LeakIX - Host 157.230.238.114

Host 157.230.238.114

United States

DIGITALOCEAN-ASN

Ubuntu

Software information

nginx nginx

tcp/8443

CloudPanel is outdated
The following CloudPanel instance is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible since it could lead to RCE ( Remote Code Execution ). Those vulnerabilities are currently used in ransomware campaign and could damage your network.

Reference:

https://www.cvedetails.com/cve/CVE-2023-35885

https://www.cvedetails.com/cve/CVE-2023-36630

https://www.cvedetails.com/cve/CVE-2023-33747
IP: 157.230.238.114
Port: 8443
URL: https://157.230.238.114:8443

First seen 2023-10-24 04:36
Last seen 2024-12-21 23:47
Open for 424 days
- Severity: critical
  Fingerprint: 8bb944476a146f564acb1065676cae8c22dc3d2e6a7521e86a7521e86a7521e8
```
Found vulnerable CloudPanel:
Affected by CVE-2023-35885
Affected by CVE-2023-36630
Affected by CVE-2023-33747
```
  Found on 2024-12-21 23:47
Create report
SSH is potenitally vulnerable

WARNING: This plugin will generate false positive and is purely informative:

regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems (CVE-2024-6387)

IP: 157.230.238.114
Port: 22

First seen 2024-07-03 20:06
Last seen 2024-12-21 23:13
Open for 171 days
- Severity: info
  Fingerprint: 3f43e0ebb5dce37ab8b59eb583e3d39f683fe95a683fe95a683fe95a683fe95a
```
Found potentially vulnerable SSH version:
SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.1
WARNING, RISK IS ESTIMATED FALSE POSITIVE ARE LIKELY
```
  Found on 2024-12-21 23:13
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 157.230.238.114
Port: 443
URL: https://157.230.238.114/.git/config

First seen 2021-10-08 06:41
Last seen 2022-02-16 10:36
Open for 131 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522879ec069
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://github.com/aslambpract/cameron-builder.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2021-10-08 06:41
  
  213 Bytes
Create report

Open service 157.230.238.114:8443

2024-12-21 23:47

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Sat, 21 Dec 2024 23:47:37 GMT
Location: /login
Expires: Sat, 21 Dec 2024 23:47:37 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=v7466r7svgq75lbnu4qc76n9ba; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 10 hours ago by HttpPlugin

Create report

Open service 157.230.238.114:22

2024-12-21 23:13
Found 11 hours ago by SSHOpenPlugin
Create report

Open service 157.230.238.114:8443

2024-12-19 23:29

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Thu, 19 Dec 2024 23:29:15 GMT
Location: /login
Expires: Thu, 19 Dec 2024 23:29:15 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=bnhp9gj35jjc7u7mij03u180de; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2 days ago by HttpPlugin

Create report

Open service 157.230.238.114:22

2024-12-19 23:02
Found 2 days ago by SSHOpenPlugin
Create report

Open service 157.230.238.114:8443

2024-12-18 00:06

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Wed, 18 Dec 2024 00:06:59 GMT
Location: /login
Expires: Wed, 18 Dec 2024 00:06:59 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=jqrnr69nkr47ah1h71mlthloej; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-18 by HttpPlugin

Create report

Open service 157.230.238.114:22

2024-12-17 23:18
Found 2024-12-17 by SSHOpenPlugin
Create report

Open service 157.230.238.114:8443

2024-12-17 18:47

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Tue, 17 Dec 2024 18:47:21 GMT
Location: /login
Expires: Tue, 17 Dec 2024 18:47:21 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=v1j7qfn8tode0vpipl6bbb3uh2; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-17 by HttpPlugin

Create report

Open service 157.230.238.114:22

2024-12-15 22:43
Found 2024-12-15 by SSHOpenPlugin
Create report

Open service 157.230.238.114:8443

2024-12-15 21:51

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Sun, 15 Dec 2024 21:51:21 GMT
Location: /login
Expires: Sun, 15 Dec 2024 21:51:21 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=bng18k2s0s97ft5vrs1qpdvj5f; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-15 by HttpPlugin

Create report

Open service 157.230.238.114:22

2024-12-13 22:45
Found 2024-12-13 by SSHOpenPlugin
Create report

Open service 157.230.238.114:8443

2024-12-13 22:22

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Fri, 13 Dec 2024 22:22:56 GMT
Location: /login
Expires: Fri, 13 Dec 2024 22:22:56 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=g87j6de9jk7qgq62rjt5hili23; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-13 by HttpPlugin

Create report

Open service 157.230.238.114:8443

2024-12-11 23:16

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Wed, 11 Dec 2024 23:16:12 GMT
Location: /login
Expires: Wed, 11 Dec 2024 23:16:12 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=jkpoprsm9g454087dki2r6o7p4; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-11 by HttpPlugin

Create report

Open service 157.230.238.114:22

2024-12-11 23:06
Found 2024-12-11 by SSHOpenPlugin
Create report
Open service 157.230.238.114:22

2024-12-01 23:03
Found 2024-12-01 by SSHOpenPlugin
Create report

Open service 157.230.238.114:8443

2024-12-01 21:13

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Sun, 01 Dec 2024 21:13:43 GMT
Location: /login
Expires: Sun, 01 Dec 2024 21:13:43 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=1g2h4u0cbkt906fi833pj4qh84; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-12-01 by HttpPlugin

Create report

Open service 157.230.238.114:22

2024-11-29 23:35
Found 2024-11-29 by SSHOpenPlugin
Create report

Open service 157.230.238.114:8443

2024-11-29 22:50

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Fri, 29 Nov 2024 22:50:14 GMT
Location: /login
Expires: Fri, 29 Nov 2024 22:50:14 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=k5kib0jcmgacs3njlhquunvnhr; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-11-29 by HttpPlugin

Create report

Open service 157.230.238.114:22

2024-11-27 22:21
Found 2024-11-27 by SSHOpenPlugin
Create report

Open service 157.230.238.114:8443

2024-11-27 21:31

HTTP/1.1 302 Found
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0, must-revalidate, private
Date: Wed, 27 Nov 2024 21:31:37 GMT
Location: /login
Expires: Wed, 27 Nov 2024 21:31:37 GMT
Set-Cookie: locale=en; path=/; secure; httponly; samesite=lax
Set-Cookie: cloudpanel=531uf6872r1qmhemdk8vn2de7k; path=/; secure; httponly; samesite=lax

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-11-27 by HttpPlugin

Create report

cloudpanel.clpwww.cloudpanel.clp

Fingerprint:

6d1360ecefd501f8f491c32d4191489ce1023ec8e9125d96aea75303fb624f2b

CN:

cloudpanel.clp

Key:

RSA-4096

Issuer:

cloudpanel.clp

Not before:

2019-10-14 13:34

Not after:

2020-10-13 13:34

Domain summary

No record

Host 157.230.238.114

United States

Software information

CloudPanel is outdated

SSH is potenitally vulnerable

Git configuration and history exposed

cloudpanel.clpwww.cloudpanel.clp

Domain summary