Apache 2.4.52
tcp/443 tcp/80
OpenSSL 3.0.2
tcp/443 tcp/80
The following URL (usually /.git/config
) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229bc38983
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = git@github.com:NextDom/nextdom-core.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "develop"]
The following URL (usually /.git/config
) is publicly accessible and is leaking source code and repository configuration.
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65229bc38983
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = git@github.com:NextDom/nextdom-core.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "develop"]
Open service 91.174.141.243:443 · zbox.home.marcelet.com
2024-04-10 19:15
HTTP/1.1 200 OK Date: Wed, 10 Apr 2024 19:16:21 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Mon, 18 Mar 2024 20:56:24 GMT ETag: "29af-613f59730714e" Accept-Ranges: bytes Content-Length: 10671 Vary: Accept-Encoding Connection: close Content-Type: text/html Page title: Apache2 Ubuntu Default Page: It works <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <!-- Modified from the Debian original for Ubuntu Last updated: 2022-03-22 See: https://launchpad.net/bugs/1966004 --> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>Apache2 Ubuntu Default Page: It works</title> <style type="text/css" media="screen"> * { margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; } body, html { padding: 3px 3px 3px 3px; background-color: #D8DBE2; font-family: Ubuntu, Verdana, sans-serif; font-size: 11pt; text-align: center; } div.main_page { position: relative; display: table; width: 800px; margin-bottom: 3px; margin-left: auto; margin-right: auto; padding: 0px 0px 0px 0px; border-width: 2px; border-color: #212738; border-style: solid; background-color: #FFFFFF; text-align: center; } div.page_header { height: 180px; width: 100%; background-color: #F5F6F7; } div.page_header span { margin: 15px 0px 0px 50px; font-size: 180%; font-weight: bold; } div.page_header img { margin: 3px 0px 0px 40px; border: 0px 0px 0px; } div.banner { padding: 9px 6px 9px 6px; background-color: #E9510E; color: #FFFFFF; font-weight: bold; font-size: 112%; text-align: center; position: absolute; left: 40%; bottom: 30px; width: 20%; } div.table_of_contents { clear: left; min-width: 200px; margin: 3px 3px 3px 3px; background-color: #FFFFFF; text-align: left; } div.table_of_contents_item { clear: left; width: 100%; margin: 4px 0px 0px 0px; background-color: #FFFFFF; color: #000000; text-align: left; } div.table_of_contents_item a { margin: 6px 0px 0px 6px; } div.content_section { margin: 3px 3px 3px 3px; background-color: #FFFFFF; text-align: left; } div.content_section_text { padding: 4px 8px 4px 8px; color: #000000; font-size: 100%; } div.content_section_text pre { margin: 8px 0px 8px 0px; padding: 8px 8px 8px 8px; border-width: 1px; border-style: dotted; border-color: #000000; background-color: #F5F6F7; font-style: italic; } div.content_section_text p { margin-bottom: 6px; } div.content_section_text ul, div.content_section_text li { padding: 4px 8px 4px 16px; } div.section_header { padding: 3px 6px 3px 6px; background-color: #8E9CB2; color: #FFFFFF; font-weight: bold; font-size: 112%; text-align: center; } div.section_header_grey { background-color: #9F9386; } .floating_element { position: relative; float: left; } div.table_of_contents_item a, div.content_section_text a { text-decoration: none; font-weight: bold; } div.table_of_contents_item a:link, div.table_of_contents_item a:visited, div.table_of_contents_item a:active { color: #000000; } div.table_of_contents_item a:hover { background-color: #000000; color: #FFFFFF; } div.content_section_text a:link, div.content_section_text a:visited, div.content_section_text a:active { background-color: #DCDFE6; color: #000000; } div.content_section_text a:hover { background-color: #000000; color: #DCDFE6; } div.validator { } </style> </head> <body> <div class="main_page"> <div class="page_header floating_element"> <img src="icons/ubuntu-logo.png" alt="Ubuntu Logo" style="width:184px;height:146px;" class="floating_element" /> <div> <span style="margin-top: 1.5em;" class="floating_element"> Apache2 Default Page </span> </div> <div class="banner"> <div id="about"></div> It works! </div> </div> <div class="content_section floating_element">
