LeakIX - Host test.app.panagram.fr

Domain test.app.panagram.fr

France

OVH SAS

Software information

OVHcloud

tcp/443 tcp/80

Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 5.135.23.164
Domain: test.app.panagram.fr
Port: 80
URL: http://test.app.panagram.fr/_profiler/empty/search/results

First seen 2024-08-22 08:19
Last seen 2026-01-08 22:52
Open for 504 days
- Fingerprint: 407cf4363b0e62fafca67e07e308dc54e308dc54e308dc54e308dc54e308dc54
```
Symfony profiler enabled:
http://test.app.panagram.fr/_profiler/empty/search/results
```
  Found on 2026-01-08 22:52
Create report
Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 2001:41d0:301::100
Domain: test.app.panagram.fr
Port: 443
URL: https://test.app.panagram.fr/_profiler/empty/search/results

First seen 2024-08-22 08:19
Last seen 2026-01-09 23:43
Open for 505 days
- Fingerprint: 407cf4363b0e62fafca67e07471ac0d1471ac0d1471ac0d1471ac0d1471ac0d1
```
Symfony profiler enabled:
https://test.app.panagram.fr/_profiler/empty/search/results
```
  Found on 2026-01-09 23:43
Create report

Open service 2001:41d0:301::100:443 · test.app.panagram.fr

2026-01-09 23:43

HTTP/1.1 302 Found
Date: Fri, 09 Jan 2026 23:43:36 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Server: OVHcloud
X-Powered-By: PHP/8.2
Cache-Control: max-age=0, must-revalidate, private
X-Debug-Token: 15fff7
X-Debug-Token-Link: https://test.app.panagram.fr/_profiler/15fff7
X-Robots-Tag: noindex
Expires: Fri, 09 Jan 2026 23:43:36 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%2215fff7%22%2C%22route%22%3A%22home%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CSecurityController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fhome%5C%2Fpanagri%5C%2Ftest%5C%2Fsrc%5C%2FController%5C%2FSecurityController.php%22%2C%22line%22%3A34%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Set-Cookie: PHPSESSID=94ed9769a1c424ff4659ad8b6bc504ac; expires=Sat, 10 Jan 2026 00:43:36 GMT; Max-Age=3600; path=/; secure; httponly; samesite=lax
Location: /login

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 5.135.23.164:80 · test.app.panagram.fr

2026-01-08 22:52

HTTP/1.1 302 Found
date: Thu, 08 Jan 2026 22:52:54 GMT
content-type: text/html; charset=utf-8
transfer-encoding: chunked
server: OVHcloud
x-powered-by: PHP/8.2
cache-control: max-age=0, must-revalidate, private
x-debug-token: 155862
x-debug-token-link: http://test.app.panagram.fr/_profiler/155862
x-robots-tag: noindex
expires: Thu, 08 Jan 2026 22:52:54 GMT
set-cookie: sf_redirect=%7B%22token%22%3A%22155862%22%2C%22route%22%3A%22home%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CSecurityController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fhome%5C%2Fpanagri%5C%2Ftest%5C%2Fsrc%5C%2FController%5C%2FSecurityController.php%22%2C%22line%22%3A34%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; httponly; samesite=lax
set-cookie: PHPSESSID=374c6b8b19c342b7189cf49af197ecb1; expires=Thu, 08 Jan 2026 23:52:54 GMT; Max-Age=3600; path=/; httponly; samesite=lax
location: /login
x-iplb-request-id: 40E14BF6:EBA6_058717A4:0050_69603545_54A28:5AAB
x-iplb-instance: 59593
connection: close

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2026-01-08 by HttpPlugin

Create report

Open service 2001:41d0:301::100:443 · test.app.panagram.fr

2026-01-02 21:22

HTTP/1.1 302 Found
Date: Fri, 02 Jan 2026 21:22:18 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Server: OVHcloud
X-Powered-By: PHP/8.2
Cache-Control: max-age=0, must-revalidate, private
X-Debug-Token: b6a3d4
X-Debug-Token-Link: https://test.app.panagram.fr/_profiler/b6a3d4
X-Robots-Tag: noindex
Expires: Fri, 02 Jan 2026 21:22:18 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%22b6a3d4%22%2C%22route%22%3A%22home%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CSecurityController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fhome%5C%2Fpanagri%5C%2Ftest%5C%2Fsrc%5C%2FController%5C%2FSecurityController.php%22%2C%22line%22%3A34%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Set-Cookie: PHPSESSID=f1341ca4709f148446522f23bec42f19; expires=Fri, 02 Jan 2026 22:22:18 GMT; Max-Age=3600; path=/; secure; httponly; samesite=lax
Location: /login

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2026-01-02 by HttpPlugin

Create report

Open service 2001:41d0:301::100:443 · test.app.panagram.fr

2025-12-22 21:10

HTTP/1.1 302 Found
Date: Mon, 22 Dec 2025 21:10:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Server: OVHcloud
X-Powered-By: PHP/8.2
Cache-Control: max-age=0, must-revalidate, private
X-Debug-Token: 1e8b01
X-Debug-Token-Link: https://test.app.panagram.fr/_profiler/1e8b01
X-Robots-Tag: noindex
Expires: Mon, 22 Dec 2025 21:10:06 GMT
Set-Cookie: sf_redirect=%7B%22token%22%3A%221e8b01%22%2C%22route%22%3A%22home%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CSecurityController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fhome%5C%2Fpanagri%5C%2Ftest%5C%2Fsrc%5C%2FController%5C%2FSecurityController.php%22%2C%22line%22%3A34%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Set-Cookie: PHPSESSID=32a162d505c0d28a3bfae4b796bf7f23; expires=Mon, 22 Dec 2025 22:10:06 GMT; Max-Age=3600; path=/; secure; httponly; samesite=lax
Location: /login

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2025-12-22 by HttpPlugin

Create report

test.app.panagram.fr

Fingerprint:

85ed26f6f80e035ce2ef86c8edffdb962eb44745f3cfc512e0da20e1ae4d9a61

CN:

test.app.panagram.fr

Key:

ECDSA-256

Issuer:

Not before:

2025-12-25 02:41

Not after:

2026-03-25 02:41

test.app.panagram.fr

Fingerprint:

ee7d99a998b4e1621c076ae03558cd4e7dca259dfa40e7800b8c4d80099cb1bc

CN:

test.app.panagram.fr

Key:

ECDSA-256

Issuer:

Not before:

2025-10-14 02:56

Not after:

2026-01-12 02:56

Domain summary

test.app.panagram.fr 5

1 recorded

IP summary

2001:41d0:301::100 1 5.135.23.164 1

2 recorded

Domain test.app.panagram.fr

France

Software information

Symfony developement panel enabled

Symfony developement panel enabled

Create report

Create report

Create report

Create report

test.app.panagram.fr

test.app.panagram.fr

Domain summary

IP summary