LeakIX - Host www.cnu.dfirma.pl

Domain www.cnu.dfirma.pl

Poland

dhosting.pl Sp. z o.o.

Software information

LiteSpeed

tcp/443

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 109.95.158.64
Domain: www.cnu.dfirma.pl
Port: 443
URL: https://www.cnu.dfirma.pl

First seen 2026-01-13 13:41
Last seen 2026-02-02 09:25
Open for 19 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f877264e2710e710900781fa3b5254e9c9852
```
Found 11 files trough .DS_Store spidering:

/banners
/banners/dynamic
/banners/dynamic/300x250
/brand
/notifications
/tickets
/tickets/pdf
/tickets/qr
/uploads
/uploads/products
/uploads/static
```
  Found on 2026-02-02 09:25
Create report
Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 109.95.158.64
Domain: www.cnu.dfirma.pl
Port: 443
URL: https://www.cnu.dfirma.pl/_profiler/empty/search/results

First seen 2026-01-13 13:41
Last seen 2026-02-02 09:25
Open for 19 days
- Fingerprint: 407cf4363b0e62fafca67e07a3ee93e7a3ee93e7a3ee93e7a3ee93e7a3ee93e7
```
Symfony profiler enabled:
https://www.cnu.dfirma.pl/_profiler/empty/search/results
```
  Found on 2026-02-02 09:25
Create report

Open service 109.95.158.64:443 · www.cnu.dfirma.pl

2026-01-23 11:15

HTTP/1.1 200 OK
Connection: close
cache-control: max-age=0, must-revalidate, private
content-type: text/html; charset=UTF-8
link: </assets/styles/bootstrap.min-t3cJZQD.css>; rel="preload"; as="style",</assets/styles/all-SKaydp6.css>; rel="preload"; as="style",</assets/styles/animate-FduGh68.css>; rel="preload"; as="style",</assets/styles/nice-select-r7__qlU.css>; rel="preload"; as="style",</assets/styles/swiper-bundle.min-qs1ys7j.css>; rel="preload"; as="style",</assets/styles/magnific-popup-MFetuDR.css>; rel="preload"; as="style",</assets/styles/meanmenu.min-jVIurFO.css>; rel="preload"; as="style",</assets/styles/style-g3T8D3i.css>; rel="preload"; as="style",</assets/styles/app-aIXrhE2.css>; rel="preload"; as="style"
x-debug-token: 443eff
x-debug-token-link: https://www.cnu.dfirma.pl/_profiler/443eff
x-robots-tag: noindex
expires: Fri, 23 Jan 2026 11:15:58 GMT
set-cookie: main_deauth_profile_token=443eff; path=/; httponly; samesite=lax; secure
set-cookie: main_auth_profile_token=deleted; expires=Thu, 23 Jan 2025 11:15:57 GMT; Max-Age=0; path=/; httponly; secure
transfer-encoding: chunked
date: Fri, 23 Jan 2026 11:15:58 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

Found 2026-01-23 by HttpPlugin

Create report

Open service 109.95.158.64:443 · www.cnu.dfirma.pl

2026-01-22 11:58

HTTP/1.1 200 OK
Connection: close
cache-control: max-age=0, must-revalidate, private
content-type: text/html; charset=UTF-8
link: </assets/styles/bootstrap.min-t3cJZQD.css>; rel="preload"; as="style",</assets/styles/all-SKaydp6.css>; rel="preload"; as="style",</assets/styles/animate-FduGh68.css>; rel="preload"; as="style",</assets/styles/nice-select-r7__qlU.css>; rel="preload"; as="style",</assets/styles/swiper-bundle.min-qs1ys7j.css>; rel="preload"; as="style",</assets/styles/magnific-popup-MFetuDR.css>; rel="preload"; as="style",</assets/styles/meanmenu.min-jVIurFO.css>; rel="preload"; as="style",</assets/styles/style-g3T8D3i.css>; rel="preload"; as="style",</assets/styles/app-aIXrhE2.css>; rel="preload"; as="style"
x-debug-token: 556561
x-debug-token-link: https://www.cnu.dfirma.pl/_profiler/556561
x-robots-tag: noindex
expires: Thu, 22 Jan 2026 11:58:34 GMT
set-cookie: main_deauth_profile_token=556561; path=/; httponly; samesite=lax; secure
set-cookie: main_auth_profile_token=deleted; expires=Wed, 22 Jan 2025 11:58:33 GMT; Max-Age=0; path=/; httponly; secure
transfer-encoding: chunked
date: Thu, 22 Jan 2026 11:58:34 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

Found 2026-01-22 by HttpPlugin

Create report

cnu.dfirma.plwww.cnu.dfirma.pl

Fingerprint:

6c74d2737ae355087e04e399f63d17b620051b9da1e3aacb67150af35198c98a

CN:

cnu.dfirma.pl

Key:

RSA-2048

Issuer:

R12

Not before:

2026-01-13 12:41

Not after:

2026-04-13 12:41

Domain summary

www.cnu.dfirma.pl 3

1 recorded

IP summary

109.95.158.64 2

1 recorded

Domain www.cnu.dfirma.pl

Poland

Software information

MacOS file listing through .DS_Store file

Symfony developement panel enabled

Create report

Create report

cnu.dfirma.plwww.cnu.dfirma.pl

Domain summary

IP summary