LeakIX - Host 162.0.216.97

Host 162.0.216.97

United States

NAMECHEAP-NET

Linux 5.4.0-144-generic x86_64

Software information

nginx nginx 1.18.0

tcp/443

Redis instance is public

The Redis instance is open to the public.

This could result to data leak and code execution.

IP: 162.0.216.97
Port: 6379

First seen 2023-05-06 21:03
Last seen 2023-10-10 23:29
Open for 157 days
- Severity: medium
  Fingerprint: d606b92f1b5fdf180fc2d42a0fc2d42a0fc2d42a0fc2d42a0fc2d42a0fc2d42a
```
Redis is open with 9 keys in dbs
```
  Found on 2023-10-10 23:29
  
  9 rows
- Severity: medium
  Fingerprint: d606b92f1b5fdf185732408f5732408f5732408f5732408f5732408f5732408f
```
Redis is open with 0 keys in dbs
```
  Found on 2023-10-06 01:43
- Severity: medium
  Fingerprint: d606b92f1b5fdf1897c596ab97c596ab97c596ab97c596ab97c596ab97c596ab
```
Redis is open with 4 keys in dbs
```
  Found on 2023-07-27 01:34
  
  4 rows
- Severity: medium
  Fingerprint: d606b92f1b5fdf18253c1e95253c1e95253c1e95253c1e95253c1e95253c1e95
```
Redis is open with 6 keys in dbs
```
  Found on 2023-07-19 11:23
  
  6 rows
- Severity: medium
  Fingerprint: d606b92f1b5fdf185497e6545497e6545497e6545497e6545497e6545497e654
```
Redis is open with 3 keys in dbs
```
  Found on 2023-05-23 00:49
  
  3 rows
- Severity: medium
  Fingerprint: d606b92f1b5fdf18e8f49f30e8f49f30e8f49f30e8f49f30e8f49f30e8f49f30
```
Redis is open with 12 keys in dbs
```
  Found on 2023-05-18 03:36
  
  12 rows
- Severity: medium
  Fingerprint: d606b92f1b5fdf1868e07c0f68e07c0f68e07c0f68e07c0f68e07c0f68e07c0f
```
Redis is open with 15 keys in dbs
```
  Found on 2023-05-06 21:03
  
  15 rows
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 162.0.216.97
Port: 80
URL: http://162.0.216.97

First seen 2023-01-16 23:57
Last seen 2023-03-05 10:46
Open for 47 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c87f05b7087f05b70af0d1414c4d5288e8f78de17e964cc87
```
Found 26 files trough .DS_Store spidering:

/img
/img/2017-lp
/img/2017-lp/category
/img/2017-lp/category/c0
/img/2017-lp/category/home
/img/2017-lp/de
/img/2017-lp/es
/img/2017-lp/footer-img
/img/2017-lp/fr
/img/2017-lp/hero-home
/img/2017-lp/hero-seo
/img/2017-lp/it
/img/2017-lp/uk
/img/2017-lp/us
/img/about
/img/article
/img/css
/img/how-it-works
/img/icon
/img/listing
/img/miv2
/img/sept16
/img/tp_landing
/shared
/z_b_assets
/z_b_assets_css
```
  Found on 2023-01-16 23:57
Create report

Open service 162.0.216.97:443

2024-06-16 02:30

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 16 Jun 2024 02:30:23 GMT
Content-Type: text/html
Content-Length: 5128
Connection: close
Last-Modified: Mon, 10 Jun 2024 07:32:18 GMT
ETag: "6666ac02-1408"
Accept-Ranges: bytes

