LeakIX - Host 149.129.252.154

Host 149.129.252.154

Indonesia

Alibaba US Technology Co., Ltd.

Software information

nginx nginx

tcp/80 tcp/8443

CloudPanel is outdated
The following CloudPanel instance is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible since it could lead to RCE ( Remote Code Execution ). Those vulnerabilities are currently used in ransomware campaign and could damage your network.

Reference:

https://www.cvedetails.com/cve/CVE-2023-35885

https://www.cvedetails.com/cve/CVE-2023-36630

https://www.cvedetails.com/cve/CVE-2023-33747
IP: 149.129.252.154
Port: 8443
URL: https://149.129.252.154:8443

First seen 2023-12-07 19:06
Last seen 2024-12-22 00:33
Open for 380 days
- Severity: critical
  Fingerprint: 8bb944476a146f564acb1065676cae8c22dc3d2e6a7521e86a7521e86a7521e8
```
Found vulnerable CloudPanel:
Affected by CVE-2023-35885
Affected by CVE-2023-36630
Affected by CVE-2023-33747
```
  Found on 2024-12-22 00:33
Create report

Open service 149.129.252.154:8443

2024-12-22 00:33

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Sun, 22 Dec 2024 00:33:43 GMT
Location: /login
Expires: Sun, 22 Dec 2024 00:33:43 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=4imgqco5643krcgb3hi4q1m2ko; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 9 hours ago by HttpPlugin

Create report

Open service 149.129.252.154:8443

2024-12-20 00:38

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Fri, 20 Dec 2024 00:38:43 GMT
Location: /login
Expires: Fri, 20 Dec 2024 00:38:43 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=jf11t4rqm5stgjhk3abg1mohc8; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2 days ago by HttpPlugin

Create report

Open service 149.129.252.154:8443

2024-12-18 00:52

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Wed, 18 Dec 2024 00:52:39 GMT
Location: /login
Expires: Wed, 18 Dec 2024 00:52:39 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=10lph3t53imupmutv8c22ibd79; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-18 by HttpPlugin

Create report

Open service 149.129.252.154:8443

2024-12-17 18:17

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Tue, 17 Dec 2024 18:17:08 GMT
Location: /login
Expires: Tue, 17 Dec 2024 18:17:08 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=pjc2h00hacv9ajur1djekop7og; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-17 by HttpPlugin

Create report

Open service 149.129.252.154:8443

2024-12-15 22:08

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Sun, 15 Dec 2024 22:08:39 GMT
Location: /login
Expires: Sun, 15 Dec 2024 22:08:39 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=on0mr7jt08n72brs4u4hb1ur2d; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-15 by HttpPlugin

Create report

Open service 149.129.252.154:8443

2024-12-13 21:34

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Fri, 13 Dec 2024 21:34:25 GMT
Location: /login
Expires: Fri, 13 Dec 2024 21:34:25 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=19bgm949baj6h83ccf7elsippd; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-13 by HttpPlugin

Create report

Open service 149.129.252.154:8443

2024-12-11 21:52

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Wed, 11 Dec 2024 21:52:56 GMT
Location: /login
Expires: Wed, 11 Dec 2024 21:52:56 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=qpashganta3prulrmd4p7mkk1s; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-11 by HttpPlugin

Create report

Open service 149.129.252.154:8443

2024-12-01 22:06

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Sun, 01 Dec 2024 22:06:13 GMT
Location: /login
Expires: Sun, 01 Dec 2024 22:06:13 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=g7b0ik3atffqvpkh3f1nh2o9aj; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-01 by HttpPlugin

Create report

Open service 149.129.252.154:8443

2024-11-30 00:31

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Sat, 30 Nov 2024 00:31:10 GMT
Location: /login
Expires: Sat, 30 Nov 2024 00:31:10 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=qorm2csqmntvnjgts5ttkpuafh; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-11-30 by HttpPlugin

Create report

Open service 149.129.252.154:8443

2024-11-27 23:46

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Wed, 27 Nov 2024 23:46:27 GMT
Location: /login
Expires: Wed, 27 Nov 2024 23:46:27 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=pt1qm4ql1mr3ve5ifudn350p1f; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-11-27 by HttpPlugin

Create report

Open service 149.129.252.154:8443

2024-11-20 14:52

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Wed, 20 Nov 2024 14:52:19 GMT
Location: /login
Expires: Wed, 20 Nov 2024 14:52:19 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=302bvfgg9ssb6hip9heg8lmshd; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-11-20 by HttpPlugin

Create report

Open service 149.129.252.154:80

2024-11-20 09:57

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 20 Nov 2024 09:57:58 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://swasti-farm.co.id/
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: master-only
Referrer-Policy: same-origin

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx</center>
</body>
</html>

Found 2024-11-20 by HttpPlugin

Create report

cloudpanel.clpwww.cloudpanel.clp

Fingerprint:

6d1360ecefd501f8f491c32d4191489ce1023ec8e9125d96aea75303fb624f2b

CN:

cloudpanel.clp

Key:

RSA-4096

Issuer:

cloudpanel.clp

Not before:

2019-10-14 13:34

Not after:

2020-10-13 13:34

Domain summary

No record

Host 149.129.252.154

Indonesia

Software information

CloudPanel is outdated

cloudpanel.clpwww.cloudpanel.clp

Domain summary