Domain lp.haize-project.com
Germany
Software information
nginx
tcp/443 tcp/80
sw-cp-server
tcp/8443
-
Git configuration and history exposed
The following URL (usually
/.git/config) is publicly accessible and is leaking source code and repository configuration.First seen 2025-02-06 05:09
Last seen 2025-10-21 14:26
Open for 257 days-
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65227e8358b8[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [submodule] active = . [remote "origin"] url = /var/www/local/lp.haize-project.com.maas.webanyone.net/repo/. fetch = +refs/heads/*:refs/remotes/origin/* [submodule "mautic-whitelabeler"] url = https://github.com/nickian/mautic-whitelabeler.git
Found on 2025-10-21 14:26340 Bytes
-
-
Apache server-status page is publicly available
The server-status page (usually
/server-status) allows server administrators to find out how well their server is performing.This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.
This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.
https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a
First seen 2025-02-04 09:52-
Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb31ac999edbac999edb381734acApache Status Apache Server Status for lp.haize-project.com (via 127.0.0.1) Server Version: Apache/2.4.62 (Debian) Server MPM: event Server Built: 2024-10-04T15:21:08 Current Time: Tuesday, 04-Feb-2025 10:52:18 CET Restart Time: Tuesday, 04-Feb-2025 10:51:04 CET Parent Server Config. Generation: 1 Parent Server MPM Generation: 0 Server uptime: 1 minute 14 seconds Server load: 41.90 41.28 38.56 Total accesses: 2317 - Total Traffic: 7.6 MB - Total Duration: 2423342 CPU Usage: u.8 s.6 cu.06 cs.09 - 2.09% CPU load 31.3 requests/sec - 104.7 kB/second - 3423 B/request - 1045.9 ms/request 58 requests currently being processed, 0 workers gracefully restarting, 42 idle workers SlotPIDStoppingConnections ThreadsAsync connections totalacceptingbusygracefulidlewritingkeep-aliveclosing 0316916no12yes1807000 1315826no12yes8017000 2315928no6yes2005000 3316445no25yes12013000 Sum4055 58042000 WW_WWWWW_W_WWWW_WW__WW_WW_W________W___WW__WW__WW_WWWWWW___WWW_W WWW_WWWWWWWW__WWWW_WW______WWW_W_W__............................ ...................... Scoreboard Key: "_" Waiting for Connection, "S" Starting up, "R" Reading Request, "W" Sending Reply, "K" Keepalive (read), "D" DNS Lookup, "C" Closing connection, "L" Logging, "G" Gracefully finishing, "I" Idle cleanup of worker, "." Open slot with no current process SrvPIDAccMCPU SSReqDurConnChildSlotClientProtocolVHostRequest 0-03169161/11/23W 0.2100229430.00.020.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169161/12/22W 0.2110216920.00.050.07 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169160/14/28_ 0.230864279670.00.030.06 127.0.0.1http/1.1go.modulo.io:8080GET /mtc?mautic_device_id=8xrvl9xv889mg1tfn0u0bvg HTTP/1.1 0-03169161/15/26W 0.2300232240.00.030.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169161/14/29W 0.2200242630.00.050.08 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169161/15/24W 0.2300226510.00.030.04 127.0.0.1http/1.1lp.haize-project.com:8080GET /server-status HTTP/1.1 0-03169161/13/26W 0.2200234950.00.030.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169161/12/22W 0.2200171160.00.050.06 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169160/13/26_ 0.2300226960.00.020.05 127.0.0.1http/1.1localhost:8080OPTIONS / HTTP/1.0 0-03169161/13/21W 0.2200240560.00.030.04 127.0.0.1http/1.1go.modulo.io:8080OPTIONS /mtc/event HTTP/1.1 0-03169160/15/24_ 0.2301065229860.00.030.04 127.0.0.1http/1.1go.modulo.io:8080OPTIONS /mtc/event HTTP/1.1 0-03169161/11/20W 0.2100229850.00.050.09 127.0.0.1http/1.1go.modulo.io:8080GET /mtc?mautic_device_id=8xrvl9xv889mg1tfn0u0bvg HTTP/1.1 0-03169161/10/16W 0.2100217520.00.020.04 127.0.0.1http/1.1go.modulo.io:8080OPTIONS /mtc/event HTTP/1.1 0-03169161/17/29W 0.2200287330.00.030.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169161/10/22W 0.2110233770.00.020.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169160/12/24_ 0.2101058231210.00.030.05 127.0.0.1http/1.1go.modulo.io:8080OPTIONS /mtc/event HTTP/1.1 0-03169161/10/19W 0.2200214770.00.050.07 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169161/13/25W 0.2100229300.00.020.