LeakIX - Host 65.9.95.60

Host 65.9.95.60

United States

AMAZON-02

Ubuntu

Software information

AmazonS3

tcp/443

Apache Apache 2

tcp/443

CloudFront

tcp/443 tcp/80

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 65.9.95.60
Domain: www.malible.com
Port: 443
URL: https://www.malible.com

First seen 2025-09-14 03:03
Last seen 2026-01-14 21:30
Open for 122 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b77531ebf8607d23be0eae50c719f68f55

Found 128 files trough .DS_Store spidering:

/file.svg
/globe.svg
/images
/images/athleta-logo.svg
/images/avenue-logo.svg
/images/background.svg
/images/bg-aboutus.svg
/images/bg-contributors.svg
/images/bg-design-limits.manifest.json
/images/bg-design-limits.png
/images/bg-design-limits_w1080.avif
/images/bg-design-limits_w1080.jpeg
/images/bg-design-limits_w1080.webp
/images/bg-design-limits_w1200.avif
/images/bg-design-limits_w1200.jpeg
/images/bg-design-limits_w1200.webp
/images/bg-design-limits_w1440.avif
/images/bg-design-limits_w1440.jpeg
/images/bg-design-limits_w1440.webp
/images/bg-design-limits_w1920.avif
/images/bg-design-limits_w1920.jpeg
/images/bg-design-limits_w1920.webp
/images/bg-design-limits_w2048.avif
/images/bg-design-limits_w2048.jpeg
/images/bg-design-limits_w2048.webp
/images/bg-design-limits_w2560.avif
/images/bg-design-limits_w2560.jpeg
/images/bg-design-limits_w2560.webp
/images/bg-design-limits_w320.avif
/images/bg-design-limits_w320.jpeg
/images/bg-design-limits_w320.webp
/images/bg-design-limits_w3200.avif
/images/bg-design-limits_w3200.jpeg
/images/bg-design-limits_w3200.webp
/images/bg-design-limits_w3840.avif
/images/bg-design-limits_w3840.jpeg
/images/bg-design-limits_w3840.webp
/images/bg-design-limits_w480.avif
/images/bg-design-limits_w480.jpeg
/images/bg-design-limits_w480.webp
/images/bg-design-limits_w640.avif
/images/bg-design-limits_w640.jpeg
/images/bg-design-limits_w640.webp
/images/bg-design-limits_w750.avif
/images/bg-design-limits_w750.jpeg
/images/bg-design-limits_w750.webp
/images/bg-design-limits_w828.avif
/images/bg-design-limits_w828.jpeg
/images/bg-design-limits_w828.webp
/images/bg-newslatter.svg
/images/bg_hero.svg
/images/black-bg.svg
/images/blog-5.jpg
/images/blog-5.manifest.json
/images/blog-5.png
/images/blog-5_w1080.avif
/images/blog-5_w1080.jpeg
/images/blog-5_w1080.webp
/images/blog-5_w1200.avif
/images/blog-5_w1200.jpeg
/images/blog-5_w1200.webp
/images/blog-5_w1440.avif
/images/blog-5_w1440.jpeg
/images/blog-5_w1440.webp
/images/blog-5_w1920.avif
/images/blog-5_w1920.jpeg
/images/blog-5_w1920.webp
/images/blog-5_w2048.avif
/images/blog-5_w2048.jpeg
/images/blog-5_w2048.webp
/images/blog-5_w2560.avif
/images/blog-5_w2560.jpeg
/images/blog-5_w2560.webp
/images/blog-5_w320.avif
/images/blog-5_w320.jpeg
/images/blog-5_w320.webp
/images/blog-5_w3200.avif
/images/blog-5_w3200.jpeg
/images/blog-5_w3200.webp
/images/blog-5_w3840.avif
/images/blog-5_w3840.jpeg
/images/blog-5_w3840.webp
/images/blog-5_w480.avif
/images/blog-5_w480.jpeg
/images/blog-5_w480.webp
/images/blog-5_w640.avif
/images/blog-5_w640.jpeg
/images/blog-5_w640.webp
/images/blog-5_w750.avif
/images/blog-5_w750.jpeg
/images/blog-5_w750.webp
/images/blog-5_w828.avif
/images/blog-5_w828.jpeg
/images/blog-5_w828.webp
/images/blog-6.jpg
/images/blog-6.manifest.json
/images/blog-6.png
/images/blog-6_w1080.avif
/images/blog-6_w1080.jpeg
/images/blog-6_w1080.webp
/images/blog-6_w1200.avif
/images/blog-6_w1200.jpeg
/images/blog-6_w1200.webp
/images/blog-6_w1440.avif
/images/blog-6_w1440.jpeg
/images/blog-6_w1440.webp
/images/blog-6_w1920.avif
/images/blog-6_w1920.jpeg
/images/blog-6_w1920.webp
/images/blog-6_w2048.avif
/images/blog-6_w2048.jpeg
/images/blog-6_w2048.webp
/images/blog-6_w2560.avif
/images/blog-6_w2560.jpeg
/images/blog-6_w2560.webp
/images/blog-6_w320.avif
/images/blog-6_w320.jpeg
/images/blog-6_w320.webp
/images/blog-6_w3200.avif
/images/blog-6_w3200.jpeg
/images/blog-6_w3200.webp
/images/blog-6_w3840.avif
/images/blog-6_w3840.jpeg
/images/blog-6_w3840.webp
/images/blog-6_w480.avif
/images/blog-6_w480.jpeg
/images/blog-6_w480.webp
/images/blog-6_w640.avif

Found on 2026-01-14 21:30

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b77531ebf8607d23be0eae50c7ce2eded1

Found 128 files trough .DS_Store spidering:

/file.svg
/globe.svg
/images
/images/athleta-logo.svg
/images/avenue-logo.svg
/images/background.svg
/images/bg-aboutus.svg
/images/bg-contributors.svg
/images/bg-design-limits.manifest.json
/images/bg-design-limits.png
/images/bg-design-limits_w1080.avif
/images/bg-design-limits_w1080.jpeg
/images/bg-design-limits_w1080.webp
/images/bg-design-limits_w1200.avif
/images/bg-design-limits_w1200.jpeg
/images/bg-design-limits_w1200.webp
/images/bg-design-limits_w1440.avif
/images/bg-design-limits_w1440.jpeg
/images/bg-design-limits_w1440.webp
/images/bg-design-limits_w1920.avif
/images/bg-design-limits_w1920.jpeg
/images/bg-design-limits_w1920.webp
/images/bg-design-limits_w2048.avif
/images/bg-design-limits_w2048.jpeg
/images/bg-design-limits_w2048.webp
/images/bg-design-limits_w2560.avif
/images/bg-design-limits_w2560.jpeg
/images/bg-design-limits_w2560.webp
/images/bg-design-limits_w320.avif
/images/bg-design-limits_w320.jpeg
/images/bg-design-limits_w320.webp
/images/bg-design-limits_w3200.avif
/images/bg-design-limits_w3200.jpeg
/images/bg-design-limits_w3200.webp
/images/bg-design-limits_w3840.avif
/images/bg-design-limits_w3840.jpeg
/images/bg-design-limits_w3840.webp
/images/bg-design-limits_w480.avif
/images/bg-design-limits_w480.jpeg
/images/bg-design-limits_w480.webp
/images/bg-design-limits_w640.avif
/images/bg-design-limits_w640.jpeg
/images/bg-design-limits_w640.webp
/images/bg-design-limits_w750.avif
/images/bg-design-limits_w750.jpeg
/images/bg-design-limits_w750.webp
/images/bg-design-limits_w828.avif
/images/bg-design-limits_w828.jpeg
/images/bg-design-limits_w828.webp
/images/bg-newslatter.svg
/images/bg_hero.svg
/images/black-bg.svg
/images/bottom.png
/images/campaign.png
/images/code-overlay.svg
/images/Container-Main01.png
/images/cost-effective.svg
/images/create-barrel-logo.svg
/images/designed-for-all.svg
/images/designer-icon.manifest.json
/images/designer-icon.png
/images/designer-icon_w1080.avif
/images/designer-icon_w1080.jpeg
/images/designer-icon_w1080.webp
/images/designer-icon_w1200.avif
/images/designer-icon_w1200.jpeg
/images/designer-icon_w1200.webp
/images/designer-icon_w1440.avif
/images/designer-icon_w1440.jpeg
/images/designer-icon_w1440.webp
/images/designer-icon_w1920.avif
/images/designer-icon_w1920.jpeg
/images/designer-icon_w1920.webp
/images/designer-icon_w2048.avif
/images/designer-icon_w2048.jpeg
/images/designer-icon_w2048.webp
/images/designer-icon_w2560.avif
/images/designer-icon_w2560.jpeg
/images/designer-icon_w2560.webp
/images/designer-icon_w320.avif
/images/designer-icon_w320.jpeg
/images/designer-icon_w320.webp
/images/designer-icon_w3200.avif
/images/designer-icon_w3200.jpeg
/images/designer-icon_w3200.webp
/images/designer-icon_w3840.avif
/images/designer-icon_w3840.jpeg
/images/designer-icon_w3840.webp
/images/designer-icon_w480.avif
/images/designer-icon_w480.jpeg
/images/designer-icon_w480.webp
/images/designer-icon_w640.avif
/images/designer-icon_w640.jpeg
/images/designer-icon_w640.webp
/images/designer-icon_w750.avif
/images/designer-icon_w750.jpeg
/images/designer-icon_w750.webp
/images/designer-icon_w828.avif
/images/designer-icon_w828.jpeg
/images/designer-icon_w828.webp
/images/designers.svg
/images/dev-docs
/images/developer-icon.manifest.json
/images/developer-icon.png
/images/developer-icon_w1080.avif
/images/developer-icon_w1080.jpeg
/images/developer-icon_w1080.webp
/images/developer-icon_w1200.avif
/images/developer-icon_w1200.jpeg
/images/developer-icon_w1200.webp
/images/developer-icon_w1440.avif
/images/developer-icon_w1440.jpeg
/images/developer-icon_w1440.webp
/images/developer-icon_w1920.avif
/images/developer-icon_w1920.jpeg
/images/developer-icon_w1920.webp
/images/developer-icon_w2048.avif
/images/developer-icon_w2048.jpeg
/images/developer-icon_w2048.webp
/images/developer-icon_w2560.avif
/images/developer-icon_w2560.jpeg
/images/developer-icon_w2560.webp
/images/developer-icon_w320.avif
/images/developer-icon_w320.jpeg
/images/developer-icon_w320.webp
/images/developer-icon_w3200.avif
/images/developer-icon_w3200.jpeg
/images/developer-icon_w3200.webp

Found on 2026-01-13 21:24

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7fa73b310f76eddd36537eebf7bb5d948

Found 128 files trough .DS_Store spidering:

/images
/images/athleta-logo.svg
/images/avenue-logo.svg
/images/background.svg
/images/bg-aboutus.svg
/images/bg-contributors.svg
/images/bg-design-limits.manifest.json
/images/bg-design-limits.png
/images/bg-design-limits_w1080.avif
/images/bg-design-limits_w1080.jpeg
/images/bg-design-limits_w1080.webp
/images/bg-design-limits_w1200.avif
/images/bg-design-limits_w1200.jpeg
/images/bg-design-limits_w1200.webp
/images/bg-design-limits_w1440.avif
/images/bg-design-limits_w1440.jpeg
/images/bg-design-limits_w1440.webp
/images/bg-design-limits_w1920.avif
/images/bg-design-limits_w1920.jpeg
/images/bg-design-limits_w1920.webp
/images/bg-design-limits_w2048.avif
/images/bg-design-limits_w2048.jpeg
/images/bg-design-limits_w2048.webp
/images/bg-design-limits_w2560.avif
/images/bg-design-limits_w2560.jpeg
/images/bg-design-limits_w2560.webp
/images/bg-design-limits_w320.avif
/images/bg-design-limits_w320.jpeg
/images/bg-design-limits_w320.webp
/images/bg-design-limits_w3200.avif
/images/bg-design-limits_w3200.jpeg
/images/bg-design-limits_w3200.webp
/images/bg-design-limits_w3840.avif
/images/bg-design-limits_w3840.jpeg
/images/bg-design-limits_w3840.webp
/images/bg-design-limits_w480.avif
/images/bg-design-limits_w480.jpeg
/images/bg-design-limits_w480.webp
/images/bg-design-limits_w640.avif
/images/bg-design-limits_w640.jpeg
/images/bg-design-limits_w640.webp
/images/bg-design-limits_w750.avif
/images/bg-design-limits_w750.jpeg
/images/bg-design-limits_w750.webp
/images/bg-design-limits_w828.avif
/images/bg-design-limits_w828.jpeg
/images/bg-design-limits_w828.webp
/images/bg-newslatter.svg
/images/bg_hero.svg
/images/black-bg.svg
/images/bottom.png
/images/campaign.png
/images/code-overlay.svg
/images/Container-Main01.png
/images/cost-effective.svg
/images/create-barrel-logo.svg
/images/designed-for-all.svg
/images/designer-icon.manifest.json
/images/designer-icon.png
/images/designer-icon_w1080.avif
/images/designer-icon_w1080.jpeg
/images/designer-icon_w1080.webp
/images/designer-icon_w1200.avif
/images/designer-icon_w1200.jpeg
/images/designer-icon_w1200.webp
/images/designer-icon_w1440.avif
/images/designer-icon_w1440.jpeg
/images/designer-icon_w1440.webp
/images/designer-icon_w1920.avif
/images/designer-icon_w1920.jpeg
/images/designer-icon_w1920.webp
/images/designer-icon_w2048.avif
/images/designer-icon_w2048.jpeg
/images/designer-icon_w2048.webp
/images/designer-icon_w2560.avif
/images/designer-icon_w2560.jpeg
/images/designer-icon_w2560.webp
/images/designer-icon_w320.avif
/images/designer-icon_w320.jpeg
/images/designer-icon_w320.webp
/images/designer-icon_w3200.avif
/images/designer-icon_w3200.jpeg
/images/designer-icon_w3200.webp
/images/designer-icon_w3840.avif
/images/designer-icon_w3840.jpeg
/images/designer-icon_w3840.webp
/images/designer-icon_w480.avif
/images/designer-icon_w480.jpeg
/images/designer-icon_w480.webp
/images/designer-icon_w640.avif
/images/designer-icon_w640.jpeg
/images/designer-icon_w640.webp
/images/designer-icon_w750.avif
/images/designer-icon_w750.jpeg
/images/designer-icon_w750.webp
/images/designer-icon_w828.avif
/images/designer-icon_w828.jpeg
/images/designer-icon_w828.webp
/images/designers.svg
/images/dev-docs
/images/developer-icon.manifest.json
/images/developer-icon.png
/images/developer-icon_w1080.avif
/images/developer-icon_w1080.jpeg
/images/developer-icon_w1080.webp
/images/developer-icon_w1200.avif
/images/developer-icon_w1200.jpeg
/images/developer-icon_w1200.webp
/images/developer-icon_w1440.avif
/images/developer-icon_w1440.jpeg
/images/developer-icon_w1440.webp
/images/developer-icon_w1920.avif
/images/developer-icon_w1920.jpeg
/images/developer-icon_w1920.webp
/images/developer-icon_w2048.avif
/images/developer-icon_w2048.jpeg
/images/developer-icon_w2048.webp
/images/developer-icon_w2560.avif
/images/developer-icon_w2560.jpeg
/images/developer-icon_w2560.webp
/images/developer-icon_w320.avif
/images/developer-icon_w320.jpeg
/images/developer-icon_w320.webp
/images/developer-icon_w3200.avif
/images/developer-icon_w3200.jpeg
/images/developer-icon_w3200.webp
/images/developer-icon_w3840.avif
/images/developer-icon_w3840.jpeg

Found on 2026-01-03 21:11

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b77531ebf8607d23be0eae50c76da5d321

Found 128 files trough .DS_Store spidering:

/file.svg
/globe.svg
/images
/images/athleta-logo.svg
/images/avenue-logo.svg
/images/background.svg
/images/bg-aboutus.svg
/images/bg-contributors.svg
/images/bg-design-limits.manifest.json
/images/bg-design-limits.png
/images/bg-design-limits_w1080.avif
/images/bg-design-limits_w1080.jpeg
/images/bg-design-limits_w1080.webp
/images/bg-design-limits_w1200.avif
/images/bg-design-limits_w1200.jpeg
/images/bg-design-limits_w1200.webp
/images/bg-design-limits_w1440.avif
/images/bg-design-limits_w1440.jpeg
/images/bg-design-limits_w1440.webp
/images/bg-design-limits_w1920.avif
/images/bg-design-limits_w1920.jpeg
/images/bg-design-limits_w1920.webp
/images/bg-design-limits_w2048.avif
/images/bg-design-limits_w2048.jpeg
/images/bg-design-limits_w2048.webp
/images/bg-design-limits_w2560.avif
/images/bg-design-limits_w2560.jpeg
/images/bg-design-limits_w2560.webp
/images/bg-design-limits_w320.avif
/images/bg-design-limits_w320.jpeg
/images/bg-design-limits_w320.webp
/images/bg-design-limits_w3200.avif
/images/bg-design-limits_w3200.jpeg
/images/bg-design-limits_w3200.webp
/images/bg-design-limits_w3840.avif
/images/bg-design-limits_w3840.jpeg
/images/bg-design-limits_w3840.webp
/images/bg-design-limits_w480.avif
/images/bg-design-limits_w480.jpeg
/images/bg-design-limits_w480.webp
/images/bg-design-limits_w640.avif
/images/bg-design-limits_w640.jpeg
/images/bg-design-limits_w640.webp
/images/bg-design-limits_w750.avif
/images/bg-design-limits_w750.jpeg
/images/bg-design-limits_w750.webp
/images/bg-design-limits_w828.avif
/images/bg-design-limits_w828.jpeg
/images/bg-design-limits_w828.webp
/images/bg-newslatter.svg
/images/bg_hero.svg
/images/black-bg.svg
/images/bottom.png
/images/code-overlay.svg
/images/Container-Main01.png
/images/cost-effective.svg
/images/create-barrel-logo.svg
/images/designed-for-all.svg
/images/designer-icon.manifest.json
/images/designer-icon.png
/images/designer-icon_w1080.avif
/images/designer-icon_w1080.jpeg
/images/designer-icon_w1080.webp
/images/designer-icon_w1200.avif
/images/designer-icon_w1200.jpeg
/images/designer-icon_w1200.webp
/images/designer-icon_w1440.avif
/images/designer-icon_w1440.jpeg
/images/designer-icon_w1440.webp
/images/designer-icon_w1920.avif
/images/designer-icon_w1920.jpeg
/images/designer-icon_w1920.webp
/images/designer-icon_w2048.avif
/images/designer-icon_w2048.jpeg
/images/designer-icon_w2048.webp
/images/designer-icon_w2560.avif
/images/designer-icon_w2560.jpeg
/images/designer-icon_w2560.webp
/images/designer-icon_w320.avif
/images/designer-icon_w320.jpeg
/images/designer-icon_w320.webp
/images/designer-icon_w3200.avif
/images/designer-icon_w3200.jpeg
/images/designer-icon_w3200.webp
/images/designer-icon_w3840.avif
/images/designer-icon_w3840.jpeg
/images/designer-icon_w3840.webp
/images/designer-icon_w480.avif
/images/designer-icon_w480.jpeg
/images/designer-icon_w480.webp
/images/designer-icon_w640.avif
/images/designer-icon_w640.jpeg
/images/designer-icon_w640.webp
/images/designer-icon_w750.avif
/images/designer-icon_w750.jpeg
/images/designer-icon_w750.webp
/images/designer-icon_w828.avif
/images/designer-icon_w828.jpeg
/images/designer-icon_w828.webp
/images/designers.svg
/images/dev-docs
/images/developer-icon.manifest.json
/images/developer-icon.png
/images/developer-icon_w1080.avif
/images/developer-icon_w1080.jpeg
/images/developer-icon_w1080.webp
/images/developer-icon_w1200.avif
/images/developer-icon_w1200.jpeg
/images/developer-icon_w1200.webp
/images/developer-icon_w1440.avif
/images/developer-icon_w1440.jpeg
/images/developer-icon_w1440.webp
/images/developer-icon_w1920.avif
/images/developer-icon_w1920.jpeg
/images/developer-icon_w1920.webp
/images/developer-icon_w2048.avif
/images/developer-icon_w2048.jpeg
/images/developer-icon_w2048.webp
/images/developer-icon_w2560.avif
/images/developer-icon_w2560.jpeg
/images/developer-icon_w2560.webp
/images/developer-icon_w320.avif
/images/developer-icon_w320.jpeg
/images/developer-icon_w320.webp
/images/developer-icon_w3200.avif
/images/developer-icon_w3200.jpeg
/images/developer-icon_w3200.webp
/images/developer-icon_w3840.avif

Found on 2025-11-10 04:45

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b77531ebf8607d23be0eae50c77c6356e6

Found 128 files trough .DS_Store spidering:

