Axigen-Webproxy
tcp/443
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: medium
Fingerprint: 5f32cf5d6962f09cd4047824d4047824166c30948899c5477fffa8a0e90334e9
Found 35 files trough .DS_Store spidering: /css /fonts /images /js /login_standard.css /private /private/ajax /private/ajax/Classes /private/ajax/i18N /private/ajax/Json /private/ajax/Libraries /private/ajax/Resources /private/ajax/Resources/css /private/ajax/Resources/css/theme-breeze /private/ajax/Resources/css/theme-neutral /private/ajax/Resources/css/theme-ocean /private/ajax/Resources/images /private/ajax/Resources/sounds /private/ajax/Soap /private/mobile /private/scripts /private/standard /private/standard/css /private/standard/css/breeze /private/standard/css/neutral /private/standard/css/ocean /private/standard/images /private/standard/images/breeze /private/standard/images/default /private/standard/images/neutral /private/standard/images/ocean /private/standard/js /private/standard/lang /sso /sso/portal
Severity: low
Fingerprint: 5f32cf5d6962f09c026392ab026392ab8b46cfcb2e13b9d8d954bd69a036691a
Found 7 files trough .DS_Store spidering: /css /fonts /images /js /login_standard.css /private /sso
Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea976de6499d7f5541adf44261b6de065a5
Found 23 files trough .DS_Store spidering: /css /fonts /images /js /login_standard.css /private /private/ajax /private/ajax/Classes /private/ajax/i18N /private/ajax/Json /private/ajax/Libraries /private/ajax/Resources /private/ajax/Resources/css /private/ajax/Resources/css/theme-breeze /private/ajax/Resources/css/theme-neutral /private/ajax/Resources/css/theme-ocean /private/ajax/Resources/images /private/ajax/Resources/sounds /private/ajax/Soap /private/mobile /private/scripts /private/standard /sso
Severity: low
Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e45e7880e7dc6b9e7b6cc17aebfcf7b04e2
Found 30 files trough .DS_Store spidering: /css /fonts /images /js /login_standard.css /private /private/ajax /private/ajax/Classes /private/ajax/i18N /private/ajax/Json /private/ajax/Libraries /private/ajax/Resources /private/ajax/Resources/css /private/ajax/Resources/css/theme-breeze /private/ajax/Resources/css/theme-neutral /private/ajax/Resources/css/theme-ocean /private/ajax/Resources/images /private/ajax/Resources/sounds /private/ajax/Soap /private/mobile /private/scripts /private/standard /private/standard/css /private/standard/css/breeze /private/standard/css/neutral /private/standard/css/ocean /private/standard/images /private/standard/js /private/standard/lang /sso
Open service 213.146.208.20:443 · webmail.businessmail.pt
2024-09-14 09:27
HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate, proxy-revalidate Pragma: no-cache Last-Modified: Sat, 14 Sep 2024 09:27:19 GMT Expires: Sat, 7 Sep 2024 09:27:19 GMT Server: Axigen-Webproxy Date: Sat, 14 Sep 2024 09:27:19 GMT Content-Type: text/html; charset=utf-8 X-Frame-Options: sameorigin X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'nonce-AXI-SCRIPT-1295550' 'strict-dynamic'; style-src 'self' 'unsafe-inline' Connection: Close Page title: ONI Mobile WebMail <!DOCTYPE html> <html> <head> <meta charset="utf-8" /> <meta name="viewport" content="initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no, width=device-width"> <meta name="version" content="10.3.3.19.0"> <title>ONI Mobile WebMail</title> <link rel="shortcut icon" href="/branding_show_photo.hsp?elementName=faviconPhoto" /> <!-- Include custom login styles --> <link rel="StyleSheet" type="text/css" href="css/style_mobile.css?v=1033190" /> <link rel="StyleSheet" type="text/css" href="css/axigen-web-fonts.css?v=1033190" /> <!-- Login JS functions --> <script type="text/javascript" nonce="AXI-SCRIPT-1295550" src="js/lib_login.js?v=1033190"></script> <script type="text/javascript" nonce="AXI-SCRIPT-1295550" src="private/standard/js/lib_axiprototype.js?v=1033190"></script> <!