nginx 1.25.5
tcp/443 tcp/80
The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb0c9a8c1a
[core] repositoryformatversion = 0 filemode = false bare = false logallrefupdates = true symlinks = false ignorecase = true [remote "origin"] url = https://github.com/islamouda/Thikriat-Accounting-2026.git fetch = +refs/heads/*:refs/remotes/origin/*
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb76bd8839
[core] repositoryformatversion = 0 filemode = false bare = false logallrefupdates = true symlinks = false ignorecase = true [remote "origin"] url = https://github.com/hussainJameel96/UQAI.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "main"] remote = origin merge = refs/heads/main
The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb0c9a8c1a
[core] repositoryformatversion = 0 filemode = false bare = false logallrefupdates = true symlinks = false ignorecase = true [remote "origin"] url = https://github.com/islamouda/Thikriat-Accounting-2026.git fetch = +refs/heads/*:refs/remotes/origin/*
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbb76bd8839
[core] repositoryformatversion = 0 filemode = false bare = false logallrefupdates = true symlinks = false ignorecase = true [remote "origin"] url = https://github.com/hussainJameel96/UQAI.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "main"] remote = origin merge = refs/heads/main
Open service 162.144.1.75:80 · mail.abs.vli.temporary.site
2026-02-09 08:44
HTTP/1.1 200 OK Date: Mon, 09 Feb 2026 08:45:03 GMT Server: nginx/1.25.5 Content-Type: text/html; charset=UTF-8 Cache-Control: no-cache, private Referrer-Policy: no-referrer-when-downgrade X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block X-Frame-Options: DENY Strict-Transport-Security: max-age=31536000; includeSubDomains Vary: Accept-Encoding X-Server-Cache: true X-Proxy-Cache: MISS Set-Cookie: XSRF-TOKEN=eyJpdiI6Ii9IMTdCZE01U3ZYQzF5NXRrNXFuTEE9PSIsInZhbHVlIjoiTWJzcVJSUXdqbmZXUGY3Vm81cXRwOWFiQU11WERiY1RndHoyUlhXcXRCaE5UWVkvUkVwYS9sdDB1dHVDSUN1T0l3REdxV0xwSlZEK3RRVXhJTEJkcFNOVnZkTHU5OXpteHFoUmJLR0tWUXZPY3B3eXBJQUlTRVFENkZsUDVqWVgiLCJtYWMiOiIzYzcxNmQ2MmVhMDRkNDA3M2UxMDA1YTMwNGE5MDg2MTc5NWRjMjc5M2Q0OTIxMTcwNzZkOGVjNTk1YjVkNmFlIiwidGFnIjoiIn0%3D; expires=Mon, 09 Feb 2026 10:45:03 GMT; Max-Age=7200; path=/; samesite=lax Set-Cookie: gratech_session=eyJpdiI6InFEMEViZGlKOHpFZCtaZU1Zam5Qamc9PSIsInZhbHVlIjoiSVZtNjVhRmNxZmxWb01UQVhKVFB4MDV1TGd6WFJEV2x3ZlBST2N6Wkd3UUN4T2R2MUF6ZUh2RmZqdjMvdDV6Zk1aVjd5OGNoZTQzN2N5Q3lJK2djRERWTHVZdmNyeko2UnFpNkhCb2sxMFREUVI4VHBwTHVEQkJyZ2tqZXY0eG4iLCJtYWMiOiJjZTRhMWYyYmZhMWY0ZTc1ZmUxYWM0NGM3NzFhOGQ4ZDkzOTMzM2EwMmEyMGUwOTQyNjZjZmE5ODkzMjI1NTBjIiwidGFnIjoiIn0%3D; expires=Mon, 09 Feb 2026 10:45:03 GMT; Max-Age=7200; path=/; httponly; samesite=lax Transfer-Encoding: chunked
Open service 162.144.1.75:443 · mail.abs.vli.temporary.site
