PHPinfo page has been found in this directory. The PHPinfo page outputs a large amount of information about the current state of PHP.
This includes information about PHP compilation options and extensions, the PHP version, server information and environment (if compiled as a module), the PHP environment, OS version information, paths, master and local values of configuration options, HTTP headers, and the PHP License.
Environment variables may contain credentials.
Fingerprint: 2c44e2a6278fb0134173d6fa6f5810df118071adbac0bdd73e6147abe3f1b582
Found PHP info page: $_SERVER['HTTP_HOST'] = 195.234.215.58 $_SERVER['HTTP_USER_AGENT'] = l9explore/1.3.0 $_SERVER['HTTP_ACCEPT_ENCODING'] = gzip $_SERVER['HTTP_CONNECTION'] = close $_SERVER['PATH'] = /sbin:/usr/sbin:/bin:/usr/bin $_SERVER['SERVER_SIGNATURE'] = <address>Apache/2.2.27 (CentOS) Server at 195.234.215.58 Port 80</address> $_SERVER['SERVER_SOFTWARE'] = Apache/2.2.27 (CentOS) $_SERVER['SERVER_NAME'] = 195.234.215.58 $_SERVER['SERVER_ADDR'] = 195.234.215.58 $_SERVER['SERVER_PORT'] = 80 $_SERVER['REMOTE_ADDR'] = 143.198.136.88 $_SERVER['DOCUMENT_ROOT'] = /home/webmaster/vhosts/babyroom.ua/sources/web $_SERVER['SERVER_ADMIN'] = root@localhost $_SERVER['SCRIPT_FILENAME'] = /home/webmaster/vhosts/babyroom.ua/sources/web/info.php $_SERVER['REMOTE_PORT'] = 57962 $_SERVER['GATEWAY_INTERFACE'] = CGI/1.1 $_SERVER['SERVER_PROTOCOL'] = HTTP/1.1 $_SERVER['REQUEST_METHOD'] = GET $_SERVER['QUERY_STRING'] = no value $_SERVER['REQUEST_URI'] = /info.php $_SERVER['SCRIPT_NAME'] = /info.php $_SERVER['PHP_SELF'] = /info.php $_SERVER['REQUEST_TIME_FLOAT'] = 1635882472.194 $_SERVER['REQUEST_TIME'] = 1635882472
Fingerprint: 2c44e2a6278fb0134173d6fa6f5810df118071adbac0bdd73e6147abe4b40e6a
Found PHP info page: $_SERVER['HTTP_HOST'] = 195.234.215.58 $_SERVER['HTTP_USER_AGENT'] = l9explore/1.3.0 $_SERVER['HTTP_ACCEPT_ENCODING'] = gzip $_SERVER['HTTP_CONNECTION'] = close $_SERVER['PATH'] = /sbin:/usr/sbin:/bin:/usr/bin $_SERVER['SERVER_SIGNATURE'] = <address>Apache/2.2.27 (CentOS) Server at 195.234.215.58 Port 80</address> $_SERVER['SERVER_SOFTWARE'] = Apache/2.2.27 (CentOS) $_SERVER['SERVER_NAME'] = 195.234.215.58 $_SERVER['SERVER_ADDR'] = 195.234.215.58 $_SERVER['SERVER_PORT'] = 80 $_SERVER['REMOTE_ADDR'] = 161.35.86.181 $_SERVER['DOCUMENT_ROOT'] = /home/webmaster/vhosts/babyroom.ua/sources/web $_SERVER['SERVER_ADMIN'] = root@localhost $_SERVER['SCRIPT_FILENAME'] = /home/webmaster/vhosts/babyroom.ua/sources/web/info.php $_SERVER['REMOTE_PORT'] = 54112 $_SERVER['GATEWAY_INTERFACE'] = CGI/1.1 $_SERVER['SERVER_PROTOCOL'] = HTTP/1.1 $_SERVER['REQUEST_METHOD'] = GET $_SERVER['QUERY_STRING'] = no value $_SERVER['REQUEST_URI'] = /info.php $_SERVER['SCRIPT_NAME'] = /info.php $_SERVER['PHP_SELF'] = /info.php $_SERVER['REQUEST_TIME_FLOAT'] = 1635170913.141 $_SERVER['REQUEST_TIME'] = 1635170913
