The Kafka instance is available to the public without authentication.
An attacker could connect to the queue to extract private/confidential information in real-time.
Fingerprint: 43224224eeda9da960defeaa79c25e5905a9cbb3d38f8a77b09021656ad46895
NoAuth Found topic vimeoVideoUploadedMessage Found topic socketPushMessage1 Found topic socketChatMessage1 Found topic socketDataMessage1 Found topic __consumer_offsets
Fingerprint: 43224224eeda9da960defeaa0efe442ad15d0ed938dc28338544b2f7094635e5
NoAuth Found topic __consumer_offsets Found topic vimeoVideoUploadedMessage Found topic socketPushMessage1 Found topic socketChatMessage1 Found topic socketDataMessage1
Fingerprint: 43224224eeda9da960defeaa686361822e863778757a00388f002267085ca44d
NoAuth Found topic socketChatMessage1 Found topic socketDataMessage1 Found topic __consumer_offsets Found topic vimeoVideoUploadedMessage Found topic socketPushMessage1
Fingerprint: 43224224eeda9da960defeaa121523300ccb449c744e3782905af6b2e4ae1eb1
NoAuth Found topic socketPushMessage1 Found topic socketChatMessage1 Found topic socketDataMessage1 Found topic __consumer_offsets Found topic vimeoVideoUploadedMessage
Fingerprint: 43224224eeda9da960defeaa51b11d90c970cd004774d5ff9c795d658883063d
NoAuth Found topic socketDataMessage1 Found topic __consumer_offsets Found topic vimeoVideoUploadedMessage Found topic socketPushMessage1 Found topic socketChatMessage1
The following URL (usually /.git/config
) is publicly accessible and is leaking source code and repository configuration.
Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044baa2727ab8135b5bbc521bbbec027cf2
[core] repositoryformatversion = 0 filemode = false bare = false logallrefupdates = true ignorecase = true hooksPath = .husky [remote "origin"] url = git@github.com:KyoungHwanLee/Mirimiri-Client.git fetch = +refs/heads/*:refs/remotes/origin/* [branch "master"] remote = origin merge = refs/heads/master
Open service 112.169.158.128:3306
2024-04-25 01:11
MySQL detected
Open service 112.169.158.128:3306
2024-04-24 17:09
MySQL detected
Open service 112.169.158.128:27017
2024-04-24 11:44
HTTP/1.0 200 OK Connection: close Content-Type: text/plain Content-Length: 85 It looks like you are trying to access MongoDB over HTTP on the native driver port.
Open service 112.169.158.128:8080
2024-04-24 08:13
HTTP/1.1 404 Not Found X-Powered-By: Express Vary: Origin Access-Control-Allow-Credentials: true Content-Type: application/json; charset=utf-8 Content-Length: 23 ETag: W/"17-8RaMNKuhsgHFVHnFZfyKB8syJt8" Date: Wed, 24 Apr 2024 08:13:13 GMT Connection: close {"message":"NOT FOUND"}
Open service 112.169.158.128:3306
2024-04-23 18:41
MySQL detected