nginx 1.18.0
tcp/443 tcp/80
MySQL is currently open without authentication.
This results in all the database data made available publicly.
Severity: high
Fingerprint: cf350410ecceb5fd7b7567ce32c5266dbb6c72540982c426a6a32a8b49205ebb
Databases: 38, row count: 133851, size: 7.9 MB Found table mysql.columns_priv with 0 records Found table mysql.component with 0 records Found table mysql.db with 2 records Found table mysql.default_roles with 0 records Found table mysql.engine_cost with 2 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.global_grants with 95 records Found table mysql.gtid_executed with 0 records Found table mysql.help_category with 53 records Found table mysql.help_keyword with 918 records Found table mysql.help_relation with 1837 records Found table mysql.help_topic with 553 records Found table mysql.innodb_index_stats with 6 records Found table mysql.innodb_table_stats with 2 records Found table mysql.ndb_binlog_index with 0 records Found table mysql.password_history with 0 records Found table mysql.plugin with 0 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 1 records Found table mysql.replication_asynchronous_connection_failover with 0 records Found table mysql.replication_asynchronous_connection_failover_managed with 0 records Found table mysql.replication_group_configuration_version with 1 records Found table mysql.replication_group_member_actions with 2 records Found table mysql.role_edges with 0 records Found table mysql.server_cost with 6 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 2 records Found table mysql.time_zone with 1815 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 1590 records Found table mysql.time_zone_transition with 116428 records Found table mysql.time_zone_transition_type with 10529 records Found table mysql.user with 5 records
The following URL (usually /.git/config
) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a652287a96ce9
[core] repositoryformatversion = 0 filemode = true bare = false logallrefupdates = true [remote "origin"] url = git@gitlab.com:ptr.david15/acm-database.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master [branch "rebuild"] remote = origin merge = refs/heads/rebuild
Open service 104.248.168.182:3306
2024-09-13 21:16
MySQL detected
Open service 104.248.168.182:3306
2024-09-11 21:50
MySQL detected
Open service 104.248.168.182:3306
2024-09-11 14:36
MySQL detected
Open service 104.248.168.182:443
2024-09-11 12:07
HTTP/1.1 302 Found Server: nginx/1.18.0 (Ubuntu) Date: Wed, 11 Sep 2024 12:07:35 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Set-Cookie: aggregator-bo=tbvo1qstojrj4krdan291ee0o6; path=/; HttpOnly Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Location: https://104.248.168.182/login X-Debug-Tag: 66e188073df8e X-Debug-Duration: 5 X-Debug-Link: /debug/default/view?tag=66e188073df8e
Open service 104.248.168.182:22
2024-09-11 02:03
Open service 104.248.168.182:80
2024-09-09 23:48
HTTP/1.1 403 Forbidden Server: nginx/1.18.0 (Ubuntu) Date: Mon, 09 Sep 2024 23:48:52 GMT Content-Type: text/html Content-Length: 564 Connection: close Page title: 403 Forbidden <html> <head><title>403 Forbidden</title></head> <body> <center><h1>403 Forbidden</h1></center> <hr><center>nginx/1.18.0 (Ubuntu)</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 104.248.168.182:3306
2024-09-09 21:32
MySQL detected
Open service 104.248.168.182:3306
2024-09-07 21:19
MySQL detected
Open service 104.248.168.182:3306
2024-08-25 21:15
MySQL detected
Open service 104.248.168.182:3306
2024-08-17 21:36
MySQL detected
Open service 104.248.168.182:3306
2024-08-15 22:05
MySQL detected
Open service 104.248.168.182:3306
2024-08-13 21:56
MySQL detected
Open service 104.248.168.182:3306
2024-08-11 21:28
MySQL detected
Open service 104.248.168.182:3306
2024-08-09 22:12
MySQL detected
Open service 104.248.168.182:3306
2024-08-07 21:50
MySQL detected