Host 44.216.160.3
United States
Software information
nginx
tcp/80
-
Gitlab instance looks outdated
The following Gitlab instance is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible to avoid account takeover.
Severity is mitigated by the need of a valid email address.
Reference:
First seen 2024-11-16 03:27
Last seen 2024-12-22 00:58
Open for 35 days-
Severity: high
Fingerprint: db64c48d331961cce5776b3a892edddd892edddd892edddd892edddd892eddddFound vulnerable Gitlab instance Affected by CVE-2023-7028
Found on 2024-12-22 00:58
-
-
Open service 44.216.160.3:80
2024-12-22 00:58
HTTP/1.1 302 Found Server: nginx Date: Sun, 22 Dec 2024 00:58:07 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://44.216.160.3/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFNXY6JQW2SG49PE1AFJBQF0","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFNXY6JQW2SG49PE1AFJBQF0 X-Runtime: 0.032764 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://44.216.160.3/users/sign_in">redirected</a>.</body></html>Found 10 hours ago by HttpPluginCreate report
-
Open service 44.216.160.3:80
2024-12-20 00:32
HTTP/1.1 302 Found Server: nginx Date: Fri, 20 Dec 2024 00:32:49 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://44.216.160.3/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFGQPERB0Q7V31S7TF7TT1ZF","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFGQPERB0Q7V31S7TF7TT1ZF X-Runtime: 0.012326 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://44.216.160.3/users/sign_in">redirected</a>.</body></html>Found 2 days ago by HttpPluginCreate report
-
Open service 44.216.160.3:80
2024-12-18 01:48
HTTP/1.1 302 Found Server: nginx Date: Wed, 18 Dec 2024 01:48:55 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://44.216.160.3/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JFBQ8BHHJP67RFCZ5CS9GF1R","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JFBQ8BHHJP67RFCZ5CS9GF1R X-Runtime: 0.013245 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://44.216.160.3/users/sign_in">redirected</a>.</body></html>Found 2024-12-18 by HttpPluginCreate report
-
Open service 44.216.160.3:80
2024-12-15 23:53
HTTP/1.1 302 Found Server: nginx Date: Sun, 15 Dec 2024 23:53:58 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://44.216.160.3/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JF6BWE1S3RC51XDJE4B6JKVZ","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JF6BWE1S3RC51XDJE4B6JKVZ X-Runtime: 0.014780 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://44.216.160.3/users/sign_in">redirected</a>.</body></html>Found 2024-12-15 by HttpPluginCreate report
-
Open service 44.216.160.3:80
2024-12-14 00:03
HTTP/1.1 302 Found Server: nginx Date: Sat, 14 Dec 2024 00:03:35 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://44.216.160.3/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JF17MKF2VRGA83KW68FAW0NH","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JF17MKF2VRGA83KW68FAW0NH X-Runtime: 0.032689 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://44.216.160.3/users/sign_in">redirected</a>.</body></html>Found 2024-12-14 by HttpPluginCreate report
-
Open service 44.216.160.3:80
2024-12-12 00:59
HTTP/1.1 302 Found Server: nginx Date: Thu, 12 Dec 2024 00:59:58 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://44.216.160.3/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JEW62D01JHEXWWSJ229YR8P7","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JEW62D01JHEXWWSJ229YR8P7 X-Runtime: 0.012565 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://44.216.160.3/users/sign_in">redirected</a>.</body></html>Found 2024-12-12 by HttpPluginCreate report
-
Open service 44.216.160.3:80
2024-12-01 23:41
HTTP/1.1 302 Found Server: nginx Date: Sun, 01 Dec 2024 23:41:06 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://44.216.160.3/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JE29JT71B0BPZQTAPZ33NJPT","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JE29JT71B0BPZQTAPZ33NJPT X-Runtime: 0.013162 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://44.216.160.3/users/sign_in">redirected</a>.</body></html>Found 2024-12-01 by HttpPluginCreate report
-
Open service 44.216.160.3:80
2024-11-29 22:16
HTTP/1.1 302 Found Server: nginx Date: Fri, 29 Nov 2024 22:16:01 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://44.216.160.3/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JDWZXK4FEQF99J4W9PWCHP4X","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JDWZXK4FEQF99J4W9PWCHP4X X-Runtime: 0.053355 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://44.216.160.3/users/sign_in">redirected</a>.</body></html>Found 2024-11-29 by HttpPluginCreate report
-
Open service 44.216.160.3:80
2024-11-20 16:51
HTTP/1.1 302 Found Server: nginx Date: Wed, 20 Nov 2024 16:51:51 GMT Content-Type: text/html; charset=utf-8 Content-Length: 100 Connection: close Cache-Control: no-cache Content-Security-Policy: Location: https://44.216.160.3/users/sign_in Permissions-Policy: interest-cohort=() X-Content-Type-Options: nosniff X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Gitlab-Meta: {"correlation_id":"01JD57SH6DVKS4H1ADGQ4KMZRF","version":"1"} X-Permitted-Cross-Domain-Policies: none X-Request-Id: 01JD57SH6DVKS4H1ADGQ4KMZRF X-Runtime: 0.032694 X-Ua-Compatible: IE=edge X-Xss-Protection: 1; mode=block Strict-Transport-Security: max-age=63072000 Referrer-Policy: strict-origin-when-cross-origin <html><body>You are being <a href="https://44.216.160.3/users/sign_in">redirected</a>.</body></html>Found 2024-11-20 by HttpPluginCreate report