nginx 1.18.0
tcp/443
The Redis instance is open to the public.
This could result to data leak and code execution.
Severity: medium
Fingerprint: d606b92f1b5fdf180fc2d42a0fc2d42a0fc2d42a0fc2d42a0fc2d42a0fc2d42a
Redis is open with 9 keys in dbs
Severity: medium
Fingerprint: d606b92f1b5fdf185732408f5732408f5732408f5732408f5732408f5732408f
Redis is open with 0 keys in dbs
Severity: medium
Fingerprint: d606b92f1b5fdf1897c596ab97c596ab97c596ab97c596ab97c596ab97c596ab
Redis is open with 4 keys in dbs
Severity: medium
Fingerprint: d606b92f1b5fdf18253c1e95253c1e95253c1e95253c1e95253c1e95253c1e95
Redis is open with 6 keys in dbs
Severity: medium
Fingerprint: d606b92f1b5fdf185497e6545497e6545497e6545497e6545497e6545497e654
Redis is open with 3 keys in dbs
Severity: medium
Fingerprint: d606b92f1b5fdf18e8f49f30e8f49f30e8f49f30e8f49f30e8f49f30e8f49f30
Redis is open with 12 keys in dbs
Severity: medium
Fingerprint: d606b92f1b5fdf1868e07c0f68e07c0f68e07c0f68e07c0f68e07c0f68e07c0f
Redis is open with 15 keys in dbs
.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).
They store information about the files within a folder, including display options of folders, such as icon positions and view settings.
It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.
Severity: low
Fingerprint: 5f32cf5d6962f09c87f05b7087f05b70af0d1414c4d5288e8f78de17e964cc87
Found 26 files trough .DS_Store spidering: /img /img/2017-lp /img/2017-lp/category /img/2017-lp/category/c0 /img/2017-lp/category/home /img/2017-lp/de /img/2017-lp/es /img/2017-lp/footer-img /img/2017-lp/fr /img/2017-lp/hero-home /img/2017-lp/hero-seo /img/2017-lp/it /img/2017-lp/uk /img/2017-lp/us /img/about /img/article /img/css /img/how-it-works /img/icon /img/listing /img/miv2 /img/sept16 /img/tp_landing /shared /z_b_assets /z_b_assets_css
Open service 162.0.216.97:443
2024-06-16 02:30
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sun, 16 Jun 2024 02:30:23 GMT Content-Type: text/html Content-Length: 5128 Connection: close Last-Modified: Mon, 10 Jun 2024 07:32:18 GMT ETag: "6666ac02-1408" Accept-Ranges: bytes Page title: NCLEX Management <!doctype html> <html lang="en" data-n-head="%7B%22lang%22:%7B%221%22:%22en%22%7D%7D"> <head> <title>NCLEX Management</title><meta data-n-head="1" charset="utf-8"><meta data-n-head="1" name="viewport" content="width=device-width,initial-scale=1"><meta data-n-head="1" data-hid="description" name="description" content=""><meta data-n-head="1" name="format-detection" content="telephone=no"><link data-n-head="1" rel="icon" type="image/x-icon" href="/icon.png"><link data-n-head="1" type="text/css" href="https://cdn.jsdelivr.net/npm/@mdi/font@5.8.55/css/materialdesignicons.min.css" rel="preload" as="style" onload='this.rel="stylesheet"'><link rel="preload" href="/_nuxt/runtime_f15de92.js" as="script"><link rel="preload" href="/_nuxt/vendor.core-js_4ae66e5.js" as="script"><link rel="preload" href="/_nuxt/vendor.vuelidate_994ef54.js" as="script"><link rel="preload" href="/_nuxt/vendor.date-fns_06f3eff.js" as="script"><link rel="preload" href="/_nuxt/css/vendor.buefy_4c1f891.css" as="style"><link rel="preload" href="/_nuxt/vendor.buefy_ef3c618.js" as="script"><link rel="preload" href="/_nuxt/vendor.axios_a11fa12.js" as="script"><link rel="preload" href="/_nuxt/css/vendor.cache_eedb22c.css" as="style"><link rel="preload" href="/_nuxt/vendor.cache_e6dc63f.js" as="script"><link rel="preload" href="/_nuxt/vendor.engineio-client_6fca2d1.js" as="script"><link rel="preload" href="/_nuxt/vendor.socketio-client_7c93ff4.js" as="script"><link rel="preload" href="/_nuxt/css/vendor.quill_ab8cc21.css" as="style"><link rel="preload" href="/_nuxt/vendor.quill_a17a4a8.js" as="script"><link rel="preload" href="/_nuxt/vendor.node-libs-browser_e6dad53.js" as="script"><link rel="preload" href="/_nuxt/vendor.vue-meta_7eca343.js" as="script"><link rel="preload" href="/_nuxt/vendor.vue-router_e03be57.js" as="script"><link rel="preload" href="/_nuxt/vendor.vue_9c1e5fa.js" as="script"><link rel="preload" href="/_nuxt/vendor.vuex_d1e175e.js" as="script"><link rel="preload" href="/_nuxt/vendors/app_a5330e2.js" as="script"><link rel="preload" href="/_nuxt/css/app_9b1915d.css" as="style"><link rel="preload" href="/_nuxt/app_ff11703.js" as="script"> <link href="/_nuxt/css/vendor.buefy_4c1f891.css" rel="stylesheet"><link href="/_nuxt/css/vendor.cache_eedb22c.css" rel="stylesheet"><link href="/_nuxt/css/vendor.quill_ab8cc21.css" rel="stylesheet"><link href="/_nuxt/css/app_9b1915d.css" rel="stylesheet"></head> <body> <div