nginx
tcp/443
The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
Fingerprint: 407cf4363b0e62fafca67e07c5c97964c5c97964c5c97964c5c97964c5c97964
Symfony profiler enabled: https://staging.currywurst-berlin.com/_profiler/empty/search/results
Open service 2a01:4f8:251:182b::101:11f:443 · staging.currywurst-berlin.com
2024-05-13 02:10
HTTP/1.1 200 OK Server: nginx Date: Mon, 13 May 2024 02:11:36 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin pragma: no-cache expires: -1 X-Debug-Token: 19c558 X-Debug-Token-Link: https://staging.currywurst-berlin.com/_profiler/19c558 X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=o17urhv3okdq6af9murs3c7inj; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=o17urhv3okdq6af9murs3c7inj; path=/; secure; httponly; samesite=lax Set-Cookie: sw-states=deleted; expires=Sun, 14-May-2023 02:11:35 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax Set-Cookie: sw-cache-hash=deleted; expires=Sun, 14-May-2023 02:11:35 GMT; Max-Age=0; path=/; httponly Set-Cookie: csrf[frontend.checkout.line-item.add]=4ca12cc9dd9304f0e3244e06733fc4.HWhz0x3T7D_BbHAI96uEYdL7Bg8TBIJbwZWmxB04Z7c.QgtKl0m81AzyGCZ8gM7pKJ-5Q0BFYMtsueXg82VKHc0tXgm5LoeeCIw5PQ; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[payment.paypal.add_error]=9a11f7807202fb61.D7FHQGs6TWLr8F_4_YljYKF0aqUfQN4co3szC4FKuTM.RdAECV9jfg2KthSerbFUJcAmHvVbN6d59jJCQtYA4FZXiSMEEWwDIISePA; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.form.newsletter.register.handle]=2910752fc146b44e14802e6d945.ei_vUaXQFVXXdmMFpTab0q3d-UmTCWUeXvMYuPgVpgE.I3yoDuO8cD-YDgRNkk_4jYCMiAjERQhsB8dBiopj1UYVR7o4kZJDG6NGCA; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=440324f6405464326e1105.FYjH2EFYQdMS9NcKOj3YUICo_H7oiYrMclH09bkBERY.XdufmSQhILpTjaJ7bWiQN-LkjhG8yN2_GCiFts0xX1pez7KRcGg140qbpA; path=/; secure; httponly; samesite=lax X-UA-Compatible: IE=edge Vary: Accept-Encoding
Open service 2a01:4f8:251:182b::101:11f:443 · staging.currywurst-berlin.com
2024-04-28 20:56
HTTP/1.1 200 OK Server: nginx Date: Sun, 28 Apr 2024 20:57:05 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding Strict-Transport-Security: max-age=31536000; includeSubDomains X-Frame-Options: deny X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin pragma: no-cache expires: -1 X-Debug-Token: 71d8f0 X-Debug-Token-Link: https://staging.currywurst-berlin.com/_profiler/71d8f0 X-Robots-Tag: noindex sw-invalidation-states: Age: 0 X-Symfony-Cache: GET /: miss, store Cache-Control: no-cache, private Set-Cookie: session-=tduinscnjhk0nu1b2bifilult5; path=/; secure; HttpOnly; SameSite=lax Set-Cookie: session-=tduinscnjhk0nu1b2bifilult5; path=/; secure; httponly; samesite=lax Set-Cookie: sw-states=deleted; expires=Sat, 29-Apr-2023 20:57:04 GMT; Max-Age=0; path=/; secure; httponly; samesite=lax Set-Cookie: sw-cache-hash=deleted; expires=Sat, 29-Apr-2023 20:57:04 GMT; Max-Age=0; path=/; httponly Set-Cookie: csrf[frontend.checkout.line-item.add]=3579eebbb88e7184e.MD1SXiIyA1KNX3_VMksoHc42D5i_QDS_b3O6l7e0kVQ.fV4dEX17YBy6PTWyQAIbW5ZXRaDLbUbSXT2O3taB92xTBT4BT2ZsG-k0Og; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[payment.paypal.add_error]=f943215fc8534855dbb3d7d.9gKyJVqNBCkI5_-tagTCT1HTqoO1z9ZLVLySTe-pK7M.w1T-VDK-cBFApsnHMF6leGie8vb__OIIC_agFNrIU-K_WOtcKvp3ZVCmyw; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.form.newsletter.register.handle]=bfc1f806c45.CofYQJb9bG8esUa3FeUvhESMyJEpm_So5NRjTUAJQzY.VdKqFs-3JV8uwX_0XoJrvDLEvPBI8a7SnZczOglnOUx4xrkFr5c-KSn4KQ; path=/; secure; httponly; samesite=lax Set-Cookie: csrf[frontend.store-api.proxy]=fa2f265030c.6tUIiWH-0_lOFvt85lglsWJP4qCQ526orV-hrrxHqPo.sJF_uTm1o5opXJo2lAlHwg0NsMHPoi-dxS7b2OMR-oqYv3q-J6fgthhAog; path=/; secure; httponly; samesite=lax X-UA-Compatible: IE=edge Vary: Accept-Encoding