Page title: NCLEX Management

<!doctype html>
<html lang="en" data-n-head="%7B%22lang%22:%7B%221%22:%22en%22%7D%7D">
  <head>
    <title>NCLEX Management</title><meta data-n-head="1" charset="utf-8"><meta data-n-head="1" name="viewport" content="width=device-width,initial-scale=1"><meta data-n-head="1" data-hid="description" name="description" content=""><meta data-n-head="1" name="format-detection" content="telephone=no"><link data-n-head="1" rel="icon" type="image/x-icon" href="/icon.png"><link data-n-head="1" type="text/css" href="https://cdn.jsdelivr.net/npm/@mdi/font@5.8.55/css/materialdesignicons.min.css" rel="preload" as="style" onload='this.rel="stylesheet"'><link rel="preload" href="/_nuxt/runtime_f15de92.js" as="script"><link rel="preload" href="/_nuxt/vendor.core-js_4ae66e5.js" as="script"><link rel="preload" href="/_nuxt/vendor.vuelidate_994ef54.js" as="script"><link rel="preload" href="/_nuxt/vendor.date-fns_06f3eff.js" as="script"><link rel="preload" href="/_nuxt/css/vendor.buefy_4c1f891.css" as="style"><link rel="preload" href="/_nuxt/vendor.buefy_ef3c618.js" as="script"><link rel="preload" href="/_nuxt/vendor.axios_a11fa12.js" as="script"><link rel="preload" href="/_nuxt/css/vendor.cache_eedb22c.css" as="style"><link rel="preload" href="/_nuxt/vendor.cache_e6dc63f.js" as="script"><link rel="preload" href="/_nuxt/vendor.engineio-client_6fca2d1.js" as="script"><link rel="preload" href="/_nuxt/vendor.socketio-client_7c93ff4.js" as="script"><link rel="preload" href="/_nuxt/css/vendor.quill_ab8cc21.css" as="style"><link rel="preload" href="/_nuxt/vendor.quill_a17a4a8.js" as="script"><link rel="preload" href="/_nuxt/vendor.node-libs-browser_e6dad53.js" as="script"><link rel="preload" href="/_nuxt/vendor.vue-meta_7eca343.js" as="script"><link rel="preload" href="/_nuxt/vendor.vue-router_e03be57.js" as="script"><link rel="preload" href="/_nuxt/vendor.vue_9c1e5fa.js" as="script"><link rel="preload" href="/_nuxt/vendor.vuex_d1e175e.js" as="script"><link rel="preload" href="/_nuxt/vendors/app_a5330e2.js" as="script"><link rel="preload" href="/_nuxt/css/app_9b1915d.css" as="style"><link rel="preload" href="/_nuxt/app_ff11703.js" as="script">
  <link href="/_nuxt/css/vendor.buefy_4c1f891.css" rel="stylesheet"><link href="/_nuxt/css/vendor.cache_eedb22c.css" rel="stylesheet"><link href="/_nuxt/css/vendor.quill_ab8cc21.css" rel="stylesheet"><link href="/_nuxt/css/app_9b1915d.css" rel="stylesheet"></head>
  <body>
    <div id="__nuxt"><style>#nuxt-loading{background:#fff;visibility:hidden;opacity:0;position:absolute;left:0;right:0;top:0;bottom:0;display:flex;justify-content:center;align-items:center;flex-direction:column;animation:nuxtLoadingIn 10s ease;-webkit-animation:nuxtLoadingIn 10s ease;animation-fill-mode:forwards;overflow:hidden}@keyframes nuxtLoadingIn{0%{visibility:hidden;opacity:0}20%{visibility:visible;opacity:0}100%{visibility:visible;opacity:1}}@-webkit-keyframes nuxtLoadingIn{0%{visibility:hidden;opacity:0}20%{visibility:visible;opacity:0}100%{visibility:visible;opacity:1}}#nuxt-loading>div,#nuxt-loading>div:after{border-radius:50%;width:5rem;height:5rem}#nuxt-loading>div{font-size:10px;position:relative;text-indent:-9999em;border:.5rem solid #f5f5f5;border-left:.5rem solid #000;-webkit-transform:translateZ(0);-ms-transform:translateZ(0);transform:translateZ(0);-webkit-animation:nuxtLoading 1.1s infinite linear;animation:nuxtLoading 1.1s infinite linear}#nuxt-loading.error>div{border-left:.5rem solid #ff4500;animation-duration:5s}@-webkit-keyframes nuxtLoading{0%{-webkit-transform:rotate(0);transform:rotate(0)}100%{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}@keyframes nuxtLoading{0%{-webkit-transform:rotate(0);transform:rotate(0)}100%{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}</style><script>window.addEventListener("error",function(){var e=document.getElementById("nuxt-loading");e&&(e.className+=" error")})</script><div id="nuxt-loading" aria-live="polite" role="status"><div>Loading...</div></div></div><script>window.__NUXT__={config:{_app:{basePath:"/",assetsPath:"/_nuxt/",cdnURL:null},nuxtSocketIO:{s