/file.svg
/globe.svg
/images
/images/athleta-logo.svg
/images/avenue-logo.svg
/images/background.svg
/images/bg-aboutus.svg
/images/bg-contributors.svg
/images/bg-design-limits.manifest.json
/images/bg-design-limits.png
/images/bg-design-limits_w1080.avif
/images/bg-design-limits_w1080.jpeg
/images/bg-design-limits_w1080.webp
/images/bg-design-limits_w1200.avif
/images/bg-design-limits_w1200.jpeg
/images/bg-design-limits_w1200.webp
/images/bg-design-limits_w1440.avif
/images/bg-design-limits_w1440.jpeg
/images/bg-design-limits_w1440.webp
/images/bg-design-limits_w1920.avif
/images/bg-design-limits_w1920.jpeg
/images/bg-design-limits_w1920.webp
/images/bg-design-limits_w2048.avif
/images/bg-design-limits_w2048.jpeg
/images/bg-design-limits_w2048.webp
/images/bg-design-limits_w2560.avif
/images/bg-design-limits_w2560.jpeg
/images/bg-design-limits_w2560.webp
/images/bg-design-limits_w320.avif
/images/bg-design-limits_w320.jpeg
/images/bg-design-limits_w320.webp
/images/bg-design-limits_w3200.avif
/images/bg-design-limits_w3200.jpeg
/images/bg-design-limits_w3200.webp
/images/bg-design-limits_w3840.avif
/images/bg-design-limits_w3840.jpeg
/images/bg-design-limits_w3840.webp
/images/bg-design-limits_w480.avif
/images/bg-design-limits_w480.jpeg
/images/bg-design-limits_w480.webp
/images/bg-design-limits_w640.avif
/images/bg-design-limits_w640.jpeg
/images/bg-design-limits_w640.webp
/images/bg-design-limits_w750.avif
/images/bg-design-limits_w750.jpeg
/images/bg-design-limits_w750.webp
/images/bg-design-limits_w828.avif
/images/bg-design-limits_w828.jpeg
/images/bg-design-limits_w828.webp
/images/bg-newslatter.svg
/images/bg_hero.svg
/images/black-bg.svg
/images/code-overlay.svg
/images/cost-effective.svg
/images/create-barrel-logo.svg
/images/designed-for-all.svg
/images/designer-icon.manifest.json
/images/designer-icon.png
/images/designer-icon_w1080.avif
/images/designer-icon_w1080.jpeg
/images/designer-icon_w1080.webp
/images/designer-icon_w1200.avif
/images/designer-icon_w1200.jpeg
/images/designer-icon_w1200.webp
/images/designer-icon_w1440.avif
/images/designer-icon_w1440.jpeg
/images/designer-icon_w1440.webp
/images/designer-icon_w1920.avif
/images/designer-icon_w1920.jpeg
/images/designer-icon_w1920.webp
/images/designer-icon_w2048.avif
/images/designer-icon_w2048.jpeg
/images/designer-icon_w2048.webp
/images/designer-icon_w2560.avif
/images/designer-icon_w2560.jpeg
/images/designer-icon_w2560.webp
/images/designer-icon_w320.avif
/images/designer-icon_w320.jpeg
/images/designer-icon_w320.webp
/images/designer-icon_w3200.avif
/images/designer-icon_w3200.jpeg
/images/designer-icon_w3200.webp
/images/designer-icon_w3840.avif
/images/designer-icon_w3840.jpeg
/images/designer-icon_w3840.webp
/images/designer-icon_w480.avif
/images/designer-icon_w480.jpeg
/images/designer-icon_w480.webp
/images/designer-icon_w640.avif
/images/designer-icon_w640.jpeg
/images/designer-icon_w640.webp
/images/designer-icon_w750.avif
/images/designer-icon_w750.jpeg
/images/designer-icon_w750.webp
/images/designer-icon_w828.avif
/images/designer-icon_w828.jpeg
/images/designer-icon_w828.webp
/images/designers.svg
/images/dev-docs
/images/developer-icon.manifest.json
/images/developer-icon.png
/images/developer-icon_w1080.avif
/images/developer-icon_w1080.jpeg
/images/developer-icon_w1080.webp
/images/developer-icon_w1200.avif
/images/developer-icon_w1200.jpeg
/images/developer-icon_w1200.webp
/images/developer-icon_w1440.avif
/images/developer-icon_w1440.jpeg
/images/developer-icon_w1440.webp
/images/developer-icon_w1920.avif
/images/developer-icon_w1920.jpeg
/images/developer-icon_w1920.webp
/images/developer-icon_w2048.avif
/images/developer-icon_w2048.jpeg
/images/developer-icon_w2048.webp
/images/developer-icon_w2560.avif
/images/developer-icon_w2560.jpeg
/images/developer-icon_w2560.webp
/images/developer-icon_w320.avif
/images/developer-icon_w320.jpeg
/images/developer-icon_w320.webp
/images/developer-icon_w3200.avif
/images/developer-icon_w3200.jpeg
/images/developer-icon_w3200.webp
/images/developer-icon_w3840.avif
/images/developer-icon_w3840.jpeg
/images/developer-icon_w3840.webp

Found on 2025-11-05 13:39

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f72f5fb2f72f5fb023560fc78bd5fb2166f37d3ffcdaf5d

Found 65 files trough .DS_Store spidering:

/file.svg
/globe.svg
/images
/images/athleta-logo.svg
/images/avenue-logo.svg
/images/background.svg
/images/bg-aboutus.svg
/images/bg-contributors.svg
/images/bg-design-limits.png
/images/bg-newslatter.svg
/images/bg_hero.svg
/images/black-bg.svg
/images/code-overlay.svg
/images/cost-effective.svg
/images/create-barrel-logo.svg
/images/designed-for-all.svg
/images/designer-icon.png
/images/designers.svg
/images/dev-docs
/images/developer-icon.png
/images/developers.svg
/images/effortless.svg
/images/feat-feedback.svg
/images/feat-figma-to-malible.svg
/images/feat-kill-switch.svg
/images/feat-products.svg
/images/feat-secrets.svg
/images/feat-webhook.svg
/images/figma.svg
/images/first-blog-img2.png
/images/first-blog.png
/images/first-time.svg
/images/fourth-blog.png
/images/fourth-blog2.png
/images/gap-logo.svg
/images/hero-image.png
/images/heyday-logo.svg
/images/Hibett.png
/images/ibette-logo.svg
/images/logo-container.svg
/images/makers-icon.png
/images/maketers.svg
/images/malible-logo.svg
/images/malible.svg
/images/mwh-logo.svg
/images/old-navy-logo.svg
/images/plus.svg
/images/price-check-circle.svg
/images/ranjeet.jpg
/images/safety.svg
/images/second-blog-newimg.png
/images/second-blog.png
/images/second-blog2.png
/images/second-blog3.png
/images/super-season.png
/images/testimonial-rating-left.svg
/images/testimonial-rating-right.svg
/images/third-blog.png
/images/third-blog2.png
/images/well-cornell-logo.svg
/images-src
/images-src/feat-publish-edit.svg
/next.svg
/vercel.svg
/window.svg

Found on 2025-10-26 20:35

Severity: medium
Fingerprint: 5f32cf5d6962f09c3078a2ae3078a2ae7c2a0077784affcc43baa8ca0fdd8a6f

Found 73 files trough .DS_Store spidering:

/images
/images/athleta-logo.svg
/images/avenue-logo.svg
/images/background.svg
/images/banana-republic-logo.svg
/images/bg-aboutus.svg
/images/bg-contributors.svg
/images/bg-design-limits.png
/images/bg-newslatter.svg
/images/bg_hero.svg
/images/black-bg.svg
/images/canvas-web.svg
/images/code-overlay.svg
/images/cost-effective.svg
/images/create-barrel-logo.svg
/images/designed-for-all.svg
/images/designer-icon.png
/images/designers.svg
/images/dev-docs
/images/developer-icon.png
/images/developers.svg
/images/effortless.svg
/images/feat-ab-testing.svg
/images/feat-datasets.svg
/images/feat-environments.svg
/images/feat-feedback.svg
/images/feat-figma-to-malible.svg
/images/feat-keep-everyone.svg
/images/feat-kill-switch.svg
/images/feat-products.svg
/images/feat-publish-edit.svg
/images/feat-scheduled-bg.svg
/images/feat-scheduled.svg
/images/feat-secrets.svg
/images/feat-webhook.svg
/images/figma.svg
/images/first-blog-img2.png
/images/first-blog.png
/images/first-time.svg
/images/fourth-blog.png
/images/fourth-blog2.png
/images/gap-logo.svg
/images/hero-bg-mobile.svg
/images/hero-bg.svg
/images/hero-image.png
/images/heyday-logo.svg
/images/Hibett.png
/images/ibette-logo.svg
/images/logo-container.svg
/images/makers-icon.png
/images/maketers.svg
/images/malible-logo.svg
/images/malible.svg
/images/mwh-logo.svg
/images/old-navy-logo.svg
/images/plus.svg
/images/price-check-circle.svg
/images/ranjeet.jpg
/images/safety.svg
/images/second-blog-newimg.png
/images/second-blog.png
/images/second-blog2.png
/images/second-blog3.png
/images/super-season.png
/images/super-season.svg
/images/testimonial-rating-left.svg
/images/testimonial-rating-right.svg
/images/third-blog.png
/images/third-blog2.png
/images/well-cornell-logo.svg
/images/why-choose-persons.svg
/images-src
/images-src/feat-publish-edit.svg

Found on 2025-10-07 00:14

Severity: medium
Fingerprint: 5f32cf5d6962f09c2a0815492a081549ccfe921a5f083c112e68a4cde3933368

Found 70 files trough .DS_Store spidering:

/images
/images/athleta-logo.svg
/images/avenue-logo.svg
/images/background.svg
/images/bg-aboutus.svg
/images/bg-contributors.svg
/images/bg-design-limits.png
/images/bg-newslatter.svg
/images/bg_hero.svg
/images/black-bg.svg
/images/canvas-web.svg
/images/code-overlay.svg
/images/cost-effective.svg
/images/create-barrel-logo.svg
/images/designed-for-all.svg
/images/designer-icon.png
/images/designers.svg
/images/dev-docs
/images/developer-icon.png
/images/developers.svg
/images/effortless.svg
/images/feat-ab-testing.svg
/images/feat-datasets.svg
/images/feat-environments.svg
/images/feat-feedback.svg
/images/feat-figma-to-malible.svg
/images/feat-keep-everyone.svg
/images/feat-kill-switch.svg
/images/feat-products.svg
/images/feat-publish-edit.svg
/images/feat-scheduled-bg.svg
/images/feat-scheduled.svg
/images/feat-secrets.svg
/images/feat-webhook.svg
/images/figma.svg
/images/first-blog-img2.png
/images/first-blog.png
/images/first-time.svg
/images/fourth-blog.png
/images/fourth-blog2.png
/images/gap-logo.svg
/images/hero-bg-mobile.svg
/images/hero-bg.svg
/images/hero-image.png
/images/heyday-logo.svg
/images/Hibett.png
/images/ibette-logo.svg
/images/logo-container.svg
/images/makers-icon.png
/images/maketers.svg
/images/malible-logo.svg
/images/malible.svg
/images/mwh-logo.svg
/images/old-navy-logo.svg
/images/plus.svg
/images/price-check-circle.svg
/images/ranjeet.jpg
/images/safety.svg
/images/second-blog-newimg.png
/images/second-blog.png
/images/second-blog2.png
/images/second-blog3.png
/images/super-season.png
/images/super-season.svg
/images/testimonial-rating-left.svg
/images/testimonial-rating-right.svg
/images/third-blog.png
/images/third-blog2.png
/images/well-cornell-logo.svg
/images/why-choose-persons.svg

Found on 2025-09-25 02:05

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 65.9.95.60
Domain: tasknegative.net
Port: 443
URL: https://tasknegative.net

First seen 2024-08-05 04:57
Last seen 2026-01-03 01:01
Open for 515 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642fb15c60391e8691391e8691391e86913
```
Found 2 files trough .DS_Store spidering:

/_bridgetown
/_bridgetown/static
```
  Found on 2026-01-03 01:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 65.9.95.60
Domain: pfep.spreadsuite.io
Port: 443
URL: https://pfep.spreadsuite.io

First seen 2024-10-06 00:20
Last seen 2025-10-06 13:42
Open for 365 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09cdafa5447dafa54474028c2d99edb6e85a126bcef517ea8d2
```
Found 18 files trough .DS_Store spidering:

/emails
/favicon.ico
/googledrivecallback.html
/img
/img/flag-en.png
/img/logo-sinfin-digital.svg
/img/logo.png
/img/marker.png
/img/not-found.png
/index.html
/locales
/logo192.png
/logo512.png
/manifest.json
/modernizr.js
/onedrivecallback.html
/robots.txt
/sinfin.gif
```
  Found on 2025-10-06 13:42
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 65.9.95.60
Domain: asset.thatslight.com
Port: 443
URL: https://asset.thatslight.com

First seen 2024-08-05 07:00
Last seen 2025-09-22 09:35
Open for 413 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fba3a1027a8146238eab5915aeab5915a
```
Found 3 files trough .DS_Store spidering:

/lib
/ui
/ui/bg.png
```
  Found on 2025-09-22 09:35
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

Additionally the GIT credentials are present and could give unauthorized access to source code repository of private projects.

IP: 13.225.78.71
Domain: tollkvoti.is
Port: 443
URL: https://tollkvoti.is

First seen 2022-12-10 01:53
Last seen 2025-09-10 03:18
Open for 1005 days

Severity: critical
Fingerprint: 2580fa947178c883cda65107b6f0882eb5010f354c5d91ec33bd1e39b5d06469

[fetch]
	recurseSubmodules = false
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:glcbt-66_ydRU1D-Y5pPbNizcx3z2@gitlab.com/anr2/web/user-frontage.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2025-09-10 03:18

289 Bytes

Severity: critical
Fingerprint: 2580fa947178c883cda65107b6f0882eb5010f354c5d91ec33bd1e393b312826

[fetch]
	recurseSubmodules = false
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:64_kFxikZqTca9DH2QgkEkK@gitlab.com/anr2/web/user-frontage.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2024-10-30 20:57

283 Bytes

Severity: critical
Fingerprint: 2580fa947178c883cda65107b6f0882eb5010f354c5d91ec33bd1e394a05e361

[fetch]
	recurseSubmodules = false
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = https://gitlab-ci-token:oB22J6JUQp2hapcGatr6@gitlab.com/anr2/web/user-frontage.git
	fetch = +refs/heads/*:refs/remotes/origin/*

Found on 2022-12-10 01:53

280 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 65.9.66.121
Domain: www.cuonlineedu.in
Port: 443
URL: https://www.cuonlineedu.in

First seen 2024-08-22 11:01
Last seen 2025-08-27 09:24
Open for 369 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c449f2b2d449f2b2d2c57a50a545831e6eadaaae67d0b651f

Found 108 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/js
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/img/CU - popup Mobile-100 (1).jpg
/beta/assets/img/CU- popup web-100 (1).jpg
/beta/assets/img/CU-popup-Mobile-100-new.jpg
/beta/assets/img/CU-popup-Mobile-new.jpg
/beta/assets/img/Cu-popup-web-100-new.jpg
/beta/assets/img/CU-popup-web-new.jpg
/beta/assets/pdf
/beta/index.php
/composer.json
/contributing.md
/cookies.txt
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/assets/vendor/@fortawesome
/myaccount/assets/vendor/anchor-js
/myaccount/assets/vendor/animate.css
/myaccount/assets/vendor/bootstrap
/myaccount/assets/vendor/bootstrap-datepicker
/myaccount/assets/vendor/bootstrap-notify
/myaccount/assets/vendor/bootstrap-rtl
/myaccount/assets/vendor/bootstrap-tagsinput
/myaccount/assets/vendor/chart.js
/myaccount/assets/vendor/clipboard
/myaccount/assets/vendor/datatables.net
/myaccount/assets/vendor/datatables.net-bs4
/myaccount/assets/vendor/datatables.net-buttons
/myaccount/assets/vendor/datatables.net-buttons-bs4
/myaccount/assets/vendor/datatables.net-responsive-bs4
/myaccount/assets/vendor/datatables.net-select
/myaccount/assets/vendor/datatables.net-select-bs4
/myaccount/assets/vendor/dropzone
/myaccount/assets/vendor/font-awesome
/myaccount/assets/vendor/fullcalendar
/myaccount/assets/vendor/gulp-copy
/myaccount/assets/vendor/headroom.js
/myaccount/assets/vendor/holderjs
/myaccount/assets/vendor/jekyll
/myaccount/assets/vendor/jquery
/myaccount/assets/vendor/jquery-scroll-lock
/myaccount/assets/vendor/jquery.scrollbar
/myaccount/assets/vendor/js-cookie
/myaccount/assets/vendor/jvectormap-next
/myaccount/assets/vendor/lavalamp
/myaccount/assets/vendor/list.js
/myaccount/assets/vendor/minimatch
/myaccount/assets/vendor/moment
/myaccount/assets/vendor/nouislider
/myaccount/assets/vendor/nucleo
/myaccount/assets/vendor/onscreen
/myaccount/assets/vendor/prismjs
/myaccount/assets/vendor/quill
/myaccount/assets/vendor/select2
/myaccount/assets/vendor/sudo
/myaccount/assets/vendor/sweetalert2
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-08-27 09:24

Severity: medium
Fingerprint: 5f32cf5d6962f09c9150089691500896acf92b91460370f92411f1e1a2cd6092

Found 37 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/js
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/index.php
/composer.json
/contributing.md
/cookies.txt
/CuUniversityLogin
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-08-21 09:00

Severity: medium
Fingerprint: 5f32cf5d6962f09cfdf2c773fdf2c77393e8f0ccfd8909503ef6aef4a4618b6c

Found 50 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/js
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/img/CU - popup Mobile-100 (1).jpg
/beta/assets/img/CU- popup web-100 (1).jpg
/beta/assets/img/CU-popup-Mobile-100-new.jpg
/beta/assets/img/CU-popup-Mobile-new.jpg
/beta/assets/img/Cu-popup-web-100-new.jpg
/beta/assets/img/CU-popup-web-new.jpg
/beta/assets/pdf
/beta/index.php
/composer.json
/contributing.md
/cookies.txt
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-08-17 09:25

Severity: medium
Fingerprint: 5f32cf5d6962f09c92dfb71592dfb715da82d202cac9a49e5a449a3e68250274

Found 45 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/js
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/img/CU - popup Mobile-100 (1).jpg
/beta/assets/img/CU- popup web-100 (1).jpg
/beta/assets/img/CU-popup-Mobile-100-new.jpg
/beta/assets/img/CU-popup-Mobile-new.jpg
/beta/assets/img/Cu-popup-web-100-new.jpg
/beta/assets/img/CU-popup-web-new.jpg
/beta/assets/pdf
/beta/index.php
/composer.json
/contributing.md
/cookies.txt
/CuUniversityLogin
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-08-17 08:48

Severity: low
Fingerprint: 5f32cf5d6962f09cf35cbfb3f35cbfb381d97a8c5fb0bc9063a890b44d4d5ea3

Found 29 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/js
/assets/pdf
/beta
/composer.json
/contributing.md
/cookies.txt
/CuUniversityLogin
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-08-15 07:48

Severity: medium
Fingerprint: 5f32cf5d6962f09c7d264b917d264b911154a6b6eb2e302287e9a6e28d489ab2

Found 52 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/js
/assets/pdf
/assets 12.14.54 PM
/assets1
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/img/CU - popup Mobile-100 (1).jpg
/beta/assets/img/CU- popup web-100 (1).jpg
/beta/assets/img/CU-popup-Mobile-100-new.jpg
/beta/assets/img/CU-popup-Mobile-new.jpg
/beta/assets/img/Cu-popup-web-100-new.jpg
/beta/assets/img/CU-popup-web-new.jpg
/beta/assets/pdf
/beta/index.php
/composer.json
/contributing.md
/cookies.txt
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-08-07 03:19

Severity: medium
Fingerprint: 5f32cf5d6962f09c114fbe07114fbe074661ee685bbc0d4c8ae4a6509c964a8a

Found 47 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/js
/assets/pdf
/assets 12.14.54 PM
/assets1
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/img/CU - popup Mobile-100 (1).jpg
/beta/assets/img/CU- popup web-100 (1).jpg
/beta/assets/img/CU-popup-Mobile-100-new.jpg
/beta/assets/img/CU-popup-Mobile-new.jpg
/beta/assets/img/Cu-popup-web-100-new.jpg
/beta/assets/img/CU-popup-web-new.jpg
/beta/assets/pdf
/beta/index.php
/composer.json
/contributing.md
/cookies.txt
/CuUniversityLogin
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-08-06 21:41

Severity: medium
Fingerprint: 5f32cf5d6962f09c23a31e3e23a31e3ee0e5e3c9602fc431babf74f90a04163a