2026-01-23 16:27
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 16:27:50 GMT Server: nginx/1.25.5 Content-Type: text/html; charset=UTF-8 Cache-Control: no-cache, private Referrer-Policy: no-referrer-when-downgrade X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block X-Frame-Options: DENY Strict-Transport-Security: max-age=31536000; includeSubDomains Vary: Accept-Encoding X-Server-Cache: true X-Proxy-Cache: MISS Set-Cookie: XSRF-TOKEN=eyJpdiI6IjdtWlYvV2R4WWFybHQrMmwzd2N2WGc9PSIsInZhbHVlIjoiYUoyUWhQZDZxUlcwTXR0S01ib1B2TlJDMEcwNEZTVFMwWnlLTk0rZldGdmdBN0JINWx2YVRxd2pKZWVvQURjb2pISEVzTDhQTnNGcjc4NHNIcHB3K0xLL2hUTjdRd2Z6VmVLdGlONDdwa2Uxa1FGVU81eGZYdDlQNTZGZUZua1IiLCJtYWMiOiJkZjBlNzA5NzcxMmY2NDQ3NDIwNTZhYWUzNTRmNTFlYTA2NWQxY2FjODZkYjg0ZGQyOTQwZGNiMTdjMGM0MzY5IiwidGFnIjoiIn0%3D; expires=Fri, 23 Jan 2026 18:27:50 GMT; Max-Age=7200; path=/; secure; samesite=lax Set-Cookie: gratech_session=eyJpdiI6InVBZkJ3MGxpNFJUbFpqdCszY1ZGaXc9PSIsInZhbHVlIjoidGI3SURsRXllVXVDWDZpQnowZUhLSWR0LzhUNDVqbVlwMUpSZnFwSlRteTZ2UmhNTU9KSnNueHVWQzlvTmpEcWF6N2xpNVBGYSt0dzlLSmlHUDVqZUJ5OFdoQUI5bGVEVkZBK1pQMGpHa1cxMlc0TVhRNTBQWng5N0IyazJLUjEiLCJtYWMiOiI4ZDZkY2YxOTgxNzI1Yjc2OWQ1OWIzM2JkNjU2M2RmMTFlNTY2YWI1NTNmMGFiYjFlOGRiMmU4ZDliOWFlZmI3IiwidGFnIjoiIn0%3D; expires=Fri, 23 Jan 2026 18:27:50 GMT; Max-Age=7200; path=/; httponly; samesite=lax Transfer-Encoding: chunked
Open service 162.144.1.75:80 · mail.abs.vli.temporary.site
2026-01-23 05:36
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 05:36:21 GMT Server: nginx/1.25.5 Content-Type: text/html; charset=UTF-8 Cache-Control: no-cache, private Referrer-Policy: no-referrer-when-downgrade X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block X-Frame-Options: DENY Strict-Transport-Security: max-age=31536000; includeSubDomains Vary: Accept-Encoding X-Server-Cache: true X-Proxy-Cache: MISS Set-Cookie: XSRF-TOKEN=eyJpdiI6ImQxWUEyelIxanY2QnJrMWh5ZmdpT3c9PSIsInZhbHVlIjoiMzRBVFd1djV4ajJrdTl3QitmcUdQUGJDQzlFZjJiMkVBYWJTWmtSb3JhZ09BUlF4YzAxV1QwMnFFMFhvVDZKTFI3OU8zTlBObUYvM0Z3U0pMZHNGaDloMHYrRlNaNlhlMkY1Uzk5czZld1BGY1ZNL0wvc3VCMk0waU5iR0FGRVciLCJtYWMiOiIyNGEyOGJhZmQxMTdlODIxNjg2NjBjMmI5MWFlZGViOTQwMTI5MTA3Mjk3NmYzMWE5NjI4ZjVjYzZmM2Y3NTg5IiwidGFnIjoiIn0%3D; expires=Fri, 23 Jan 2026 07:36:21 GMT; Max-Age=7200; path=/; samesite=lax Set-Cookie: gratech_session=eyJpdiI6Inllck43K1cweGNPUnI1Z2lvOXhjUVE9PSIsInZhbHVlIjoiL2JwSGt5Z3BlV3UxaC9Rc3NIQ2xWYm01Z2h6TFMrVHRHMkRUL3lndWZwNWY2Zm9FZ0dMSEFTeTJPeWIvM0tBNkRWclZzeHpCSTdVaFFMYmF4MVZKWWJZYitlWnZMMmxSRjRJZmhtNUFFTEZoU2xxNm5tNmVIL1BYVUYxalg5RkkiLCJtYWMiOiJjNWQxNjUxMGI3MTgzZmZmNjkyMzhhODFjNWJlYzUxOGNmNTdjNzJjNjU2MjQzM2E0YTY1MGFlNmI1NDQ1NDNkIiwidGFnIjoiIn0%3D; expires=Fri, 23 Jan 2026 07:36:21 GMT; Max-Age=7200; path=/; httponly; samesite=lax Transfer-Encoding: chunked