Open service 91.174.141.243:443 · zbox.home.marcelet.com
2024-03-21 13:44
HTTP/1.1 200 OK Date: Thu, 21 Mar 2024 13:44:43 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Mon, 18 Mar 2024 20:56:24 GMT ETag: "29af-613f59730714e" Accept-Ranges: bytes Content-Length: 10671 Vary: Accept-Encoding Connection: close Content-Type: text/html Page title: Apache2 Ubuntu Default Page: It works <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <!-- Modified from the Debian original for Ubuntu Last updated: 2022-03-22 See: https://launchpad.net/bugs/1966004 --> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>Apache2 Ubuntu Default Page: It works</title> <style type="text/css" media="screen"> * { margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; } body, html { padding: 3px 3px 3px 3px; background-color: #D8DBE2; font-family: Ubuntu, Verdana, sans-serif; font-size: 11pt; text-align: center; } div.main_page { position: relative; display: table; width: 800px; margin-bottom: 3px; margin-left: auto; margin-right: auto; padding: 0px 0px 0px 0px; border-width: 2px; border-color: #212738; border-style: solid; background-color: #FFFFFF; text-align: center; } div.page_header { height: 180px; width: 100%; background-color: #F5F6F7; } div.page_header span { margin: 15px 0px 0px 50px; font-size: 180%; font-weight: bold; } div.page_header img { margin: 3px 0px 0px 40px; border: 0px 0px 0px; } div.banner { padding: 9px 6px 9px 6px; background-color: #E9510E; color: #FFFFFF; font-weight: bold; font-size: 112%; text-align: center; position: absolute; left: 40%; bottom: 30px; width: 20%; } div.table_of_contents { clear: left; min-width: 200px; margin: 3px 3px 3px 3px; background-color: #FFFFFF; text-align: left; } div.table_of_contents_item { clear: left; width: 100%; margin: 4px 0px 0px 0px; background-color: #FFFFFF; color: #000000; text-align: left; } div.table_of_contents_item a { margin: 6px 0px 0px 6px; } div.content_section { margin: 3px 3px 3px 3px; background-color: #FFFFFF; text-align: left; } div.content_section_text { padding: 4px 8px 4px 8px; color: #000000; font-size: 100%; } div.content_section_text pre { margin: 8px 0px 8px 0px; padding: 8px 8px 8px 8px; border-width: 1px; border-style: dotted; border-color: #000000; background-color: #F5F6F7; font-style: italic; } div.content_section_text p { margin-bottom: 6px; } div.content_section_text ul, div.content_section_text li { padding: 4px 8px 4px 16px; } div.section_header { padding: 3px 6px 3px 6px; background-color: #8E9CB2; color: #FFFFFF; font-weight: bold; font-size: 112%; text-align: center; } div.section_header_grey { background-color: #9F9386; } .floating_element { position: relative; float: left; } div.table_of_contents_item a, div.content_section_text a { text-decoration: none; font-weight: bold; } div.table_of_contents_item a:link, div.table_of_contents_item a:visited, div.table_of_contents_item a:active { color: #000000; } div.table_of_contents_item a:hover { background-color: #000000; color: #FFFFFF; } div.content_section_text a:link, div.content_section_text a:visited, div.content_section_text a:active { background-color: #DCDFE6; color: #000000; } div.content_section_text a:hover { background-color: #000000; color: #DCDFE6; } div.validator { } </style> </head> <body> <div class="main_page"> <div class="page_header floating_element"> <img src="icons/ubuntu-logo.png" alt="Ubuntu Logo" style="width:184px;height:146px;" class="floating_element" /> <div> <span style="margin-top: 1.5em;" class="floating_element"> Apache2 Default Page </span> </div> <div class="banner"> <div id="about"></div> It works! </div> </div> <div class="content_section floating_element">
Open service 91.174.141.243:80 · zbox.home.marcelet.com
2024-03-08 08:25
