Domain lms.eworks.edu.au
Australia
Software information
nginx
tcp/443
-
Moodle is vulnerable
The following Moodle application is publicly accessible and looks out-dated :
It is highly recommended to update to a safe version as soon as possible since multiple CVEs allow remote attackers to craft XSS attacks leading to code execution on the server.
If the application was already patched, reloading the web server to clear the PHP opcache will fix issue.
Reference:
First seen 2024-02-08 04:01
Last seen 2024-12-22 04:41
Open for 318 days-
Severity: high
Fingerprint: 0b591a20d83e9bbda3370ce58008084480080844800808448008084480080844Found vulnerable Moodle application: Affected by CVE-2023-30943
Found on 2024-12-22 04:41
-
-
Open service 3.24.72.161:443 · lms.eworks.edu.au
2024-12-22 04:41
HTTP/1.1 200 OK Server: nginx Date: Sun, 22 Dec 2024 04:41:21 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.0.30 Set-Cookie: MoodleSession=dt15va72a8ae51gmerufpd5k9l; path=/; secure Content-Language: en Content-Script-Type: text/javascript Content-Style-Type: text/css X-UA-Compatible: IE=edge Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0, no-transform Pragma: no-cache Expires: Mon, 20 Aug 1969 09:23:00 GMT Last-Modified: Sun, 22 Dec 2024 04:41:21 GMT Accept-Ranges: none X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 6 hours ago by HttpPluginCreate report
-
Open service 3.24.72.161:443 · lms.eworks.edu.au
2024-12-20 03:28
HTTP/1.1 200 OK Server: nginx Date: Fri, 20 Dec 2024 03:28:28 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.0.30 Set-Cookie: MoodleSession=v5p7lbar92siphmo54uk89kno7; path=/; secure Content-Language: en Content-Script-Type: text/javascript Content-Style-Type: text/css X-UA-Compatible: IE=edge Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0, no-transform Pragma: no-cache Expires: Mon, 20 Aug 1969 09:23:00 GMT Last-Modified: Fri, 20 Dec 2024 03:28:28 GMT Accept-Ranges: none X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2 days ago by HttpPluginCreate report
-
Open service 3.24.72.161:443 · lms.eworks.edu.au
2024-12-18 04:14
HTTP/1.1 200 OK Server: nginx Date: Wed, 18 Dec 2024 04:14:52 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.0.30 Set-Cookie: MoodleSession=c40rs7ou4464sdflvr2jlobfum; path=/; secure Content-Language: en Content-Script-Type: text/javascript Content-Style-Type: text/css X-UA-Compatible: IE=edge Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0, no-transform Pragma: no-cache Expires: Mon, 20 Aug 1969 09:23:00 GMT Last-Modified: Wed, 18 Dec 2024 04:14:52 GMT Accept-Ranges: none X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2024-12-18 by HttpPluginCreate report
-
Open service 3.24.72.161:443 · lms.eworks.edu.au
2024-12-14 16:10
HTTP/1.1 200 OK Server: nginx Date: Sat, 14 Dec 2024 16:10:21 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.0.30 Set-Cookie: MoodleSession=ju1jg3h3i519a60h0p4sq4b13p; path=/; secure Content-Language: en Content-Script-Type: text/javascript Content-Style-Type: text/css X-UA-Compatible: IE=edge Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0, no-transform Pragma: no-cache Expires: Mon, 20 Aug 1969 09:23:00 GMT Last-Modified: Sat, 14 Dec 2024 16:10:21 GMT Accept-Ranges: none X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2024-12-14 by HttpPluginCreate report
-
Open service 3.24.72.161:443 · lms.eworks.edu.au
2024-12-13 02:41
HTTP/1.1 200 OK Server: nginx Date: Fri, 13 Dec 2024 02:41:36 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.0.30 Set-Cookie: MoodleSession=nniji0gsdqmvcf1d7ev3gad3jv; path=/; secure Content-Language: en Content-Script-Type: text/javascript Content-Style-Type: text/css X-UA-Compatible: IE=edge Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0, no-transform Pragma: no-cache Expires: Mon, 20 Aug 1969 09:23:00 GMT Last-Modified: Fri, 13 Dec 2024 02:41:36 GMT Accept-Ranges: none X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2024-12-13 by HttpPluginCreate report
-
Open service 3.24.72.161:443 · lms.eworks.edu.au
2024-12-02 02:19
HTTP/1.1 200 OK Server: nginx Date: Mon, 02 Dec 2024 02:19:33 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.0.30 Set-Cookie: MoodleSession=ovsqrlpk0tpklbd06r4mr5i53c; path=/; secure Content-Language: en Content-Script-Type: text/javascript Content-Style-Type: text/css X-UA-Compatible: IE=edge Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0, no-transform Pragma: no-cache Expires: Mon, 20 Aug 1969 09:23:00 GMT Last-Modified: Mon, 02 Dec 2024 02:19:33 GMT Accept-Ranges: none X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2024-12-02 by HttpPluginCreate report
-
Open service 3.24.72.161:443 · lms.eworks.edu.au
2024-11-30 01:27
HTTP/1.1 200 OK Server: nginx Date: Sat, 30 Nov 2024 01:27:42 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.0.30 Set-Cookie: MoodleSession=mfn9u80mcel0kbtv58lfa182jc; path=/; secure Content-Language: en Content-Script-Type: text/javascript Content-Style-Type: text/css X-UA-Compatible: IE=edge Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0, no-transform Pragma: no-cache Expires: Mon, 20 Aug 1969 09:23:00 GMT Last-Modified: Sat, 30 Nov 2024 01:27:42 GMT Accept-Ranges: none X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2024-11-30 by HttpPluginCreate report
-
Open service 3.24.72.161:443 · lms.eworks.edu.au
2024-11-28 01:36
HTTP/1.1 200 OK Server: nginx Date: Thu, 28 Nov 2024 01:36:30 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.0.30 Set-Cookie: MoodleSession=ri1t5tb9fv4kbmhgn9fo68tiek; path=/; secure Content-Language: en Content-Script-Type: text/javascript Content-Style-Type: text/css X-UA-Compatible: IE=edge Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0, no-transform Pragma: no-cache Expires: Mon, 20 Aug 1969 09:23:00 GMT Last-Modified: Thu, 28 Nov 2024 01:36:30 GMT Accept-Ranges: none X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2024-11-28 by HttpPluginCreate report
-
Open service 3.24.72.161:443 · lms.eworks.edu.au
2024-11-20 13:30
HTTP/1.1 200 OK Server: nginx Date: Wed, 20 Nov 2024 13:30:54 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.0.30 Set-Cookie: MoodleSession=chpjg2uae4csb5n9pcc1bcnk1e; path=/; secure Content-Language: en Content-Script-Type: text/javascript Content-Style-Type: text/css X-UA-Compatible: IE=edge Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0, no-transform Pragma: no-cache Expires: Mon, 20 Aug 1969 09:23:00 GMT Last-Modified: Wed, 20 Nov 2024 13:30:54 GMT Accept-Ranges: none X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2024-11-20 by HttpPluginCreate report