Domain www.xam.nz
Netherlands
Software information
cloudflare
tcp/443 tcp/80 tcp/8443
-
CloudPanel is outdated
The following CloudPanel instance is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible since it could lead to RCE ( Remote Code Execution ). Those vulnerabilities are currently used in ransomware campaign and could damage your network.
Reference:
First seen 2023-08-19 05:15
Last seen 2024-12-20 23:39
Open for 489 days-
Severity: critical
Fingerprint: 8bb944476a146f564acb1065676cae8c22dc3d2e6a7521e86a7521e86a7521e8Found vulnerable CloudPanel: Affected by CVE-2023-35885 Affected by CVE-2023-36630 Affected by CVE-2023-33747
Found on 2024-12-20 23:39
-
-
Open service 188.114.97.3:8443 · www.xam.nz
2024-12-20 23:39
HTTP/1.1 302 Found Date: Fri, 20 Dec 2024 23:39:55 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private location: /login expires: Fri, 20 Dec 2024 23:39:55 GMT Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax Set-Cookie: cloudpanel=bsdvh93m7i2mqrhda3has3fe10; path=/; secure; httponly; samesite=lax cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zTW%2BUrqWzCo4GqDMBv8Wr1X8RWDfToCIeG2SC5pRaIG6yBMvaJrMeGOlsNhD1L7xHbweKougT1YD24YzYmI3oL%2B8u82Yb2jsWZyYmzQRP34t7R38IZERZ2V8aw%2FQ"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=0; includeSubDomains; preload X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 8f537975fcc0dbdb-FRA alt-svc: h3=":8443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=894&min_rtt=894&rtt_var=336&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3081&recv_bytes=552&delivery_rate=4842809&cwnd=252&unsent_bytes=0&cid=13bbc80a3562220d&ts=93&x=0" Page title: Redirecting to /login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/login'" /> <title>Redirecting to /login</title> </head> <body> Redirecting to <a href="/login">/login</a>. </body> </html>Found one day ago by HttpPluginCreate report
-
Open service 2a06:98c1:3120::3:443 · www.xam.nz
2024-12-19 05:17
HTTP/1.1 301 Moved Permanently Date: Thu, 19 Dec 2024 05:17:13 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close location: https://xam.nz/ x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block x-permitted-cross-domain-policies: master-only referrer-policy: same-origin cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DvIjBuWYzzKlM9w8CqFleh9%2F2TFPjHM709f8v2R%2FBeRh80Z3NlHs5nmcs5g6rWUFiVQ%2BEM0sVrZeMSXo0%2F3%2FJXcx8a%2Bl8gRS2vdcKU151E%2BFZJhkAE2cNv8A2Oqtu1n%2F%2Fip7PXvSY%2FdQ"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=0; includeSubDomains; preload Server: cloudflare CF-RAY: 8f44ecd0ccb5636b-LHR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=2373&min_rtt=2301&rtt_var=914&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3082&recv_bytes=549&delivery_rate=1757496&cwnd=252&unsent_bytes=0&cid=7a4f8a16455b1eba&ts=85&x=0" Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>Found 2024-12-19 by HttpPluginCreate report
-
Open service 2a06:98c1:3121::3:443 · www.xam.nz
2024-12-19 05:17
HTTP/1.1 301 Moved Permanently Date: Thu, 19 Dec 2024 05:17:13 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close location: https://xam.nz/ x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block x-permitted-cross-domain-policies: master-only referrer-policy: same-origin cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=quyiasFtdPc7dNXNa3duhr2Dmoni6skVCwCMaL6ZsPQOt4OjvgoLBN2usH8H072lrvK0hUFFdXzjHHH80WOsfS5Dh%2B4cAB3Yj8CJ96kEen8mSb78wAPp9TVbWO7WBisI6MM7PxFOdTRE"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=0; includeSubDomains; preload Server: cloudflare CF-RAY: 8f44ecd039f1641f-LHR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1830&min_rtt=1812&rtt_var=692&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3081&recv_bytes=549&delivery_rate=2231788&cwnd=252&unsent_bytes=0&cid=c8659a6e6d3a3a8a&ts=68&x=0" Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>Found 2024-12-19 by HttpPluginCreate report
