Host 212.127.50.241
Germany
Software information
nginx
tcp/8080
-
Gitlab instance looks outdated
The following Gitlab instance is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible to avoid account takeover.
Severity is mitigated by the need of a valid email address.
Reference:
First seen 2024-09-09 13:00
Last seen 2024-12-22 00:59
Open for 103 days-
Severity: high
Fingerprint: db64c48d331961cce5776b3a892edddd892edddd892edddd892edddd892eddddFound vulnerable Gitlab instance Affected by CVE-2023-7028
Found on 2024-12-22 00:59
-
-
Open service 212.127.50.241:8080
2024-12-22 00:59
HTTP/1.1 302 Found Server: nginx Date: Sun, 22 Dec 2024 00:59:56 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://212.127.50.241/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFNY1GXZT4Y68RSFTHZXS7DM","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFNY1GXZT4Y68RSFTHZXS7DM X-Runtime: 0.078420 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="http://212.127.50.241/users/sign_in">redirected</a>.</body></html>Found 9 hours ago by HttpPluginCreate report
-
Open service 212.127.50.241:8080
2024-12-20 00:33
HTTP/1.1 302 Found Server: nginx Date: Fri, 20 Dec 2024 00:33:24 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://212.127.50.241/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFGQQGE1TZY66NJRRN1SJS1Z","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFGQQGE1TZY66NJRRN1SJS1Z X-Runtime: 0.032748 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="http://212.127.50.241/users/sign_in">redirected</a>.</body></html>Found 2 days ago by HttpPluginCreate report
-
Open service 212.127.50.241:8080
2024-12-18 01:48
HTTP/1.1 302 Found Server: nginx Date: Wed, 18 Dec 2024 01:48:11 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://212.127.50.241/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFBQ709XVDW6JYTF6RHA9GPJ","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFBQ709XVDW6JYTF6RHA9GPJ X-Runtime: 0.040664 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="http://212.127.50.241/users/sign_in">redirected</a>.</body></html>Found 2024-12-18 by HttpPluginCreate report
-
Open service 212.127.50.241:8080
2024-12-17 18:47
HTTP/1.1 302 Found Server: nginx Date: Tue, 17 Dec 2024 18:47:30 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://212.127.50.241/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFAZ4PT37HT548P15WVD2000","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFAZ4PT37HT548P15WVD2000 X-Runtime: 0.078320 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="http://212.127.50.241/users/sign_in">redirected</a>.</body></html>Found 2024-12-17 by HttpPluginCreate report
-
Open service 212.127.50.241:8080
2024-12-15 21:37
HTTP/1.1 302 Found Server: nginx Date: Sun, 15 Dec 2024 21:37:54 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://212.127.50.241/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JF6438ZY1WYBZFBDCTHR2C4R","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JF6438ZY1WYBZFBDCTHR2C4R X-Runtime: 0.038301 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="http://212.127.50.241/users/sign_in">redirected</a>.</body></html>Found 2024-12-15 by HttpPluginCreate report
-
Open service 212.127.50.241:8080
2024-12-13 22:07
HTTP/1.1 302 Found Server: nginx Date: Fri, 13 Dec 2024 22:07:47 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://212.127.50.241/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JF110JEBTJ0J49GBSZSA8TT6","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JF110JEBTJ0J49GBSZSA8TT6 X-Runtime: 0.035430 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="http://212.127.50.241/users/sign_in">redirected</a>.</body></html>Found 2024-12-13 by HttpPluginCreate report
-
Open service 212.127.50.241:8080
2024-12-11 23:21
HTTP/1.1 302 Found Server: nginx Date: Wed, 11 Dec 2024 23:21:28 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://212.127.50.241/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JEW0E181CD4P4MCGNJ6XM08J","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JEW0E181CD4P4MCGNJ6XM08J X-Runtime: 0.077546 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="http://212.127.50.241/users/sign_in">redirected</a>.</body></html>Found 2024-12-11 by HttpPluginCreate report
-
Open service 212.127.50.241:8080
2024-12-01 23:22
HTTP/1.1 302 Found Server: nginx Date: Sun, 01 Dec 2024 23:22:03 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://212.127.50.241/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JE28FY3SZ43S1W7NFZ95BJ8W","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JE28FY3SZ43S1W7NFZ95BJ8W X-Runtime: 0.064711 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="http://212.127.50.241/users/sign_in">redirected</a>.</body></html>Found 2024-12-01 by HttpPluginCreate report
-
Open service 212.127.50.241:8080
2024-11-29 23:26
HTTP/1.1 302 Found Server: nginx Date: Fri, 29 Nov 2024 23:26:27 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://212.127.50.241/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JDX3YHGPH1T8SD5FFS1ZFDCB","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JDX3YHGPH1T8SD5FFS1ZFDCB X-Runtime: 0.066139 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="http://212.127.50.241/users/sign_in">redirected</a>.</body></html>Found 2024-11-29 by HttpPluginCreate report
-
Open service 212.127.50.241:8080
2024-11-27 23:59
HTTP/1.1 302 Found Server: nginx Date: Wed, 27 Nov 2024 23:59:37 GMT Content-Type: text/html; charset=utf-8 Content-Length: 101 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: http://212.127.50.241/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JDR11VA7KAGA7M6K72GHCY7H","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JDR11VA7KAGA7M6K72GHCY7H X-Runtime: 0.080503 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="http://212.127.50.241/users/sign_in">redirected</a>.</body></html>Found 2024-11-27 by HttpPluginCreate report