Apache
tcp/443
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: low
Fingerprint: 5f32cf5d6962f09cab28146bab28146bd0ed517f42224bebbc96805648eb7a11
Found 21 files trough .DS_Store spidering: /addons /addons/lib /addons/lib/lang /addons/templates /mail /mail/form /sites /sites/sitebuilder /sites/whoapsinstall /sites/whoapsinstall/form /themes /themes/Expertenmodus /themes/Expertenmodus/assets /themes/Expertenmodus/assets/javascripts /themes/Expertenmodus/assets/stylesheets /themes/Expertenmodus/templates /themes/Expertenmodus/templates/db /themes/Expertenmodus/templates/dns /themes/Expertenmodus/templates/mail /themes/Expertenmodus/templates/sites /themes/Standard
Severity: low
Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e398d82f379954c1f6110e8c60f08e255
Found 6 files trough .DS_Store spidering: /dashboard /dashboard/dashlets /sites /sites/sitebuilder /sites/whoapsinstall /sites/whoapsinstall/form
Open service 89.107.189.197:443 · intranet.poettinger.com
2024-06-18 16:17
HTTP/1.1 302 Found Date: Tue, 18 Jun 2024 16:17:44 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=s360t3edg7gmavqqp80omveblq; expires=Wed, 18-Jun-2025 16:17:44 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · intranet.poettinger.com
2024-06-16 11:49
HTTP/1.1 302 Found Date: Sun, 16 Jun 2024 11:49:50 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=4rmkf4cqkdpj0mb53gm4hrqq05; expires=Mon, 16-Jun-2025 11:49:50 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · intranet.poettinger.com
2024-06-12 12:35
HTTP/1.1 302 Found Date: Wed, 12 Jun 2024 12:35:30 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=b13evp176rqtn1bu4fmo9uvp3l; expires=Thu, 12-Jun-2025 12:35:30 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · intranet.poettinger.com
2024-06-10 17:11
HTTP/1.1 302 Found Date: Mon, 10 Jun 2024 17:11:27 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=cro2b6ma2op7h2u3b5mc4fhdc7; expires=Tue, 10-Jun-2025 17:11:27 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · intranet.poettinger.com
2024-06-08 12:45
HTTP/1.1 302 Found Date: Sat, 08 Jun 2024 12:45:06 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=s5s2b5sq4aofpp3lect9ik4pmm; expires=Sun, 08-Jun-2025 12:45:06 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · intranet.poettinger.com
2024-06-06 06:28
HTTP/1.1 302 Found Date: Thu, 06 Jun 2024 06:28:49 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=vievphi3bkinvbual1res61osb; expires=Fri, 06-Jun-2025 06:28:49 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8
Open service 89.107.189.197:443 · intranet.poettinger.com
2024-06-04 05:05
HTTP/1.1 302 Found Date: Tue, 04 Jun 2024 05:05:42 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Vary: Accept-Encoding Set-Cookie: ISPCSESS=htbt5gi6pk0c8rneelhakm6rg1; expires=Wed, 04-Jun-2025 05:05:42 GMT; Max-Age=31536000; path=/; secure; HttpOnly; SameSite=Lax; HTTPOnly; Secure Upgrade: h2,h2c Connection: Upgrade, close Location: /login/ Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; object-src 'none'; upgrade-insecure-requests X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000 Content-Length: 0 Content-Type: text/html; charset=utf-8