Fingerprint: 2c44e2a6278fb0134173d6fa6f5810df118071adbac0bdd73e6147ab1dede8d7
Found PHP info page: $_SERVER['HTTP_HOST'] = 195.234.215.58 $_SERVER['HTTP_USER_AGENT'] = l9explore/1.3.0 $_SERVER['HTTP_ACCEPT_ENCODING'] = gzip $_SERVER['HTTP_CONNECTION'] = close $_SERVER['PATH'] = /sbin:/usr/sbin:/bin:/usr/bin $_SERVER['SERVER_SIGNATURE'] = <address>Apache/2.2.27 (CentOS) Server at 195.234.215.58 Port 80</address> $_SERVER['SERVER_SOFTWARE'] = Apache/2.2.27 (CentOS) $_SERVER['SERVER_NAME'] = 195.234.215.58 $_SERVER['SERVER_ADDR'] = 195.234.215.58 $_SERVER['SERVER_PORT'] = 80 $_SERVER['REMOTE_ADDR'] = 161.35.86.181 $_SERVER['DOCUMENT_ROOT'] = /home/webmaster/vhosts/babyroom.ua/sources/web $_SERVER['SERVER_ADMIN'] = root@localhost $_SERVER['SCRIPT_FILENAME'] = /home/webmaster/vhosts/babyroom.ua/sources/web/info.php $_SERVER['REMOTE_PORT'] = 53214 $_SERVER['GATEWAY_INTERFACE'] = CGI/1.1 $_SERVER['SERVER_PROTOCOL'] = HTTP/1.1 $_SERVER['REQUEST_METHOD'] = GET $_SERVER['QUERY_STRING'] = no value $_SERVER['REQUEST_URI'] = /info.php $_SERVER['SCRIPT_NAME'] = /info.php $_SERVER['PHP_SELF'] = /info.php $_SERVER['REQUEST_TIME_FLOAT'] = 1633853820.65 $_SERVER['REQUEST_TIME'] = 1633853820
Fingerprint: 2c44e2a6278fb0134173d6fa6f5810df118071adbac0bdd73e6147abd938b1b2
Found PHP info page: $_SERVER['HTTP_HOST'] = 195.234.215.58 $_SERVER['HTTP_USER_AGENT'] = l9explore/1.3.0 $_SERVER['HTTP_ACCEPT_ENCODING'] = gzip $_SERVER['HTTP_CONNECTION'] = close $_SERVER['PATH'] = /sbin:/usr/sbin:/bin:/usr/bin $_SERVER['SERVER_SIGNATURE'] = <address>Apache/2.2.27 (CentOS) Server at 195.234.215.58 Port 80</address> $_SERVER['SERVER_SOFTWARE'] = Apache/2.2.27 (CentOS) $_SERVER['SERVER_NAME'] = 195.234.215.58 $_SERVER['SERVER_ADDR'] = 195.234.215.58 $_SERVER['SERVER_PORT'] = 80 $_SERVER['REMOTE_ADDR'] = 161.35.86.181 $_SERVER['DOCUMENT_ROOT'] = /home/webmaster/vhosts/babyroom.ua/sources/web $_SERVER['SERVER_ADMIN'] = root@localhost $_SERVER['SCRIPT_FILENAME'] = /home/webmaster/vhosts/babyroom.ua/sources/web/info.php $_SERVER['REMOTE_PORT'] = 50756 $_SERVER['GATEWAY_INTERFACE'] = CGI/1.1 $_SERVER['SERVER_PROTOCOL'] = HTTP/1.1 $_SERVER['REQUEST_METHOD'] = GET $_SERVER['QUERY_STRING'] = no value $_SERVER['REQUEST_URI'] = /info.php $_SERVER['SCRIPT_NAME'] = /info.php $_SERVER['PHP_SELF'] = /info.php $_SERVER['REQUEST_TIME_FLOAT'] = 1633089630.277 $_SERVER['REQUEST_TIME'] = 1633089630
The application has Symfony verbose mode enabled.