-- Include security patches --> <script type="text/javascript" nonce="AXI-SCRIPT-1295550" src="js/CSP/CSP.js?v=1033190"></script> </head> <body> <div class="main"> <div class="logo" style="background-image: url(/branding_show_photo.hsp?elementName=mobilePublicPhoto)"></div> <h1>ONI Mobile WebMail</h1> <h2>Log in to your ONI email account</h2> <form action="/?action=login&mobile=yes" method="post" onsubmit="return validateMobileForm();"> <div id="loginForm"> <div class="formOption"> <input required type="text" name="username" id="username" class="textfield" autocapitalize="off" /> <label class="darkText">Username</label> </div> <div class="formOption"> <input required type="password" name="password" id="password" class="textfield" /> <label class="darkText">Password</label> </div> <div class="formOption" id="captcha-img" style="height: auto; display: none"> <img src="" class="x-axi-captcha-image"> </div> <div class="formOption" id="captcha-text" style="display: none"> <input type="hidden" name="captchaId" value=""> <input type="text" name="captchaText" id="captchaText" class="textfield" autocapitalize="off" /> <label class="darkText">Enter the text in the image</label> </div> <div class="submit_input"><button type="submit" name="login" value="Login" onclick="manageLoginData();"/>Log in</button</div> </div> </form> </div> <div class="footer"> <div>Powered by <a target="_blank" href="https://www.axigen.com/?utm_source=product&utm_medium=webmail&utm_campaign=mobile_webmail_login_page">Axigen</a></div> <div>Email, calendaring and collaboration<br />Total privacy, high availability and scalability</div> </div> <script type="text/javascript" nonce="AXI-SCRIPT-1295550"> <!-- window.addEventListener('load', function() { fillLogin(); }); --> </script> <script nonce="AXI-SCRIPT-1295550"> // Replaces <body onload="..."> window.addEventListener('load', function () { checkEmptyFields(); }); CSP.fixInlineClickHandlers(); CSP.fixInlineEventHandlers('submit'); // Activate CAPTCHA Captcha.init({ onShow: function () { Captcha.form.captchaText.required = true; } }); </script> </body> </html>
Open service 213.146.208.20:443 · webmail.businessmail.pt
2024-09-12 10:17
HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate, proxy-revalidate Pragma: no-cache Last-Modified: Thu, 12 Sep 2024 10:17:06 GMT Expires: Thu, 5 Sep 2024 10:17:06 GMT Server: Axigen-Webproxy Date: Thu, 12 Sep 2024 10:17:06 GMT Content-Type: text/html; charset=utf-8 X-Frame-Options: sameorigin X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'nonce-AXI-SCRIPT-1317363' 'strict-dynamic'; style-src 'self' 'unsafe-inline' Connection: Close Page title: ONI Mobile WebMail <!DOCTYPE html> <html> <head> <meta charset="utf-8" /> <meta name="viewport" content="initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no, width=device-width"> <meta name="version" content="10.3.3.19.0"> <title>ONI Mobile WebMail</title> <link rel="shortcut icon" href="/branding_show_photo.hsp?elementName=faviconPhoto" /> <!-- Include custom login styles --> <link rel="StyleSheet" type="text/css" href="css/style_mobile.css?v=1033190" /> <link rel="StyleSheet" type="text/css" href="css/axigen-web-fonts.css?v=1033190" /> <!-- Login JS functions --> <script type="text/javascript" nonce="AXI-SCRIPT-1317363" src="js/lib_login.js?v=1033190"></script> <script type="text/javascript" nonce="AXI-SCRIPT-1317363" src="private/standard/js/lib_axiprototype.js?v=1033190"></script> <!-- Include security patches --> <script type="text/javascript" nonce="AXI-SCRIPT-1317363" src="js/CSP/CSP.js?v=1033190"></script> </head> <body> <div class="main"> <div class="logo" style="background-image: url(/branding_show_photo.hsp?elementName=mobilePublicPhoto)"></div> <h1>ONI Mobile WebMail</h1> <h2>Log in to your ONI email account</h2> <form action="/?action=login&mobile=yes" method="post" onsubmit="return validateMobileForm();"> <div id="loginForm"> <div class="formOption"> <input required type="text" name="username" id="username" class="textfield" autocapitalize="off" /> <label class="darkText">Username</label> </div> <div