Apache
tcp/443
awselb 2.0
tcp/443
nginx
tcp/443
The following URL (usually /.git/config
) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522ae938c22
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = https://gitlab.com/ecbatana-tsukuba/morita-orchid/morita-orchid.com.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Open service 54.65.6.173:443 · morita-orchid.com
2024-05-12 21:11
HTTP/1.1 404 Not Found Server: awselb/2.0 Date: Sun, 12 May 2024 21:11:52 GMT Content-Type: text/html; charset=utf-8 Content-Length: 156 Connection: close Page title: 404 No Such Service <!DOCTYPE html> <html> <head><title>404 No Such Service</title></head> <body bgcolor="white"> <center><h1>404 No Such Service</h1></center> </body> </html>
Open service 54.65.6.173:443 · morita-orchid.com
2024-05-12 20:10
HTTP/1.1 404 Not Found Server: awselb/2.0 Date: Sun, 12 May 2024 20:10:38 GMT Content-Type: text/html; charset=utf-8 Content-Length: 156 Connection: close Page title: 404 No Such Service <!DOCTYPE html> <html> <head><title>404 No Such Service</title></head> <body bgcolor="white"> <center><h1>404 No Such Service</h1></center> </body> </html>
Open service 54.65.6.173:443 · morita-orchid.com
2024-04-30 22:51
HTTP/1.1 302 Found Cache-Control: no-cache Content-Type: text/html; charset=utf-8 Date: Tue, 30 Apr 2024 22:51:35 GMT Location: https://morita-orchid.com/login?back_url=https%3A%2F%2Fmorita-orchid.com%2F Server: Apache Status: 302 Found X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-Request-Id: a88b27bd-d2f7-427a-9dde-81ec9e96b466 X-XSS-Protection: 1; mode=block Content-Length: 141 Connection: Close <html><body>You are being <a href="https://morita-orchid.com/login?back_url=https%3A%2F%2Fmorita-orchid.com%2F">redirected</a>.</body></html>
Open service 54.65.6.173:443 · morita-orchid.com
2024-04-30 22:20
HTTP/1.1 302 Found Cache-Control: no-cache Content-Type: text/html; charset=utf-8 Date: Tue, 30 Apr 2024 22:20:26 GMT Location: https://morita-orchid.com/login?back_url=https%3A%2F%2Fmorita-orchid.com%2F Server: Apache Status: 302 Found X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-Request-Id: 327056f8-0424-405b-bb1f-59576567546e X-XSS-Protection: 1; mode=block Content-Length: 141 Connection: Close <html><body>You are being <a href="https://morita-orchid.com/login?back_url=https%3A%2F%2Fmorita-orchid.com%2F">redirected</a>.</body></html>
Open service 54.65.6.173:443 · morita-orchid.com
2024-04-28 23:07
HTTP/1.1 302 Found Cache-Control: no-cache Content-Type: text/html; charset=utf-8 Date: Sun, 28 Apr 2024 23:08:16 GMT Location: https://morita-orchid.com/login?back_url=https%3A%2F%2Fmorita-orchid.com%2F Server: Apache Status: 302 Found X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-Request-Id: 8a1c0836-bdee-480f-9cfc-be2e2fc2792f X-XSS-Protection: 1; mode=block Content-Length: 141 Connection: Close <html><body>You are being <a href="https://morita-orchid.com/login?back_url=https%3A%2F%2Fmorita-orchid.com%2F">redirected</a>.</body></html>
Open service 54.65.6.173:443 · morita-orchid.com
2024-04-28 22:18
HTTP/1.1 302 Found Cache-Control: no-cache Content-Type: text/html; charset=utf-8 Date: Sun, 28 Apr 2024 22:18:26 GMT Location: https://morita-orchid.com/login?back_url=https%3A%2F%2Fmorita-orchid.com%2F Server: Apache Status: 302 Found X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-Request-Id: bf178c56-56f8-45ac-b374-2bf0be8847b9 X-XSS-Protection: 1; mode=block Content-Length: 141 Connection: Close <html><body>You are being <a href="https://morita-orchid.com/login?back_url=https%3A%2F%2Fmorita-orchid.com%2F">redirected</a>.</body></html>
Open service 54.65.6.173:443 · morita-orchid.com
2024-04-18 22:44
HTTP/1.1 302 Found Date: Thu, 18 Apr 2024 22:44:55 GMT Content-Type: text/html; charset=utf-8 Content-Length: 79 Connection: close Server: nginx vary: accept-encoding set-cookie: _design_sync_key=SFMyNTY.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.QMI0N_Dt4fB0gygkvyevLgW3pVKyeS_fG_KMzVBfGE4; path=/; HttpOnly; SameSite=Lax cache-control: max-age=0, private, must-revalidate x-request-id: F8eBQA3BqDRLpF8AAXYh referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff x-download-options: noopen x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none content-security-policy: default-src 'self' https://google.com;img-src 'self' https://s3.ap-northeast-1.amazonaws.com data:;style-src 'self' 'unsafe-inline';script-src 'self' https://cdn.tailwindcss.com location: /users/log_in <html><body>You are being <a href="/users/log_in">redirected</a>.</body></html>
Open service 54.65.6.173:443 · morita-orchid.com
2024-04-18 21:42
HTTP/1.1 302 Found Date: Thu, 18 Apr 2024 21:43:20 GMT Content-Type: text/html; charset=utf-8 Content-Length: 79 Connection: close Server: nginx vary: accept-encoding set-cookie: _design_sync_key=SFMyNTY.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.QMI0N_Dt4fB0gygkvyevLgW3pVKyeS_fG_KMzVBfGE4; path=/; HttpOnly; SameSite=Lax cache-control: max-age=0, private, must-revalidate x-request-id: F8d948A5urAVafcAAXzC referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff x-download-options: noopen x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none content-security-policy: default-src 'self' https://google.com;img-src 'self' https://s3.ap-northeast-1.amazonaws.com data:;style-src 'self' 'unsafe-inline';script-src 'self' https://cdn.tailwindcss.com location: /users/log_in <html><body>You are being <a href="/users/log_in">redirected</a>.</body></html>