-
Open service 2a06:98c1:3121::3:80 · www.xam.nz
2024-12-19 05:17
HTTP/1.1 301 Moved Permanently Date: Thu, 19 Dec 2024 05:17:13 GMT Content-Type: text/html Content-Length: 167 Connection: close Cache-Control: max-age=3600 Expires: Thu, 19 Dec 2024 06:17:13 GMT Location: https://www.xam.nz/ Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2TXLEqbEKH2WjI1VD0eRZ4CFionXidSTuqHaiAdiuwyYSlOOUdNeIrMWbDZim1DGp3d5sdygy5f91%2BKVfF4FEuqbe94LCmiz7ejWV1CjbMJK8ioWt0n3si4JoexH22m1%2FT1zUdn9F%2FRJ"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 8f44ecced82a6382-LHR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=2491&min_rtt=2491&rtt_var=1245&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=205&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0" Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>cloudflare</center> </body> </html>Found 2024-12-19 by HttpPluginCreate report
-
Open service 188.114.97.3:8443 · www.xam.nz
2024-12-19 05:17
HTTP/1.1 302 Found Date: Thu, 19 Dec 2024 05:17:13 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private location: /login expires: Thu, 19 Dec 2024 05:17:13 GMT Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax Set-Cookie: cloudpanel=qvn9uq8ri6q5c7hk1g13b64iu9; path=/; secure; httponly; samesite=lax cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z%2B6XvMgpbj8sv6csGhJVfA8Q%2FsLVZgviZjPe%2B2nB6r7MSN0M0NNTrfR7Y3RN0Z0DxeIIUNqZ%2BBlb2eLFHiphoGoPPUb8CF%2FUBvQ%2BKMMM4rKtIb%2F5T%2FOGNMyIPyx9"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=0; includeSubDomains; preload X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 8f44ecd16a81d9d0-FRA alt-svc: h3=":8443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=831&min_rtt=831&rtt_var=311&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3081&recv_bytes=552&delivery_rate=5227436&cwnd=252&unsent_bytes=0&cid=008790c53c5795c1&ts=120&x=0" Page title: Redirecting to /login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/login'" /> <title>Redirecting to /login</title> </head> <body> Redirecting to <a href="/login">/login</a>. </body> </html>Found 2024-12-19 by HttpPluginCreate report
-
Open service 2a06:98c1:3120::3:80 · www.xam.nz
2024-12-19 05:17
HTTP/1.1 301 Moved Permanently Date: Thu, 19 Dec 2024 05:17:13 GMT Content-Type: text/html Content-Length: 167 Connection: close Cache-Control: max-age=3600 Expires: Thu, 19 Dec 2024 06:17:13 GMT Location: https://www.xam.nz/ Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jNIjjmtFIsVnHiyk5Hqr33EjwdetuqXXp%2BqfYGhGGTKv%2FBfD53ribWnsoiC46ncSPfGBDfRkWI%2BeF7FvLGgkRHBoz0xcRyJdLSZRiuje2NnLKEmv3lnzo7vrdhUc5m4g88Hw%2FWlvI5Yw"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 8f44eccece009fb1-AMS alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1577&min_rtt=1577&rtt_var=788&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=205&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0" Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>cloudflare</center> </body> </html>Found 2024-12-19 by HttpPluginCreate report
-
Open service 188.114.97.3:443 · www.xam.nz
2024-12-19 05:17
HTTP/1.1 301 Moved Permanently Date: Thu, 19 Dec 2024 05:17:13 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close location: https://xam.nz/ x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block x-permitted-cross-domain-policies: master-only referrer-policy: same-origin cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tf9%2FvY1n6sLG856YgrC0PE%2Fzb49Ek2u6teIaYdRzuX0V9SgTIt9LrewH9osFlbKTcvJ9hza3VleLqY3eWxCKBKmFd8GNTxPVU%2BG7Wx51AT6A7OB2G%2F9gjhMj0kWf"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=0; includeSubDomains; preload Server: cloudflare CF-RAY: 8f44eccfce611e60-FRA alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1644&min_rtt=897&rtt_var=870&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3081&recv_bytes=552&delivery_rate=4842809&cwnd=238&unsent_bytes=0&cid=1b0ce7b22fa03f48&ts=77&x=0" Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>Found 2024-12-19 by HttpPluginCreate report