Found 110 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/js
/assets/pdf
/assets 12.14.54 PM
/assets1
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/img/CU - popup Mobile-100 (1).jpg
/beta/assets/img/CU- popup web-100 (1).jpg
/beta/assets/img/CU-popup-Mobile-100-new.jpg
/beta/assets/img/CU-popup-Mobile-new.jpg
/beta/assets/img/Cu-popup-web-100-new.jpg
/beta/assets/img/CU-popup-web-new.jpg
/beta/assets/pdf
/beta/index.php
/composer.json
/contributing.md
/cookies.txt
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/assets/vendor/@fortawesome
/myaccount/assets/vendor/anchor-js
/myaccount/assets/vendor/animate.css
/myaccount/assets/vendor/bootstrap
/myaccount/assets/vendor/bootstrap-datepicker
/myaccount/assets/vendor/bootstrap-notify
/myaccount/assets/vendor/bootstrap-rtl
/myaccount/assets/vendor/bootstrap-tagsinput
/myaccount/assets/vendor/chart.js
/myaccount/assets/vendor/clipboard
/myaccount/assets/vendor/datatables.net
/myaccount/assets/vendor/datatables.net-bs4
/myaccount/assets/vendor/datatables.net-buttons
/myaccount/assets/vendor/datatables.net-buttons-bs4
/myaccount/assets/vendor/datatables.net-responsive-bs4
/myaccount/assets/vendor/datatables.net-select
/myaccount/assets/vendor/datatables.net-select-bs4
/myaccount/assets/vendor/dropzone
/myaccount/assets/vendor/font-awesome
/myaccount/assets/vendor/fullcalendar
/myaccount/assets/vendor/gulp-copy
/myaccount/assets/vendor/headroom.js
/myaccount/assets/vendor/holderjs
/myaccount/assets/vendor/jekyll
/myaccount/assets/vendor/jquery
/myaccount/assets/vendor/jquery-scroll-lock
/myaccount/assets/vendor/jquery.scrollbar
/myaccount/assets/vendor/js-cookie
/myaccount/assets/vendor/jvectormap-next
/myaccount/assets/vendor/lavalamp
/myaccount/assets/vendor/list.js
/myaccount/assets/vendor/minimatch
/myaccount/assets/vendor/moment
/myaccount/assets/vendor/nouislider
/myaccount/assets/vendor/nucleo
/myaccount/assets/vendor/onscreen
/myaccount/assets/vendor/prismjs
/myaccount/assets/vendor/quill
/myaccount/assets/vendor/select2
/myaccount/assets/vendor/sudo
/myaccount/assets/vendor/sweetalert2
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-08-02 20:59

Severity: medium
Fingerprint: 5f32cf5d6962f09c8f03d7bd8f03d7bdab35ccbaf46b1b56684a6c7614b7db43

Found 38 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/js
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/admissionportal0
/beta/application
/beta/assets
/beta/CuUniversityLogin
/beta/index.php
/composer.json
/contributing.md
/CuUniversityLogin
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-31 06:38

Severity: medium
Fingerprint: 5f32cf5d6962f09c75d69a7675d69a766c913871d339dad9888db1419b310ddd

Found 51 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/js
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/admissionportal0
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/img/CU - popup Mobile-100 (1).jpg
/beta/assets/img/CU- popup web-100 (1).jpg
/beta/assets/img/CU-popup-Mobile-100-new.jpg
/beta/assets/img/CU-popup-Mobile-new.jpg
/beta/assets/img/Cu-popup-web-100-new.jpg
/beta/assets/img/CU-popup-web-new.jpg
/beta/assets/pdf
/beta/CuUniversityLogin
/beta/index.php
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-31 06:38

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f72f5fb2f72f5fbccc122a43d6426e819ae2f4c1a3ef9d6

Found 65 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/js
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/admissionportal0
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/img/CU - popup Mobile-100 (1).jpg
/beta/assets/img/CU- popup web-100 (1).jpg
/beta/assets/img/CU-popup-Mobile-100-new.jpg
/beta/assets/img/CU-popup-Mobile-new.jpg
/beta/assets/img/Cu-popup-web-100-new.jpg
/beta/assets/img/CU-popup-web-new.jpg
/beta/assets/pdf
/beta/CuUniversityLogin
/beta/index.php
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/vendor
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-31 06:38

Severity: medium
Fingerprint: 5f32cf5d6962f09c2bc858c32bc858c3bd0d5bfcd8c41a40ad410f44440d2b25

Found 106 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/img/CU - popup Mobile-100 (1).jpg
/beta/assets/img/CU- popup web-100 (1).jpg
/beta/assets/img/CU-popup-Mobile-100-new.jpg
/beta/assets/img/CU-popup-Mobile-new.jpg
/beta/assets/img/Cu-popup-web-100-new.jpg
/beta/assets/img/CU-popup-web-new.jpg
/beta/assets/pdf
/beta/index.php
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/assets/vendor/@fortawesome
/myaccount/assets/vendor/anchor-js
/myaccount/assets/vendor/animate.css
/myaccount/assets/vendor/bootstrap
/myaccount/assets/vendor/bootstrap-datepicker
/myaccount/assets/vendor/bootstrap-notify
/myaccount/assets/vendor/bootstrap-rtl
/myaccount/assets/vendor/bootstrap-tagsinput
/myaccount/assets/vendor/chart.js
/myaccount/assets/vendor/clipboard
/myaccount/assets/vendor/datatables.net
/myaccount/assets/vendor/datatables.net-bs4
/myaccount/assets/vendor/datatables.net-buttons
/myaccount/assets/vendor/datatables.net-buttons-bs4
/myaccount/assets/vendor/datatables.net-responsive-bs4
/myaccount/assets/vendor/datatables.net-select
/myaccount/assets/vendor/datatables.net-select-bs4
/myaccount/assets/vendor/dropzone
/myaccount/assets/vendor/font-awesome
/myaccount/assets/vendor/fullcalendar
/myaccount/assets/vendor/gulp-copy
/myaccount/assets/vendor/headroom.js
/myaccount/assets/vendor/holderjs
/myaccount/assets/vendor/jekyll
/myaccount/assets/vendor/jquery
/myaccount/assets/vendor/jquery-scroll-lock
/myaccount/assets/vendor/jquery.scrollbar
/myaccount/assets/vendor/js-cookie
/myaccount/assets/vendor/jvectormap-next
/myaccount/assets/vendor/lavalamp
/myaccount/assets/vendor/list.js
/myaccount/assets/vendor/minimatch
/myaccount/assets/vendor/moment
/myaccount/assets/vendor/nouislider
/myaccount/assets/vendor/nucleo
/myaccount/assets/vendor/onscreen
/myaccount/assets/vendor/prismjs
/myaccount/assets/vendor/quill
/myaccount/assets/vendor/select2
/myaccount/assets/vendor/sudo
/myaccount/assets/vendor/sweetalert2
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-29 11:24

Severity: medium
Fingerprint: 5f32cf5d6962f09c3e8b9cac3e8b9cac0329aaeba8b10743415f1b7fb00610cb

Found 48 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/img/CU - popup Mobile-100 (1).jpg
/beta/assets/img/CU- popup web-100 (1).jpg
/beta/assets/img/CU-popup-Mobile-100-new.jpg
/beta/assets/img/CU-popup-Mobile-new.jpg
/beta/assets/img/Cu-popup-web-100-new.jpg
/beta/assets/img/CU-popup-web-new.jpg
/beta/assets/pdf
/beta/index.php
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-29 09:11

Severity: medium
Fingerprint: 5f32cf5d6962f09c9150089691500896acf92b91460370f92411f1e152b19843

Found 37 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/pdf
/beta/index.php
/composer.json
/contributing.md
/CuUniversityLogin
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-23 01:50

Severity: medium
Fingerprint: 5f32cf5d6962f09cd4047824d4047824b3493bd361e9056bcd8e57e72b1472cc

Found 35 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/index.php
/composer.json
/contributing.md
/CuUniversityLogin
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-22 12:18

Severity: medium
Fingerprint: 5f32cf5d6962f09c23a31e3e23a31e3ee0e5e3c9602fc431babf74f9518a071c

Found 110 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/beta/admissionportal
/beta/admissionportal/application
/beta/admissionportal/error_log
/beta/admissionportal/index.php
/beta/admissionportal/system
/beta/application
/beta/assets
/beta/assets/img
/beta/assets/img/CU - popup Mobile-100 (1).jpg
/beta/assets/img/CU- popup web-100 (1).jpg
/beta/assets/img/CU-popup-Mobile-100-new.jpg
/beta/assets/img/CU-popup-Mobile-new.jpg
/beta/assets/img/Cu-popup-web-100-new.jpg
/beta/assets/img/CU-popup-web-new.jpg
/beta/assets/pdf
/beta/index.php
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/assets/vendor/@fortawesome
/myaccount/assets/vendor/anchor-js
/myaccount/assets/vendor/animate.css
/myaccount/assets/vendor/bootstrap
/myaccount/assets/vendor/bootstrap-datepicker
/myaccount/assets/vendor/bootstrap-notify
/myaccount/assets/vendor/bootstrap-rtl
/myaccount/assets/vendor/bootstrap-tagsinput
/myaccount/assets/vendor/chart.js
/myaccount/assets/vendor/clipboard
/myaccount/assets/vendor/datatables.net
/myaccount/assets/vendor/datatables.net-bs4
/myaccount/assets/vendor/datatables.net-buttons
/myaccount/assets/vendor/datatables.net-buttons-bs4
/myaccount/assets/vendor/datatables.net-responsive-bs4
/myaccount/assets/vendor/datatables.net-select
/myaccount/assets/vendor/datatables.net-select-bs4
/myaccount/assets/vendor/dropzone
/myaccount/assets/vendor/font-awesome
/myaccount/assets/vendor/fullcalendar
/myaccount/assets/vendor/gulp-copy
/myaccount/assets/vendor/headroom.js
/myaccount/assets/vendor/holderjs
/myaccount/assets/vendor/jekyll
/myaccount/assets/vendor/jquery
/myaccount/assets/vendor/jquery-scroll-lock
/myaccount/assets/vendor/jquery.scrollbar
/myaccount/assets/vendor/js-cookie
/myaccount/assets/vendor/jvectormap-next
/myaccount/assets/vendor/lavalamp
/myaccount/assets/vendor/list.js
/myaccount/assets/vendor/minimatch
/myaccount/assets/vendor/moment
/myaccount/assets/vendor/nouislider
/myaccount/assets/vendor/nucleo
/myaccount/assets/vendor/onscreen
/myaccount/assets/vendor/prismjs
/myaccount/assets/vendor/quill
/myaccount/assets/vendor/select2
/myaccount/assets/vendor/sudo
/myaccount/assets/vendor/sweetalert2
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/myaccount-old/application
/myaccount-old/error_log
/myaccount-old/index.php
/myaccount-old/system
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-11 02:26

Severity: medium
Fingerprint: 5f32cf5d6962f09c93a25c3a93a25c3a78de95ed7901fcd5ef61ba2db6d5ccbe

Found 46 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/vendor
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-07 18:25

Severity: low
Fingerprint: 5f32cf5d6962f09c81c345f781c345f7d9f094785ab8099cdbede780f0433873

Found 32 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-07 18:01

Severity: medium
Fingerprint: 5f32cf5d6962f09c68a1b33768a1b3373a580338d4f1e3dc93087d40a289e246

Found 90 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/assets/vendor/@fortawesome
/myaccount/assets/vendor/anchor-js
/myaccount/assets/vendor/animate.css
/myaccount/assets/vendor/bootstrap
/myaccount/assets/vendor/bootstrap-datepicker
/myaccount/assets/vendor/bootstrap-notify
/myaccount/assets/vendor/bootstrap-rtl
/myaccount/assets/vendor/bootstrap-tagsinput
/myaccount/assets/vendor/chart.js
/myaccount/assets/vendor/clipboard
/myaccount/assets/vendor/datatables.net
/myaccount/assets/vendor/datatables.net-bs4
/myaccount/assets/vendor/datatables.net-buttons
/myaccount/assets/vendor/datatables.net-buttons-bs4
/myaccount/assets/vendor/datatables.net-responsive-bs4
/myaccount/assets/vendor/datatables.net-select
/myaccount/assets/vendor/datatables.net-select-bs4
/myaccount/assets/vendor/dropzone
/myaccount/assets/vendor/font-awesome
/myaccount/assets/vendor/fullcalendar
/myaccount/assets/vendor/gulp-copy
/myaccount/assets/vendor/headroom.js
/myaccount/assets/vendor/holderjs
/myaccount/assets/vendor/jekyll
/myaccount/assets/vendor/jquery
/myaccount/assets/vendor/jquery-scroll-lock
/myaccount/assets/vendor/jquery.scrollbar
/myaccount/assets/vendor/js-cookie
/myaccount/assets/vendor/jvectormap-next
/myaccount/assets/vendor/lavalamp
/myaccount/assets/vendor/list.js
/myaccount/assets/vendor/minimatch
/myaccount/assets/vendor/moment
/myaccount/assets/vendor/nouislider
/myaccount/assets/vendor/nucleo
/myaccount/assets/vendor/onscreen
/myaccount/assets/vendor/prismjs
/myaccount/assets/vendor/quill
/myaccount/assets/vendor/select2
/myaccount/assets/vendor/sudo
/myaccount/assets/vendor/sweetalert2
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-05 13:14

Severity: low
Fingerprint: 5f32cf5d6962f09c684e525d684e525def80315a05d222763d174496deae1005

Found 27 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/composer.json
/contributing.md
/CuUniversityLogin
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-05 12:45

Severity: medium
Fingerprint: 5f32cf5d6962f09cccd847a3ccd847a36171415ced942f203653be2452bd9eb8

Found 43 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/vendor
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-07-03 12:21

Severity: medium
Fingerprint: 5f32cf5d6962f09c0f1214d30f1214d3fc82fcacf2aba3b008f5cbd42ea28aa6

Found 94 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/assets/vendor/@fortawesome
/myaccount/assets/vendor/anchor-js
/myaccount/assets/vendor/animate.css
/myaccount/assets/vendor/bootstrap
/myaccount/assets/vendor/bootstrap-datepicker
/myaccount/assets/vendor/bootstrap-notify
/myaccount/assets/vendor/bootstrap-rtl
/myaccount/assets/vendor/bootstrap-tagsinput
/myaccount/assets/vendor/chart.js
/myaccount/assets/vendor/clipboard
/myaccount/assets/vendor/datatables.net
/myaccount/assets/vendor/datatables.net-bs4
/myaccount/assets/vendor/datatables.net-buttons
/myaccount/assets/vendor/datatables.net-buttons-bs4
/myaccount/assets/vendor/datatables.net-responsive-bs4
/myaccount/assets/vendor/datatables.net-select
/myaccount/assets/vendor/datatables.net-select-bs4
/myaccount/assets/vendor/dropzone
/myaccount/assets/vendor/font-awesome
/myaccount/assets/vendor/fullcalendar
/myaccount/assets/vendor/gulp-copy
/myaccount/assets/vendor/headroom.js
/myaccount/assets/vendor/holderjs
/myaccount/assets/vendor/jekyll
/myaccount/assets/vendor/jquery
/myaccount/assets/vendor/jquery-scroll-lock
/myaccount/assets/vendor/jquery.scrollbar
/myaccount/assets/vendor/js-cookie
/myaccount/assets/vendor/jvectormap-next
/myaccount/assets/vendor/lavalamp
/myaccount/assets/vendor/list.js
/myaccount/assets/vendor/minimatch
/myaccount/assets/vendor/moment
/myaccount/assets/vendor/nouislider
/myaccount/assets/vendor/nucleo
/myaccount/assets/vendor/onscreen
/myaccount/assets/vendor/prismjs
/myaccount/assets/vendor/quill
/myaccount/assets/vendor/select2
/myaccount/assets/vendor/sudo
/myaccount/assets/vendor/sweetalert2
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/myaccount-old/application
/myaccount-old/error_log
/myaccount-old/index.php
/myaccount-old/system
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-06-26 19:19

Severity: medium
Fingerprint: 5f32cf5d6962f09c9150089691500896acf92b91460370f92411f1e1553d516e

Found 37 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-06-20 12:03

Severity: medium
Fingerprint: 5f32cf5d6962f09ccbc000d9cbc000d93e5b1eae67e9759aeb8b06fa46d2db7d

Found 49 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/beta
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-03-09 00:39

Severity: medium
Fingerprint: 5f32cf5d6962f09c8efce1938efce193d2635dece386e070ad892714a312d9e0

Found 36 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-03-03 05:30

Severity: medium
Fingerprint: 5f32cf5d6962f09cdc8bf8eddc8bf8edc341714aa713e9a67e69cc26677f46e7

Found 89 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/assets/vendor/@fortawesome
/myaccount/assets/vendor/anchor-js
/myaccount/assets/vendor/animate.css
/myaccount/assets/vendor/bootstrap
/myaccount/assets/vendor/bootstrap-datepicker
/myaccount/assets/vendor/bootstrap-notify
/myaccount/assets/vendor/bootstrap-rtl
/myaccount/assets/vendor/bootstrap-tagsinput
/myaccount/assets/vendor/chart.js
/myaccount/assets/vendor/clipboard
/myaccount/assets/vendor/datatables.net
/myaccount/assets/vendor/datatables.net-bs4
/myaccount/assets/vendor/datatables.net-buttons
/myaccount/assets/vendor/datatables.net-buttons-bs4
/myaccount/assets/vendor/datatables.net-responsive-bs4
/myaccount/assets/vendor/datatables.net-select
/myaccount/assets/vendor/datatables.net-select-bs4
/myaccount/assets/vendor/dropzone
/myaccount/assets/vendor/font-awesome
/myaccount/assets/vendor/fullcalendar
/myaccount/assets/vendor/gulp-copy
/myaccount/assets/vendor/headroom.js
/myaccount/assets/vendor/holderjs
/myaccount/assets/vendor/jekyll
/myaccount/assets/vendor/jquery
/myaccount/assets/vendor/jquery-scroll-lock
/myaccount/assets/vendor/jquery.scrollbar
/myaccount/assets/vendor/js-cookie
/myaccount/assets/vendor/jvectormap-next
/myaccount/assets/vendor/lavalamp
/myaccount/assets/vendor/list.js
/myaccount/assets/vendor/minimatch
/myaccount/assets/vendor/moment
/myaccount/assets/vendor/nouislider
/myaccount/assets/vendor/nucleo
/myaccount/assets/vendor/onscreen
/myaccount/assets/vendor/prismjs
/myaccount/assets/vendor/quill
/myaccount/assets/vendor/select2
/myaccount/assets/vendor/sudo
/myaccount/assets/vendor/sweetalert2
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-03-02 23:24

Severity: medium
Fingerprint: 5f32cf5d6962f09c92dfb71592dfb715da82d202cac9a49e5a449a3ec9513486

Found 45 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/vendor
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-03-01 00:33

Severity: medium
Fingerprint: 5f32cf5d6962f09c3e8b9cac3e8b9cac0329aaeba8b10743415f1b7f4b766b41

Found 48 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-02-26 13:22

Severity: medium
Fingerprint: 5f32cf5d6962f09c75d69a7675d69a766c913871d339dad9888db141b0abc2b5

Found 51 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/img/CU - popup Mobile-100 (1).jpg
/assets/img/CU- popup web-100 (1).jpg
/assets/img/CU-popup-Mobile-100-new.jpg
/assets/img/CU-popup-Mobile-new.jpg
/assets/img/Cu-popup-web-100-new.jpg
/assets/img/CU-popup-web-new.jpg
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/vendor
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-02-20 16:51

Severity: medium
Fingerprint: 5f32cf5d6962f09c62fb79d662fb79d6b483f951b545ef39be03e1a1ac679470

Found 95 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/img/CU - popup Mobile-100 (1).jpg
/assets/img/CU- popup web-100 (1).jpg
/assets/img/CU-popup-Mobile-100-new.jpg
/assets/img/CU-popup-Mobile-new.jpg
/assets/img/Cu-popup-web-100-new.jpg
/assets/img/CU-popup-web-new.jpg
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/assets/vendor/@fortawesome
/myaccount/assets/vendor/anchor-js
/myaccount/assets/vendor/animate.css
/myaccount/assets/vendor/bootstrap
/myaccount/assets/vendor/bootstrap-datepicker
/myaccount/assets/vendor/bootstrap-notify
/myaccount/assets/vendor/bootstrap-rtl
/myaccount/assets/vendor/bootstrap-tagsinput
/myaccount/assets/vendor/chart.js
/myaccount/assets/vendor/clipboard
/myaccount/assets/vendor/datatables.net
/myaccount/assets/vendor/datatables.net-bs4
/myaccount/assets/vendor/datatables.net-buttons
/myaccount/assets/vendor/datatables.net-buttons-bs4
/myaccount/assets/vendor/datatables.net-responsive-bs4
/myaccount/assets/vendor/datatables.net-select
/myaccount/assets/vendor/datatables.net-select-bs4
/myaccount/assets/vendor/dropzone
/myaccount/assets/vendor/font-awesome
/myaccount/assets/vendor/fullcalendar
/myaccount/assets/vendor/gulp-copy
/myaccount/assets/vendor/headroom.js
/myaccount/assets/vendor/holderjs
/myaccount/assets/vendor/jekyll
/myaccount/assets/vendor/jquery
/myaccount/assets/vendor/jquery-scroll-lock
/myaccount/assets/vendor/jquery.scrollbar
/myaccount/assets/vendor/js-cookie
/myaccount/assets/vendor/jvectormap-next
/myaccount/assets/vendor/lavalamp
/myaccount/assets/vendor/list.js
/myaccount/assets/vendor/minimatch
/myaccount/assets/vendor/moment
/myaccount/assets/vendor/nouislider
/myaccount/assets/vendor/nucleo
/myaccount/assets/vendor/onscreen
/myaccount/assets/vendor/prismjs
/myaccount/assets/vendor/quill
/myaccount/assets/vendor/select2
/myaccount/assets/vendor/sudo
/myaccount/assets/vendor/sweetalert2
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-02-20 14:04