class="formOption"> <input required type="password" name="password" id="password" class="textfield" /> <label class="darkText">Password</label> </div> <div class="formOption" id="captcha-img" style="height: auto; display: none"> <img src="" class="x-axi-captcha-image"> </div> <div class="formOption" id="captcha-text" style="display: none"> <input type="hidden" name="captchaId" value=""> <input type="text" name="captchaText" id="captchaText" class="textfield" autocapitalize="off" /> <label class="darkText">Enter the text in the image</label> </div> <div class="submit_input"><button type="submit" name="login" value="Login" onclick="manageLoginData();"/>Log in</button</div> </div> </form> </div> <div class="footer"> <div>Powered by <a target="_blank" href="https://www.axigen.com/?utm_source=product&utm_medium=webmail&utm_campaign=mobile_webmail_login_page">Axigen</a></div> <div>Email, calendaring and collaboration<br />Total privacy, high availability and scalability</div> </div> <script type="text/javascript" nonce="AXI-SCRIPT-1317363"> <!-- window.addEventListener('load', function() { fillLogin(); }); --> </script> <script nonce="AXI-SCRIPT-1317363"> // Replaces <body onload="..."> window.addEventListener('load', function () { checkEmptyFields(); }); CSP.fixInlineClickHandlers(); CSP.fixInlineEventHandlers('submit'); // Activate CAPTCHA Captcha.init({ onShow: function () { Captcha.form.captchaText.required = true; } }); </script> </body> </html>
Open service 213.146.208.20:443 · webmail.businessmail.pt
2024-09-10 13:21
HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate, proxy-revalidate Pragma: no-cache Last-Modified: Tue, 10 Sep 2024 13:21:50 GMT Expires: Tue, 3 Sep 2024 13:21:50 GMT Server: Axigen-Webproxy Date: Tue, 10 Sep 2024 13:21:50 GMT Content-Type: text/html; charset=utf-8 X-Frame-Options: sameorigin X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'nonce-AXI-SCRIPT-1145368' 'strict-dynamic'; style-src 'self' 'unsafe-inline' Connection: Close Page title: ONI Mobile WebMail <!DOCTYPE html> <html> <head> <meta charset="utf-8" /> <meta name="viewport" content="initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no, width=device-width"> <meta name="version" content="10.3.3.19.0"> <title>ONI Mobile WebMail</title> <link rel="shortcut icon" href="/branding_show_photo.hsp?elementName=faviconPhoto" /> <!-- Include custom login styles --> <link rel="StyleSheet" type="text/css" href="css/style_mobile.css?v=1033190" /> <link rel="StyleSheet" type="text/css" href="css/axigen-web-fonts.css?v=1033190" /> <!-- Login JS functions --> <script type="text/javascript" nonce="AXI-SCRIPT-1145368" src="js/lib_login.js?v=1033190"></script> <script type="text/javascript" nonce="AXI-SCRIPT-1145368" src="private/standard/js/lib_axiprototype.js?v=1033190"></script> <!-- Include security patches --> <script type="text/javascript" nonce="AXI-SCRIPT-1145368" src="js/CSP/CSP.js?v=1033190"></script> </head> <body> <div class="main"> <div class="logo" style="background-image: url(/branding_show_photo.hsp?elementName=mobilePublicPhoto)"></div> <h1>ONI Mobile WebMail</h1> <h2>Log in to your ONI email account</h2> <form action="/?action=login&mobile=yes" method="post" onsubmit="return validateMobileForm();"> <div id="loginForm"> <div class="formOption"> <input required type="text" name="username" id="username" class="textfield" autocapitalize="off" /> <label class="darkText">Username</label> </div> <div class="formOption"> <input required type="password" name="password" id="password" class="textfield" /> <label class="darkText">Password</label> </div> <div class="formOption" id="captcha-img" style="height: auto; display: none"> <img src="" class="x-axi-captcha-image"> </div> <div class="formOption" id="captcha-text" style="display: none"> <input type="hidden" name="captchaId" value=""> <input type="text" name="captchaText" id="captchaText" class="textfield" autocapitalize="off" /> <label class="darkText">Enter the text in the image</label> </div> <div class="submit_input"><button type="submit" name="login" value="Login" onclick="manageLoginData();"/>Log in</button</div> </div> </form> </div> <div class="footer"> <div>Powered by <a target="_blank" href="https://www.axigen.com/?utm_source=product&utm_medium=webmail&utm_campaign=mobile_webmail_login_page">Axigen</a></div> <div>Email, calendaring and collaboration<br />Total privacy, high availability and scalability</div> </div> <script type="text/javascript" nonce="AXI-SCRIPT-1145368"> <!