nginx
tcp/80
Elasticsearch and/or Kibana is currently open without authentication.
This results in all the database data made available publicly.
Severity: high
Fingerprint: 831cb76b8e05df461e2f05be1bdbd15417137ab6c60b52d194bb675bcfc7a9a7
Indices: 5, document count: 4732, size: 5.9 MB Found index kibana_sample_data_ecommerce with 4675 documents (4.9 MB) Found index .kibana_task_manager_1 with 2 documents (32.9 kB) Found index .apm-agent-configuration with 0 documents (283 B) Found index api with 1 documents (5.6 kB) Found index .kibana_1 with 54 documents (960.8 kB)
Severity: high
Fingerprint: 831cb76b8e05df46aa5197749c1e914e990b0d0863aa1bdb9b0612279b061227
Indices: 4, document count: 4731, size: 5.9 MB Found index kibana_sample_data_ecommerce with 4675 documents (4.9 MB) Found index .kibana_task_manager_1 with 2 documents (32.9 kB) Found index .apm-agent-configuration with 0 documents (283 B) Found index .kibana_1 with 54 documents (960.8 kB)
Severity: high
Fingerprint: 831cb76b8e05df46aa5197749c1e914ec188f38d9fa7eba0cc992b98cc992b98
Indices: 4, document count: 4731, size: 5.9 MB Found index kibana_sample_data_ecommerce with 4675 documents (4.9 MB) Found index .kibana_task_manager_1 with 2 documents (32.8 kB) Found index .apm-agent-configuration with 0 documents (283 B) Found index .kibana_1 with 54 documents (960.8 kB)
Elasticsearch and/or Kibana is currently open without authentication.
This results in all the database data made available publicly.
Severity: high
Fingerprint: 831cb76b8e05df46aa5197748446596463e56b9e39b4df7db1cad2f01f249048
Indices: 4, document count: 4731, size: 5.9 MB Through Kibana endpoint Found index kibana_sample_data_ecommerce with 4675 documents (4.9 MB) Found index .kibana_task_manager_1 with 2 documents (32.8 kB) Found index .apm-agent-configuration with 0 documents (283 B) Found index .kibana_1 with 54 documents (960.8 kB)
MySQL is currently open without authentication.
Additionally a ransom note has been found in the dataset which indicates it has been compromised
This results in all the database data made available publicly.
Severity: high
Fingerprint: cf350410ecceb5fd293ef71db3bd035db3bd035db3bd035db3bd035db3bd035d
Databases: 1, row count: 1, size: 16.4 kB Found table README_DDD.README with 1 records
Open service 119.91.255.189:22
2024-04-25 12:22
Open service 119.91.255.189:80 ยท www.chenandlidan.cn
2024-03-25 14:56
HTTP/1.1 200 OK Server: nginx Date: Mon, 25 Mar 2024 14:56:31 GMT Content-Type: text/html Content-Length: 615 Last-Modified: Tue, 11 Apr 2023 01:45:34 GMT Connection: close ETag: "6434bbbe-267" Accept-Ranges: bytes Page title: Welcome to nginx! <!DOCTYPE html> <html> <head> <title>Welcome to nginx!</title> <style> html { color-scheme: light dark; } body { width: 35em; margin: 0 auto; font-family: Tahoma, Verdana, Arial, sans-serif; } </style> </head> <body> <h1>Welcome to nginx!</h1> <p>If you see this page, the nginx web server is successfully installed and working. Further configuration is required.</p> <p>For online documentation and support please refer to <a href="http://nginx.org/">nginx.org</a>.<br/> Commercial support is available at <a href="http://nginx.com/">nginx.com</a>.</p> <p><em>Thank you for using nginx.</em></p> </body> </html>