Domain www.fretadom.com
France
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2024-08-17 04:30
Last seen 2024-09-06 13:42
Open for 20 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e9aa81cf7d5302c3d85ee54a1eb97cce5Found 6 files trough .DS_Store spidering: /build /bundles /bundles/easyadmin /images /media /media/cache
Found on 2024-09-06 13:42
-
-
MacOS file listing through .DS_Store file
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
First seen 2024-08-17 04:30
Last seen 2024-09-06 15:59
Open for 20 days-
Severity: low
Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e9aa81cf7d5302c3d85ee54a1eb97cce5Found 6 files trough .DS_Store spidering: /build /bundles /bundles/easyadmin /images /media /media/cache
Found on 2024-09-06 15:59
-
-
Symfony developement panel enabled
The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
- System configuration
- Request log, including POST request with credentials and/or api keys
IP: 146.59.209.152
Domain: www.fretadom.com
Port: 80
URL: http://www.fretadom.com/_profiler/empty/search/resultsFirst seen 2024-08-17 04:30
Last seen 2024-09-06 13:42
Open for 20 days-
Fingerprint: 407cf4363b0e62fafca67e071856e8b61856e8b61856e8b61856e8b61856e8b6
Symfony profiler enabled: http://www.fretadom.com/_profiler/empty/search/results
Found on 2024-09-06 13:42
-
Symfony developement panel enabled
The application has Symfony profiling enabled.
It enables an attacker to access the following sensitive content :
- System configuration
- Request log, including POST request with credentials and/or api keys
IP: 2001:41d0:301::31
Domain: www.fretadom.com
Port: 443
URL: https://www.fretadom.com/_profiler/empty/search/resultsFirst seen 2024-08-17 04:30
Last seen 2024-09-04 17:40
Open for 18 days-
Fingerprint: 407cf4363b0e62fafca67e07f6ed4febf6ed4febf6ed4febf6ed4febf6ed4feb
Symfony profiler enabled: https://www.fretadom.com/_profiler/empty/search/results
Found on 2024-09-04 17:40