LeakIX - Host 62.210.12.76

Host 62.210.12.76

France

Scaleway S.a.s.

Software information

Apache Apache

tcp/443 tcp/80

Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 62.210.12.76
Domain: dev.sirene.tech
Port: 443
URL: https://dev.sirene.tech/_profiler/empty/search/results

First seen 2022-09-20 14:58
Last seen 2024-04-10 15:03
Open for 568 days
- Fingerprint: 407cf4363b0e62fafca67e0714d1f76c14d1f76c14d1f76c14d1f76c14d1f76c
```
Symfony profiler enabled:
https://dev.sirene.tech/_profiler/empty/search/results
```
  Found on 2024-04-10 15:03
Create report
Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 62.210.12.76
Port: 443
URL: https://62.210.12.76/_profiler/empty/search/results

First seen 2021-12-03 01:56
Last seen 2024-04-10 14:26
Open for 859 days
- Fingerprint: 407cf4363b0e62fafca67e075570461255704612557046125570461255704612
```
Symfony profiler enabled:
https://62.210.12.76/_profiler/empty/search/results
```
  Found on 2024-04-10 14:26
Create report
Symfony developement panel enabled
The application has Symfony profiling enabled.

It enables an attacker to access the following sensitive content :

System configuration

Request log, including POST request with credentials and/or api keys
IP: 62.210.12.76
Domain: dev.sirene.tech
Port: 80
URL: http://dev.sirene.tech/_profiler/empty/search/results

First seen 2022-09-20 14:58
Last seen 2023-01-18 18:22
Open for 120 days
- Fingerprint: 407cf4363b0e62fafca67e072bc172472bc172472bc172472bc172472bc17247
```
Symfony profiler enabled:
http://dev.sirene.tech/_profiler/empty/search/results
```
  Found on 2022-09-20 14:58
Create report

Open service 62.210.12.76:443 · dev.sirene.tech

2024-04-10 15:03

HTTP/1.1 302 Found
Date: Wed, 10 Apr 2024 15:03:21 GMT
Server: Apache
Cache-Control: no-cache, private
Link: <https://dev.sirene.tech/api/docs.jsonld>; rel="http://www.w3.org/ns/hydra/core#apiDocumentation"
X-Debug-Token: 57b9fa
X-Debug-Token-Link: https://dev.sirene.tech/_profiler/57b9fa
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%2257b9fa%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CSecurityController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fsirene-dev%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FSecurityController.php%22%2C%22line%22%3A67%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Strict-Transport-Security: max-age=31536000
Upgrade: h2
Connection: Upgrade, close
Location: /login
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-04-10 by HttpPlugin

Create report

Open service 62.210.12.76:443

2024-04-10 14:26

HTTP/1.1 302 Found
Date: Wed, 10 Apr 2024 14:26:38 GMT
Server: Apache
Cache-Control: no-cache, private
Link: <https://62.210.12.76/api/docs.jsonld>; rel="http://www.w3.org/ns/hydra/core#apiDocumentation"
X-Debug-Token: 489408
X-Debug-Token-Link: https://62.210.12.76/_profiler/489408
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%22489408%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CSecurityController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fgeo-test%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FSecurityController.php%22%2C%22line%22%3A67%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Strict-Transport-Security: max-age=31536000
Upgrade: h2
Connection: Upgrade, close
Location: /login
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-04-10 by HttpPlugin

Create report

Open service 62.210.12.76:443

2024-03-21 09:54

HTTP/1.1 302 Found
Date: Thu, 21 Mar 2024 09:54:34 GMT
Server: Apache
Cache-Control: no-cache, private
Link: <https://62.210.12.76/api/docs.jsonld>; rel="http://www.w3.org/ns/hydra/core#apiDocumentation"
X-Debug-Token: fd2391
X-Debug-Token-Link: https://62.210.12.76/_profiler/fd2391
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%22fd2391%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CSecurityController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fgeo-test%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FSecurityController.php%22%2C%22line%22%3A67%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Strict-Transport-Security: max-age=31536000
Upgrade: h2
Connection: Upgrade, close
Location: /login
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-03-21 by HttpPlugin

Create report

Open service 62.210.12.76:443

2024-03-08 03:46

HTTP/1.1 302 Found
Date: Fri, 08 Mar 2024 03:46:34 GMT
Server: Apache
Cache-Control: no-cache, private
Link: <https://62.210.12.76/api/docs.jsonld>; rel="http://www.w3.org/ns/hydra/core#apiDocumentation"
X-Debug-Token: a922b3
X-Debug-Token-Link: https://62.210.12.76/_profiler/a922b3
X-Robots-Tag: noindex
Set-Cookie: sf_redirect=%7B%22token%22%3A%22a922b3%22%2C%22route%22%3A%22index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CSecurityController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fgeo-test%5C%2Fwww%5C%2Fsrc%5C%2FController%5C%2FSecurityController.php%22%2C%22line%22%3A67%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D; path=/; secure; httponly; samesite=lax
Strict-Transport-Security: max-age=31536000
Upgrade: h2
Connection: Upgrade, close
Location: /login
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Page title: Redirecting to /login

<!DOCTYPE html>
<html>
    <head>
        <meta charset="UTF-8" />
        <meta http-equiv="refresh" content="0;url='/login'" />

        <title>Redirecting to /login</title>
    </head>
    <body>
        Redirecting to <a href="/login">/login</a>.
    </body>
</html>

Found 2024-03-08 by HttpPlugin