pantheon.holidayblvd.com/wp-json/wp/v2/pages/60>; rel="alternate"; title="JSON"; type="application/json", <https://pantheon.holidayblvd.com/>; rel=shortlink cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Y08rdcra2zFIalaJYU3nbnswI6MSy3s9XFFFbRj%2F%2FVkqGwwQ7NTW2Wn5E1ovoXLNZCxRtlGklyjPUTl2cxXAnrT9zs9j0xCSdIRwBB9SJQmFSujbnCbuyQ%3D%3D"}]} Last-Modified: Fri, 23 Jan 2026 06:18:32 GMT Cache-Control: max-age=0 Expires: Fri, 23 Jan 2026 06:18:27 GMT Vary: Accept-Encoding,User-Agent Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c252c829f6950f1-LHR alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 188.114.97.3:443 · bloom.holidayblvd.com
2026-01-23 00:16
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 00:16:57 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare X-Powered-By: PHP/7.4.33 Link: <https://bloom.holidayblvd.com/wp-json/>; rel="https://api.w.org/", <https://bloom.holidayblvd.com/wp-json/wp/v2/pages/60>; rel="alternate"; title="JSON"; type="application/json", <https://bloom.holidayblvd.com/>; rel=shortlink cf-cache-status: DYNAMIC Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=L1%2Bz2a2fP%2FTjwymxH9NCFg%2BKAcnbGvKwODDfguGw%2B2QIfsqrX8Gw1kZJFCDli8lnHtf%2FFlAFTYuddJT1iI7Af%2FuRiYaZtgpnTDMxGpWNAaEK59A3Yg%3D%3D"}]} Last-Modified: Fri, 23 Jan 2026 00:16:56 GMT Cache-Control: max-age=0 Expires: Fri, 23 Jan 2026 00:16:54 GMT Vary: Accept-Encoding,User-Agent Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} CF-RAY: 9c231ae60e38f4c9-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 68.65.123.54:443 · www.holidayblvd.com
2026-01-22 21:08
HTTP/1.1 200 OK keep-alive: timeout=5, max=100 content-type: text/html last-modified: Sat, 10 Oct 2020 19:37:25 GMT accept-ranges: bytes content-length: 163 date: Thu, 22 Jan 2026 21:08:07 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed connection: close <html><head><META HTTP-EQUIV="Cache-control" CONTENT="no-cache"><META HTTP-EQUIV="refresh" CONTENT="0;URL=/cgi-sys/defaultwebpage.cgi"></head><body></body></html>
Found 2026-01-22 by HttpPluginCreate report
-
Open service 68.65.123.54:443 · holidayblvd.com
2026-01-22 20:30
HTTP/1.1 200 OK keep-alive: timeout=5, max=100 content-type: text/html last-modified: Sat, 10 Oct 2020 19:37:25 GMT accept-ranges: bytes content-length: 163 date: Thu, 22 Jan 2026 20:30:06 GMT server: LiteSpeed x-turbo-charged-by: LiteSpeed connection: close <html><head><META HTTP-EQUIV="Cache-control" CONTENT="no-cache"><META HTTP-EQUIV="refresh" CONTENT="0;URL=/cgi-sys/defaultwebpage.cgi"></head><body></body></html>
Found 2026-01-22 by HttpPluginCreate report