nginx 1.22.0
tcp/443 tcp/80
MongoDB is currently open without authentication.
This results in all the database data made available publicly.
Severity: medium
Fingerprint: 436d217a47ab4258ae3045bd9027ae5c0d7b4a9846067ce946067ce946067ce9
Collections: 3, document count: 2, size: 680 B Found collection READ__ME_TO_RECOVER_YOUR_DATA.GODRANSOM with 1 documents (621 B) Found collection admin.system.version with 1 documents (59 B) Found collection config.system.sessions with 0 documents (0 B)
MySQL is currently open without authentication.
This results in all the database data made available publicly.
Severity: high
Fingerprint: cf350410ecceb5fd9d05da95eaec281e17223a4b8551fce1054f651a92854c80
Databases: 194, row count: 76069456, size: 4.4 GB Found table PSP.DATABASECHANGELOG with 54 records Found table PSP.DATABASECHANGELOGLOCK with 0 records Found table PSP.activity with 0 records Found table PSP.airport with 3534 records Found table PSP.analytics with 555541 records Found table PSP.auth_group with 0 records Found table PSP.auth_group_permissions with 0 records Found table PSP.auth_permission with 120 records Found table PSP.auth_user with 0 records Found table PSP.auth_user_groups with 0 records Found table PSP.auth_user_user_permissions with 0 records Found table PSP.block_user with 0 records Found table PSP.cab_booking with 164 records Found table PSP.cab_transaction with 22 records Found table PSP.card_label with 0 records Found table PSP.catering_charges with 18584 records Found table PSP.catering_charges_backup with 13839 records Found table PSP.catering_charges_old with 13843 records Found table PSP.cell_tower with 5897280 records Found table PSP.chart_prep with 54100 records Found table PSP.chart_prep_copy with 60480 records Found table PSP.city with 17112 records Found table PSP.city_gozo_mapping with 1628 records Found table PSP.city_wego_mapping with 547 records Found table PSP.collection with 0 records Found table PSP.collection_revision with 0 records Found table PSP.concession with 86 records Found table PSP.core_session with 0 records Found table PSP.core_user with 0 records Found table PSP.crowdsource_coach_position with 17 records Found table PSP.crowdsource_platform with 47 records Found table PSP.dashboard_favorite with 0 records Found table PSP.dashboardcard_series with 0 records Found table PSP.data_migrations with 16 records Found table PSP.dependency with 0 records Found table PSP.device_location with 14944093 records Found table PSP.django_admin_log with 876 records Found table PSP.django_content_type with 40 records Found table PSP.django_migrations with 61 records Found table PSP.django_session with 273 records Found table PSP.django_site with 0 records Found table PSP.experiment with 0 records Found table PSP.experiment_type with 4 records Found table PSP.experiment_user_mapping with 16 records Found table PSP.fare_express with 240 records Found table PSP.fare_garibrath with 180 records Found table PSP.fare_general with 240 records Found table PSP.fare_janshatabdi with 150 records Found table PSP.fare_rajdhani with 210 records Found table PSP.fare_shatabdi with 130 records Found table PSP.fare_t18 with 130 records Found table PSP.favourite_train with 2 records Found table PSP.feedback with 274599 records Found table PSP.irctc_booking with 5448 records Found table PSP.irctc_booking_dest_address with 2537 records Found table PSP.irctc_booking_source with 0 records Found table PSP.irctc_cancellation with 292 records Found table PSP.irctc_coupon with 5 records Found table PSP.irctc_gateway_refund with 107324 records Found table PSP.irctc_gst with 10635 records Found table PSP.irctc_invoice with 303337 records Found table PSP.irctc_passenger with 871813 records Found table PSP.irctc_payment with 2267 records Found table PSP.irctc_report_cancel with 0 records Found table PSP.irctc_report_cancel_refund with 0 records Found table PSP.irctc_report_tdr with 0 records Found table PSP.irctc_tdr with 5443 records Found table PSP.irctc_user with 480609 records Found table PSP.label with 0 records Found table PSP.merge_route_train_mapping with 71 records Found table PSP.metabase_database with 0 records Found table PSP.metabase_field with 34 records Found table PSP.metabase_fieldvalues with 10 records Found table PSP.metabase_table with 4 records Found table PSP.metric with 0 records Found table PSP.metric_important_field with 0 records Found table PSP.network_provider with 0 records Found table PSP.oauth2_provider_accesstoken with 2791916 records Found table PSP.oauth2_provider_application with 3 records Found table