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169160/14/24_ 0.2201746217320.00.020.07 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169160/14/25_ 0.2301157301400.00.040.06 127.0.0.1http/1.1go.modulo.io:8080GET /mtc?mautic_device_id=8xrvl9xv889mg1tfn0u0bvg HTTP/1.1 0-03169161/11/19W 0.2110216690.00.020.04 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169161/12/21W 0.2200243250.00.030.05 127.0.0.1http/1.1go.modulo.io:8080OPTIONS /mtc/event HTTP/1.1 0-03169160/13/24_ 0.2301533244790.00.050.07 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 0-03169161/15/28W 0.2200249160.00.030.08 127.0.0.1http/1.1go.modulo.io:8080GET /mtc?mautic_device_id=ds2nug6oekd7puv7dq3apxp HTTP/1.1 0-03169161/15/25W 0.2300227240.00.030.04 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158260/27/27_ 0.4402049279900.00.050.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158261/25/25W 0.4400276620.00.190.19 127.0.0.1http/1.1go.modulo.io:8080OPTIONS /mtc/event HTTP/1.1 1-03158260/26/26_ 0.4401906287010.00.050.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158260/29/29_ 0.4401742279550.00.190.19 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158260/25/25_ 0.4401249245810.00.050.05 127.0.0.1http/1.1go.modulo.io:8080GET /mtc?mautic_device_id=8xrvl9xv889mg1tfn0u0bvg HTTP/1.1 1-03158260/28/28_ 0.4401590292190.00.080.08 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158260/27/27_ 0.4400286950.00.050.05 127.0.0.1http/1.1lp.haize-project.com:8080GET /.vscode/sftp.json HTTP/1.1 1-03158260/25/25_ 0.4401185262430.00.050.05 127.0.0.1http/1.1go.modulo.io:8080GET /mtc?mautic_device_id=wjnti2wz16abfmesbbzsf9j HTTP/1.1 1-03158260/23/23_ 0.4402070271170.00.070.07 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158260/26/26_ 0.4401826240480.00.080.08 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158261/25/25W 0.4400278110.00.050.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158260/23/23_ 0.4401840275060.00.070.07 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158260/25/25_ 0.4401540286950.00.080.08 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158260/26/26_ 0.4401356294640.00.050.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158261/27/27W 0.4410253260.00.080.08 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158261/25/25W 0.4400286460.00.050.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158260/24/24_ 0.4401717265780.00.050.05 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158260/25/25_ 0.440983239870.00.100.10 127.0.0.1http/1.1go.modulo.io:8080OPTIONS /mtc/event HTTP/1.1 1-03158261/25/25W 0.4030245960.00.080.08 127.0.0.1http/1.1go.ensao.fr:8080GET /form/generate.js?id=7 HTTP/1.1 1-03158261/26/26W 0.4400296720.00.060.06 127.0.0.1http/1.1go.modulo.io:8080OPTIONS /mtc/event HTTP/1.1 1-03158260/27/27_ 0.4402052298470.00.190.19 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158260/25/25_ 0.4401229312200.00.050.05 127.0.0.1http/1.1go.modulo.io:8080GET /mtc?mautic_device_id=ds2nug6oekd7puv7dq3apxp HTTP/1.1 1-03158261/24/24W 0.4400281630.00.070.07 127.0.0.1http/1.1go.modulo.io:8080POST /mtc/event HTTP/1.1 1-03158261/24/24W 0.4410281950.00.050.05 127.0.0.1http/1.1go.modulo.io:
Found on 2025-02-04 09:52
-
-
Open service 148.251.190.234:80 · lp.haize-project.com
2025-12-20 03:23
HTTP/1.1 301 Moved Permanently Server: nginx Date: Sat, 20 Dec 2025 03:23:21 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://lp.haize-project.com/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>
Found 2025-12-20 by HttpPluginCreate report
-
Open service 148.251.190.234:443 · lp.haize-project.com
2025-12-20 03:23
HTTP/1.1 302 Found Server: nginx Date: Sat, 20 Dec 2025 03:23:22 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/7.4.33 Cache-Control: max-age=0, must-revalidate, private pragma: no-cache Expires: Sat, 20 Dec 2025 03:23:22 GMT Location: /s/dashboard Page title: Redirecting to /s/dashboard <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/s/dashboard'" /> <title>Redirecting to /s/dashboard</title> </head> <body> Redirecting to <a href="/s/dashboard">/s/dashboard</a>. </body> </html>Found 2025-12-20 by HttpPluginCreate report
-
Open service 148.251.190.234:8443 · lp.haize-project.com
2025-12-20 03:23
HTTP/1.1 303 See Other Server: sw-cp-server Date: Sat, 20 Dec 2025 03:23:20 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Sat, 20 Dec 2025 03:23:20 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Location: https://lp.haize-project.com/login.php X-Content-Type-Options: nosniff
Found 2025-12-20 by HttpPluginCreate report