Severity: low
Fingerprint: 5f32cf5d6962f09c87f05b7087f05b70be738cf79177ad5f64c15d6ba7cf8c49

Found 26 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-02-16 15:39

Severity: medium
Fingerprint: 5f32cf5d6962f09cef4770e6ef4770e6bc862a81dfcc54a95cc70a71193cdb50

Found 42 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/vendor
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-02-01 19:09

Severity: low
Fingerprint: 5f32cf5d6962f09c2a439cf82a439cf8b970696fdb8d4b3786fe37434a55ed9d

Found 31 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-01-16 10:38

Severity: medium
Fingerprint: 5f32cf5d6962f09cff76d438ff76d438ece34e2fd8c55877f7f80103cde4beac

Found 93 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/img
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/assets/vendor/@fortawesome
/myaccount/assets/vendor/anchor-js
/myaccount/assets/vendor/animate.css
/myaccount/assets/vendor/bootstrap
/myaccount/assets/vendor/bootstrap-datepicker
/myaccount/assets/vendor/bootstrap-notify
/myaccount/assets/vendor/bootstrap-rtl
/myaccount/assets/vendor/bootstrap-tagsinput
/myaccount/assets/vendor/chart.js
/myaccount/assets/vendor/clipboard
/myaccount/assets/vendor/datatables.net
/myaccount/assets/vendor/datatables.net-bs4
/myaccount/assets/vendor/datatables.net-buttons
/myaccount/assets/vendor/datatables.net-buttons-bs4
/myaccount/assets/vendor/datatables.net-responsive-bs4
/myaccount/assets/vendor/datatables.net-select
/myaccount/assets/vendor/datatables.net-select-bs4
/myaccount/assets/vendor/dropzone
/myaccount/assets/vendor/font-awesome
/myaccount/assets/vendor/fullcalendar
/myaccount/assets/vendor/gulp-copy
/myaccount/assets/vendor/headroom.js
/myaccount/assets/vendor/holderjs
/myaccount/assets/vendor/jekyll
/myaccount/assets/vendor/jquery
/myaccount/assets/vendor/jquery-scroll-lock
/myaccount/assets/vendor/jquery.scrollbar
/myaccount/assets/vendor/js-cookie
/myaccount/assets/vendor/jvectormap-next
/myaccount/assets/vendor/lavalamp
/myaccount/assets/vendor/list.js
/myaccount/assets/vendor/minimatch
/myaccount/assets/vendor/moment
/myaccount/assets/vendor/nouislider
/myaccount/assets/vendor/nucleo
/myaccount/assets/vendor/onscreen
/myaccount/assets/vendor/prismjs
/myaccount/assets/vendor/quill
/myaccount/assets/vendor/select2
/myaccount/assets/vendor/sudo
/myaccount/assets/vendor/sweetalert2
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/myaccount-old/application
/myaccount-old/error_log
/myaccount-old/index.php
/myaccount-old/system
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2025-01-12 14:27

Severity: medium
Fingerprint: 5f32cf5d6962f09c0ac411c00ac411c058b25aa7b7c546cfd6ca003bca91467c

Found 88 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/img/brand
/myaccount/assets/img/icons
/myaccount/assets/img/theme
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/scss/bootstrap
/myaccount/assets/scss/core
/myaccount/assets/scss/custom
/myaccount/assets/vendor
/myaccount/assets/vendor/@fortawesome
/myaccount/assets/vendor/anchor-js
/myaccount/assets/vendor/animate.css
/myaccount/assets/vendor/bootstrap
/myaccount/assets/vendor/bootstrap-datepicker
/myaccount/assets/vendor/bootstrap-notify
/myaccount/assets/vendor/bootstrap-rtl
/myaccount/assets/vendor/bootstrap-tagsinput
/myaccount/assets/vendor/chart.js
/myaccount/assets/vendor/clipboard
/myaccount/assets/vendor/datatables.net
/myaccount/assets/vendor/datatables.net-bs4
/myaccount/assets/vendor/datatables.net-buttons
/myaccount/assets/vendor/datatables.net-buttons-bs4
/myaccount/assets/vendor/datatables.net-responsive-bs4
/myaccount/assets/vendor/datatables.net-select
/myaccount/assets/vendor/datatables.net-select-bs4
/myaccount/assets/vendor/dropzone
/myaccount/assets/vendor/font-awesome
/myaccount/assets/vendor/fullcalendar
/myaccount/assets/vendor/gulp-copy
/myaccount/assets/vendor/headroom.js
/myaccount/assets/vendor/holderjs
/myaccount/assets/vendor/jekyll
/myaccount/assets/vendor/jquery
/myaccount/assets/vendor/jquery-scroll-lock
/myaccount/assets/vendor/jquery.scrollbar
/myaccount/assets/vendor/js-cookie
/myaccount/assets/vendor/jvectormap-next
/myaccount/assets/vendor/lavalamp
/myaccount/assets/vendor/list.js
/myaccount/assets/vendor/minimatch
/myaccount/assets/vendor/moment
/myaccount/assets/vendor/nouislider
/myaccount/assets/vendor/nucleo
/myaccount/assets/vendor/onscreen
/myaccount/assets/vendor/prismjs
/myaccount/assets/vendor/quill
/myaccount/assets/vendor/select2
/myaccount/assets/vendor/sudo
/myaccount/assets/vendor/sweetalert2
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2024-12-18 06:23

Severity: medium
Fingerprint: 5f32cf5d6962f09c248e4f81248e4f81f51346c6270db0724cb043128ff2c97d

Found 41 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/assets
/myaccount/assets/css
/myaccount/assets/fonts
/myaccount/assets/img
/myaccount/assets/js
/myaccount/assets/scss
/myaccount/assets/vendor
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2024-12-06 17:40

Severity: low
Fingerprint: 5f32cf5d6962f09ca0cc0fcfa0cc0fcf937c2260e785dc244f6922a81c127394

Found 25 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount-old
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2024-11-28 17:25

Severity: low
Fingerprint: 5f32cf5d6962f09c7c3d3e457c3d3e4585f075d212b6776e6502aeee459efcf5

Found 30 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount1
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2024-11-24 13:15

Severity: medium
Fingerprint: 5f32cf5d6962f09c2acf29aa2acf29aa332179bdb4ddf2650fd9fb5d2745b2a7

Found 33 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2024-11-22 14:02

Severity: medium
Fingerprint: 5f32cf5d6962f09cecc85b04ecc85b04cbf1eeb340d9d3cb3d7cc4c7bab0eaf0

Found 53 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/assets
/assets/pdf
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide
/user_guide/_downloads
/user_guide/_images
/user_guide/_static
/user_guide/changelog.html
/user_guide/contributing
/user_guide/database
/user_guide/DCO.html
/user_guide/documentation
/user_guide/general
/user_guide/genindex.html
/user_guide/helpers
/user_guide/index.html
/user_guide/installation
/user_guide/libraries
/user_guide/license.html
/user_guide/objects.inv
/user_guide/overview
/user_guide/search.html
/user_guide/searchindex.js
/user_guide/tutorial

Found on 2024-11-14 08:30

Severity: medium
Fingerprint: 5f32cf5d6962f09c75d69a7675d69a766c913871d339dad9888db14194c71aa7

Found 51 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide
/user_guide/_downloads
/user_guide/_images
/user_guide/_static
/user_guide/changelog.html
/user_guide/contributing
/user_guide/database
/user_guide/DCO.html
/user_guide/documentation
/user_guide/general
/user_guide/genindex.html
/user_guide/helpers
/user_guide/index.html
/user_guide/installation
/user_guide/libraries
/user_guide/license.html
/user_guide/objects.inv
/user_guide/overview
/user_guide/search.html
/user_guide/searchindex.js
/user_guide/tutorial

Found on 2024-09-10 02:52

Severity: low
Fingerprint: 5f32cf5d6962f09c2a439cf82a439cf8b970696fdb8d4b3786fe37438128db86

Found 31 files trough .DS_Store spidering:

/404.shtml
/admin
/admissionportal
/admissionportal/application
/admissionportal/error_log
/admissionportal/index.php
/admissionportal/system
/application
/composer.json
/contributing.md
/CuUniversityLogin
/CuUniversityLogin/application
/CuUniversityLogin/error_log
/CuUniversityLogin/index.php
/CuUniversityLogin/README.md
/CuUniversityLogin/system
/error_log
/home.html
/index.php
/layout-styles.css
/license.txt
/myaccount
/myaccount/application
/myaccount/error_log
/myaccount/index.php
/myaccount/system
/readme.rst
/robots.txt
/sitemap.xml
/system
/user_guide

Found on 2024-09-04 23:11

Create report

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 65.9.95.60
Domain: plcv-login.cloudworkengine.net
Port: 443
URL: https://plcv-login.cloudworkengine.net

First seen 2024-10-17 07:28
Last seen 2025-07-10 07:17
Open for 265 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fda5a95041

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 10-Jul-2025 07:17:08 UTC
Restart Time: Wednesday, 09-Jul-2025 07:06:54 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 10 minutes 14 seconds
Server load: 1.87 1.25 1.10
Total accesses: 27520 - Total Traffic: 102.5 MB - Total Duration: 7162086
CPU Usage: u9.87 s5.68 cu0 cs0 - .0179% CPU load
.316 requests/sec - 1235 B/second - 3906 B/request - 260.25 ms/request
1 requests currently being processed, 49 idle workers
W_________________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-03761/611/611W
6.8600220574224.42.252.25
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /server-status HTTP/1.1

0-0370/631/631_
6.83260421854810.02.652.65
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_ecdcd9a10d5d7

0-0370/470/470_
6.7277351080660.01.761.76
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0370/681/681_
6.6510061921409240.02.652.65
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_164ac5a3e141e

0-0370/641/641_
6.511624381563330.02.402.40
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_fc1f8685491f6

0-0370/493/493_
6.81298131563880.01.931.93
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

0-0370/413/413_
6.83794958630.01.391.39
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/metadata.php HTTP/1.1

0-0370/353/353_
6.34276161054020.01.331.33
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

0-0370/577/577_
6.34274651155610.02.272.27
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

0-0370/563/563_
6.422213271578320.02.152.15
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fplcmelbo

0-0370/392/392_
6.3427235551280.01.521.52
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

0-0370/590/590_
6.43209451750770.02.102.10
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

0-0370/600/600_
6.38245401052450.02.322.32
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /robots.txt HTTP/1.1

0-0370/640/640_
6.48175712204410.02.052.05
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0370/529/529_
6.42219041554720.02.102.10
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0370/597/597_
6.471789571370300.02.152.15
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_49f9ffc09b63f

0-0370/552/552_
6.551332491405760.01.861.86
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0370/676/676_
6.6699001790990.02.332.33
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /robots.txt HTTP/1.1

0-0370/542/542_
6.60117962664440.01.971.97
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fplcmelbo

0-0370/510/510_
6.601196361178680.01.981.98
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_30a8695090cd0

0-0370/708/708_
6.67920131425600.02.612.61
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0370/573/573_
6.6510310883880.01.931.93
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/483/483_
6.831031372359580.01.871.87
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_b7328d9dc2300

0-0370/556/556_
6.7754135906670.02.212.21
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_7b4841eefdcc1

0-0370/572/572_
6.77640391173890.02.182.18
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_5251f3e4da02d

1-0380/573/573_
6.2527285766300.02.112.11
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

1-0380/531/531_
6.677834761532980.02.052.05
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

1-0380/549/549_
6.679491160130.02.272.27
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fplcmelbo

1-0380/453/453_
6.67151061651850.01.701.70
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_2a878979b1796

1-0380/723/723_
6.29263661200800.02.652.65
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fplcmelbo

1-0380/550/550_
6.292600371022760.01.971.97
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_086a7ad09be76

1-0380/554/554_
6.38208011298180.01.821.82
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/506/506_
6.342338241178920.01.901.90
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

1-0380/600/600_
6.441949352132320.02.272.27
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_71dad0d29ceb8

1-0380/470/470_
6.36210931076500.01.711.71
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vGgIx

1-0380/569/569_
6.44187461572160.02.222.22
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fplcmelbo

1-0380/608/608_
6.44177651223960.02.142.14
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fplcmelbo

1-0380/837/837_
6.481481361653020.03.023.02
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_f9cf45bf4f6c9

1-0380/529/529_
6.481373481501550.01.951.95
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_b6ddb2e3606eb

1-0380/322/322_
6.52113341852060.01.281.28
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/chromebook/jquery.js HTTP/1.1

1-0380/602/602_
6.53111731213990.02.242.24
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_a528d0f1772cb

1-0380/436/436_
6.53107182127930.01.601.60
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fplcmelbo

1-0380/616/616_
6.67136331690080.02.332.33
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_51d2335b16cba

1-0380/326/326_
6.53997321892700.01.191.19
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/607/607_
6.63359422159880.02.232.23
127.0.0.1http/1.1ip-10-1-95-3.ap-southeast-2.comGET /module.php/core/loginuserpass.php?AuthState=_97b64468beb95

Found on 2025-07-10 07:17

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fddae706e5

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Tuesday, 08-Jul-2025 09:57:19 UTC
Restart Time: Friday, 04-Jul-2025 03:31:26 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 6 hours 25 minutes 52 seconds
Server load: 0.85 1.24 1.45
Total accesses: 235409 - Total Traffic: 804.6 MB - Total Duration: 40762871
CPU Usage: u82.23 s55.01 cu0 cs0 - .0372% CPU load
.638 requests/sec - 2287 B/second - 3583 B/request - 173.158 ms/request
1 requests currently being processed, 49 idle workers
______________________________________W___________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/4891/4891_
62.9633461317614650.016.8716.87
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c39a6384ca653

0-0350/4609/4609_
63.57460748508480.015.9315.93
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BYL

0-0350/4550/4550_
62.953383167971960.015.6415.64
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0350/4651/4651_
63.072746418591050.015.9315.93
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_368973ff3902a

0-0350/4295/4295_
62.9633281326583250.014.3014.30
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d8c738b66dac7

0-0350/4456/4456_
63.142617418079220.015.1315.13
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_85f1781f0b9ba

0-0350/5416/5416_
63.1723804311658590.018.2518.25
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_99a793b04f666

0-0350/4980/4980_
63.162433828614650.017.0417.04
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_6b31e92d5d665

0-0350/4691/4691_
63.351365129126650.016.2216.22
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/5172/5172_
63.291515118832310.017.8017.80
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F9346&coo

0-0350/5148/5148_
63.023027109319670.017.3317.33
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=&cookieTime=1751965598

0-0350/4880/4880_
63.22197779016140.016.5316.53
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=&cookieTime=1751966649

0-0350/5587/5587_
63.40123708661650.019.4019.40
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET / HTTP/1.1

0-0350/3450/3450_
63.14251446177540.011.7911.79
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_11e81f9b386b0

0-0350/4453/4453_
63.5079479169380.015.3015.30
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNNj9owFLzvr4hyzydhA

0-0350/4434/4434_
63.221916438919430.015.4215.42
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ddfa71c9645e1

0-0350/4928/4928_
63.281599107516080.016.7016.70
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=&cookieTime=1751967022

0-0350/4648/4648_
63.51647137971190.015.7415.74
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F9345&coo

0-0350/4641/4641_
63.44944306809580.015.9915.99
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=&cookieTime=1751967681

0-0350/4793/4793_
63.516861327798810.016.3816.38
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2272%2F&

0-0350/4366/4366_
63.28158858117067040.014.7314.73
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BWT

0-0350/4989/4989_
63.623319689771590.016.8116.81
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/5185/5185_
63.6739428293330.017.6217.62
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e9167a7da96d1

0-0350/3949/3949_
63.51658957237030.013.6413.64
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_0d3156d874d93

0-0350/5096/5096_
63.1724024959180210.016.9816.98
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0360/4625/4625_
62.702447877238400.016.1616.16
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_95d51738c54bb

1-0360/4561/4561_
62.921712569101630.015.6815.68
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_542be741c45e0

1-0360/4110/4110_
62.59316107470210.014.1514.15
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET / HTTP/1.1

1-0360/4204/4204_
62.9215571137326600.014.1314.13
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b8b2d3abc2973

1-0360/4398/4398_
62.812137167977410.014.7314.73
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/5254/5254_
63.09180397619770.017.8017.80
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_632fc889f08df

1-0360/4492/4492_
62.70248508403180.015.5115.51
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0360/4569/4569_
62.65288488393060.015.2215.22
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=&cookieTime=1751965742

1-0360/4154/4154_
62.6925221477941740.014.2214.22
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_4bacbfc86ba4c

1-0360/4640/4640_
62.65285016186340.016.3716.37
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0360/5076/5076_
63.0460026958983450.017.2017.20
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZJPT%2BMwEMXvSPsdLN%

1-0360/3998/3998_
62.981090646392350.013.6613.66
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLTxsxEL4j8R8s3%2Fe

1-0360/4941/4941_
63.007181497794840.016.8316.83
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_111846510b0a2

1-03629/5416/5416W
63.1000104275891.718.6618.66
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /server-status HTTP/1.1

1-0360/4324/4324_
63.03633179206200.014.8814.88
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0360/5351/5351_
62.861840418414290.018.1018.10
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_1159064dd8437

1-0360/4312/4312_
62.92165117875760.014.7214.72
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0360/3937/3937_
62.9215212387566540.013.5513.55
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_7d4622bbeda8d

1-0360/5183/5183_
62.981052178083430.017.6917.69
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/3894/3894_
62.7522746702

Found on 2025-07-08 09:57

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd20401a53

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Sunday, 06-Jul-2025 14:52:56 UTC
Restart Time: Friday, 04-Jul-2025 03:31:26 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 11 hours 21 minutes 29 seconds
Server load: 1.60 1.37 1.41
Total accesses: 141083 - Total Traffic: 479.1 MB - Total Duration: 23955322
CPU Usage: u47.88 s31.97 cu0 cs0 - .0374% CPU load
.66 requests/sec - 2350 B/second - 3560 B/request - 169.796 ms/request
1 requests currently being processed, 49 idle workers
______________________________________________W___..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



<SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/2843/2843_
37.00660384322700.09.709.70
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ba75e5e43af0f

0-0350/2680/2680_
37.063376064221040.08.988.98
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fsend.php%3Fid%3D290

0-0350/2857/2857_
36.1655208944200390.09.739.73
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/2628/2628_
36.32479875657490.08.898.89
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

0-0350/2155/2155_
36.265093303130080.07.087.08
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fsend.php%3Fid%3D290

0-0350/2662/2662_
36.384550435246000.08.948.94
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_180b09fe35652

0-0350/3216/3216_
36.50356587066260.010.7310.73
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fsend.php%3Fid%3D290

0-0350/3326/3326_
36.4540191055601910.011.3111.31
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_841a8f15e19d7

0-0350/2873/2873_
36.603099425438750.09.959.95
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_dfbf67a029b00

0-0350/2956/2956_
36.453956884676960.09.939.93
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_94846bc2a8fda

0-0350/3056/3056_
36.2749393504702180.010.2610.26
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/2626/2626_
36.553259265809570.09.149.14
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

0-0350/3519/3519_
36.662645105995050.012.1412.14
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

0-0350/1929/1929_
36.434255392973450.06.516.51
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_dd334124d90a9

0-0350/3098/3098_
36.861579396437710.010.7110.71
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_31932b8a07158

0-0350/2766/2766_
36.60302844847010.09.809.80
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_03bab45dd1b14

0-0350/3215/3215_
36.71248844540370.010.8410.84
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/2924/2924_
36.76218464360160.09.809.80
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7JCQXA

0-0350/2943/2943_
36.811876514720590.09.969.96
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_1f8e891e565d5

0-0350/2446/2446_
36.96973394692010.08.508.50
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_931c704f4f38d

0-0350/2597/2597_
36.91127574458210.08.668.66
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ac50157c4a907

0-0350/3315/3315_
36.21537296190060.011.1811.18
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fsend.php%3Fid%3D290

0-0350/2908/2908_
37.11874146210.09.699.69
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

0-0350/2132/2132_
36.12576539573270700.07.337.33
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2272%2F&

0-0350/3181/3181_
36.274930885540410.010.3310.33
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f21dddd5bf113

1-0360/2710/2710_
36.223713384235460.09.359.35
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_77982591a9a06

1-0360/2860/2860_
36.382806404836190.09.739.73
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bae15696498a5

1-0360/2342/2342_
35.9649171134713100.08.048.04
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f0b351b749162

1-0360/2691/2691_
36.332962104207800.08.928.92
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

1-0360/2564/2564_
36.024699114507800.08.688.68
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2272%2F&

1-0360/2954/2954_
36.631126133712750.010.0310.03
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

1-0360/2373/2373_
36.064403384952010.08.138.13
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b5e73822e812b

1-0360/2870/2870_
35.974908905486900.09.529.52
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_be4d767f71c5b

1-0360/2278/2278_
36.124094414204440.07.707.70
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8eb50e91a4872

1-0360/2739/2739_
35.964958253734520.09.529.52
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2272%2F&

1-0360/2731/2731_
36.472027445549750.09.179.17
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c5a00d75d6535

1-0360/2427/2427_
36.432333103748730.08.408.40
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

1-0360/3389/3389_
36.78175125292710.011.5611.56
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