It enables an attacker to access the following sensitive content :
Fingerprint: 05ab011344cbe6686033e3d4060d712f66ce487d961bd13c0e4541a5b7b2e386
app_combiner_enabled: false app_combiner_subdomains: images: '' js: '' css: '' app_cript_key: ifyouwonabeokayfuckthedomnineveryday app_mail_bannerException: 'Warning, banner exception' app_mail_bannerRetrieve: 'Отказ от рекламы #%%id%%' app_mail_blockRegistered: 'Уведомление о новом блоке' app_mail_feedback: 'Обратная связь' app_mail_forgotPassword: 'Восстановление пароля' app_mail_passwordRestored: 'Пароль успешно восстановлен' app_mail_paymentRequest: 'Запрос на вывод денег' app_mail_purchaseNotification: 'Уведомление о платеже #%%id%%' app_mail_purchaseWarning: 'Информация о платеже' app_mail_siteAccept: 'Сайт прошел модерацию' app_mail_siteDecline: 'Сайт не прошел модерацию' app_mail_siteRegistered: 'Уведомление о новом сайте' app_mail_userConfirmation: 'Подтверждение регистрации' app_mail_userGreeting: Приветствие app_mail_userRegistered: 'Уведомление о новом пользователе' mod_glob_partial_view_class: Global sf_admin_module_web_dir: /sfPropelPlugin sf_admin_web_dir: /sf/sf_admin sf_app: frontend sf_app_base_cache_dir: /var/www/vhosts/livebanner.org/sources/cache/frontend sf_app_cache_dir: /var/www/vhosts/livebanner.org/sources/cache/frontend/dev sf_app_config_dir: /var/www/vhosts/livebanner.org/sources/apps/frontend/config sf_app_dir: /var/www/vhosts/livebanner.org/sources/apps/frontend sf_app_i18n_dir: /var/www/vhosts/livebanner.org/sources/apps/frontend/i18n sf_app_lib_dir: /var/www/vhosts/livebanner.org/sources/apps/frontend/lib sf_app_module_dir: /var/www/vhosts/livebanner.org/sources/apps/frontend/modules sf_app_template_dir: /var/www/vhosts/livebanner.org/sources/apps/frontend/templates sf_apps_dir: /var/www/vhosts/livebanner.org/sources/apps sf_assets_dir: /var/www/vhosts/livebanner.org/sources/public_html/uploads/assets sf_cache: true sf_cache_dir: /var/www/vhosts/livebanner.org/sources/cache sf_charset: utf-8 sf_check_lock: false sf_compressed: false sf_config_cache_dir: /var/www/vhosts/livebanner.org/sources/cache/frontend/dev/config sf_config_dir: /var/www/vhosts/livebanner.org/sources/config sf_csrf_secret: 112c7396cd4690de29bed921a2469a17252e2c8b sf_data_dir: /var/www/vhosts/livebanner.org/sources/data sf_debug: true sf_default_culture: en sf_enabled_modules: - exImage sf_environment: dev sf_error_404_action: error404 sf_error_404_module: default sf_error_reporting: 32767 sf_escaping_method: ESC_SPECIALCHARS sf_escaping_strategy: true sf_etag: false sf_file_link_format: null sf_i18n: false sf_i18n_cache_dir: /var/www/vhosts/livebanner.org/sources/cache/frontend/dev/i18n sf_lib_dir: /var/www/vhosts/livebanner.org/sources/lib sf_log_dir: /var/www/vhosts/livebanner.org/sources/log sf_logging_enabled: true sf_login_action: login sf_login_module: user sf_module_cache_dir: /var/www/vhosts/livebanner.org/sources/cache/frontend/dev/modules sf_module_disabled_action: disabled sf_module_disabled_module: default sf_no_script_name: false sf_notify_decorator: class: fpErrorNotifierDecoratorHtml options: { } sf_notify_driver: class: fpErrorNotifierDriverMixed options: { path: /var/www/vhosts/livebanner.org/sources/log/last-error/, to: burmistrov-alexander@ya.ru, from: hello@livebanner.org } sf_notify_handler: class: fpErrorNotifierHandlerIgnore options: { ignore_@: true } sf_notify_helper: class: fpErrorNotifierMessageHelper options: { } sf_notify_message: class: fpErrorNotifierMessage options: { } sf_orm: propel sf_plugins_dir: /var/www/vhosts/livebanner.org/sources/plugins sf_root_dir: /var/www/vhosts/livebanner.org/sources sf_secure_action: secure sf_secure_module: default sf_standard_helpers: - Partial - Custom - Number - Date sf_symfony_lib_dir: /var/www/vhosts/livebanner.org/sources/lib/vendor/symfony/lib sf_template_cache_dir: /var/www/vhosts/livebanner.org/sources/cache/frontend/dev/template sf_test_cache_dir: /var/www/vhosts/livebanner.org/sources/cache/frontend/dev/test sf_test_dir: /var/www/vhosts/livebanner.org/sources/test sf_upload_dir: /var/www/vhosts/livebanner.org/sources/public_html/uploads sf_use_database: true sf_web_debug: true sf_web_debug_web_dir: /sf/sf_web_debug sf_web_dir: /var/www/vhosts/livebanner.org/sources/public_html