cloudflare
tcp/443 tcp/80
The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65220ec0e9fb
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true sshCommand = ssh -i /home/dqm.web.id/.ssh/dqmwe5114 -o StrictHostKeyChecking=no [remote "origin"] url = git@bitbucket.org:modernesia/paypos-pesantren.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master [user] email = yunanmr@yahoo.com name = Yunan Mubarak Ramadanni [branch "NF"] remote = origin merge = refs/heads/NF
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a81bf25a
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true sshCommand = ssh -i /home/dqm.web.id/.ssh/dqmwe5114 -o StrictHostKeyChecking=no [remote "origin"] url = git@bitbucket.org:modernesia/paypos-pesantren.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master [user] email = yunanmr@yahoo.com name = Yunan Mubarak Ramadanni
The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65220ec0e9fb
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true sshCommand = ssh -i /home/dqm.web.id/.ssh/dqmwe5114 -o StrictHostKeyChecking=no [remote "origin"] url = git@bitbucket.org:modernesia/paypos-pesantren.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master [user] email = yunanmr@yahoo.com name = Yunan Mubarak Ramadanni [branch "NF"] remote = origin merge = refs/heads/NF
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522a81bf25a
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true sshCommand = ssh -i /home/dqm.web.id/.ssh/dqmwe5114 -o StrictHostKeyChecking=no [remote "origin"] url = git@bitbucket.org:modernesia/paypos-pesantren.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master [user] email = yunanmr@yahoo.com name = Yunan Mubarak Ramadanni
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: low
Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a6093c422c45887c5fa51f311cd4106f8
Found 19 files trough .DS_Store spidering: /app /composer.json /composer.lock /favicon.ico /files /gulpfile.js /index.php /lib /libs.js /manifest.webmanifest /node_modules /package-lock.json /package.json /service-worker.js /task.list /themes /uploads /vendor /web.config
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: low
Fingerprint: 5f32cf5d6962f09cdc57c57adc57c57a6093c422c45887c5fa51f311cd4106f8
Found 19 files trough .DS_Store spidering: /app /composer.json /composer.lock /favicon.ico /files /gulpfile.js /index.php /lib /libs.js /manifest.webmanifest /node_modules /package-lock.json /package.json /service-worker.js /task.list /themes /uploads /vendor /web.config
Open service 172.67.167.25:80 · sit-matahari.web.id
2026-01-23 09:06
HTTP/1.1 307 Temporary Redirect
Date: Fri, 23 Jan 2026 09:06:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: spos_spos_cookie=5807fc52280ba90640eba8fe318083c0; expires=Fri, 23-Jan-2026 11:06:26 GMT; Max-Age=7200; path=/
Set-Cookie: spos_session=qknl922ofd5ugc1ssvq369maapuilh6b; expires=Fri, 23-Jan-2026 11:06:26 GMT; Max-Age=7200; path=/; HttpOnly
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Location: http://sit-matahari.web.id/login
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=G%2FsEawHPhZUxJY3IV2i7LDdP97BND9EP4Mztm05LOKfAtbDR79RuwRNLHV9eVImOby%2BN2sCb6cMXAmqlOf2Ge4%2Fy7BmOmOnYK6ddkorJ4Pyfwu0%3D"}]}