1-0360/3240/3240_
35.87552716568220.011.0711.07
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0360/2900/2900_
36.72499435336380.010.0110.01
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_a755e00e327d6

1-0360/3034/3034_
36.17384884666640.010.0610.06
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

1-0360/2703/2703_
36.28340663513150.08.998.99
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

1-0360/2383/2383_
36.571434104854730.08.268.26
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

1-0360/3042/3042_
36.38278544377440.010.2610.26
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.c

Found on 2025-07-06 14:52

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd6ae41105

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Friday, 04-Jul-2025 13:55:11 UTC
Restart Time: Friday, 04-Jul-2025 03:31:26 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  10 hours 23 minutes 44 seconds
Server load: 0.82 0.90 0.98
Total accesses: 27653 - Total Traffic: 97.5 MB - Total Duration: 5585910
CPU Usage: u9.63 s6.19 cu0 cs0 - .0423% CPU load
.739 requests/sec - 2731 B/second - 3696 B/request - 202 ms/request
1 requests currently being processed, 49 idle workers
__________________W_______________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/576/576_
6.80358711970400.01.961.96
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12434&co

0-0350/577/577_
6.863309140770550.02.092.09
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_dae0c314ca537

0-0350/600/600_
6.9529137786270.02.182.18
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12460&co

0-0350/701/701_
7.09229341571710.02.412.41
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/183/183_
7.00276741679170.00.580.58
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ab9b31494173d

0-0350/322/322_
7.07237717701840.01.231.23
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0350/628/628_
7.152124441373050.02.182.18
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_646edfb8c6d7d

0-0350/543/543_
7.072412146784570.01.891.89
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0350/758/758_
7.251472111878190.02.872.87
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12434&co

0-0350/921/921_
7.25166051091820.03.303.30
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZJLb8IwEIT%2FSuQ7djA

0-0350/812/812_
7.191804441685610.02.842.84
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_82e324a328ac3

0-0350/436/436_
7.331268401552660.01.551.55
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_58ef46ef5810a

0-0350/533/533_
7.38111061872050.01.931.93
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

0-0350/343/343_
7.2714040513570.01.291.29
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET / HTTP/1.1

0-0350/747/747_
7.45503772136420.02.692.69
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bd78846c546c0

0-0350/503/503_
7.45573751849940.01.951.95
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d9037bcac8ad2

0-0350/579/579_
7.4378737777630.02.082.08
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_7ad250b8aeaeb

0-0350/563/563_
7.5120741779460.01.921.92
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f3daf6dedfaad

0-03539/464/464W
7.520073397121.81.601.60
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /server-status HTTP/1.1

0-0350/275/275_
6.7040352156622000.00.880.88
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12434&co

0-0350/311/311_
6.69411394292890.01.111.11
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_64e8fabdc6442

0-0350/655/655_
6.89320282204890.02.362.36
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12460&co

0-0350/604/604_
6.75387043880380.02.122.12
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_eb9bf07697321

0-0350/565/565_
6.8832451181009600.01.931.93
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e81cba7598665

0-0350/829/829_
7.052629421505400.02.742.74
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_92f3815ff0d33

1-0360/649/649_
7.031395931119060.02.402.40
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_7f6f519f897d8

1-0360/377/377_
7.03146287629130.01.361.36
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bbc640158561d

1-0360/214/214_
6.932351100409260.00.700.70
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_078490b280e11

1-0360/333/333_
6.9819304288730.01.081.08
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0360/520/520_
6.98196838736500.01.841.84
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_9deec37503277

1-0360/552/552_
6.86305242707280.01.941.94
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_adb35caf4fee2

1-0360/657/657_
6.862830381075890.02.292.29
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_fee93f34b4daf

1-0360/483/483_
6.912483401434580.01.581.58
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_fa85883ffb298

1-0360/412/412_
6.93228293730640.01.421.42
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_0afe3c172595b

1-0360/530/530_
6.93236415976790.01.951.95
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/499/499_
7.264311201780.01.621.62
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0360/708/708_
6.71401771681860.02.562.56
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

1-0360/763/763_
6.704072871358710.02.712.71
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_21d909e203948

1-0360/698/698_
6.763733381443140.02.442.44
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_fab42a3afb520

1-0360/674/674_
6.8134503591939020.02.462.46
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0360/415/415_
7.03150768609480.01.331.33
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=&cookieTime=1751635789

1-0360/638/638_
7.14636121012500.02.132.13
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

1-0360/547/547_
7.155158951800.01.941.94
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

1-0360/650/650_
7.09954411559010.02.282.28
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_6c06380d3d2cb

1-0360/568/568_
7.03129801730600.02.042.04
127.0.0.1http/1.1ip-10-1-111-45.ap-southeast-2.cGET /favicon.

Found on 2025-07-04 13:54

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdcee83f35

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Wednesday, 02-Jul-2025 12:01:20 UTC
Restart Time: Sunday, 29-Jun-2025 23:09:42 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 12 hours 51 minutes 38 seconds
Server load: 4.00 2.48 1.91
Total accesses: 109438 - Total Traffic: 417.0 MB - Total Duration: 37341601
CPU Usage: u41.09 s23.48 cu0 cs0 - .0295% CPU load
.499 requests/sec - 1995 B/second - 3995 B/request - 341.212 ms/request
1 requests currently being processed, 49 idle workers
_________________________W________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/1551/1551_
30.3983466489770.05.785.78
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2272%2F&

0-0350/1967/1967_
30.518329432880.07.717.71
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-0350/2201/2201_
30.281159418529320.08.458.45
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_cd5416b738048

0-0350/2271/2271_
30.271252127820190.09.509.50
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0350/1939/1939_
30.251474124715860.07.157.15
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/2263/2263_
30.2614325669460110.08.668.66
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTuMwFN0jzT9Y3uc5Q

0-0350/2627/2627_
30.5136835834750.09.939.93
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_76887be826193

0-0350/2452/2452_
30.26139256109940.09.379.37
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_01399d22c2047

0-0350/2016/2016_
30.261323346321130.08.088.08
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_fbece5f3e35e6

0-0350/2269/2269_
30.26129997795160.08.708.70
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/2405/2405_
30.271220368029150.09.049.04
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_dc8b8399f6e64

0-0350/2878/2878_
30.35921747214560.010.7310.73
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_9b40c289e36b9

0-0350/2159/2159_
30.25145456587920.08.188.18
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=jVLLTiMxEPyVke%2FzDDD

0-0350/1966/1966_
30.26136907265160.08.028.02
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0350/2160/2160_
30.3398266219630.07.917.91
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

0-0350/2066/2066_
30.261280159433810.07.827.82
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0350/2561/2561_
30.3984066905930.09.889.88
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

0-0350/2252/2252_
30.44571368628850.08.218.21
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d4086cc00485c

0-0350/2417/2417_
30.28119416955570.09.109.10
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0350/2266/2266_
30.281129297710310.08.588.58
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

0-0350/2347/2347_
30.4263507377940.09.099.09
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0350/2743/2743_
30.502754910129560.010.4610.46
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0350/1862/1862_
30.4073719122990.07.007.00
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/2228/2228_
30.26141008385160.08.628.62
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0350/2574/2574_
30.518316244750.09.779.77
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-03615/2357/2357W
28.4500102325942.19.009.00
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /server-status HTTP/1.1

1-0360/2148/2148_
28.25126448243190.08.358.35
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_56d4fcac2f6fa

1-0360/2292/2292_
28.241465509131970.08.878.87
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/1685/1685_
28.261006447742370.06.406.40
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/1986/1986_
28.2688796468740.07.457.45
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/2586/2586_
28.241441308975620.09.479.47
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0360/1726/1726_
28.44291045849060.07.047.04
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_7a73e2f2a0232

1-0360/1939/1939_
28.251240376959250.07.257.25
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e8cf808c0a130

1-0360/2288/2288_
28.26116617757660.08.908.90
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0360/2289/2289_
28.261114147665090.08.708.70
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/2466/2466_
28.33713365584230.09.109.10
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_31c2fec51b7ab

1-0360/2125/2125_
28.26114476918900.07.837.83
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0360/2125/2125_
28.2696676531680.07.937.93
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

1-0360/2205/2205_
28.251354136520250.08.398.39
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/1888/1888_
28.241403387275010.07.467.46
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_579421dbca665

1-0360/2041/2041_
28.241422376793700.07.547.54
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/2226/2226_
28.25131267626350.08.098.09
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

1-0360/2290/2290_
28.4312289191400.08.578.57
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933%2F&

1-0360/1930/1930_
28.251294136019530.07.217.21
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/1962/1962_
28.33691397110500.08.028.02
127.0.0.1http/1.1ip-10-1-97-183.ap-so

Found on 2025-07-02 12:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd19b99e5c

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Monday, 30-Jun-2025 08:48:23 UTC
Restart Time: Sunday, 29-Jun-2025 23:09:42 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 hours 38 minutes 41 seconds
Server load: 3.24 2.27 2.07
Total accesses: 9339 - Total Traffic: 44.6 MB - Total Duration: 5924125
CPU Usage: u4.66 s2.33 cu0 cs0 - .0201% CPU load
.269 requests/sec - 1347 B/second - 5010 B/request - 634.343 ms/request
1 requests currently being processed, 49 idle workers
__________________________________________W_______..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/148/148_
2.845609483930.00.600.60
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/153/153_
2.84483532081970.00.740.74
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/124/124_
2.8718211199570.00.660.66
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/182/182_
2.86292131139080.01.151.15
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0350/154/154_
2.8539712877930.00.730.73
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/238/238_
2.8451231231610.01.091.09
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0350/139/139_
2.844689781990.00.620.62
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/222/222_
2.854385534670.01.071.07
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e0e7b32bf70bb

0-0350/228/228_
2.853661169550840.00.980.98
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BR71l

0-0350/156/156_
2.8530942610690.00.730.73
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/162/162_
2.853371634700.00.820.82
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET / HTTP/1.1

0-0350/238/238_
2.862770953120.01.221.22
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET / HTTP/1.1

0-0350/140/140_
2.862566592630.00.620.62
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/140/140_
2.872176865980.00.730.73
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0350/172/172_
2.862244504350.00.730.73
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0350/220/220_
2.87136102854940.01.131.13
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/186/186_
2.8716531044600.00.960.96
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ebb0dc1389250

0-0350/167/167_
2.87110741412460.00.680.68
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_1602ac9537bb4

0-0350/179/179_
2.8714250791073290.00.770.77
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PAgEg

0-0350/144/144_
2.8891361052090.00.650.65
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_4176531a53bef

0-0350/175/175_
2.8772105840530.00.950.95
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/172/172_
2.8859761089640.00.770.77
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/156/156_
2.84619362879640.00.830.83
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PEm4x

0-0350/215/215_
2.846411957770.01.031.03
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/160/160_
2.84590281708790.00.770.77
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLbtswELz7Kwzd9U7il

1-0360/199/199_
3.145708252715740.00.940.94
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSB

1-0360/159/159_
3.1542692036910.00.710.71
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/295/295_
3.1550711712419600.01.381.38
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2Bdg

1-0360/164/164_
3.146060894530.00.700.70
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0360/263/263_
3.146354241661110.01.421.42
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTiMxEL0j8Q%2BW770

1-0360/183/183_
3.1547402191860.00.800.80
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /apple-touch-icon-precomposed.png HTTP/1.1

1-0360/167/167_
3.155005984770.00.730.73
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_5b1349efbc90c

1-0360/138/138_
3.1623711295600.00.710.71
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/152/152_
3.162624581203020.00.810.81
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BR71l

1-0360/296/296_
3.199701602540.01.221.22
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0360/272/272_
3.154520869310.01.091.09
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0360/193/193_
3.181758351155390.00.900.90
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/cloudworkauth/mfa/hotp.php?hotp_id=175&StateId=

1-0360/123/123_
3.1813551231130.00.620.62
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0360/298/298_
3.163016221049280.01.461.46
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecyHZ5

1-0360/242/242_
3.1537738793500.01.231.23
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0360/134/134_
3.15345325865300.00.610.61
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecyHZZ

1-0360/170/170_
3.163176610590.00.800.80
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0363/209/209W
3.19001749593.81.101.10
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /server-status HTTP/1.1

1-0360/138/138_
3.162830625510.00.650.65
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0360/134/134_
3.19117821074630.00.770.77
127.0.0.1http/1.1ip-10-1-97-183.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_da7d49eb80ee5

1-0360/144/144_
3.19745752480.00.690.69
127.0.0.1http/1.1ip-10-1-97-183.ap-sou

Found on 2025-06-30 08:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd14eb0993

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 26-Jun-2025 02:52:04 UTC
Restart Time: Thursday, 26-Jun-2025 01:15:44 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 hour 36 minutes 19 seconds
Server load: 1.42 1.93 2.25
Total accesses: 1960 - Total Traffic: 8.9 MB - Total Duration: 1572605
CPU Usage: u.92 s.62 cu0 cs0 - .0266% CPU load
.339 requests/sec - 1608 B/second - 4741 B/request - 802.349 ms/request
1 requests currently being processed, 49 idle workers
____W_____________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0400/36/36_
0.64542365522700.00.260.26
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJbtswEL0X6D8QvGux0

0-0400/31/31_
0.64672749350.00.090.09
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0400/48/48_
0.646418471577840.00.260.26
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0400/123/123_
0.6461710510620.00.490.49
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0406/29/29W
0.7100982814.40.140.14
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /server-status HTTP/1.1

0-0400/50/50_
0.6910534925050.00.240.24
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_75790a7a024a0

0-0400/88/88_
0.654902519740.00.450.45
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_4120fe02ba66e

0-0400/25/25_
0.6458345042640.00.130.13
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0400/25/25_
0.655131165510.00.090.09
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0400/22/22_
0.6456110131980.00.110.11
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0400/50/50_
0.664201221930.00.230.23
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0400/49/49_
0.664521144650.00.210.21
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0400/68/68_
0.663753238180.00.270.27
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d12328f327dc9

0-0400/30/30_
0.67312272563210.00.120.12
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0400/15/15_
0.68302227223070.00.040.04
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0400/86/86_
0.67352196417010.00.380.38
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0400/37/37_
0.682781499355170.00.140.14
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0400/15/15_
0.682671154147370.00.070.07
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dek5A0S

0-0400/28/28_
0.6823011162900.00.120.12
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0400/16/16_
0.692201775530870.00.070.07
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0400/27/27_
0.69190752364120.00.110.11
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=rZLNbtswEIRfReCdlETrl

0-0400/28/28_
0.704923454430.00.110.11
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSA

0-0400/28/28_
0.6915234161190.00.110.11
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0400/36/36_
0.6977141210.00.140.14
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0400/50/50_
0.701810357760.00.240.24
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0410/25/25_
0.606020183300.00.100.10
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0410/47/47_
0.606311067820.00.210.21
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/.well-known/openid-configuration HTTP/1.1

1-0410/53/53_
0.60553909879570.00.190.19
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dek5Bw2

1-0410/60/60_
0.59680303156260.00.350.35
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec4fN1

1-0410/53/53_
0.596471263530.00.250.25
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0410/19/19_
0.63258950750.00.070.07
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0410/50/50_
0.615295714820.00.380.38
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0410/70/70_
0.605701138240.00.250.25
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0410/34/34_
0.61498442311970.00.160.16
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLbtswELwX6D8QvOthp

1-0410/30/30_
0.61462137020.00.090.09
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0410/28/28_
0.61437324474500.00.120.12
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PAiQe

1-0410/21/21_
0.62385228382080.00.130.13
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0410/42/42_
0.6236810269540.00.210.21
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0410/29/29_
0.623181362780.00.100.10
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET / HTTP/1.1

1-0410/18/18_
0.623380180410.00.090.09
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0410/24/24_
0.62291231200.00.120.12
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_049291bb8711b

1-0410/51/51_
0.632811197230.00.290.29
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0410/63/63_
0.64199476839780.00.280.28
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PAhwL

1-0410/30/30_
0.64244251130.00.100.10
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e5e9fbb6e8d2e

1-0410/22/22_
0.6416754119680.00.080.08
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0410/42/42_
0.65981924246820.00.220.22
127.0.0.1http/1.1ip-10-1-98-137.ap-southeast-2.cPOST /module.php/core/log

Found on 2025-06-26 02:51

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd65cab156

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Tuesday, 24-Jun-2025 02:58:43 UTC
Restart Time: Monday, 23-Jun-2025 23:24:43 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 hours 33 minutes 59 seconds
Server load: 1.15 1.78 2.04
Total accesses: 4512 - Total Traffic: 20.4 MB - Total Duration: 2901164
CPU Usage: u2.21 s1.25 cu0 cs0 - .0269% CPU load
.351 requests/sec - 1665 B/second - 4738 B/request - 642.988 ms/request
1 requests currently being processed, 49 idle workers
____W_____________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0360/63/63_
1.6313342303560.00.430.43
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.HEAD /module.php/core/loginuserpass.php?AuthState=_e75bcb5f77bd

0-0360/86/86_
1.63851200880.00.310.31
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0360/61/61_
1.63540156980.00.200.20
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0360/156/156_
1.58762240702520.00.780.78
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0364/56/56W
1.6300993411.10.290.29
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /server-status HTTP/1.1

0-0360/52/52_
1.5881326265660.00.260.26
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.OPTIONS /saml2/idp/SSOService.php?SAMLRequest=hVJNTwIxEP0rm95pl

0-0360/69/69_
1.587491597680.00.350.35
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0360/60/60_
1.597151395440.00.260.26
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0360/84/84_
1.596831225319920.00.300.30
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vIEWC

0-0360/149/149_
1.6067151010730.00.700.70
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

0-0360/143/143_
1.60636100984770.00.630.63
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/250/250_
1.60536191199270.01.201.20
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0360/114/114_
1.605820680990.00.570.57
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0360/93/93_
1.6141513836190.00.410.41
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/49/49_
1.605641278370.00.180.18
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0360/49/49_
1.60509380165820.00.190.19
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.POST /saml2/idp/SSOService.php HTTP/1.1

0-0360/142/142_
1.6135541232570.00.630.63
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0360/100/100_
1.613908991092390.00.480.48
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BVh

0-0360/70/70_
1.61448402142170.00.240.24
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PAtps

0-0360/131/131_
1.6223312824040.00.500.50
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/95/95_
1.613410583520.00.490.49
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /resources/post.css HTTP/1.1

0-0360/82/82_
1.6127630727710.00.390.39
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/104/104_
1.612946363170.00.460.46
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSUyyo

0-0360/48/48_
1.62158433315170.00.230.23
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJbT8IwFP4rS99px9iYN

0-0360/49/49_
1.62184331304150.00.180.18
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=nVLLTiMxEPwVy%2fd5ZCY

1-0370/59/59_
1.451666205530.00.390.39
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

1-0370/41/41_
1.452011172170.00.220.22
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0370/38/38_
1.44288371476530.00.180.18
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJNTxsxEL1X4j%2BsfN%

1-0370/65/65_
1.433620104090.00.270.27
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /resources/post.css HTTP/1.1

1-0370/57/57_
1.38665705740400.00.340.34
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PEght

1-0370/54/54_
1.451401951176840.00.210.21
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

1-0370/69/69_
1.4611312625760.00.320.32
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/176/176_
1.4631339484020.00.760.76
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PEsIt

1-0370/60/60_
1.377995473760.00.330.33
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.OPTIONS /saml2/idp/SSOService.php?SAMLRequest=hVJNU8IwEP0rndxJS

1-0370/59/59_
1.377691200480.00.240.24
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0370/93/93_
1.377300270300.00.390.39
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /resources/post.css HTTP/1.1

1-0370/85/85_
1.377031311748020.00.420.42
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecyEkL

1-0370/30/30_
1.3773619014958790.00.120.12
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

1-0370/67/67_
1.3962831505490.00.320.32
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0370/136/136_
1.42425491356000.00.630.63
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0370/88/88_
1.396281558435430.00.330.33
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSw

1-0370/133/133_
1.406061546670.00.550.55
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0370/46/46_
1.4054553316920.00.210.21
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0370/74/74_
1.40521450773280.00.340.34
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0Tc%2BVg

1-0370/169/169_
1.4334811588540.00.670.67
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0370/89/89_
1.4246047860660.00.450.45
127.0.0.1http/1.1ip-10-1-105-240.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

Found on 2025-06-24 02:58

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdc20af6fd

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Sunday, 22-Jun-2025 05:30:14 UTC
Restart Time: Friday, 20-Jun-2025 01:15:48 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 4 hours 14 minutes 25 seconds
Server load: 7.91 2.62 1.82
Total accesses: 28892 - Total Traffic: 122.4 MB - Total Duration: 16711140
CPU Usage: u14.16 s9.12 cu0 cs0 - .0124% CPU load
.154 requests/sec - 682 B/second - 4441 B/request - 578.4 ms/request
1 requests currently being processed, 49 idle workers
_________________________________________W________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/565/565_
9.04418422784630.02.572.57
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/685/685_
9.04508132883900.03.033.03
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/562/562_
9.0356892136270.02.322.32
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/565/565_
9.0447531678620.02.382.38
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/518/518_
9.07186484621850.02.332.33
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/579/579_
9.0432813855870.02.482.48
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET / HTTP/1.1

