The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
Fingerprint: 407cf4363b0e62fafca67e07edcd5dbeedcd5dbeedcd5dbeedcd5dbeedcd5dbe
Symfony profiler enabled: https://steppers.lino.iziflow.kanonik.fr/_profiler/empty/search/results
Open service 13.37.209.215:443 · steppers.lino.iziflow.kanonik.fr
2024-06-18 17:13
HTTP/1.1 302 Found Date: Tue, 18 Jun 2024 17:13:39 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: no-cache, private Location: /admin/ X-Debug-Token: 37e92a X-Debug-Token-Link: https://steppers.lino.iziflow.kanonik.fr/_profiler/37e92a X-Robots-Tag: noindex X-Symfony-Cache: GET /: miss Set-Cookie: sf_redirect=%7B%22token%22%3A%2237e92a%22%2C%22route%22%3A%22home%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CHomeController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsymfony%5C%2Fsrc%5C%2FController%5C%2FHomeController.php%22%2C%22line%22%3A17%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block Referrer-Policy: no-referrer Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: origin Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Strict-Transport-Security: max-age=15724800; includeSubDomains X-Powered-By: ProfideoWebServer Page title: Redirecting to /admin/ <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/'" /> <title>Redirecting to /admin/</title> </head> <body> Redirecting to <a href="/admin/">/admin/</a>. </body> </html>
Open service 13.37.209.215:443 · steppers.lino.iziflow.kanonik.fr
2024-06-16 17:21
HTTP/1.1 302 Found Date: Sun, 16 Jun 2024 17:21:35 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: no-cache, private Location: /admin/ X-Debug-Token: 834b42 X-Debug-Token-Link: https://steppers.lino.iziflow.kanonik.fr/_profiler/834b42 X-Robots-Tag: noindex X-Symfony-Cache: GET /: miss Set-Cookie: sf_redirect=%7B%22token%22%3A%22834b42%22%2C%22route%22%3A%22home%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CHomeController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsymfony%5C%2Fsrc%5C%2FController%5C%2FHomeController.php%22%2C%22line%22%3A17%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block Referrer-Policy: no-referrer Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: origin Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Strict-Transport-Security: max-age=15724800; includeSubDomains X-Powered-By: ProfideoWebServer Page title: Redirecting to /admin/ <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/'" /> <title>Redirecting to /admin/</title> </head> <body> Redirecting to <a href="/admin/">/admin/</a>. </body> </html>
Open service 13.37.209.215:443 · steppers.lino.iziflow.kanonik.fr
2024-06-12 18:27
HTTP/1.1 302 Found Date: Wed, 12 Jun 2024 18:27:21 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: no-cache, private Location: /admin/ X-Debug-Token: 181e83 X-Debug-Token-Link: https://steppers.lino.iziflow.kanonik.fr/_profiler/181e83 X-Robots-Tag: noindex X-Symfony-Cache: GET /: miss Set-Cookie: sf_redirect=%7B%22token%22%3A%22181e83%22%2C%22route%22%3A%22home%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CHomeController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsymfony%5C%2Fsrc%5C%2FController%5C%2FHomeController.php%22%2C%22line%22%3A17%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block Referrer-Policy: no-referrer Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: origin Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Strict-Transport-Security: max-age=15724800; includeSubDomains X-Powered-By: ProfideoWebServer Page title: Redirecting to /admin/ <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/'" /> <title>Redirecting to /admin/</title> </head> <body> Redirecting to <a href="/admin/">/admin/</a>. </body> </html>
Open service 13.37.209.215:443 · steppers.lino.iziflow.kanonik.fr
2024-06-10 15:45
