LeakIX - Host 120.46.86.123

Host 120.46.86.123

China

Huawei Cloud Service data center

Software information

nginx nginx

tcp/443

Gitlab instance looks outdated
The following Gitlab instance is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible to avoid account takeover.

Severity is mitigated by the need of a valid email address.

Reference:

https://www.cvedetails.com/cve/CVE-2023-7028
IP: 120.46.86.123
Port: 443
URL: https://120.46.86.123

First seen 2024-01-25 11:02
Last seen 2024-12-22 01:00
Open for 331 days
- Severity: high
  Fingerprint: db64c48d331961cce5776b3a892edddd892edddd892edddd892edddd892edddd
```
Found vulnerable Gitlab instance
Affected by CVE-2023-7028
```
  Found on 2024-12-22 01:00
Create report

Open service 120.46.86.123:443

2024-12-22 01:00

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 22 Dec 2024 01:00:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://120.46.86.123/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JFNY1VSPJJ12SNCTZ4KCMAR0","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JFNY1VSPJJ12SNCTZ4KCMAR0
X-Runtime: 1.807593
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://120.46.86.123/users/sign_in">redirected</a>.</body></html>

Found 10 hours ago by HttpPlugin

Create report

Open service 120.46.86.123:443

2024-12-20 00:32

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 20 Dec 2024 00:32:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://120.46.86.123/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JFGQN5BEG0HXD604QXM272Z4","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JFGQN5BEG0HXD604QXM272Z4
X-Runtime: 0.037419
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://120.46.86.123/users/sign_in">redirected</a>.</body></html>

Found 2 days ago by HttpPlugin

Create report

Open service 120.46.86.123:443

2024-12-18 01:39

HTTP/1.1 302 Found
Server: nginx
Date: Wed, 18 Dec 2024 01:40:01 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://120.46.86.123/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JFBPR1H131JF1F0W605E08PA","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JFBPR1H131JF1F0W605E08PA
X-Runtime: 0.026654
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://120.46.86.123/users/sign_in">redirected</a>.</body></html>

Found 2024-12-18 by HttpPlugin

Create report

Open service 120.46.86.123:443

2024-12-15 23:20

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 15 Dec 2024 23:20:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://120.46.86.123/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JF69ZJZBNDHQXYVZMXK9ZZ8F","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JF69ZJZBNDHQXYVZMXK9ZZ8F
X-Runtime: 1.804423
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://120.46.86.123/users/sign_in">redirected</a>.</body></html>

Found 2024-12-15 by HttpPlugin

Create report

Open service 120.46.86.123:443

2024-12-13 22:58

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 13 Dec 2024 22:58:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://120.46.86.123/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JF13Y75BJ3XSM3SMGSWZMVG4","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JF13Y75BJ3XSM3SMGSWZMVG4
X-Runtime: 0.051695
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://120.46.86.123/users/sign_in">redirected</a>.</body></html>

Found 2024-12-13 by HttpPlugin

Create report

Open service 120.46.86.123:443

2024-12-11 23:23

HTTP/1.1 302 Found
Server: nginx
Date: Wed, 11 Dec 2024 23:23:05 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://120.46.86.123/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JEW0H0AT8ZZ6A93HTGV5HKMP","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JEW0H0AT8ZZ6A93HTGV5HKMP
X-Runtime: 0.265478
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://120.46.86.123/users/sign_in">redirected</a>.</body></html>

Found 2024-12-11 by HttpPlugin

Create report

Open service 120.46.86.123:443

2024-12-01 23:20

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 01 Dec 2024 23:20:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://120.46.86.123/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JE28D3M9EA0QEA6MDJ04DB27","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JE28D3M9EA0QEA6MDJ04DB27
X-Runtime: 0.029856
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://120.46.86.123/users/sign_in">redirected</a>.</body></html>

Found 2024-12-01 by HttpPlugin

Create report

Open service 120.46.86.123:443

2024-11-29 23:27

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 29 Nov 2024 23:27:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://120.46.86.123/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JDX418PQZ4ZY9G75E571M0SW","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JDX418PQZ4ZY9G75E571M0SW
X-Runtime: 0.036905
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://120.46.86.123/users/sign_in">redirected</a>.</body></html>

Found 2024-11-29 by HttpPlugin

Create report

Open service 120.46.86.123:443

2024-11-27 23:57

HTTP/1.1 302 Found
Server: nginx
Date: Wed, 27 Nov 2024 23:57:49 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: https://120.46.86.123/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JDR0YFPXMF475SZR363TAYFD","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JDR0YFPXMF475SZR363TAYFD
X-Runtime: 1.577272
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="https://120.46.86.123/users/sign_in">redirected</a>.</body></html>

Found 2024-11-27 by HttpPlugin

Create report

Fingerprint:

97be8b86ba390b8fb14a3cb39bcbcb6378d538a4e2fd0c40dacce4d39ba835f6

CN:

junyang

Key:

RSA-2048

Issuer:

junyang

Not before:

2023-09-23 06:50

Not after:

2033-09-20 06:50

Domain summary

No record

Host 120.46.86.123

China

Software information

Gitlab instance looks outdated

Domain summary