-
Open service 2a06:98c1:3121::3:8443 · www.xam.nz
2024-12-19 05:17
HTTP/1.1 302 Found Date: Thu, 19 Dec 2024 05:17:14 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private location: /login expires: Thu, 19 Dec 2024 05:17:14 GMT Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax Set-Cookie: cloudpanel=n3o41begt2ngr67dhjrrfc5fur; path=/; secure; httponly; samesite=lax cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BeOOd%2B9NyH4XzlAtBr9dPHrOSQEnKhiPGEEr%2B2mP0bJeXoTtdsN%2Bzi0aTHlZVASHSjf68Qg%2BohMj9M4%2BS3t0UmxgAyfvmbEB2YXf8eOA3%2Blj4gZbnCJfL0SPFHrFu91NCAH35qKbu6TD"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=0; includeSubDomains; preload X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 8f44ecd1de2e76e9-LHR alt-svc: h3=":8443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1745&min_rtt=1685&rtt_var=675&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3082&recv_bytes=549&delivery_rate=2400000&cwnd=252&unsent_bytes=0&cid=fc52a62e1bc996b0&ts=177&x=0" Page title: Redirecting to /login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/login'" /> <title>Redirecting to /login</title> </head> <body> Redirecting to <a href="/login">/login</a>. </body> </html>Found 2024-12-19 by HttpPluginCreate report
-
Open service 188.114.97.3:80 · www.xam.nz
2024-12-19 05:17
HTTP/1.1 301 Moved Permanently Date: Thu, 19 Dec 2024 05:17:13 GMT Content-Type: text/html Content-Length: 167 Connection: close Cache-Control: max-age=3600 Expires: Thu, 19 Dec 2024 06:17:13 GMT Location: https://www.xam.nz/ Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DjACS78bNnH%2Fbwy12MfRp64O%2FRc0SXwDHEFiK3idVJfilmPeMS5qsm%2FmgIjbFC4NOVqzoI2VMxDSjUAEqL4aV%2BWNi%2F9M%2FYJUw1I3XHskysZ2A4WdXr6QAQ45fEg7"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 8f44eccee86b383b-FRA alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=894&min_rtt=894&rtt_var=447&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=208&delivery_rate=0&cwnd=246&unsent_bytes=0&cid=0000000000000000&ts=0&x=0" Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>cloudflare</center> </body> </html>Found 2024-12-19 by HttpPluginCreate report
-
Open service 2a06:98c1:3120::3:8443 · www.xam.nz
2024-12-19 05:17
HTTP/1.1 302 Found Date: Thu, 19 Dec 2024 05:17:13 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Cache-Control: max-age=0, must-revalidate, private location: /login expires: Thu, 19 Dec 2024 05:17:13 GMT Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax Set-Cookie: cloudpanel=1icimr1mq5krg193uhq7ejkf2a; path=/; secure; httponly; samesite=lax cf-cache-status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4664%2FpRBQCASrwOHlhJndbxdQAbFo2D%2BxMWyuOjCANnD1GXHoVxynlQMB7BxfTR%2FPjSeTJAU8c4LfNVkRq%2FEbpDsfSchy%2BMX%2BMDi8dB%2Bu71h2BVxLnmaqAxf%2BWCg9A7%2FDwK8Yd2EdQqy"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=0; includeSubDomains; preload X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 8f44ecd12ba3dbc3-FRA alt-svc: h3=":8443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=898&min_rtt=857&rtt_var=350&sent=5&recv=6&lost=0&retrans=0&sent_bytes=3080&recv_bytes=549&delivery_rate=4718786&cwnd=252&unsent_bytes=0&cid=f6b9e36f4fa1c970&ts=183&x=0" Page title: Redirecting to /login <!DOCTYPE html> <html> <head> <meta charset="UTF-8" /> <meta http-equiv="refresh" content="0;url='/login'" /> <title>Redirecting to /login</title> </head> <body> Redirecting to <a href="/login">/login</a>. </body> </html>Found 2024-12-19 by HttpPluginCreate report