Domain sieber-gaindorf.server13.zwei.gmbh
Germany
Software information
Apache
tcp/443
-
Symfony developement panel enabled
The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
- System configuration
- Request log, including POST request with credentials and/or api keys
IP: 78.46.7.75
Domain: sieber-gaindorf.server13.zwei.gmbh
Port: 443
URL: https://sieber-gaindorf.server13.zwei.gmbh/_profiler/empty/search/resultsFirst seen 2023-04-15 14:00
Last seen 2024-05-12 20:00
Open for 393 days-
Fingerprint: 407cf4363b0e62fafca67e07335cb258335cb258335cb258335cb258335cb258
Symfony profiler enabled: https://sieber-gaindorf.server13.zwei.gmbh/_profiler/empty/search/results
Found on 2024-05-12 20:00
-
Open service 78.46.7.75:443 · sieber-gaindorf.server13.zwei.gmbh
2024-05-12 20:00
HTTP/1.1 200 OK Date: Sun, 12 May 2024 20:01:23 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: 793bf6 X-Debug-Token-Link: https://sieber-gaindorf.server13.zwei.gmbh/_profiler/793bf6 X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=243dbef9cd5f2b19ab61dbc0d2e278b5; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=243dbef9cd5f2b19ab61dbc0d2e278b5; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.wishlist.product.merge]=022b742c77a3da.TfvOYxKOGOlorJZS9FbdjfARzQQbnCRMv8_j4d1KRY8.PIuKByvBa9E49e4RgAaxwcJUhyl4-Vw_-YfXhIkmMOwmippSeN4tkSb41w; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.wishlist.product.merge.pagelet]=d6bebe74c0dde9f1d4af41425b62c948.3-Imkou1a5Dm6E4wPhhtWVzh7tzoJnOrh5OU63CVyXs.s6ZD2P7wXPTSuXYdZkcbDyiQi7_QZyPJtdX8jB7N-B6IiXf0ufA79o-6Cw; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=1fe30b.ZVc6mMIgOPW3_g8OP2coBuqZKWEQ-Q_7Esji8cnJ_Hk.XT1fwYsVfYDhv35oRjFQM5POWgB5mlC8Zv2llviGkgkPYl-utXh6pu6MXg; path=/; secure; httponly; samesite=lax Upgrade: h2 Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2 days ago by HttpPluginCreate report
-
Open service 78.46.7.75:443 · sieber-gaindorf.server13.zwei.gmbh
2024-05-08 15:21
HTTP/1.1 200 OK Date: Wed, 08 May 2024 15:21:53 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: 11f57c X-Debug-Token-Link: https://sieber-gaindorf.server13.zwei.gmbh/_profiler/11f57c X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=6be02ead18cf4d9d44fb9c3049c0612e; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=6be02ead18cf4d9d44fb9c3049c0612e; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.wishlist.product.merge]=3a32b409b31bf96a156.slypifGwwfJxNWmt9tw4NLarwB395cMUTXAcgamq3xo.gAvMx8n2rKMkBR6UprtgAPD7iWe5upNQfBh45t756FyHacHCiMqsmBdXWQ; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.wishlist.product.merge.pagelet]=001803e1f8567a35810.ksANHCFzTnL7o3rbHaW4xJTLjkGDGWhBtPJOK04WTeg.04U6cRgkACOJ8S2Ye5H9p92xwiL3VFAE8pUEeBRSAd-h-TpaZRshRa7EDQ; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=310354df8fcdd9845806a.1LZSuqPFB22ffF5UgYOYAxFdZOAvwmNKk71BPF4EZjI.t-AG78a9SAbTLDg3wMzRSlo6CYFGgzAF9f8AUxYyIXDsghb3mqZ1OPgVKQ; path=/; secure; httponly; samesite=lax Upgrade: h2 Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-05-08 by HttpPluginCreate report
-
Open service 78.46.7.75:443 · sieber-gaindorf.server13.zwei.gmbh
2024-05-01 00:18
HTTP/1.1 200 OK Date: Wed, 01 May 2024 00:18:38 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: 505e0a X-Debug-Token-Link: https://sieber-gaindorf.server13.zwei.gmbh/_profiler/505e0a X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=b532280acdbabde95a1e224e93e9e9a5; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=b532280acdbabde95a1e224e93e9e9a5; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.wishlist.product.merge]=aa7969.RX7u1nS32WAgnVdLTIWAZHeNYlflaN5XgKffON4RYLI.PTHdtw2Prg8RpAQsK_zQVi7rCBCEGZ9h2PbtDIZ6AeAvU9qsJY6SORDMFg; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.wishlist.product.merge.pagelet]=ed269cfb0.SFLbqVlPd_hEXatbK9qxFpdiGrcUouiDRGvMAtolb_8.Jw2R4WwfLbouKMUSZraELs0bXoZw04PBGwWJS_dNFZ04Bbb9EhAloHBuxA; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=3ea7f9151.qLm144h_CFyaQocNruWu5BKMie7jj2-pxdYiKSuOfeI.ntP5k7k0XQPyFcs05Y7n13a02Kvaul34tZcSUxzUS5Oa6eamwgpdOv4qwg; path=/; secure; httponly; samesite=lax Upgrade: h2 Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-05-01 by HttpPluginCreate report
-
Open service 78.46.7.75:443 · sieber-gaindorf.server13.zwei.gmbh
2024-04-28 19:17
HTTP/1.1 200 OK Date: Sun, 28 Apr 2024 19:17:33 GMT Server: Apache Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin X-Debug-Token: 8de558 X-Debug-Token-Link: https://sieber-gaindorf.server13.zwei.gmbh/_profiler/8de558 X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=d7276ea746098a0ddc89f6c12924e6be; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=d7276ea746098a0ddc89f6c12924e6be; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.wishlist.product.merge]=ad674fc92f4f5b2eb09d0.1G9UI77mLKVz0YME3aQ617RL1jle0LVrnxEUW_Lj2iY.sg4-a86kGOoKu-B1t-tgoewjuFgG4_Ae2GFyCYSW6W6EJQtT1NQfwhDktw; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.wishlist.product.merge.pagelet]=af.4XC9tMCxKhKAlp6FSAjaCuoWPVl9NgCCwc_nZe4vgGQ.s0fN5pbfY02twe_kMnGYPb1YbwA-Z2OwiIzeK4N9xwCOJIrmqtUSIvrQ7Q; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=a1d9115f2baf15cbdf023c9a635e90.nV1DbtHsqeMRX-daR_1-oryc2xQ-y2RQU4nHWfTz5zM._AIVBLC4mtZ2C689HoQ7_dn_lWUMhBw3YvuMPZmfj0rEFzMqh6ba0UZupg; path=/; secure; httponly; samesite=lax Upgrade: h2 Connection: Upgrade, close Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Found 2024-04-28 by HttpPluginCreate report