HTTP/1.1 200 OK Date: Fri, 08 Mar 2024 08:26:19 GMT Server: Apache/2.4.52 (Ubuntu) OpenSSL/3.0.2 Strict-Transport-Security: max-age=16070400; includeSubDomains Set-Cookie: PHPSESSID=10if39ar3fc2asb9q7gtv8e042; path=/; HttpOnly Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Set-Cookie: sess_id=10if39ar3fc2asb9q7gtv8e042; expires=Sat, 09-Mar-2024 08:26:19 GMT; Max-Age=86400; path=/; HttpOnly Set-Cookie: PHPSESSID=10if39ar3fc2asb9q7gtv8e042; path=/; HttpOnly Set-Cookie: PHPSESSID=10if39ar3fc2asb9q7gtv8e042; path=/; HttpOnly Vary: Accept-Encoding Content-Security-Policy`: script-src 'self'; object-src 'self' X-Content-Type-Options: nosniff X-Frame-Options: DENY X-XSS-Protection: 1; mode=block Content-Length: 6286 Connection: close Content-Type: text/html; charset=UTF-8 Page title: Connexion <head> <!-- Header head --> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Connexion</title> <!-- Icons --> <link rel="apple-touch-icon" href="/public/img/icon-128x128.png" /> <link rel="apple-touch-icon-precomposed" href="/public/img/icon-128x128.png" /> <link rel="shortcut icon" href="/public/img/favicon.png" /> <link rel="icon" type="image/vnd.microsoft.icon" href="/public/img/favicon.png"> <link rel="icon" type="image/x-icon" href="/public/img/favicon.png"> <link rel="icon" type="image/png" href="/public/img/favicon.png"> <!-- Content parameters --> <meta content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" name="viewport"> <meta name="apple-mobile-web-app-capable" content="yes"> <meta name="apple-mobile-web-app-status-bar-style" content="black"> <!-- CSS loading --> <link href="/public/css/nextdom.css" rel="stylesheet" /> <link href="/public/css/themes/dark-nextdom.css" rel="stylesheet" /> <link href="/public/css/pages/connection.css" rel="stylesheet" /> <!-- Footer loading --> <script src="/vendor/node_modules/jquery/dist/jquery.min.js"></script> <script> var clientDatetime = new Date(); var clientServerDiff = 1709886379 * 1000; var clientServerDiffDatetime = clientServerDiff - clientDatetime.getTime(); var io = null; NEXTDOM_AJAX_TOKEN = '8emHlOqV4chmVFa7hA1xkPpcMQu08caW'; JEEDOM_AJAX_TOKEN = NEXTDOM_AJAX_TOKEN; $.ajaxSetup({ type: "POST", data: { nextdom_token: NEXTDOM_AJAX_TOKEN } }); var nextdom_language = 'fr_FR'; var jeedom_langage = 'fr_FR'; var nextdom_waitSpinner = ""; var serverTZoffsetMin = "60"; var serverDatetime = 1709886379.5012; </script> <!-- JS loading --> <script src="/public/js/base.js"></script> <script src="/vendor/node_modules/autosize/dist/autosize.js"></script> <script src="/vendor/node_modules/tablesorter/dist/js/jquery.tablesorter.min.js"></script> <script src="/vendor/node_modules/tablesorter/dist/js/jquery.tablesorter.widgets.min.js"></script> </head> <body class="hold-transition login-page"> <div class="login-box animationZoomIn"> <!-- Section logo --> <div class="login-logo"> <img class="login-logo-img" src="/public/img/NextDom/NextDom_Wide_AlphaBlackWhite.png"> </div> <!-- Section connexion --> <div class="login-box-body"> <div class="form-group"> <p class="login-box-msg">Connectez-vous pour accéder à votre session...</p> </div> <div id="login-part1"> <div class="form-group has-feedback"> <input type="text" class="form-control" placeholder="Identifiant... (admin par défaut)" id="login"> <span class="label-badge"><i class="fas fa-user-circle"></i></span> </div> <div class="form-group has-feedback"> <input type="password" class="form-control" placeholder="Mot de passe..." id="password"> <span class="label-badge"><i class="fas fa-key"></i></span> </div> <div class="row form-group"> <div class="col-sm-7 col-xs-12"> <input type="checkbox" id="storeConnection"> <label for="storeConnection" data-toggle="tooltip" title="" data-original-title="En cochant cette case, vous n'aurez plus besoin de saisir vos identifiants.">Se souvenir de moi ?</label> </div> <div class="col-sm-5 col-xs-12"> <button class="btn btn-primary btn-block btn-flat" id="submit"><i class="fas fa-refresh fa-spin" style="display : none;"></i><i class="fas fa-unlock spacing-right"></i>Connexion</button> </div> </div> <a class="label-link" href="https://www.nextdom.org/knowled
Open service 91.174.141.243:443 · zbox.home.marcelet.com
2024-03-08 08:25