CF-RAY: 9c2622930fe04ef5-LHR
alt-svc: h3=":443"; ma=86400
Open service 172.67.167.25:443 · sit-matahari.web.id
2026-01-23 06:12
HTTP/1.1 302 Found
Date: Fri, 23 Jan 2026 06:12:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
pragma: no-cache
Set-Cookie: spos_spos_cookie=cd50eb18ff88387ebbe97638c4599817; expires=Fri, 23-Jan-2026 08:12:43 GMT; Max-Age=7200; path=/
Set-Cookie: spos_session=o94hfvs0q654bulpdhbpk5q2i2pfuilk; expires=Fri, 23-Jan-2026 08:12:43 GMT; Max-Age=7200; path=/; HttpOnly
location: https://sit-matahari.web.id/login
Server: cloudflare
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=17,cfOrigin;dur=442
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GN7jcswA%2F806NC8JEbMrYeBG%2BXhQHPFKR3r7jtVV%2BEqEDTSXYdesvCsvNmLs2n8n0YAShsQRW2HWMvbqXHab3911hUge2lW73UT0ZKNTEUjkQP0%3D"}]}
CF-RAY: 9c25241d99a04068-SIN
alt-svc: h3=":443"; ma=86400
Open service 172.67.167.25:443 · sit-matahari.web.id
2026-01-23 05:53
HTTP/1.1 302 Found
Date: Fri, 23 Jan 2026 05:53:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
pragma: no-cache
Set-Cookie: spos_spos_cookie=5ba1804e1826f20f1a66074e25a7e36b; expires=Fri, 23-Jan-2026 07:53:55 GMT; Max-Age=7200; path=/
Set-Cookie: spos_session=9kclcmkv10q4mbesgfka4kogmc09d30i; expires=Fri, 23-Jan-2026 07:53:55 GMT; Max-Age=7200; path=/; HttpOnly
location: https://sit-matahari.web.id/login
Server: cloudflare
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=sfUyHT2wQP%2B%2Bd2T6uC0lLiSKl0bHqcX0TB8WNOHq6%2BI5Woh%2F%2BVP2oT1Zs4ePff2kC6JY8Kr1QggJcapA%2BkCzT5UxFYAEwRbUh3teCWYJTHFjX%2Bc%3D"}]}
CF-RAY: 9c25088e993f03d8-FRA
alt-svc: h3=":443"; ma=86400
Open service 172.67.167.25:80 · sit-matahari.web.id
2026-01-23 02:13
HTTP/1.1 307 Temporary Redirect
Date: Fri, 23 Jan 2026 02:13:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Server: cloudflare
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: spos_spos_cookie=679bb8400f56f8444fdbf7c9eb5def72; expires=Fri, 23-Jan-2026 04:13:34 GMT; Max-Age=7200; path=/
Set-Cookie: spos_session=dbs928kj62opuhghpm0otnmg6i83d3ns; expires=Fri, 23-Jan-2026 04:13:34 GMT; Max-Age=7200; path=/; HttpOnly
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Location: http://sit-matahari.web.id/login
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bI1zayjCxeEQjFCM%2FDSPFAJviO4RGTEeTMRvquLNJ%2Fpg8VUfbmbMgqTxTgPKHOfUxPbGTGCfgexbybx9kZwiNUbsmW1ZFMI3u8VYpNrYyHszffA%3D"}]}
CF-RAY: 9c23c5caf8b833a0-AMS
alt-svc: h3=":443"; ma=86400
Open service 172.67.167.25:443 · sit-matahari.web.id
2026-01-09 21:24
HTTP/1.1 302 Found
Date: Fri, 09 Jan 2026 21:24:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
pragma: no-cache
Set-Cookie: spos_spos_cookie=6e78377e602866ba030ad89572466c02; expires=Fri, 09-Jan-2026 23:24:41 GMT; Max-Age=7200; path=/
Set-Cookie: spos_session=ioqns8a8t1ptcq8b27f9ifcjbr7v8vov; expires=Fri, 09-Jan-2026 23:24:41 GMT; Max-Age=7200; path=/; HttpOnly
location: https://sit-matahari.web.id/login
Server: cloudflare
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=C9zW6TAxF9ualKCZgDHGq%2FVqfEhpsK5%2Fp6ZGkQ2bivhDBfJIjRcghRYu1jf5p5bJ9MntGCVD7CsA%2FpyxIGIb1qIB3Ny9bc0ByQT3T3HcGePJnmA%3D"}]}
CF-RAY: 9bb700bba95d6ace-FRA
alt-svc: h3=":443"; ma=86400