Found 2024-06-16 by HttpPlugin

Create report

Open service 162.0.216.97:8080

2024-06-15 18:58

HTTP/1.1 200 OK
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 30 Jan 2024 05:34:28 GMT
ETag: W/"360-18d58dc96a0"
Content-Type: text/html; charset=UTF-8
Content-Length: 864
Date: Sat, 15 Jun 2024 18:58:09 GMT
Connection: close

Page title: NEPVENT API

<!DOCTYPE html>
<html lang="en">
<head>
    <link rel="icon" type="image/x-icon" href="images/favicon.ico">
    <meta charset="UTF-8">
    <title>NEPVENT API</title>
</head>
<body>
<style>
    body {
        padding: 0;
        margin: 0;
    }

    .login-page {
        position: relative;

        background: linear-gradient(to right, #46dcf8, #2250e4);
        width: 100%;
        min-height: 100vh;
    }

    .l-logo {
        position: absolute;
        transform: translate(-50%, -50%);
        left: 50%;
        top: 50%
    }

    .l-logo img {
        width: 1500px;
        display: block;
        margin: auto;
        max-width: 100%;
    }
</style>

<div class="login-page">
    <div class="l-logo">
        <img src="images/nepvent-logo-white.png" class="img-fluid">
    </div>
</div>
</body>
</html>

Found 2024-06-15 by HttpPlugin

Create report

Open service 162.0.216.97:5000

2024-06-15 06:10

HTTP/1.1 404 Not Found
Date: Sat, 15 Jun 2024 06:10:13 GMT
Connection: close
Transfer-Encoding: chunked

Found 2024-06-15 by HttpPlugin

Create report

Open service 162.0.216.97:8081

2024-06-13 19:39

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Content-Length: 63
ETag: W/"3f-GR0G8sZfNVmVbqqGkyrPOefU7Ys"
Date: Thu, 13 Jun 2024 19:39:51 GMT
Connection: close


{"statusCode":404,"message":"Cannot GET /","error":"Not Found"}

Found 2024-06-13 by HttpPlugin

Create report

Open service 162.0.216.97:8082

2024-06-13 19:01

HTTP/1.1 404 Not Found
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Content-Length: 63
ETag: W/"3f-GR0G8sZfNVmVbqqGkyrPOefU7Ys"
Date: Thu, 13 Jun 2024 19:01:55 GMT
Connection: close


{"statusCode":404,"message":"Cannot GET /","error":"Not Found"}

Found 2024-06-13 by HttpPlugin

Create report

Open service 162.0.216.97:8080

2024-06-12 19:52

HTTP/1.1 200 OK
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Tue, 30 Jan 2024 05:34:28 GMT
ETag: W/"360-18d58dc96a0"
Content-Type: text/html; charset=UTF-8
Content-Length: 864
Date: Wed, 12 Jun 2024 19:52:33 GMT
Connection: close

Page title: NEPVENT API

<!DOCTYPE html>
<html lang="en">
<head>
    <link rel="icon" type="image/x-icon" href="images/favicon.ico">
    <meta charset="UTF-8">
    <title>NEPVENT API</title>
</head>
<body>
<style>
    body {
        padding: 0;
        margin: 0;
    }

    .login-page {
        position: relative;

        background: linear-gradient(to right, #46dcf8, #2250e4);
        width: 100%;
        min-height: 100vh;
    }

    .l-logo {
        position: absolute;
        transform: translate(-50%, -50%);
        left: 50%;
        top: 50%
    }

    .l-logo img {
        width: 1500px;
        display: block;
        margin: auto;
        max-width: 100%;
    }
</style>

<div class="login-page">
    <div class="l-logo">
        <img src="images/nepvent-logo-white.png" class="img-fluid">
    </div>
</div>
</body>
</html>

Found 2024-06-12 by HttpPlugin

Create report

rms.nepvent.com

Fingerprint:

4e17956360169702d115f3d5555551d9ea75bbd708338395aa0b8bacb3711fca

CN:

rms.nepvent.com

Key:

ECDSA-256

Issuer:

Not before:

2024-05-15 03:49

Not after:

2024-08-13 03:49

Data leak

Size

0 B

Collections

Rows

Domain summary

No record

Host 162.0.216.97

United States

Software information

Redis instance is public

MacOS file listing through .DS_Store file

Create report

Create report

Create report

Create report

Create report

Create report

rms.nepvent.com

Data leak

Domain summary