HTTP/1.1 302 Found Date: Mon, 10 Jun 2024 15:45:39 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: no-cache, private Location: /admin/ X-Debug-Token: ae5422 X-Debug-Token-Link: https://steppers.lino.iziflow.kanonik.fr/_profiler/ae5422 X-Robots-Tag: noindex X-Symfony-Cache: GET /: miss Set-Cookie: sf_redirect=%7B%22token%22%3A%22ae5422%22%2C%22route%22%3A%22home%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CHomeController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsymfony%5C%2Fsrc%5C%2FController%5C%2FHomeController.php%22%2C%22line%22%3A17%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block Referrer-Policy: no-referrer Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: origin Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Strict-Transport-Security: max-age=15724800; includeSubDomains X-Powered-By: ProfideoWebServer Page title: Redirecting to /admin/ <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/'" /> <title>Redirecting to /admin/</title> </head> <body> Redirecting to <a href="/admin/">/admin/</a>. </body> </html>
Open service 13.37.209.215:443 · steppers.lino.iziflow.kanonik.fr
2024-06-08 13:26
HTTP/1.1 302 Found Date: Sat, 08 Jun 2024 13:26:29 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: no-cache, private Location: /admin/ X-Debug-Token: aa6bf8 X-Debug-Token-Link: https://steppers.lino.iziflow.kanonik.fr/_profiler/aa6bf8 X-Robots-Tag: noindex X-Symfony-Cache: GET /: miss Set-Cookie: sf_redirect=%7B%22token%22%3A%22aa6bf8%22%2C%22route%22%3A%22home%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CHomeController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsymfony%5C%2Fsrc%5C%2FController%5C%2FHomeController.php%22%2C%22line%22%3A17%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block Referrer-Policy: no-referrer Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: origin Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Strict-Transport-Security: max-age=15724800; includeSubDomains X-Powered-By: ProfideoWebServer Page title: Redirecting to /admin/ <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/'" /> <title>Redirecting to /admin/</title> </head> <body> Redirecting to <a href="/admin/">/admin/</a>. </body> </html>
Open service 13.37.209.215:443 · steppers.lino.iziflow.kanonik.fr
2024-06-06 13:37
HTTP/1.1 302 Found Date: Thu, 06 Jun 2024 13:37:43 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: no-cache, private Location: /admin/ X-Debug-Token: 1af6fc X-Debug-Token-Link: https://steppers.lino.iziflow.kanonik.fr/_profiler/1af6fc X-Robots-Tag: noindex X-Symfony-Cache: GET /: miss Set-Cookie: sf_redirect=%7B%22token%22%3A%221af6fc%22%2C%22route%22%3A%22home%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CHomeController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsymfony%5C%2Fsrc%5C%2FController%5C%2FHomeController.php%22%2C%22line%22%3A17%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block Referrer-Policy: no-referrer Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: origin Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Strict-Transport-Security: max-age=15724800; includeSubDomains X-Powered-By: ProfideoWebServer Page title: Redirecting to /admin/ <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/'" /> <title>Redirecting to /admin/</title> </head> <body> Redirecting to <a href="/admin/">/admin/</a>. </body> </html>
Open service 13.37.209.215:443 · steppers.lino.iziflow.kanonik.fr
2024-06-04 12:59
HTTP/1.1 302 Found Date: Tue, 04 Jun 2024 12:59:51 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: no-cache, private Location: /admin/ X-Debug-Token: db10b5 X-Debug-Token-Link: https://steppers.lino.iziflow.kanonik.fr/_profiler/db10b5 X-Robots-Tag: noindex X-Symfony-Cache: GET /: miss Set-Cookie: sf_redirect=%7B%22token%22%3A%22db10b5%22%2C%22route%22%3A%22home%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CHomeController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsymfony%5C%2Fsrc%5C%2FController%5C%2FHomeController.php%22%2C%22line%22%3A17%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block Referrer-Policy: no-referrer Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Content-Security-Policy: style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; default-src 'self'; img-src 'self' data: X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Referrer-Policy: origin Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=() Strict-Transport-Security: max-age=15724800; includeSubDomains X-Powered-By: ProfideoWebServer Page title: Redirecting to /admin/ <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/admin/'" /> <title>Redirecting to /admin/</title> </head> <body> Redirecting to <a href="/admin/">/admin/</a>. </body> </html>