LeakIX - Host 223.68.141.147

Host 223.68.141.147

China

China Mobile communications corporation

Software information

nginx nginx

tcp/8001 tcp/8090

Gitlab instance looks outdated
The following Gitlab instance is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible to avoid account takeover.

Severity is mitigated by the need of a valid email address.

Reference:

https://www.cvedetails.com/cve/CVE-2023-7028
IP: 223.68.141.147
Port: 8090
URL: http://223.68.141.147:8090

First seen 2024-10-28 11:27
Last seen 2024-12-22 01:00
Open for 54 days
- Severity: high
  Fingerprint: db64c48d331961cce5776b3a892edddd892edddd892edddd892edddd892edddd
```
Found vulnerable Gitlab instance
Affected by CVE-2023-7028
```
  Found on 2024-12-22 01:00
Create report

Open service 223.68.141.147:8090

2024-12-22 01:00

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 22 Dec 2024 01:00:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: http://223.68.141.147/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JFNY1YY377HD32AZREEJYW3S","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JFNY1YY377HD32AZREEJYW3S
X-Runtime: 0.036817
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="http://223.68.141.147/users/sign_in">redirected</a>.</body></html>

Found 10 hours ago by HttpPlugin

Create report

Open service 223.68.141.147:8090

2024-12-20 00:31

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 20 Dec 2024 00:31:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: http://223.68.141.147/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JFGQKEFNFATYN42KZ791BVP9","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JFGQKEFNFATYN42KZ791BVP9
X-Runtime: 0.035146
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="http://223.68.141.147/users/sign_in">redirected</a>.</body></html>

Found 2 days ago by HttpPlugin

Create report

Open service 223.68.141.147:8090

2024-12-18 01:42

HTTP/1.1 302 Found
Server: nginx
Date: Wed, 18 Dec 2024 01:42:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: http://223.68.141.147/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JFBPX57X975PDDF8X49NSRCS","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JFBPX57X975PDDF8X49NSRCS
X-Runtime: 0.036017
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="http://223.68.141.147/users/sign_in">redirected</a>.</body></html>

Found 2024-12-18 by HttpPlugin

Create report

Open service 223.68.141.147:2222

2024-12-17 21:24
Found 2024-12-17 by SSHOpenPlugin
Create report

Open service 223.68.141.147:8001

2024-12-17 20:09

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 17 Dec 2024 20:10:00 GMT
Content-Type: text/html
Content-Length: 138
Connection: close
Location: http://223.68.141.147/welcome/

Page title: 302 Found

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx</center>
</body>
</html>

Found 2024-12-17 by HttpPlugin

Create report

Open service 223.68.141.147:8090

2024-12-15 23:53

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 15 Dec 2024 23:53:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: http://223.68.141.147/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JF6BV7XD42XBBKC4DFHX22XT","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JF6BV7XD42XBBKC4DFHX22XT
X-Runtime: 0.038457
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="http://223.68.141.147/users/sign_in">redirected</a>.</body></html>

Found 2024-12-15 by HttpPlugin

Create report

Open service 223.68.141.147:8090

2024-12-14 00:04

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 14 Dec 2024 00:04:51 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: http://223.68.141.147/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JF17PX9NMD1HKCDP6QEFH24M","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JF17PX9NMD1HKCDP6QEFH24M
X-Runtime: 0.043624
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="http://223.68.141.147/users/sign_in">redirected</a>.</body></html>

Found 2024-12-14 by HttpPlugin

Create report

Open service 223.68.141.147:8090

2024-12-12 00:57

HTTP/1.1 302 Found
Server: nginx
Date: Thu, 12 Dec 2024 00:57:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: http://223.68.141.147/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JEW5X6Q0TTVTKD82J4Q90X3F","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JEW5X6Q0TTVTKD82J4Q90X3F
X-Runtime: 0.021601
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="http://223.68.141.147/users/sign_in">redirected</a>.</body></html>

Found 2024-12-12 by HttpPlugin

Create report

Open service 223.68.141.147:8090

2024-12-02 01:05

HTTP/1.1 302 Found
Server: nginx
Date: Mon, 02 Dec 2024 01:05:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: http://223.68.141.147/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JE2EDW4P5VVCK898HYHF6XQH","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JE2EDW4P5VVCK898HYHF6XQH
X-Runtime: 0.014104
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="http://223.68.141.147/users/sign_in">redirected</a>.</body></html>

Found 2024-12-02 by HttpPlugin

Create report

Open service 223.68.141.147:8090

2024-11-30 00:53

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 30 Nov 2024 00:53:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: http://223.68.141.147/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JDX8XR2ZPMNC0KS2CR6KH1XX","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JDX8XR2ZPMNC0KS2CR6KH1XX
X-Runtime: 0.033797
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="http://223.68.141.147/users/sign_in">redirected</a>.</body></html>

Found 2024-11-30 by HttpPlugin

Create report

Open service 223.68.141.147:8090

2024-11-28 00:45

HTTP/1.1 302 Found
Server: nginx
Date: Thu, 28 Nov 2024 00:45:11 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 101
Connection: close
Cache-Control: no-cache
Content-Security-Policy: 
Location: http://223.68.141.147/users/sign_in
Permissions-Policy: interest-cohort=()
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gitlab-Meta: {"correlation_id":"01JDR3N9780RJ0XWKTB5ZB547B","version":"1"}
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01JDR3N9780RJ0XWKTB5ZB547B
X-Runtime: 0.033548
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=63072000
Referrer-Policy: strict-origin-when-cross-origin


<html><body>You are being <a href="http://223.68.141.147/users/sign_in">redirected</a>.</body></html>

Found 2024-11-28 by HttpPlugin

Create report

Domain summary

No record

Host 223.68.141.147

China

Software information

Gitlab instance looks outdated

Domain summary