PSP.oauth2_provider_grant with 0 records Found table PSP.oauth2_provider_refreshtoken with 2912323 records Found table PSP.offer with 1 records Found table PSP.permissions with 3 records Found table PSP.permissions_group with 3 records Found table PSP.permissions_group_membership with 0 records Found table PSP.permissions_revision with 0 records Found table PSP.pnr_searches with 152487 records Found table PSP.pulse with 0 records Found table PSP.pulse_card with 0 records Found table PSP.pulse_channel with 0 records Found table PSP.pulse_channel_recipient with 0 records Found table PSP.query with 0 records Found table PSP.query_cache with 0 records Found table PSP.query_execution with 0 records Found table PSP.raw_column with 36 records Found table PSP.raw_table with 5 records Found table PSP.referral_avail_referralstatic with 39 records Found table PSP.referral_code with 386 records Found table PSP.referral_invitation with 111 records Found table PSP.referral_map with 34 records Found table PSP.referral_static with 2 records Found table PSP.referral_static_config with 2 records Found table PSP.report_card with 0 records Found table PSP.report_cardfavorite with 0 records Found table PSP.report_dashboard with 0 records Found table PSP.report_dashboardcard with 0 records Found table PSP.reset_password with 1236211 records Found table PSP.revision with 0 records Found table PSP.rs_feedback with 27347 records Found table PSP.rs_temp with 266 records Found table PSP.running_status_location with 244 records Found table PSP.segment with 0 records Found table PSP.setting with 0 records Found table PSP.social_auth_association with 0 records Found table PSP.social_auth_code with 0 records Found table PSP.social_auth_nonce with 0 records Found table PSP.social_auth_usersocialauth with 160995 records Found table PSP.split_route_train_mapping with 94 records Found table PSP.station_description with 0 records Found table PSP.station_tower_distance with 9894298 records Found table PSP.std with 0 records Found table PSP.tm_cash_balance with 326 records Found table PSP.tm_cash_payment with 180 records Found table PSP.tm_cash_refund with 2024 records Found table PSP.tm_cash_transaction with 717 records Found table PSP.tm_cash_type with 3 records Found table PSP.train with 19591 records Found table PSP.train_category with 10 records Found table PSP.train_schedule with 1631873 records Found table PSP.train_station with 11329 records Found table PSP.train_tower_mapping with 30448800 records Found table PSP.unomer_survey with 7 records Found table PSP.update_train_station with 9958 records Found table PSP.user with 1301579 records Found table PSP.user_app with 77687 records Found table PSP.user_device_mapping with 1728956 records Found table PSP.user_otp with 2950 records Found table PSP.version_specifics with 32 records Found table PSP.widget with 12 records Found table PSP.widget_type with 8 records Found table infobyte.bytes with 32 records Found table infobyte.core_store with 21 records Found table infobyte.impressions with 2912 records Found table infobyte.responses with 67 records Found table infobyte.strapi_administrator with 2 records Found table infobyte.strapi_webhooks with 0 records Found table infobyte.upload_file with 45 records Found table infobyte.upload_file_morph with 32 records Found table infobyte.users-permissions_permission with 168 records Found table infobyte.users-permissions_role with 2 records Found table infobyte.users-permissions_user with 21 records Found table mysql.columns_priv with 0 records Found table mysql.db with 8 records Found table mysql.engine_cost with 2 records Found table mysql.event with 0 records Found table mysql.func with 0 records Found table mysql.general_log with 2 records Found table mysql.gtid_executed with 2 records Found table mysql.help_category with 40 records Found table mysql.help_keyword with 871 records Found table mysql.help_relation with 1491 records Found table mysql.help_topic with 654 records Found table mysql.innodb_index_stats with 1733 records Found table mysql.innodb_table_stats with 164 records Found table mysql.ndb_binlog_index with 0 records Found table mysql.plugin with 1 records Found table mysql.proc with 48 records Found table mysql.procs_priv with 0 records Found table mysql.proxies_priv with 1 records Found table mysql.server_cost with 6 records Found table mysql.servers with 0 records Found table mysql.slave_master_info with 0 records Found table mysql.slave_relay_log_info with 0 records Found table mysql.slave_worker_info with 0 records Found table mysql.slow_log with 2 records Found