0-0350/536/536_
9.0355332185830.02.242.24
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0350/467/467_
9.0529253188650.01.911.91
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0350/553/553_
9.04439502936000.02.352.35
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/538/538_
9.0438833186300.02.022.02
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-0350/735/735_
9.05268124657680.02.682.68
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/604/604_
9.0529912433180.02.542.54
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0350/569/569_
9.0435214043680.02.592.59
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0350/668/668_
9.06199475071990.03.083.08
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/540/540_
9.0811314175190.02.402.40
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0350/567/567_
9.089794974110.02.312.31
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/522/522_
9.0621934324890.02.292.29
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/520/520_
9.08157344386810.02.242.24
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c619ad138e8ca

0-0350/574/574_
9.05232283007090.02.652.65
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/662/662_
9.10507464873950.02.372.37
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTuQwEL0j8Q%2BW71k

0-0350/695/695_
9.102702621980.02.762.76
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /resources/post.js HTTP/1.1

0-0350/529/529_
9.10564452930580.02.192.19
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec6Vhi

0-0350/586/586_
9.0453212633930.02.342.34
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0350/602/602_
9.0358433674780.02.652.65
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d3a90057cc5f2

0-0350/563/563_
9.03612142803590.02.552.55
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0360/614/614_
9.04115144216410.02.842.84
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0360/579/579_
9.0332013530040.02.252.25
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0360/597/597_
9.0329112524160.02.562.56
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0360/495/495_
9.014183303943210.02.072.07
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BYS

1-0360/566/566_
9.0140332687430.02.352.35
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_386d985043521

1-0360/548/548_
9.0234143271240.02.432.43
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b51bf4e3a6c3f

1-0360/652/652_
9.04203363854620.02.752.75
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_174acfccbb407

1-0360/611/611_
9.0236543272020.02.592.59
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0360/635/635_
9.0328042699980.02.542.54
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d47bef1350d84

1-0360/588/588_
9.0422602795450.02.562.56
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0360/548/548_
9.032432852399530.02.402.40
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/cloudworkauth/mfa/hotp.php?hotp_id=1296&StateId

1-0360/561/561_
9.0414813796170.02.352.35
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET / HTTP/1.1

1-0360/570/570_
9.04191353912720.02.362.36
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d9656a0119604

1-0360/569/569_
9.048303757360.02.562.56
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /resources/icons/clipboard.svg HTTP/1.1

1-0360/588/588_
9.041799333319270.02.572.57
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0360/555/555_
9.043692778040.02.362.36
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0363/618/618W
9.05003331173.82.732.73
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /server-status HTTP/1.1

1-0360/555/555_
9.046013525350.02.472.47
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/548/548_
9.015774324251370.02.442.44
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSB

1-0360/609/609_
9.01544532616370.02.072.07
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/533/533_
9.0155333189180.02.352.35
127.0.0.1http/1.1ip-10-1-109-46.ap-southeast-2.c</

Found on 2025-06-22 05:30

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd89851f31

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Friday, 20-Jun-2025 04:50:28 UTC
Restart Time: Thursday, 19-Jun-2025 22:34:49 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  6 hours 15 minutes 38 seconds
Server load: 1.04 1.54 1.77
Total accesses: 6846 - Total Traffic: 31.0 MB - Total Duration: 6649005
CPU Usage: u2.86 s1.4 cu0 cs0 - .0189% CPU load
.304 requests/sec - 1444 B/second - 4755 B/request - 971.225 ms/request
1 requests currently being processed, 49 idle workers
_____________________________________W____________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/183/183_
1.72208108411199010.00.860.86
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fplcmelbo

0-0370/179/179_
1.7224011434840.00.760.76
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0370/105/105_
1.72284145491521250.00.560.56
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BW73k

0-0370/127/127_
1.7228111512980.00.580.58
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0370/183/183_
1.7232022977650.00.780.78
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/111/111_
1.714971969751740.00.490.49
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPZrtowEH3nK1Des7K0W

0-0370/147/147_
1.714184661277400.00.570.57
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fportal-a

0-0370/114/114_
1.71383649747820.00.500.50
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec4PQb

0-0370/127/127_
1.713592991604150.00.640.64
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PBW4x

0-0370/122/122_
1.7227311954240.00.570.57
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/127/127_
1.7133881261870.00.500.50
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/148/148_
1.72239195749260.00.680.68
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0370/110/110_
1.721871770200.00.530.53
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/163/163_
1.721500679770.00.590.59
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0370/190/190_
1.715486082478420.00.840.84
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0Tc%2BSx

0-0370/120/120_
1.716242941855280.00.530.53
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec12SZ

0-0370/94/94_
1.70669271833530.00.490.49
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0370/95/95_
1.696995101276780.00.500.50
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW71l

0-0370/141/141_
1.7063611435700.00.580.58
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0370/102/102_
1.73111992593130.00.390.39
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j7X%2Bwf

0-0370/63/63_
1.7346481105960.00.330.33
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_256a66122afa0

0-0370/123/123_
1.73753801390.00.430.43
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Freports.

0-0370/126/126_
1.7160047945160.00.670.67
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0370/98/98_
1.715203558280.00.530.53
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f45e7933bc938

0-0370/110/110_
1.7145701323500.00.540.54
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/152/152_
1.9028951139810.00.670.67
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSA

1-0380/146/146_
1.87549111276750.00.600.60
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0380/134/134_
1.902621494810.00.630.63
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0380/95/95_
1.8766301964100.00.400.40
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0380/159/159_
1.8756912944420.00.690.69
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0380/187/187_
1.9219541279830.00.860.86
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecyEsN

1-0380/188/188_
1.912341211535610.00.970.97
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_7bafe90ef4bd3

1-0380/91/91_
1.9121710264460.00.420.42
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/165/165_
1.8932851942360.00.710.71
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fplcmelbo

1-0380/135/135_
1.875132729910.00.610.61
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

1-0380/186/186_
1.89351501317450.00.900.90
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/143/143_
1.90285191276650.00.700.70
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-03820/240/240W
1.990016757488.71.031.03
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /server-status HTTP/1.1

1-0380/104/104_
1.874853495690.00.420.42
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0380/157/157_
1.931574656410.00.800.80
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0380/108/108_
1.931365874489340.00.480.48
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLbtswELwX6D8QvOthI

1-0380/155/155_
1.893731936040.00.630.63
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0380/130/130_
1.876844301356000.00.560.56
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vLkps

1-0380/196/196_
1.938811752870.00.890.89
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/116/116_
1.89428421212470.00.510.51
127.0.0.1http/1.1ip-10-1-97-173.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/122/122_
1.87639197322

Found on 2025-06-20 04:50

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdb1e0baf1

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Monday, 16-Jun-2025 05:12:54 UTC
Restart Time: Monday, 16-Jun-2025 04:52:27 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  20 minutes 26 seconds
Server load: 2.26 2.63 3.22
Total accesses: 373 - Total Traffic: 1.9 MB - Total Duration: 243211
CPU Usage: u.19 s.08 cu0 cs0 - .022% CPU load
.304 requests/sec - 1586 B/second - 5.1 kB/request - 652.04 ms/request
1 requests currently being processed, 49 idle workers
___________W______________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/9/9_
0.074143132970.00.030.03
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/2/2_
0.07398040.00.000.00
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /resources/post.js HTTP/1.1

0-0350/6/6_
0.073633648130.00.020.02
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEP2VyPfaiWkDW

0-0350/9/9_
0.0731970116520.00.030.03
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=jZLLTsMwEEV%2FxfI%2BD

0-0350/9/9_
0.072823613580.00.060.06
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_eebf3ad0aea59

0-0350/4/4_
0.08243513440.00.040.04
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /module.php/chromebook/jquery.js HTTP/1.1

0-0350/4/4_
0.08215306960.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/14/14_
0.0917336550450.00.080.08
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0350/10/10_
0.091261116750.00.030.03
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/2/2_
0.091053066380.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSZwUs

0-0350/19/19_
0.0962032850.00.090.09
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /resources/post.js HTTP/1.1

0-0359/10/10W
0.1000123831.90.030.03
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /server-status HTTP/1.1

0-0350/1/1_
0.0284639780.00.000.00
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_c8025986bfc43

0-0350/3/3_
0.027763170.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/45/45_
0.0566811720260.00.240.24
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/1/1_
0.037335688113760.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/5/5_
0.046751072660.00.020.02
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/4/4_
0.056301473530.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/1/1_
0.056215110.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0350/2/2_
0.0557257411480.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0350/1/1_
0.05536000.00.000.00
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /favicon.ico HTTP/1.1

0-0350/3/3_
0.05519501170.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/2/2_
0.0749867214510.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/1/1_
0.07474134426890.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/4/4_
0.074511214990.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/wstrust/username.php HTTP/1.1

1-0360/11/11_
0.0764415641690.00.040.04
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/3/3_
0.076176340950.00.020.02
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/19/19_
0.095835585810.00.100.10
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/18/18_
0.10543330820.00.060.06
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0360/2/2_
0.1052614370.00.040.04
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /module.php/chromebook/jquery.js HTTP/1.1

1-0360/2/2_
0.10509130.00.000.00
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/2/2_
0.104880110.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET / HTTP/1.1

1-0360/2/2_
0.10468531100.00.000.00
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/2/2_
0.104264088460.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrpswEN3nKyL2PBuiW

1-0360/6/6_
0.1040958028620.00.020.02
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fplcmelbo

1-0360/4/4_
0.10386489920.00.020.02
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/7/7_
0.123492159640.00.050.05
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0360/6/6_
0.123021618920.00.030.03
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0360/3/3_
0.1226832660.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/16/16_
0.12226038900.00.060.06
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /resources/post.js HTTP/1.1

1-0360/8/8_
0.12203117730.00.030.03
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/4/4_
0.121503311070.00.010.01
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/10/10_
0.121143629260.00.040.04
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_40b96622076fd

1-0360/8/8_
0.129035337800.00.070.07
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fZJLb8IwEIT%2FSuQ7dmI

1-0360/13/13_
0.13344541700.00.050.05
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/39/39_
0.057871183000.00.270.27
127.0.0.1http/1.1ip-10-1-90-27.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/2/2_
0.0480410230.00.040.04
127.0.0.1http/1.1ip-10-1-90-

Found on 2025-06-16 05:12

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdf427212b

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Saturday, 14-Jun-2025 01:56:42 UTC
Restart Time: Friday, 13-Jun-2025 03:57:21 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  21 hours 59 minutes 21 seconds
Server load: 1.43 1.30 1.46
Total accesses: 56205 - Total Traffic: 181.4 MB - Total Duration: 10655339
CPU Usage: u15.58 s11.07 cu0 cs0 - .0337% CPU load
.71 requests/sec - 2402 B/second - 3383 B/request - 189.58 ms/request
1 requests currently being processed, 49 idle workers
____W_____________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0330/795/795_
11.9168362253810.02.612.61
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0330/1350/1350_
12.251961490690.04.174.17
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0330/1186/1186_
11.8682621603490.03.813.81
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_02479196cd5af

0-0330/776/776_
11.9463521721500.02.462.46
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-03362/1039/1039W
12.2700119259186.53.233.23
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /server-status HTTP/1.1

0-0330/1342/1342_
11.838594532039460.04.454.45
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSR

0-0330/768/768_
11.9553121567750.02.542.54
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_fd2751ce33846

0-0330/1074/1074_
12.207022112430.03.543.54
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2FPolicies

0-0330/1009/1009_
11.8680131471700.03.123.12
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0330/1092/1092_
11.9559474611960760.03.523.52
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0330/1220/1220_
11.8681642684830.04.084.08
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0330/1001/1001_
11.9167112258000.03.203.20
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_a6d6dd34bc39c

0-0330/1297/1297_
11.9943922543570.04.134.13
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_136bbd4dbcc6b

0-0330/1231/1231_
12.0039222087130.03.973.97
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_e042f14265dfa

0-0330/1187/1187_
11.9549442839790.03.963.96
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0330/1289/1289_
12.1219721887340.04.334.33
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0330/1432/1432_
12.0824012800540.04.604.60
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_92e8f1965e12a

0-0330/849/849_
12.179611381770.02.742.74
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_41617828317ea

0-0330/1032/1032_
12.0040173864930.03.423.42
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0330/1129/1129_
11.9462122408880.03.503.50
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2FPolicies

0-0330/1590/1590_
12.0036222801810.05.005.00
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_f9fb902030366

0-0330/1025/1025_
11.9559873065940.03.463.46
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0330/853/853_
11.9562323348650.02.692.69
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_bb5e895f1059a

0-0330/1058/1058_
12.1712261619640.03.293.29
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0330/1430/1430_
12.0427033671890.04.654.65
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0340/1118/1118_
12.204686361649420.03.763.76
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

1-0340/1240/1240_
12.2536761315310.03.973.97
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0340/1134/1134_
12.3328921785110.03.783.78
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0340/1153/1153_
12.2933422526630.03.723.72
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_4cf50e07e046b

1-0340/1065/1065_
12.0567222370580.03.513.51
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

1-0340/1028/1028_
12.3330321731940.03.353.35
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_e8476ca166913

1-0340/1580/1580_
12.349022247310.05.545.54
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_692ac634fc28a

1-0340/1338/1338_
12.3410421955350.04.244.24
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_a45a0e4f13451

1-0340/1301/1301_
12.3425761622620.04.184.18
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0340/1107/1107_
12.34151581118210.03.553.55
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/chromebook/jquery.js HTTP/1.1

1-0340/1208/1208_
12.3420121665910.03.793.79
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_38ec7cb2e4fce

1-0340/950/950_
12.0084421063840.03.043.04
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_089623b485351

1-0340/1267/1267_
12.0859262457230.04.194.19
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0340/871/871_
12.344702342460.02.702.70
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /resources/post.css HTTP/1.1

1-0340/928/928_
12.0566773741840.03.103.10
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0340/856/856_
12.0567022408530.02.822.82
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_f0469537c167f

1-0340/1092/1092_
11.998864791739190.03.623.62
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0340/728/728_
11.9988661803650.02.302.30
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0340/867/867_
12.20416112378440.02.692.69
127.0.0.1http/1.1ip-10-1-92-50.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0340/1273/1273_
12.0859683196310.04.024.02

Found on 2025-06-14 01:56

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdde2a1d01

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 12-Jun-2025 22:16:52 UTC
Restart Time: Wednesday, 11-Jun-2025 22:36:14 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  23 hours 40 minutes 38 seconds
Server load: 1.82 1.98 1.96
Total accesses: 17097 - Total Traffic: 78.9 MB - Total Duration: 13855820
CPU Usage: u8.32 s4.61 cu0 cs0 - .0152% CPU load
.201 requests/sec - 971 B/second - 4841 B/request - 810.424 ms/request
3 requests currently being processed, 47 idle workers
___W_______________________________________K_____K..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0390/318/318_
5.4142003366800.01.521.52
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0390/350/350_
5.4143704147790.01.621.62
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0390/399/399_
5.466502842630.01.781.78
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0393/468/468W
5.470027142210.12.262.26
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /server-status HTTP/1.1

0-0390/325/325_
5.396123181633360.01.621.62
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJLT%2BMwEL6vtP8h8j2

0-0390/263/263_
5.42390371863480.01.211.21
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_85d5d41679078

0-0390/274/274_
5.423305131856240.01.291.29
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fZLLTsMwEEX3SPyD5X2SJ

0-0390/274/274_
5.42365161939730.01.281.28
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0390/444/444_
5.4227802711620.01.981.98
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0390/335/335_
5.4417813299560.01.481.48
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0390/280/280_
5.4227142612520.01.471.47
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0390/330/330_
5.4510034993880.01.541.54
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0390/395/395_
5.44212521893940.01.931.93
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0390/321/321_
5.4419310103096270.01.621.62
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j7X%2Bwf

0-0390/367/367_
5.442393171620230.01.811.81
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DeycXiV

0-0390/368/368_
5.4229842342500.02.002.00
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_b737b9ecbf8b8

0-0390/348/348_
5.465513880320.01.651.65
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0390/332/332_
5.451284132076280.01.521.52
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSUiAL

0-0390/320/320_
5.451422211429420.01.471.47
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVNNj9owFLzvr4hyT0xCY

0-0390/410/410_
5.472223093148220.01.951.95
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DeczPbb

0-0390/276/276_
5.46481501879900.01.281.28
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0390/252/252_
5.45111121662620.01.041.04
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0390/323/323_
5.4052502814880.01.621.62
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /resources/post.css HTTP/1.1

0-0390/324/324_
5.4051453236940.01.591.59
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

0-0390/332/332_
5.4147702982980.01.481.48
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /favicon.ico HTTP/1.1

1-0400/331/331_
5.2946402029060.01.431.43
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /resources/post.css HTTP/1.1

1-0400/439/439_
5.3034422658250.01.921.92
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/wstrust/mex.php HTTP/1.1

1-0400/379/379_
5.3128803612960.01.641.64
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /resources/post.js HTTP/1.1

1-0400/356/356_
5.3220544720840.01.851.85
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

1-0400/330/330_
5.3125434889630.01.491.49
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/metadata.php HTTP/1.1

1-0400/510/510_
5.3218613180270.02.272.27
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET / HTTP/1.1

1-0400/357/357_
5.3128943297510.01.601.60
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0400/430/430_
5.312634083038230.02.212.21
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJNT9wwEL0j9T9YvifZp

1-0400/439/439_
5.357644228820.01.971.97
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0400/336/336_
5.32171543502600.01.761.76
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0400/317/317_
5.3220034768050.01.271.27
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0400/339/339_
5.359923124320.01.431.43
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0400/271/271_
5.34123531194550.01.111.11
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0400/282/282_
5.33128451677200.01.231.23
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_76dc04a532eb1

1-0400/298/298_
5.359021563380.01.341.34
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/wstrust/mex.php HTTP/1.1

1-0400/307/307_
5.2850213845480.01.311.31
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0400/293/293_
5.3410611938230.01.231.23
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

1-0400/357/357_
5.3531183661010.01.471.47
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/core/loginuserpass.php?client_id=vJkySJl4zxqo&s

1-0407/284/284K
5.353350025772736.81.391.39
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

1-0400/301/301_
5.27557121808100.01.251.25
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0400/274/274_
5.29426203877420.01.241.24
127.0.0.1http/1.1ip-10-1-106-208.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0400/457/457_
5.2937945<

Found on 2025-06-12 22:16

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdd478b27b

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Tuesday, 10-Jun-2025 07:03:26 UTC
Restart Time: Friday, 06-Jun-2025 03:56:32 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 3 hours 6 minutes 54 seconds
Server load: 3.86 3.94 2.79
Total accesses: 69696 - Total Traffic: 325.3 MB - Total Duration: 42192650
CPU Usage: u33.73 s21.13 cu0 cs0 - .0154% CPU load
.195 requests/sec - 956 B/second - 4894 B/request - 605.381 ms/request
1 requests currently being processed, 49 idle workers
________________________________________W_________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0380/1404/1404_
22.83579119851180.06.506.50
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0380/1364/1364_
22.8699111563150.06.426.42
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET / HTTP/1.1

0-0380/1371/1371_
22.8363108773020.06.406.40
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0380/1522/1522_
22.85183748025510.07.617.61
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec4Ml7

0-0380/1370/1370_
22.8614419265280.06.326.32
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0380/1301/1301_
22.8611677067700.06.026.02
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/1390/1390_
22.86194696550100.06.676.67
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0380/1482/1482_
22.863599228901920.06.496.49
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0380/1496/1496_
22.8349418278280.07.137.13
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0380/1330/1330_
22.85159118329230.06.086.08
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0380/1201/1201_
22.86722608043790.06.036.03
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0380/1511/1511_
22.83459010048670.07.387.38
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET / HTTP/1.1

0-0380/1301/1301_
22.8360516230440.05.895.89
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0380/1404/1404_
22.853232867740540.06.696.69
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjpswEH3PV0S8c8suk

0-0380/1672/1672_
22.8353078202270.07.457.45
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/1272/1272_
22.85278010637750.05.845.84
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0380/1551/1551_
22.8434978531600.07.047.04
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_360ec7620719b

0-0380/1338/1338_
22.8436417851400.06.666.66
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0380/1295/1295_
22.8521809817440.05.975.97
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0380/1558/1558_
22.84433348313890.07.247.24
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_5e2d8b9a0a79e

0-0380/1423/1423_
22.844083377206440.06.636.63
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0Tc%2Bdy

0-0380/1357/1357_
22.8523835242650.06.416.41
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0380/1341/1341_
22.85152310887760.06.476.47
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0380/1325/1325_
22.852954298787910.06.066.06
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTgIxFN2b%2BA9N9%2

0-0380/1391/1391_
22.8437439726130.06.536.53
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0390/1362/1362_
22.381392428810201540.06.226.22
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0390/1536/1536_
22.3726208787640.07.327.32
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0390/1237/1237_
22.3728975999930.05.915.91
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0390/1371/1371_
22.3720817780260.06.576.57
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0390/1451/1451_
22.365156107717840.06.786.78
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cPOST /saml2/idp/SSOService.php HTTP/1.1

1-0390/1433/1433_
22.386959694990.06.646.64
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

1-0390/1307/1307_
22.364257238408120.06.306.30
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec%2BM

1-0390/1723/1723_
22.403918808570.08.478.47
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0390/1344/1344_
22.3812509084670.06.216.21
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0390/1292/1292_
22.36445111538870.05.765.76
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0390/1545/1545_
22.381341098080270.07.127.12
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_9ed7e3d4c369c