-- window.addEventListener('load', function() { fillLogin(); }); --> </script> <script nonce="AXI-SCRIPT-1145368"> // Replaces <body onload="..."> window.addEventListener('load', function () { checkEmptyFields(); }); CSP.fixInlineClickHandlers(); CSP.fixInlineEventHandlers('submit'); // Activate CAPTCHA Captcha.init({ onShow: function () { Captcha.form.captchaText.required = true; } }); </script> </body> </html>
Open service 213.146.208.20:443 · webmail.businessmail.pt
2024-09-08 05:53
HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate, proxy-revalidate Pragma: no-cache Last-Modified: Sun, 8 Sep 2024 05:53:09 GMT Expires: Sun, 1 Sep 2024 05:53:09 GMT Server: Axigen-Webproxy Date: Sun, 8 Sep 2024 05:53:09 GMT Content-Type: text/html; charset=utf-8 X-Frame-Options: sameorigin X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'nonce-AXI-SCRIPT-1395372' 'strict-dynamic'; style-src 'self' 'unsafe-inline' Connection: Close Page title: ONI Mobile WebMail <!DOCTYPE html> <html> <head> <meta charset="utf-8" /> <meta name="viewport" content="initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no, width=device-width"> <meta name="version" content="10.3.3.19.0"> <title>ONI Mobile WebMail</title> <link rel="shortcut icon" href="/branding_show_photo.hsp?elementName=faviconPhoto" /> <!-- Include custom login styles --> <link rel="StyleSheet" type="text/css" href="css/style_mobile.css?v=1033190" /> <link rel="StyleSheet" type="text/css" href="css/axigen-web-fonts.css?v=1033190" /> <!-- Login JS functions --> <script type="text/javascript" nonce="AXI-SCRIPT-1395372" src="js/lib_login.js?v=1033190"></script> <script type="text/javascript" nonce="AXI-SCRIPT-1395372" src="private/standard/js/lib_axiprototype.js?v=1033190"></script> <!-- Include security patches --> <script type="text/javascript" nonce="AXI-SCRIPT-1395372" src="js/CSP/CSP.js?v=1033190"></script> </head> <body> <div class="main"> <div class="logo" style="background-image: url(/branding_show_photo.hsp?elementName=mobilePublicPhoto)"></div> <h1>ONI Mobile WebMail</h1> <h2>Log in to your ONI email account</h2> <form action="/?action=login&mobile=yes" method="post" onsubmit="return validateMobileForm();"> <div id="loginForm"> <div class="formOption"> <input required type="text" name="username" id="username" class="textfield" autocapitalize="off" /> <label class="darkText">Username</label> </div> <div class="formOption"> <input required type="password" name="password" id="password" class="textfield" /> <label class="darkText">Password</label> </div> <div class="formOption" id="captcha-img" style="height: auto; display: none"> <img src="" class="x-axi-captcha-image"> </div> <div class="formOption" id="captcha-text" style="display: none"> <input type="hidden" name="captchaId" value=""> <input type="text" name="captchaText" id="captchaText" class="textfield" autocapitalize="off" /> <label class="darkText">Enter the text in the image</label> </div> <div class="submit_input"><button type="submit" name="login" value="Login" onclick="manageLoginData();"/>Log in</button</div> </div> </form> </div> <div class="footer"> <div>Powered by <a target="_blank" href="https://www.axigen.com/?utm_source=product&utm_medium=webmail&utm_campaign=mobile_webmail_login_page">Axigen</a></div> <div>Email, calendaring and collaboration<br />Total privacy, high availability and scalability</div> </div> <script type="text/javascript" nonce="AXI-SCRIPT-1395372"> <!-- window.addEventListener('load', function() { fillLogin(); }); --> </script> <script nonce="AXI-SCRIPT-1395372"> // Replaces <body onload="..."> window.addEventListener('load', function () { checkEmptyFields(); }); CSP.fixInlineClickHandlers(); CSP.fixInlineEventHandlers('submit'); // Activate CAPTCHA Captcha.init({ onShow: function () { Captcha.form.captchaText.required = true; } }); </script> </body> </html>