table mysql.tables_priv with 2 records Found table mysql.time_zone with 0 records Found table mysql.time_zone_leap_second with 0 records Found table mysql.time_zone_name with 0 records Found table mysql.time_zone_transition with 0 records Found table mysql.time_zone_transition_type with 0 records Found table mysql.user with 10 records Found table quiz.auth_group with 0 records Found table quiz.auth_group_permissions with 0 records Found table quiz.auth_permission with 24 records Found table quiz.auth_user with 0 records Found table quiz.auth_user_groups with 0 records Found table quiz.auth_user_user_permissions with 0 records Found table quiz.category with 15 records Found table quiz.django_admin_log with 0 records Found table quiz.django_content_type with 8 records Found table quiz.django_migrations with 13 records Found table quiz.django_session with 0 records Found table quiz.question with 122 records
Open service 174.138.121.138:22
2024-06-20 01:34
Open service 174.138.121.138:80
2024-06-13 21:07
HTTP/1.1 404 Not Found Server: nginx/1.22.0 (Ubuntu) Date: Thu, 13 Jun 2024 21:07:46 GMT Content-Type: text/html Content-Length: 564 Connection: close Page title: 404 Not Found <html> <head><title>404 Not Found</title></head> <body> <center><h1>404 Not Found</h1></center> <hr><center>nginx/1.22.0 (Ubuntu)</center> </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page --> <!-- a padding to disable MSIE and Chrome friendly error page -->
Open service 174.138.121.138:443 · prowurk.com
2024-06-13 21:01
HTTP/1.1 301 Moved Permanently Server: nginx/1.22.0 (Ubuntu) Date: Thu, 13 Jun 2024 21:01:48 GMT Content-Type: text/html Content-Length: 178 Connection: close Location: https://www.prowurk.com/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.22.0 (Ubuntu)</center> </body> </html>
Open service 174.138.121.138:80 · prowurk.com
2024-06-13 21:01
HTTP/1.1 301 Moved Permanently Server: nginx/1.22.0 (Ubuntu) Date: Thu, 13 Jun 2024 21:01:45 GMT Content-Type: text/html Content-Length: 178 Connection: close Location: https://www.prowurk.com/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.22.0 (Ubuntu)</center> </body> </html>
Open service 174.138.121.138:80 · www.prowurk.com
2024-06-13 21:01
HTTP/1.1 301 Moved Permanently Server: nginx/1.22.0 (Ubuntu) Date: Thu, 13 Jun 2024 21:01:45 GMT Content-Type: text/html Content-Length: 178 Connection: close Location: https://www.prowurk.com/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx/1.22.0 (Ubuntu)</center> </body> </html>
Open service 174.138.121.138:443 · www.prowurk.com
2024-06-13 21:01
HTTP/1.1 200 OK Server: nginx/1.22.0 (Ubuntu) Date: Thu, 13 Jun 2024 21:01:49 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff ETag: W/"4bc20c3a6b27fc31af7c6957f120cea5" Cache-Control: max-age=0, private, must-revalidate Set-Cookie: _work_session=dlprM2NzSlB3b3hVeE1aNXJuQnBGdG9ER0g2NHIvTTR4c3UvMXIrZkFVQW80NFJvMEswYWJ6SXp3Nm5jUDYyazV0d0I5WmFxNnA3NE5HZC9SZHV3UlBva0doU1pCaWwyQjNoNzloQ0NscHJWVFFyUnpJY2VKSk1GK2R0NGgvUGFyaXhlSzh2Y1RaVEN3R1BUUmIreWxRPT0tLUc1eGtkTjFiaXE0cVJMVjF4STdRZ3c9PQ%3D%3D--fa72cad45f682cd1115b23e13dce42aa789c7364; path=/; HttpOnly X-Request-Id: b885fccc-2fb3-4e7f-a7b5-6d71ab3f9ddb X-Runtime: 0.082982 vary: Origin
Open service 174.138.121.138:443
2024-06-13 05:17
HTTP/1.1 200 OK Server: nginx/1.22.0 (Ubuntu) Date: Thu, 13 Jun 2024 05:17:06 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff ETag: W/"6560cc41f0a6f4c1bd77f172a27ccf7d" Cache-Control: max-age=0, private, must-revalidate Set-Cookie: _work_session=RmJWb2tNSE15a2s2eXRsR1FCVTZValNHcVZWRkhQQVVXV2U2SmtuYnRxUVNzN0RNdEtiWWdPdDkvVm1YU3QvcG8wOTRPd1dzZjFEcTZ0TnJFMHdiQU11VFFGb3YvTWdweUJEekZ2WGZGbXc4b0Z5eDNaemtsQXEvSFVJdXRnT0R0bEZ6Qk1nMjV3SUhTNjQ5RU12SmZnPT0tLXg3UjRjaWRmbjQ1U0VDL2hVa0djR3c9PQ%3D%3D--9c0d4a78468cea1e301b82f02f42902114f8ce92; path=/; HttpOnly X-Request-Id: 0b989047-2dd8-4a7c-9a86-3f4aab0ee347 X-Runtime: 0.089957 vary: Origin
Open service 174.138.121.138:443
2024-06-02 17:24
HTTP/1.1 200 OK Server: nginx/1.22.0 (Ubuntu) Date: Sun, 02 Jun 2024 17:24:09 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff ETag: W/"479b8554b998cca9230d9519f8ee6715" Cache-Control: max-age=0, private, must-revalidate Set-Cookie: _work_session=ek1BYWlmSUFwMVlIMmhxa3paZzdLYVRJSXlTaUtqWFBSa2JkeWxHdi9TWkV4ODZVU1BRM3ZXSlBmVnN0UmxWTGwzUDZPY2xOeEViUDJlZS9ZWEVRdHpzM1o4aGwxOFYxU3JIbTVUTlRhUDFVTTVVTzB2aGhWbUI0VjBra0RiRUZYQXdCMWRsaW93VVBpQmRTbjdOMzBnPT0tLXdESVBuNXFrWGxydmh6UGxvdHEzUXc9PQ%3D%3D--d62c52d08e6bbe95ad20cf11e8646658bc71d0d0; path=/; HttpOnly X-Request-Id: 31fff876-517a-4970-9519-69fc4a620cf2 X-Runtime: 0.011315 vary: Origin