LeakIX - Host subscription.apc.is

Domain subscription.apc.is

Germany

Hetzner Online GmbH

Ubuntu

Software information

Apache Apache 2.4.41

tcp/443 tcp/80

Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 159.69.14.212
Domain: subscription.apc.is
Port: 443
URL: https://subscription.apc.is/_profiler/empty/search/results

First seen 2022-10-07 20:11
Last seen 2024-06-18 20:37
Open for 620 days
- Fingerprint: 407cf4363b0e62fafca67e07e0d6b0fae0d6b0fae0d6b0fae0d6b0fae0d6b0fa
```
Symfony profiler enabled:
https://subscription.apc.is/_profiler/empty/search/results
```
  Found on 2024-06-18 20:37
Create report

Open service 159.69.14.212:443 · subscription.apc.is

2024-06-18 20:37

HTTP/1.1 302 Found
Date: Tue, 18 Jun 2024 20:37:12 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: no-cache, private
Location: /log-in
X-Debug-Token: d969fc
X-Debug-Token-Link: https://subscription.apc.is/_profiler/d969fc
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%22d969fc%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsubscription%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A29%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Content-Length: 274
Connection: close
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /log-in

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/log-in'" />

        <title>Redirecting to /log-in</title>
    </head>
    <body>
        Redirecting to <a href="/log-in">/log-in</a>.
    </body>
</html>

Found 2 days ago by HttpPlugin

Create report

Open service 159.69.14.212:443 · subscription.apc.is

2024-06-16 12:48

HTTP/1.1 302 Found
Date: Sun, 16 Jun 2024 12:48:23 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: no-cache, private
Location: /log-in
X-Debug-Token: 29670e
X-Debug-Token-Link: https://subscription.apc.is/_profiler/29670e
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%2229670e%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsubscription%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A29%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Content-Length: 274
Connection: close
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /log-in

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/log-in'" />

        <title>Redirecting to /log-in</title>
    </head>
    <body>
        Redirecting to <a href="/log-in">/log-in</a>.
    </body>
</html>

Found 2024-06-16 by HttpPlugin

Create report

Open service 159.69.14.212:443 · subscription.apc.is

2024-06-12 05:58

HTTP/1.1 302 Found
Date: Wed, 12 Jun 2024 05:58:33 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: no-cache, private
Location: /log-in
X-Debug-Token: 1df18b
X-Debug-Token-Link: https://subscription.apc.is/_profiler/1df18b
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%221df18b%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsubscription%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A29%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Content-Length: 274
Connection: close
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /log-in

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/log-in'" />

        <title>Redirecting to /log-in</title>
    </head>
    <body>
        Redirecting to <a href="/log-in">/log-in</a>.
    </body>
</html>

Found 2024-06-12 by HttpPlugin

Create report

Open service 159.69.14.212:443 · subscription.apc.is

2024-06-10 02:36

HTTP/1.1 302 Found
Date: Mon, 10 Jun 2024 02:36:15 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: no-cache, private
Location: /log-in
X-Debug-Token: fe3c3e
X-Debug-Token-Link: https://subscription.apc.is/_profiler/fe3c3e
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%22fe3c3e%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsubscription%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A29%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Content-Length: 274
Connection: close
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /log-in

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/log-in'" />

        <title>Redirecting to /log-in</title>
    </head>
    <body>
        Redirecting to <a href="/log-in">/log-in</a>.
    </body>
</html>

Found 2024-06-10 by HttpPlugin

Create report

Open service 159.69.14.212:443 · subscription.apc.is

2024-06-08 03:17

HTTP/1.1 302 Found
Date: Sat, 08 Jun 2024 03:17:08 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: no-cache, private
Location: /log-in
X-Debug-Token: effb23
X-Debug-Token-Link: https://subscription.apc.is/_profiler/effb23
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%22effb23%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsubscription%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A29%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Content-Length: 274
Connection: close
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /log-in

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/log-in'" />

        <title>Redirecting to /log-in</title>
    </head>
    <body>
        Redirecting to <a href="/log-in">/log-in</a>.
    </body>
</html>

Found 2024-06-08 by HttpPlugin

Create report

Open service 159.69.14.212:443 · subscription.apc.is

2024-06-06 01:37

HTTP/1.1 302 Found
Date: Thu, 06 Jun 2024 01:37:17 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: no-cache, private
Location: /log-in
X-Debug-Token: 86656b
X-Debug-Token-Link: https://subscription.apc.is/_profiler/86656b
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%2286656b%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsubscription%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A29%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Content-Length: 274
Connection: close
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /log-in

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/log-in'" />

        <title>Redirecting to /log-in</title>
    </head>
    <body>
        Redirecting to <a href="/log-in">/log-in</a>.
    </body>
</html>

Found 2024-06-06 by HttpPlugin

Create report

Open service 159.69.14.212:443 · subscription.apc.is

2024-06-04 17:46

HTTP/1.1 302 Found
Date: Tue, 04 Jun 2024 17:46:09 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: no-cache, private
Location: /log-in
X-Debug-Token: e1ffcd
X-Debug-Token-Link: https://subscription.apc.is/_profiler/e1ffcd
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%22e1ffcd%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsubscription%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A29%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Content-Length: 274
Connection: close
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /log-in

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/log-in'" />

        <title>Redirecting to /log-in</title>
    </head>
    <body>
        Redirecting to <a href="/log-in">/log-in</a>.
    </body>
</html>

Found 2024-06-04 by HttpPlugin

Create report

Open service 159.69.14.212:80 · subscription.apc.is

2024-06-02 19:50

HTTP/1.1 301 Moved Permanently
Date: Sun, 02 Jun 2024 19:51:02 GMT
Server: Apache/2.4.41 (Ubuntu)
Location: https://subscription.apc.is/
Content-Length: 321
Connection: close
Content-Type: text/html; charset=iso-8859-1

Page title: 301 Moved Permanently

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>301 Moved Permanently</title>
</head><body>
<h1>Moved Permanently</h1>
<p>The document has moved <a href="https://subscription.apc.is/">here</a>.</p>
<hr>
<address>Apache/2.4.41 (Ubuntu) Server at subscription.apc.is Port 80</address>
</body></html>

Found 2024-06-02 by HttpPlugin

Create report

Open service 159.69.14.212:443 · subscription.apc.is

2024-06-02 19:50

HTTP/1.1 302 Found
Date: Sun, 02 Jun 2024 19:51:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Cache-Control: no-cache, private
Location: /log-in
X-Debug-Token: 02d80c
X-Debug-Token-Link: https://subscription.apc.is/_profiler/02d80c
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%2202d80c%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsubscription%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A29%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Content-Length: 274
Connection: close
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /log-in

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/log-in'" />

        <title>Redirecting to /log-in</title>
    </head>
    <body>
        Redirecting to <a href="/log-in">/log-in</a>.
    </body>
</html>

Found 2024-06-02 by HttpPlugin

Create report

sbclient1.apc.issbclient2.apc.issubscription.apc.istenant1.apc.istenant2.apc.is

Fingerprint:

c0eab9c752227dea5f8bb631a54286db6fcb9c2c6d65e72b65de0de3748798fa

CN:

sbclient1.apc.is

Key:

RSA-2048

Issuer:

Not before:

2024-06-02 18:49

Not after:

2024-08-31 18:49

Domain summary

subscription.apc.is 9

1 recorded

IP summary

159.69.14.212 2

1 recorded

Domain subscription.apc.is

Germany

Software information

Symfony developement panel enabled

sbclient1.apc.issbclient2.apc.issubscription.apc.istenant1.apc.istenant2.apc.is

Domain summary

IP summary