1-0390/1269/1269_
22.3460418345840.06.016.01
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0390/1236/1236_
22.3810758519920.05.685.68
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_032a7bdbd370e

1-0390/1233/1233_
22.373153746319810.05.685.68
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW71l

1-0390/1391/1391_
22.363993488349670.06.316.31
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec2ND6

1-0397/1500/1500W
22.400084606635.47.097.09
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /server-status HTTP/1.1

1-0390/1413/1413_
22.3459238334170.06.586.58
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0390/1201/1201_
22.402618216670.05.745.74
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0390/1291/1291_
22.3733928438460.05.815.81
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET / HTTP/1.1

1-0390/1721/1721_
22.345536347203330.08.018.01
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/totp.php HTTP/1.1

1-0390/1427/1427_
22.3647078596440.06.836.83
127.0.0.1http/1.1ip-10-1-97-122.ap-southeast-2.cGET /saml2/idp/SSOService

Found on 2025-06-10 07:03

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdd7cbb40a

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Sunday, 08-Jun-2025 04:35:13 UTC
Restart Time: Friday, 06-Jun-2025 04:49:41 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 23 hours 45 minutes 32 seconds
Server load: 1.96 3.67 3.08
Total accesses: 32278 - Total Traffic: 137.9 MB - Total Duration: 15868305
CPU Usage: u15.37 s9.53 cu0 cs0 - .0145% CPU load
.188 requests/sec - 841 B/second - 4480 B/request - 491.614 ms/request
1 requests currently being processed, 49 idle workers
_________W________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0330/500/500_
10.33144713143490.02.092.09
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_780f490d2381c

0-0330/603/603_
10.3174013026500.02.632.63
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0330/753/753_
10.33219135662852700.03.203.20
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW79n

0-0330/686/686_
10.3320412383970.02.762.76
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0330/664/664_
10.3462563776480.02.732.73
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_58336f687465e

0-0330/610/610_
10.3419724178800.02.582.58
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0330/778/778_
10.3318403978700.03.333.33
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0330/701/701_
10.3397102094480.02.942.94
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0330/544/544_
10.317953273727820.02.292.29
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec%2BO

0-0333/627/627W
10.34002523823.82.782.78
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /server-status HTTP/1.1

0-0330/619/619_
10.32586122160380.02.492.49
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0330/814/814_
10.3317093822740.03.593.59
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0330/773/773_
10.3335563741050.03.083.08
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dek0C4b

0-0330/608/608_
10.333203352542360.02.712.71
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PEgTA

0-0330/789/789_
10.33286763606130.03.293.29
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0330/595/595_
10.32649102774160.02.702.70
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0330/585/585_
10.32446124841040.02.362.36
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0330/564/564_
10.31665112049530.02.652.65
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0330/627/627_
10.325563253726220.02.702.70
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0Tc%2Bdy

0-0330/756/756_
10.31686164051370.03.283.28
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0330/652/652_
10.326143082135920.02.812.81
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLT%2BMwEL6vxH%2Bwf

0-0330/642/642_
10.317583372735860.02.722.72
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fZLLTsMwEEX3SPyD5X0ej

0-0330/878/878_
10.32394415603150.03.633.63
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_81cfde82c1489

0-0330/594/594_
10.32506163611380.02.492.49
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0330/588/588_
10.325279082126130.02.402.40
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0340/613/613_
9.9712340942502780.02.762.76
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=nVLLbtswEPwVgndJRPyoT

1-0340/765/765_
9.97189102053700.03.293.29
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0340/622/622_
9.9735101903160.02.842.84
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0340/629/629_
9.9786144463180.02.642.64
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0340/718/718_
9.977402946110.03.103.10
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_246b5a8753cf6

1-0340/658/658_
9.9715753846850.02.902.90
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0340/554/554_
9.948013392468380.02.382.38
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTuswEN0j3X%2BwvM%

1-0340/630/630_
9.9474623225590.02.842.84
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET / HTTP/1.1

1-0340/572/572_
9.9477252299930.02.372.37
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0340/597/597_
9.9567712757780.02.682.68
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0340/565/565_
9.96538443382740.02.322.32
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0340/741/741_
9.956591204111470.02.832.83
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0340/613/613_
9.9717634699770.02.702.70
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0340/557/557_
9.974026131894510.02.272.27
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecyHLE

1-0340/618/618_
9.97463444172950.02.572.57
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0340/648/648_
9.9556412966930.02.852.85
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0340/603/603_
9.9652893372570.02.752.75
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0340/565/565_
9.95627502809850.02.392.39
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0340/695/695_
9.95607373381470.02.882.88
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ad051dbeb32b3

1-0340/648/648_
9.9720412437230.02.722.72
127.0.0.1http/1.1ip-10-1-90-182.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0

Found on 2025-06-08 04:35

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd1d71138f

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 05-Jun-2025 03:55:57 UTC
Restart Time: Tuesday, 03-Jun-2025 00:03:34 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 3 hours 52 minutes 22 seconds
Server load: 2.28 2.81 2.74
Total accesses: 41193 - Total Traffic: 188.2 MB - Total Duration: 39924476
CPU Usage: u21 s11.42 cu0 cs0 - .0174% CPU load
.221 requests/sec - 1056 B/second - 4790 B/request - 969.205 ms/request
1 requests currently being processed, 49 idle workers
___W______________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/797/797_
13.8110165214220.04.014.01
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0370/864/864_
13.73773410929500.04.274.27
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/762/762_
13.7912716051130.03.443.44
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0378/804/804W
13.8200125473133.83.763.76
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /server-status HTTP/1.1

0-0370/718/718_
13.7462726536850.03.243.24
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/wstrust/mex.php HTTP/1.1

0-0370/749/749_
13.8090406767500.03.133.13
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_cc03d5281fed6

0-0370/853/853_
13.76370159353900.04.144.14
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0370/769/769_
13.7464105177230.03.273.27
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0370/771/771_
13.81303338030290.03.753.75
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PEhvg

0-0370/828/828_
13.7560113036898270.03.713.71
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSA

0-0370/1009/1009_
13.762708697769900.04.364.36
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec20Du

0-0370/937/937_
13.781651088166710.04.494.49
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.POST /module.php/wstrust/username.php HTTP/1.1

0-0370/925/925_
13.74670179029690.04.184.18
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0370/950/950_
13.73730310450530.04.244.24
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET / HTTP/1.1

0-0370/837/837_
13.763273387638180.03.843.84
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vG%2F

0-0370/885/885_
13.75536846811739740.04.184.18
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecyEbF

0-0370/828/828_
13.7629506290030.03.933.93
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0370/713/713_
13.764005085769760.03.093.09
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecyOQF

0-0370/770/770_
13.7374312267350470.03.223.22
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

0-0370/786/786_
13.7369607493670.03.503.50
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0370/828/828_
13.754541849196180.04.034.03
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0370/746/746_
13.7558708004020.03.243.24
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /resources/post.js HTTP/1.1

0-0370/836/836_
13.809629443430.03.893.89
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/804/804_
13.7550028812280.03.443.44
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/wstrust/mex.php HTTP/1.1

0-0370/847/847_
13.77209210669130.03.923.92
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0380/714/714_
13.6652112335703210.03.443.44
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec92Et

1-0380/944/944_
13.6933847115860.04.204.20
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_2b8a91bc5a0c4

1-0380/684/684_
13.67466447398650.03.103.10
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/724/724_
13.692624505233440.03.263.26
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0TcgUACS

1-0380/878/878_
13.7264278767960.04.074.07
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0380/799/799_
13.73219508277080.03.573.57
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSA

1-0380/784/784_
13.66619210189090.03.543.54
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/wstrust/mex.php HTTP/1.1

1-0380/822/822_
13.6921307752320.03.873.87
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /resources/post.js HTTP/1.1

1-0380/963/963_
13.69283339182810.04.574.57
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PAgkt

1-0380/962/962_
13.64757126964290.04.404.40
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/881/881_
13.718226085130.03.873.87
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/817/817_
13.6658774887395830.03.733.73
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

1-0380/793/793_
13.7099106343830.03.623.62
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0380/839/839_
13.66610157346800.03.813.81
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0380/758/758_
13.6655019648070.03.463.46
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET / HTTP/1.1

1-0380/775/775_
13.647792796136080.03.473.47
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec91kF

1-0380/827/827_
13.6837914899226080.04.024.02
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

1-0380/890/890_
13.691483888680210.04.064.06
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSA

1-0380/781/781_
13.65709155797290.03.413.41
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0380/821/821_
13.65698310797030.03.553.55
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0380/785/785_
13.693064128345570.03.653.65
127.0.0.1http/1.1ip-10-1-106-181.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1

Found on 2025-06-05 03:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdd1347de2

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Tuesday, 03-Jun-2025 01:27:47 UTC
Restart Time: Sunday, 01-Jun-2025 22:36:20 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 2 hours 51 minutes 26 seconds
Server load: 3.07 2.79 2.86
Total accesses: 21536 - Total Traffic: 96.3 MB - Total Duration: 20705848
CPU Usage: u10.11 s5.36 cu0 cs0 - .016% CPU load
.223 requests/sec - 1044 B/second - 4687 B/request - 961.453 ms/request
1 requests currently being processed, 49 idle workers
_______________W__________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/323/323_
6.254964333253970.01.471.47
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSUgIC

0-0350/535/535_
6.2819845884080.02.392.39
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0350/345/345_
6.2454813376680.01.361.36
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0350/318/318_
6.3311462562270.01.321.32
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/401/401_
6.2162623181860.01.791.79
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0350/365/365_
6.2731812905800.01.591.59
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/397/397_
6.27358165269700.01.711.71
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0350/364/364_
6.27377335464970.01.791.79
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/506/506_
6.282179776921670.02.432.43
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSA

0-0350/554/554_
6.2734644931840.02.612.61
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/345/345_
6.2645312433220.01.461.46
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0350/478/478_
6.3139156010510.02.112.11
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0350/430/430_
6.2826004193440.02.112.11
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0350/362/362_
6.264274273713880.01.691.69
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec1%2B

0-0350/425/425_
6.26407113335170.01.951.95
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-03582/547/547W
6.3300599173271.72.392.39
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /server-status HTTP/1.1

0-0350/420/420_
6.2546742688770.01.721.72
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/380/380_
6.2816542949260.01.701.70
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_42adc3ee37831

0-0350/462/462_
6.2913513192060.01.981.98
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/454/454_
6.2166013358480.01.891.89
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0350/408/408_
6.216745044485600.01.851.85
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0350/480/480_
6.2356813508030.02.352.35
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0350/379/379_
6.282843923082320.01.531.53
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BR73k

0-0350/381/381_
6.28240152931210.01.711.71
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/363/363_
6.2456713324510.01.551.55
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/405/405_
6.68461144690560.01.951.95
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0360/402/402_
6.6936805850300.01.731.73
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /resources/icons/clipboard.svg HTTP/1.1

1-0360/644/644_
6.703062396575600.02.732.73
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0360/447/447_
6.6842086575290.02.102.10
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0360/511/511_
6.684405426222450.02.282.28
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0360/396/396_
6.68480554355600.01.551.55
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/486/486_
6.702486873754150.02.132.13
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec9%2F

1-0360/403/403_
6.7032512938240.01.821.82
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/509/509_
6.69390307359530.02.432.43
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/463/463_
6.712102874492930.02.172.17
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cPOST /saml2/idp/SSOService.php HTTP/1.1

1-0360/461/461_
6.693533593282720.02.042.04
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTuMwFN0jzT9Y3ufVm

1-0360/468/468_
6.723454706460.02.042.04
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fplcmelbo

1-0360/446/446_
6.711838053999240.02.222.22
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BYR

1-0360/347/347_
6.7115903486570.01.601.60
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0360/400/400_
6.728626574121570.01.731.73
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0360/438/438_
6.728104142070.01.771.77
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0360/499/499_
6.6755715507860.02.002.00
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/468/468_
6.6758823441850.02.162.16
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0360/393/393_
6.6758913947180.01.831.83
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0360/416/416_
6.7026812154270.01.721.72
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0360/374/374_
6.626372362995150.01.781.78
127.0.0.1http/1.1ip-10-1-104-39.ap-southeast-2.c

Found on 2025-06-03 01:27

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd057d50c0

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Monday, 02-Jun-2025 00:07:26 UTC
Restart Time: Friday, 30-May-2025 00:04:08 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 3 minutes 18 seconds
Server load: 2.24 2.84 2.57
Total accesses: 215068 - Total Traffic: 713.2 MB - Total Duration: 60003717
CPU Usage: u59.74 s39.54 cu0 cs0 - .0383% CPU load
.829 requests/sec - 2883 B/second - 3477 B/request - 278.999 ms/request
1 requests currently being processed, 74 idle workers
_________________________W______________________________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/5040/5040_
46.6797938533510.017.0417.04
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0350/4563/4563_
46.7149149910848580.015.0915.09
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0350/3840/3840_
46.696173910879150.012.7812.78
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_3be12ce698d52

0-0350/3994/3994_
46.7216842912197670.013.3813.38
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec9mwS

0-0350/3859/3859_
46.7133719837310.012.8312.83
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/4681/4681_
46.714453112809080.015.9215.92
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/4743/4743_
46.71396612197020.015.8415.84
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVNdb9sgFH3vr7D8Hn%2F

0-0350/4501/4501_
46.67106619821750.014.7914.79
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0350/4380/4380_
46.705375314826960.014.4814.48
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/4160/4160_
46.67920111728200.013.6813.68
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0350/3789/3789_
46.705143810129410.012.6112.61
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_c80274e63fe4f

0-0350/4764/4764_
46.73149117171780.015.5915.59
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/3838/3838_
46.738066811036010.012.6912.69
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0TcAUN22

0-0350/4450/4450_
46.7141324410296940.014.7714.77
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/4059/4059_
46.713371152711578280.013.3613.36
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/4329/4329_
46.7316132210065740.014.5314.53
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/4021/4021_
46.69770410071470.013.4513.45
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_8c68d39c3a155

0-0350/4299/4299_
46.67103298876490.013.8513.85
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/3518/3518_
46.6958945812616800.011.9611.96
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BYT

0-0350/3950/3950_
46.7225127846020.013.3213.32
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/wstrust/mex.php HTTP/1.1

0-0350/4748/4748_
46.72186558667550.015.7215.72
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/4540/4540_
46.688685059903290.014.9714.97
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVLLTuMwFN0jzT9Y3ufRj

0-0350/4115/4115_
46.66111508781600.013.6413.64
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0350/4841/4841_
46.697083612587410.016.1016.10
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_cc49138bd70d0

0-0350/4788/4788_
46.698013713488240.016.1216.12
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0362/4777/4777W
45.810011564922.715.7015.70
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /server-status HTTP/1.1

1-0360/4038/4038_
45.71520214075480.013.2213.22
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET / HTTP/1.1

1-0360/4235/4235_
45.69991111573470.013.8313.83
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0360/3728/3728_
45.7439872111903250.012.1612.16
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/3391/3391_
45.76335012453440.011.1711.17
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /resources/post.js HTTP/1.1

1-0360/4187/4187_
45.75392511190070.013.8713.87
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

1-0360/4210/4210_
45.71846611826340.014.0414.04
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

1-0360/4195/4195_
45.8012128911676380.013.6913.69
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vBsqL

1-0360/4414/4414_
45.80100514340090.014.5414.54
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

1-0360/4320/4320_
45.76331148813386380.014.0214.02
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2Bdx

1-0360/4239/4239_
45.71792215154030.014.0214.02
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/wstrust/mex.php HTTP/1.1

1-0360/3875/3875_
45.7090318523080.012.8512.85
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0360/3785/3785_
45.716014811229900.012.3912.39
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/3889/3889_
45.71508312017820.013.6813.68
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0360/4181/4181_
45.71744379129570.013.6813.68
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_32f0fcac9a2ed

1-0360/4501/4501_
45.762054211945970.014.6714.67
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_92502a77f4900

1-0360/4953/4953_
45.681085148010384590.016.1716.17
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7JCQ8A

1-0360/4064/4064_
45.71634011229360.013.3013.30
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /favicon.ico HTTP/1.1

1-0360/4295/4295_
45.75357410539050.014.3514.35
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_4fc0dd7b390ff

1-0360/4152/4152_
45.70938110444280.013.5713.57
127.0.0.1http/1.1ip-10-1-106-123.ap-southeast-2.

Found on 2025-06-02 00:07

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd0d05bd72

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Friday, 30-May-2025 15:49:27 UTC
Restart Time: Friday, 30-May-2025 03:57:38 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  11 hours 51 minutes 49 seconds
Server load: 0.63 0.82 0.96
Total accesses: 8404 - Total Traffic: 37.3 MB - Total Duration: 6034106
CPU Usage: u4.04 s2.35 cu0 cs0 - .015% CPU load
.197 requests/sec - 916 B/second - 4656 B/request - 718.004 ms/request
1 requests currently being processed, 49 idle workers
________________________________________W_________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/188/188_
2.584939904340.00.930.93
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/162/162_
2.5837291178970.00.750.75
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/158/158_
2.582810561370.00.630.63
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET / HTTP/1.1

0-0370/154/154_
2.582200730060.00.760.76
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET / HTTP/1.1

0-0370/162/162_
2.581601694720.00.640.64
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET / HTTP/1.1

0-0370/161/161_
2.581011839800.00.650.65
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET / HTTP/1.1

0-0370/155/155_
2.5712826732371210.00.620.62
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNTxsxEL1X6n9Y%2Bb4

0-0370/156/156_
2.58411684300.00.730.73
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET / HTTP/1.1

0-0370/149/149_
2.5614685788770.00.620.62
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_fea03f407dc16

0-0370/169/169_
2.58625533050.00.680.68
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/137/137_
2.5615081720690.00.560.56
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0370/175/175_
2.5614075616400.00.860.86
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c60b32f64d905

0-0370/233/233_
2.57134651505980.01.171.17
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c301c0e81a1d8

0-0370/248/248_
2.57110391678860.01.021.02
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/163/163_
2.5712255972500.00.710.71
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/132/132_
2.57116451573070.00.660.66
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e7132a6568bb2

0-0370/126/126_
2.571042341317750.00.630.63
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/150/150_
2.58799491245400.00.720.72
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/146/146_
2.58860101274710.00.630.63
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/164/164_
2.58982471373340.00.860.86
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/166/166_
2.589215813580.00.750.75
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c4e821b9e71f6

0-0370/130/130_
2.5873951091300.00.580.58
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_fb37c97415afc

0-0370/131/131_
2.5867861375940.00.550.55
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_848f299f70d59

0-0370/197/197_
2.5831131975440.00.900.90
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/141/141_
2.5861610990970.00.700.70
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/170/170_
2.69712728880870.00.700.70
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BVa

1-0380/147/147_
2.6982012757810.00.530.53
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0380/218/218_
2.69100014982640.00.880.88
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0380/244/244_
2.6911382152214400.01.021.02
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0380/186/186_
2.702873923950.00.890.89
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e94d549cbb847

1-0380/148/148_
2.697601492550.00.580.58
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET / HTTP/1.1

1-0380/222/222_
2.7055591356640.01.101.10
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/164/164_
2.69660375872520.00.920.92
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0380/133/133_
2.7043391115970.00.490.49
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/171/171_
2.7034112714080.00.720.72
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0380/167/167_
2.7024951111310.00.660.66
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f407972732666

1-0380/174/174_
2.7012862970340.00.880.88
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_64b4a079f5fc9

1-0380/172/172_
2.706752403740.00.760.76
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_faefc0f74832b

1-0380/203/203_
2.7018951902920.00.890.89
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_56f204e5e1fbe

1-0380/145/145_
2.69136111999450.00.690.69
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET / HTTP/1.1

1-0383/152/152W
2.70001555353.80.630.63
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /server-status HTTP/1.1

1-0380/162/162_
2.6914211849890.00.630.63
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET / HTTP/1.1

1-0380/169/169_
2.69148001130390.00.680.68
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET / HTTP/1.1

1-0380/190/190_
2.69130011733970.00.920.92
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET / HTTP/1.1

1-0380/204/204_
2.702244370260.00.810.81
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_9735c7c18c886

1-0380/173/173_
2.6994013274920.00.730.73
127.0.0.1http/1.1ip-10-1-89-242.ap-southeast-2.cGET / HTTP/1.1

1-0380/158/158_
2.691181121188720.00.660.66
127.0.0.1http/1.1

Found on 2025-05-30 15:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fde574b1f8

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Wednesday, 28-May-2025 19:26:53 UTC
Restart Time: Wednesday, 28-May-2025 03:54:48 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  15 hours 32 minutes 5 seconds
Server load: 0.19 0.40 0.50
Total accesses: 36429 - Total Traffic: 129.9 MB - Total Duration: 10058006
CPU Usage: u12.09 s7.66 cu0 cs0 - .0353% CPU load
.651 requests/sec - 2435 B/second - 3739 B/request - 276.099 ms/request
1 requests currently being processed, 49 idle workers
___________________________________W______________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0320/828/828_
8.5964628182003350.03.033.03
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12434&co

0-0320/673/673_
8.579392777350.02.282.28
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_3f0fafae2a2fb

0-0320/1084/1084_
8.471549752962870.04.024.02
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12428&co