Open service 213.146.208.20:443 · webmail.businessmail.pt
2024-08-16 17:05
HTTP/1.1 200 OK Cache-Control: no-cache, no-store, must-revalidate, proxy-revalidate Pragma: no-cache Last-Modified: Fri, 16 Aug 2024 17:05:54 GMT Expires: Fri, 9 Aug 2024 17:05:54 GMT Server: Axigen-Webproxy Date: Fri, 16 Aug 2024 17:05:54 GMT Content-Type: text/html; charset=utf-8 X-Frame-Options: sameorigin X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'nonce-AXI-SCRIPT-1796839' 'strict-dynamic'; style-src 'self' 'unsafe-inline' Connection: Close Page title: ONI Mobile WebMail <!DOCTYPE html> <html> <head> <meta charset="utf-8" /> <meta name="viewport" content="initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no, width=device-width"> <meta name="version" content="10.3.3.19.0"> <title>ONI Mobile WebMail</title> <link rel="shortcut icon" href="/branding_show_photo.hsp?elementName=faviconPhoto" /> <!-- Include custom login styles --> <link rel="StyleSheet" type="text/css" href="css/style_mobile.css?v=1033190" /> <link rel="StyleSheet" type="text/css" href="css/axigen-web-fonts.css?v=1033190" /> <!-- Login JS functions --> <script type="text/javascript" nonce="AXI-SCRIPT-1796839" src="js/lib_login.js?v=1033190"></script> <script type="text/javascript" nonce="AXI-SCRIPT-1796839" src="private/standard/js/lib_axiprototype.js?v=1033190"></script> <!-- Include security patches --> <script type="text/javascript" nonce="AXI-SCRIPT-1796839" src="js/CSP/CSP.js?v=1033190"></script> </head> <body> <div class="main"> <div class="logo" style="background-image: url(/branding_show_photo.hsp?elementName=mobilePublicPhoto)"></div> <h1>ONI Mobile WebMail</h1> <h2>Log in to your ONI email account</h2> <form action="/?action=login&mobile=yes" method="post" onsubmit="return validateMobileForm();"> <div id="loginForm"> <div class="formOption"> <input required type="text" name="username" id="username" class="textfield" autocapitalize="off" /> <label class="darkText">Username</label> </div> <div class="formOption"> <input required type="password" name="password" id="password" class="textfield" /> <label class="darkText">Password</label> </div> <div class="formOption" id="captcha-img" style="height: auto; display: none"> <img src="" class="x-axi-captcha-image"> </div> <div class="formOption" id="captcha-text" style="display: none"> <input type="hidden" name="captchaId" value=""> <input type="text" name="captchaText" id="captchaText" class="textfield" autocapitalize="off" /> <label class="darkText">Enter the text in the image</label> </div> <div class="submit_input"><button type="submit" name="login" value="Login" onclick="manageLoginData();"/>Log in</button</div> </div> </form> </div> <div class="footer"> <div>Powered by <a target="_blank" href="https://www.axigen.com/?utm_source=product&utm_medium=webmail&utm_campaign=mobile_webmail_login_page">Axigen</a></div> <div>Email, calendaring and collaboration<br />Total privacy, high availability and scalability</div> </div> <script type="text/javascript" nonce="AXI-SCRIPT-1796839"> <!-- window.addEventListener('load', function() { fillLogin(); }); --> </script> <script nonce="AXI-SCRIPT-1796839"> // Replaces <body onload="..."> window.addEventListener('load', function () { checkEmptyFields(); }); CSP.fixInlineClickHandlers(); CSP.fixInlineEventHandlers('submit'); // Activate CAPTCHA Captcha.init({ onShow: function () { Captcha.form.captchaText.required = true; } }); </script> </body> </html>
Open service 213.146.208.20:80 · webmail.businessmail.pt
2024-08-16 17:05
HTTP/1.1 302 Found Cache-Control: no-cache Content-length: 0 Location: https://webmail.businessmail.pt/ Connection: close