Apache
tcp/443
The following URL is publicly accessible and is leaking deployment credentials
Fingerprint: 13b3a7b17cfc7502c36c325dde00156d2afa714599d2ee15188761b1f36a3f0a
{ "name": "Server", "protocol": "ftp", "port": 21, "uploadOnSave": false, "host": "shopping.airdrieecho.com", "username": "sairdrieec", "password": "lk*MvV2xt8l0", "remotePath": "/httpdocs/" }
Fingerprint: 13b3a7b18ffc92a5ebda39da22333d1fb89b0e3a098da248bf78ccedf24a994c
HTTP/1.1 200 OK Date: Tue, 20 Jun 2023 11:41:46 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=de6ff0fcavkqrc1aub9470aa90; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html Page title: The Portage Daily Graphic Local Businesses{ "name": "Server", "protocol": "ftp", "port": 21, "uploadOnSave": false, "host": "shopping.airdrieecho.com", "username": "sairdrieec", "password": "lk*MvV2xt8l0", "remotePath": "/httpdocs/" }
A JSON configuration file has been found at config.json
.
It may contains application configuration such as credentials.
False positive might happen when hitting a JSON API endpoint.
Fingerprint: b18befd9dd6536aa30550de565fe9166979a51b936499e88adfdc31dcecd1223
{ "allowedExtensions":["less"], "defaults": { "watchFolder": "css/themes/latimes", "outputFolder": "css/themes/latimes" } }
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-27 22:26
HTTP/1.1 200 OK Date: Mon, 27 May 2024 22:25:49 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=elr9o3b9imgsq4afdkqtu6obt6; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-27 22:26
HTTP/1.1 200 OK Date: Mon, 27 May 2024 22:25:48 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=nt6qee37sqibmmsb1sgghtfdt5; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-26 09:51
HTTP/1.1 200 OK Date: Sun, 26 May 2024 09:51:26 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=1f3nse1cdc7ec3auerh8pipct5; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-26 09:51
HTTP/1.1 200 OK Date: Sun, 26 May 2024 09:51:25 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=aejsk8ulft9vd86crvdea0qc13; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-25 17:06
HTTP/1.1 200 OK Date: Sat, 25 May 2024 17:06:21 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=7n9f6deqcpmdtnb3r19omojif0; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-25 04:57
HTTP/1.1 200 OK Date: Sat, 25 May 2024 04:57:00 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=r59gbfki44o4aitstdsosa1r10; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-24 13:33
HTTP/1.1 200 OK Date: Fri, 24 May 2024 13:33:52 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=uqg2gochmu0fpv8rpgujiq1083; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-24 13:33
HTTP/1.1 200 OK Date: Fri, 24 May 2024 13:33:51 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=2rro9nd03d494sg6rtvcqcdmj7; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-23 12:59
HTTP/1.1 200 OK Date: Thu, 23 May 2024 12:59:30 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=ckiusgtd5evgn7p2kscbs24mi7; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-23 12:59
HTTP/1.1 200 OK Date: Thu, 23 May 2024 12:59:29 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=thaignivnka1h9us03kn1e1fe7; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-13 02:54
HTTP/1.1 200 OK Date: Mon, 13 May 2024 02:53:26 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=05famk2q49nv149t9arngufot7; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-13 02:54
HTTP/1.1 200 OK Date: Mon, 13 May 2024 02:53:32 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=0t0v5tlf7hsbdt1o8ctgkig3r0; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-08 19:58
HTTP/1.1 200 OK Date: Wed, 08 May 2024 19:57:00 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=lib394b1nroj1sdsv60vm770m5; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html
Open service 70.35.197.40:443 · shopping.thegraphicleader.com
2024-05-08 18:40
HTTP/1.1 200 OK Date: Wed, 08 May 2024 18:38:50 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=292c61bhlf3r9ckvorssuql7t0; path=/ Vary: Accept-Encoding X-Powered-By: PleskLin Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: ; Strict-Transport-Security: max-age=2592000; Permissions-Policy: geolocation=(*) X-Content-Type-Options: nosniff Referrer-Policy: no-referrer X-Frame-Options: ALLOWALL Cache-Control: public Connection: close Transfer-Encoding: chunked Content-Type: text/html