id="__nuxt"><style>#nuxt-loading{background:#fff;visibility:hidden;opacity:0;position:absolute;left:0;right:0;top:0;bottom:0;display:flex;justify-content:center;align-items:center;flex-direction:column;animation:nuxtLoadingIn 10s ease;-webkit-animation:nuxtLoadingIn 10s ease;animation-fill-mode:forwards;overflow:hidden}@keyframes nuxtLoadingIn{0%{visibility:hidden;opacity:0}20%{visibility:visible;opacity:0}100%{visibility:visible;opacity:1}}@-webkit-keyframes nuxtLoadingIn{0%{visibility:hidden;opacity:0}20%{visibility:visible;opacity:0}100%{visibility:visible;opacity:1}}#nuxt-loading>div,#nuxt-loading>div:after{border-radius:50%;width:5rem;height:5rem}#nuxt-loading>div{font-size:10px;position:relative;text-indent:-9999em;border:.5rem solid #f5f5f5;border-left:.5rem solid #000;-webkit-transform:translateZ(0);-ms-transform:translateZ(0);transform:translateZ(0);-webkit-animation:nuxtLoading 1.1s infinite linear;animation:nuxtLoading 1.1s infinite linear}#nuxt-loading.error>div{border-left:.5rem solid #ff4500;animation-duration:5s}@-webkit-keyframes nuxtLoading{0%{-webkit-transform:rotate(0);transform:rotate(0)}100%{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}@keyframes nuxtLoading{0%{-webkit-transform:rotate(0);transform:rotate(0)}100%{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}</style><script>window.addEventListener("error",function(){var e=document.getElementById("nuxt-loading");e&&(e.className+=" error")})</script><div id="nuxt-loading" aria-live="polite" role="status"><div>Loading...</div></div></div><script>window.__NUXT__={config:{_app:{basePath:"/",assetsPath:"/_nuxt/",cdnURL:null},nuxtSocketIO:{s
Open service 162.0.216.97:8080
2024-06-15 18:58
HTTP/1.1 200 OK X-Powered-By: Express Accept-Ranges: bytes Cache-Control: public, max-age=0 Last-Modified: Tue, 30 Jan 2024 05:34:28 GMT ETag: W/"360-18d58dc96a0" Content-Type: text/html; charset=UTF-8 Content-Length: 864 Date: Sat, 15 Jun 2024 18:58:09 GMT Connection: close Page title: NEPVENT API <!DOCTYPE html> <html lang="en"> <head> <link rel="icon" type="image/x-icon" href="images/favicon.ico"> <meta charset="UTF-8"> <title>NEPVENT API</title> </head> <body> <style> body { padding: 0; margin: 0; } .login-page { position: relative; background: linear-gradient(to right, #46dcf8, #2250e4); width: 100%; min-height: 100vh; } .l-logo { position: absolute; transform: translate(-50%, -50%); left: 50%; top: 50% } .l-logo img { width: 1500px; display: block; margin: auto; max-width: 100%; } </style> <div class="login-page"> <div class="l-logo"> <img src="images/nepvent-logo-white.png" class="img-fluid"> </div> </div> </body> </html>
Open service 162.0.216.97:5000
2024-06-15 06:10
HTTP/1.1 404 Not Found Date: Sat, 15 Jun 2024 06:10:13 GMT Connection: close Transfer-Encoding: chunked
Open service 162.0.216.97:8081
2024-06-13 19:39
HTTP/1.1 404 Not Found X-Powered-By: Express Access-Control-Allow-Origin: * Content-Type: application/json; charset=utf-8 Content-Length: 63 ETag: W/"3f-GR0G8sZfNVmVbqqGkyrPOefU7Ys" Date: Thu, 13 Jun 2024 19:39:51 GMT Connection: close {"statusCode":404,"message":"Cannot GET /","error":"Not Found"}
Open service 162.0.216.97:8082
2024-06-13 19:01
HTTP/1.1 404 Not Found X-Powered-By: Express Access-Control-Allow-Origin: * Content-Type: application/json; charset=utf-8 Content-Length: 63 ETag: W/"3f-GR0G8sZfNVmVbqqGkyrPOefU7Ys" Date: Thu, 13 Jun 2024 19:01:55 GMT Connection: close {"statusCode":404,"message":"Cannot GET /","error":"Not Found"}
Open service 162.0.216.97:8080
2024-06-12 19:52
HTTP/1.1 200 OK X-Powered-By: Express Accept-Ranges: bytes Cache-Control: public, max-age=0 Last-Modified: Tue, 30 Jan 2024 05:34:28 GMT ETag: W/"360-18d58dc96a0" Content-Type: text/html; charset=UTF-8 Content-Length: 864 Date: Wed, 12 Jun 2024 19:52:33 GMT Connection: close Page title: NEPVENT API <!DOCTYPE html> <html lang="en"> <head> <link rel="icon" type="image/x-icon" href="images/favicon.ico"> <meta charset="UTF-8"> <title>NEPVENT API</title> </head> <body> <style> body { padding: 0; margin: 0; } .login-page { position: relative; background: linear-gradient(to right, #46dcf8, #2250e4); width: 100%; min-height: 100vh; } .l-logo { position: absolute; transform: translate(-50%, -50%); left: 50%; top: 50% } .l-logo img { width: 1500px; display: block; margin: auto; max-width: 100%; } </style> <div class="login-page"> <div class="l-logo"> <img src="images/nepvent-logo-white.png" class="img-fluid"> </div> </div> </body> </html>