HTTP/1.1 200 OK Date: Fri, 08 Mar 2024 08:25:49 GMT Server: Apache/2.4.52 (Ubuntu) OpenSSL/3.0.2 Strict-Transport-Security: max-age=16070400; includeSubDomains Set-Cookie: PHPSESSID=r110sbnjtr2ho3sio4s795kvh5; path=/; HttpOnly Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Set-Cookie: sess_id=r110sbnjtr2ho3sio4s795kvh5; expires=Sat, 09-Mar-2024 08:25:49 GMT; Max-Age=86400; path=/; HttpOnly Set-Cookie: PHPSESSID=r110sbnjtr2ho3sio4s795kvh5; path=/; HttpOnly Set-Cookie: PHPSESSID=r110sbnjtr2ho3sio4s795kvh5; path=/; HttpOnly Vary: Accept-Encoding Content-Security-Policy`: script-src 'self'; object-src 'self' X-Content-Type-Options: nosniff X-Frame-Options: DENY X-XSS-Protection: 1; mode=block Content-Length: 6286 Connection: close Content-Type: text/html; charset=UTF-8 Page title: Connexion <head> <!-- Header head --> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <title>Connexion</title> <!-- Icons --> <link rel="apple-touch-icon" href="/public/img/icon-128x128.png" /> <link rel="apple-touch-icon-precomposed" href="/public/img/icon-128x128.png" /> <link rel="shortcut icon" href="/public/img/favicon.png" /> <link rel="icon" type="image/vnd.microsoft.icon" href="/public/img/favicon.png"> <link rel="icon" type="image/x-icon" href="/public/img/favicon.png"> <link rel="icon" type="image/png" href="/public/img/favicon.png"> <!-- Content parameters --> <meta content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" name="viewport"> <meta name="apple-mobile-web-app-capable" content="yes"> <meta name="apple-mobile-web-app-status-bar-style" content="black"> <!-- CSS loading --> <link href="/public/css/nextdom.css" rel="stylesheet" /> <link href="/public/css/themes/dark-nextdom.css" rel="stylesheet" /> <link href="/public/css/pages/connection.css" rel="stylesheet" /> <!-- Footer loading --> <script src="/vendor/node_modules/jquery/dist/jquery.min.js"></script> <script> var clientDatetime = new Date(); var clientServerDiff = 1709886349 * 1000; var clientServerDiffDatetime = clientServerDiff - clientDatetime.getTime(); var io = null; NEXTDOM_AJAX_TOKEN = 'kKbVBfrqXUw8hFFXg7advMfIXircIICm'; JEEDOM_AJAX_TOKEN = NEXTDOM_AJAX_TOKEN; $.ajaxSetup({ type: "POST", data: { nextdom_token: NEXTDOM_AJAX_TOKEN } }); var nextdom_language = 'fr_FR'; var jeedom_langage = 'fr_FR'; var nextdom_waitSpinner = ""; var serverTZoffsetMin = "60"; var serverDatetime = 1709886349.2606; </script> <!-- JS loading --> <script src="/public/js/base.js"></script> <script src="/vendor/node_modules/autosize/dist/autosize.js"></script> <script src="/vendor/node_modules/tablesorter/dist/js/jquery.tablesorter.min.js"></script> <script src="/vendor/node_modules/tablesorter/dist/js/jquery.tablesorter.widgets.min.js"></script> </head> <body class="hold-transition login-page"> <div class="login-box animationZoomIn"> <!-- Section logo --> <div class="login-logo"> <img class="login-logo-img" src="/public/img/NextDom/NextDom_Wide_AlphaBlackWhite.png"> </div> <!-- Section connexion --> <div class="login-box-body"> <div class="form-group"> <p class="login-box-msg">Connectez-vous pour accéder à votre session...</p> </div> <div id="login-part1"> <div class="form-group has-feedback"> <input type="text" class="form-control" placeholder="Identifiant... (admin par défaut)" id="login"> <span class="label-badge"><i class="fas fa-user-circle"></i></span> </div> <div class="form-group has-feedback"> <input type="password" class="form-control" placeholder="Mot de passe..." id="password"> <span class="label-badge"><i class="fas fa-key"></i></span> </div> <div class="row form-group"> <div class="col-sm-7 col-xs-12"> <input type="checkbox" id="storeConnection"> <label for="storeConnection" data-toggle="tooltip" title="" data-original-title="En cochant cette case, vous n'aurez plus besoin de saisir vos identifiants.">Se souvenir de moi ?</label> </div> <div class="col-sm-5 col-xs-12"> <button class="btn btn-primary btn-block btn-flat" id="submit"><i class="fas fa-refresh fa-spin" style="display : none;"></i><i class="fas fa-unlock spacing-right"></i>Connexion</button> </div> </div> <a class="label-link" href="https://www.nextdom.org/knowled