0-0320/772/772_
8.5969141452790.02.682.68
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/metadata.php HTTP/1.1

0-0320/827/827_
8.6060782251940.03.083.08
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0320/775/775_
8.59669104893210.02.732.73
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_529e8cbd72cde

0-0320/435/435_
8.60593692230640.01.621.62
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_14bd7d4d6b6de

0-0320/925/925_
8.60512401933930.03.233.23
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_21867c32b5a99

0-0320/427/427_
8.60631821455900.01.421.42
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_73a657ce86580

0-0320/792/792_
8.60583472118940.02.952.95
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_21f87318d43b5

0-0320/788/788_
8.658451211870.02.782.78
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12436&co

0-0320/888/888_
8.372396563309980.03.203.20
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_085d2f722d6c5

0-0320/617/617_
8.3724891051617300.02.182.18
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_e02152cfa1f45

0-0320/581/581_
8.37246651836310.02.102.10
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

0-0320/471/471_
8.372413791495930.01.681.68
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_a7055e17e8937

0-0320/298/298_
8.37244854964380.01.061.06
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_760c4c1e8cc96

0-0320/388/388_
8.372436113898170.01.391.39
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_94b11a899ae17

0-0320/553/553_
8.382373391083770.01.971.97
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_66126688a4c0f

0-0320/775/775_
8.47169441073310.02.582.58
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933&coo

0-0320/767/767_
8.4715212172572040.02.802.80
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_1de5e1f3242c6

0-0320/639/639_
8.471502553620530.02.202.20
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_7ecca07bb226c

0-0320/926/926_
8.43202932513210.03.133.13
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12434&co

0-0320/815/815_
8.531270301824650.02.832.83
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_c36e130ed60a2

0-0320/577/577_
8.471471601988190.02.152.15
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_2a21338dbe6e2

0-0320/604/604_
8.471452392450300.02.072.07
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_7a6bf646a881f

1-0330/524/524_
9.42145962250630.02.002.00
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

1-0330/1128/1128_
9.471107302856710.04.074.07
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_a53d49574e146

1-0330/857/857_
9.42153652193160.03.093.09
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933&coo

1-0330/833/833_
9.42150711979980.02.872.87
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET / HTTP/1.1

1-0330/723/723_
9.2924591061668730.02.572.57
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_d93362c64c216

1-0330/858/858_
9.53639852180220.03.153.15
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_e94f6f92efac6

1-0330/589/589_
9.421446421445010.02.102.10
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_b81d616b3609f

1-0330/940/940_
9.5368221451790.03.403.40
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0330/1172/1172_
9.53661501826180.04.224.22
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/metadata.php HTTP/1.1

1-0330/1012/1012_
9.5377321593670.03.583.58
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/wstrust/mex.php HTTP/1.1

1-03355/1038/1038W
9.6500218443168.93.653.65
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /server-status HTTP/1.1

1-0330/617/617_
9.5360251264950.02.272.27
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

1-0330/683/683_
9.53588351822730.02.522.52
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12434&co

1-0330/1099/1099_
9.58408322229170.03.953.95
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_68305bf30aad3

1-0330/624/624_
9.5362162037690.02.272.27
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0330/542/542_
9.42147842483760.01.951.95
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12428&co

1-0330/805/805_
9.6325282606570.02.812.81
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0330/600/600_
9.302406793230560.02.192.19
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_e90d321d9067a

1-0330/543/543_
9.282473822808010.01.801.80
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_2a3fee5cbdbcd

1-0330/316/316_
9.29244252380000.01.131.13
127.0.0.1http/1.1ip-10-1-103-200.ap-southeast-2.GET /saml2/idp/SSOServi

Found on 2025-05-28 19:26

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdfc0c2431

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Monday, 26-May-2025 17:19:55 UTC
Restart Time: Sunday, 25-May-2025 22:31:49 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  18 hours 48 minutes 6 seconds
Server load: 0.84 0.82 0.81
Total accesses: 35070 - Total Traffic: 135.7 MB - Total Duration: 16404272
CPU Usage: u13.03 s7.22 cu0 cs0 - .0299% CPU load
.518 requests/sec - 2102 B/second - 4058 B/request - 467.758 ms/request
1 requests currently being processed, 49 idle workers
____________________________W_____________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/907/907_
9.2717365511680.03.413.41
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_fca656760a23c

0-0370/461/461_
9.121028642619080.01.771.77
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_12509ccc27490

0-0370/977/977_
9.23272764467880.03.873.87
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_d155da188cd30

0-0370/760/760_
9.12113292502920.03.163.16
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https://plcmelbourn

0-0370/780/780_
9.121149123590870.02.972.97
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0370/701/701_
9.121064803059070.02.782.78
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

0-0370/697/697_
8.65443684594820.02.642.64
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933&coo

0-0370/717/717_
9.2234963584170.02.842.84
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F7967&coo

0-0370/713/713_
8.61477293426760.02.792.79
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933&coo

0-0370/711/711_
9.1867772190580.02.742.74
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F7969&coo

0-0370/726/726_
8.793462383246860.02.822.82
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_b9ce91d95a877

0-0370/505/505_
8.704102374576800.01.961.96
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_90d63f2e818ee

0-0370/633/633_
8.743773372937360.02.272.27
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_cb918f0e65d53

0-0370/552/552_
9.2321383065880.02.032.03
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fwyse.plc

0-0370/705/705_
9.121046484767260.02.922.92
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_9c1d3fee9caa8

0-0370/589/589_
8.84313442104800.02.152.15
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_d0b75e903f1de

0-0370/850/850_
9.031807383733180.03.253.25
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_8277379c9244d

0-0370/435/435_
8.93247361761560.01.861.86
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F7969&coo

0-0370/686/686_
8.992141403295930.02.642.64
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_ab477fb20640a

0-0370/657/657_
9.08147363650960.02.622.62
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BWT

0-0370/654/654_
8.89280532154000.02.372.37
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/639/639_
9.12109932987010.02.582.58
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/604/604_
9.12108121273133350.02.362.36
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12460&co

0-0370/959/959_
9.23254653630520.03.693.69
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_940f82e1468f0

0-0370/802/802_
9.232361524266040.03.293.29
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_725272d634f1b

1-0380/482/482_
9.22103782559950.02.072.07
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12460&co

1-0380/594/594_
9.221058592850230.02.532.53
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_ffc7357869c8b

1-0380/980/980_
8.843942375436650.03.793.79
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_ffb82ae66a000

1-03814/898/898W
9.340046723340.13.383.38
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /server-status HTTP/1.1

1-0380/419/419_
9.33280173109470.01.691.69
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12460&co

1-0380/407/407_
9.31515391997880.01.481.48
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_14cab76e12b6b

1-0380/623/623_
9.33218612143400.02.282.28
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_988f6be775488

1-0380/685/685_
8.79426963135470.02.562.56
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F9346&coo

1-0380/668/668_
8.74460563219470.02.672.67
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F8588&coo

1-0380/884/884_
8.883614373707470.03.473.47
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_486cce7c4bc2b

1-0380/819/819_
9.032638362803840.03.063.06
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_c683aca1b162c

1-0380/529/529_
9.072309383975890.01.921.92
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_591251ecc7982

1-0380/881/881_
9.171636443282060.03.313.31
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_deb4da86f4e8f

1-0380/641/641_
9.34197681995990.02.142.14
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_539ad6a6122c4

1-0380/829/829_
9.221091704375160.03.133.13
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_c40efcc7d3600

1-0380/852/852_
9.221319353487220.03.263.26
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_7ffc58360789e

1-0380/759/759_
8.972970402569270.02.862.86
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_d23363008c27a

1-0380/1100/1100_
8.933290363309880.04.284.28
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_46fb8700682d1

1-0380/725/725_
9.121974362004940.02.672.67
127.0.0.1http/1.1ip-10-1-91-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_3102da64083cd

1-0380/643/643_
9.2211431072395080.0

Found on 2025-05-26 17:19

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fde20e321d

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Saturday, 24-May-2025 10:32:47 UTC
Restart Time: Friday, 23-May-2025 00:05:00 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 10 hours 27 minutes 47 seconds
Server load: 1.20 1.34 1.29
Total accesses: 66388 - Total Traffic: 249.1 MB - Total Duration: 15710052
CPU Usage: u24 s14.55 cu0 cs0 - .0311% CPU load
.535 requests/sec - 2105 B/second - 3934 B/request - 236.64 ms/request
1 requests currently being processed, 49 idle workers
__________________W_______________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/1765/1765_
17.2710001203326420.06.566.56
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_131c161601b0c

0-0370/1076/1076_
17.27990893402400.04.274.27
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c6fbd6486d022

0-0370/1236/1236_
17.18158402897150.04.694.69
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0370/1152/1152_
17.231296263127040.04.104.10
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW79k

0-0370/1128/1128_
17.181571442348380.04.254.25
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0370/1621/1621_
17.27897552116910.06.186.18
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_4ecc563327102

0-0370/905/905_
17.2782812448740.03.363.36
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0370/1130/1130_
17.305383182503520.04.164.16
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0370/1361/1361_
17.27967831962420.05.065.06
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f1d73b9daa5cf

0-0370/1157/1157_
17.1119503574178180.04.314.31
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_5bdd6833ef3d1

0-0370/1432/1432_
17.3711314593447620.05.295.29
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=nVLLjhMxEPwVy%2fd5ZDL

0-0370/1517/1517_
17.371051153102250.05.505.50
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_62c31645968ed

0-0370/1427/1427_
17.333321022587870.05.245.24
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

0-0370/1205/1205_
17.377759763028070.04.284.28
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSQgUN

0-0370/1178/1178_
17.11190972442400.04.494.49
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j8R8s3%2

0-0370/1199/1199_
17.11195024154152440.04.524.52
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW79k

0-0370/1291/1291_
17.13180104270500.04.774.77
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET / HTTP/1.1

0-0370/1077/1077_
17.374812701310.04.004.00
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0377/964/964W
17.370022250820.23.793.79
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /server-status HTTP/1.1

0-0370/1801/1801_
17.12186113672970.06.676.67
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET / HTTP/1.1

0-0370/1548/1548_
17.1218362903491300.06.086.08
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0370/1463/1463_
17.23133313273500.05.735.73
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0370/1211/1211_
17.12186842083650.04.514.51
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_2cceed8cf888b

0-0370/1436/1436_
17.1318191483689410.05.345.34
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bbfd98514edbd

0-0370/1413/1413_
17.13177414772490.05.295.29
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0380/1616/1616_
17.541773884060590.05.845.84
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_9774b310616ad

1-0380/1045/1045_
17.72111073723080.04.094.09
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BR79k

1-0380/1818/1818_
17.62147374150110.06.736.73
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12434&co

1-0380/1312/1312_
17.541846993572680.04.984.98
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_25db02a0f4dab

1-0380/1093/1093_
17.96121083809760.04.034.03
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8497d5b2111df

1-0380/772/772_
17.671242162502830.03.203.20
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12434&co

1-0380/1350/1350_
17.79746273118100.04.974.97
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12434&co

1-0380/741/741_
17.72107972247930.02.832.83
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12436&co

1-0380/1088/1088_
17.611489132456620.04.174.17
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/1400/1400_
17.72981832223250.05.115.11
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ce1c8e74d439a

1-0380/1563/1563_
17.8361162781520.05.815.81
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12428&co

1-0380/1538/1538_
17.89404102974800.05.745.74
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F12436&co

1-0380/1520/1520_
17.9510235543211310.05.655.65
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSJ

1-0380/1573/1573_
17.541807133101910.05.905.90
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/1334/1334_
17.959012601320.04.934.93
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/1414/1414_
17.561728573466980.05.265.26
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_69c94d92e6543

1-0380/1319/1319_
17.74916703633250.04.874.87
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_17ba5656bec83

1-0380/1351/1351_
17.956102955570.04.984.98
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET / HTTP/1.1

1-0380/1415/1415_
17.5319601743610150.05.425.42
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e61e9a5f37f11

1-0380/1307/1307_
17.95202392734100.04.734.73
127.0.0.1http/1.1ip-10-1-96-107.ap-southeast-2.c

Found on 2025-05-24 10:32

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdfa950d75

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 22-May-2025 22:28:11 UTC
Restart Time: Thursday, 22-May-2025 04:49:01 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  17 hours 39 minutes 10 seconds
Server load: 3.80 2.29 1.89
Total accesses: 15228 - Total Traffic: 62.8 MB - Total Duration: 6312791
CPU Usage: u6.18 s3.85 cu0 cs0 - .0158% CPU load
.24 requests/sec - 1036 B/second - 4324 B/request - 414.552 ms/request
1 requests currently being processed, 49 idle workers
____________W_____________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0360/272/272_
4.1828433779950.01.151.15
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c88003dc1253d

0-0360/285/285_
4.2019521515200.01.271.27
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-0360/361/361_
4.1925691750670.01.341.34
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/309/309_
4.1925161979570.01.291.29
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BVy

0-0360/324/324_
4.2117311342640.01.271.27
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0360/323/323_
4.211382598410.01.321.32
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0360/340/340_
4.217401038760.01.331.33
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0360/320/320_
4.211460813590.01.311.31
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0360/393/393_
4.2111701178730.01.581.58
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /resources/post.js HTTP/1.1

0-0360/318/318_
4.21110481765220.01.191.19
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/271/271_
4.231815211404440.01.131.13
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0360/327/327_
4.226211157540.01.281.28
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0369/301/301W
4.230010995628.51.331.33
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /server-status HTTP/1.1

0-0360/324/324_
4.175004221529690.01.351.35
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PC8J1

0-0360/265/265_
4.16617101362050.01.021.02
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/320/320_
4.165847481088750.01.441.44
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BW70m

0-0360/303/303_
4.1656111449880.01.291.29
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0360/272/272_
4.174451979980.01.131.13
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET / HTTP/1.1

0-0360/311/311_
4.1747261000100.01.151.15
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuScAlu

0-0360/280/280_
4.18343442363660.01.211.21
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/296/296_
4.17429351411270.01.151.15
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/238/238_
4.174042690620.00.940.94
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0360/377/377_
4.18297401472540.01.661.66
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/311/311_
4.173744981520400.01.241.24
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL2vxH%2Bwf

0-0360/260/260_
4.18319466926340.01.151.15
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecyHAs

1-0370/256/256_
4.122890751570.01.061.06
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0370/272/272_
4.122641918190.01.041.04
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0370/257/257_
4.1219922058400.00.950.95
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0370/307/307_
4.121645431066960.01.221.22
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTuswEN1fiX%2BwvE%

1-0370/257/257_
4.122723572077270.01.121.12
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=nVLLbiIxEPwVy%2fd5MIA

1-0370/255/255_
4.122374381069570.01.001.00
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BcA

1-0370/324/324_
4.141555870120.01.391.39
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0370/309/309_
4.1582271497970.01.301.30
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0370/282/282_
4.141291041857550.01.271.27
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrpswEN3nKyL2QCAFb

1-0370/325/325_
4.141094911298750.01.411.41
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW70n

1-0370/356/356_
4.17370861870.01.491.49
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0370/339/339_
4.164751155530.01.431.43
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PAhwa

1-0370/281/281_
4.17115621018980.01.321.32
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSSBsY

1-0370/336/336_
4.0959616562018730.01.231.23
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec%2B3

1-0370/314/314_
4.18010747080.01.241.24
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/259/259_
4.0957630610000.00.990.99
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0370/225/225_
4.095475701023500.00.870.87
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DekxDvh

1-0370/257/257_
4.11451481022830.01.071.07
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_856f37d9b294e

1-0370/295/295_
4.094857381132050.01.231.23
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0Tc%2Bey

1-0370/348/348_
4.114361831450.01.481.48
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0370/324/324_
4.1141701897290.01.371.37
127.0.0.1http/1.1ip-10-1-99-157.ap-southeast-2.cG

Found on 2025-05-22 22:28

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd64c7296f

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Tuesday, 20-May-2025 13:48:21 UTC
Restart Time: Tuesday, 20-May-2025 01:16:54 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  12 hours 31 minutes 26 seconds
Server load: 1.02 0.86 0.88
Total accesses: 26042 - Total Traffic: 101.0 MB - Total Duration: 7151181
CPU Usage: u10.6 s6.02 cu0 cs0 - .0369% CPU load
.578 requests/sec - 2349 B/second - 4068 B/request - 274.602 ms/request
1 requests currently being processed, 49 idle workers
_______________________________________________W__..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0400/569/569_
7.451244102312930.02.182.18
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0400/579/579_
7.391505361694820.02.382.38
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f2ab702619b50

0-0400/542/542_
7.451078382215270.02.042.04
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2272%2F&

0-0400/430/430_
7.162751102631780.01.771.77
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0400/632/632_
7.47941631671800.02.472.47
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_cd7f598c4799b

0-0400/646/646_
7.4696971647570.02.602.60
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F9347&coo

0-0400/531/531_
7.451063791084810.02.212.21
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_3b62da362e859

0-0400/465/465_
7.34180410301383400.01.791.79
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BaR

0-0400/727/727_
7.4610021261046070.02.702.70
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_27ebce69e942b

0-0400/364/364_
7.46102419421123170.01.521.52
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecwUka

0-0400/165/165_
7.469871428780.00.850.85
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0400/545/545_
7.591791421255050.02.012.01
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ea736e1816dde

0-0400/538/538_
7.162852811913860.02.352.35
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_48a4d5ebce24a

0-0400/537/537_
7.52649531017230.01.931.93
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933&coo

0-0400/550/550_
7.5835211337420.02.052.05
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0400/514/514_
7.591451041526950.01.971.97
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ec1e7e998f385

0-0400/537/537_
7.60103121470910.02.432.43
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933&coo

0-0400/381/381_
7.162816451585320.01.481.48
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_363f0d4fc606f

0-0400/502/502_
7.16280288982990.01.851.85
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c929b986b8e87

0-0400/363/363_
7.27220731146120.01.441.44
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0400/689/689_
7.31190211984480.02.552.55
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0400/646/646_
7.27231262339530.02.432.43
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2272%2F&

0-0400/372/372_
7.222598241078600.01.401.40
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=https%3A%2F%2Fpresbyte

0-0400/440/440_
7.291973168596040.01.591.59
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_4dfcc1999a73c

0-0400/507/507_
7.29195511097750.01.961.96
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET / HTTP/1.1

1-0410/462/462_
7.20276912262390.01.861.86
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0410/478/478_
7.18282681940770.01.811.81
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F7507&coo

1-0410/481/481_
7.19280857627440.01.861.86
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_320d4e3690027

1-0410/379/379_
7.20272112671254020.01.351.35
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW71k

1-0410/437/437_
7.332177342455310.01.621.62
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_27474f15d783d

1-0410/527/527_
7.381962641506260.02.042.04
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_fdc6f4c10e1f8

1-0410/489/489_
7.65487341828210.01.801.80
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_067a745f87df9

1-0410/503/503_
7.38194991989910.02.002.00
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8c856ba65f5a4

1-0410/398/398_
7.711634765980.01.561.56
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0410/377/377_
7.607862758890.01.501.50
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0410/319/319_
7.44165437884720.01.421.42
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_66e6cdbfc5658

1-0410/701/701_
7.38203461691460.02.712.71
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F9345&coo

1-0410/674/674_
7.491358361002710.02.402.40
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_3d98a9202b2b8

1-0410/628/628_
7.5410872741420960.02.342.34
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_9148c41daf4a1

1-0410/301/301_
7.26246654809150.01.211.21
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2933&coo

1-0410/434/434_
7.381885841117200.01.531.53
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_85e6bea02220d

1-0410/712/712_
7.5598261704770.02.672.67
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F9345&coo

1-0410/564/564_
7.5510501231016780.02.172.17
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_41bed6202ac86

1-0410/907/907_
7.7120072013340.03.543.54
127.0.0.1http/1.1ip-10-1-102-14.ap-southeast-2.cGET /saml2/idp/SSOService.php?RelayState=%2Fhomepage%2F2272%2F&

1-0410/386/386_
7.55101778959500.01.601.60
127.0.0.1http/1.1

Found on 2025-05-20 13:48

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd159e1823

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Sunday, 18-May-2025 19:42:15 UTC
Restart Time: Friday, 16-May-2025 03:55:50 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 15 hours 46 minutes 24 seconds
Server load: 1.28 1.01 1.22
Total accesses: 171182 - Total Traffic: 576.4 MB - Total Duration: 29198995
CPU Usage: u47.33 s30.66 cu0 cs0 - .034% CPU load
.746 requests/sec - 2632 B/second - 3530 B/request - 170.573 ms/request
1 requests currently being processed, 49 idle workers
_______________W__________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0360/3432/3432_
37.04128814593100.011.4811.48
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

0-0360/3281/3281_
37.0468815547460.011.2711.27
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

0-0360/3047/3047_
37.0556814326430.010.2310.23
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

0-0360/3526/3526_
37.0554015654640.012.0712.07
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0360/3672/3672_
37.054244975110.012.2012.20
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_432b01ee4aaed

0-0360/3436/3436_
37.0522544847330.011.5611.56
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_58691a7128146

0-0360/3702/3702_
37.0516455072830.012.5712.57
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f97bc2f4698ee

0-0360/4213/4213_
37.0498105951620.014.3514.35
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /robots.txt HTTP/1.1

0-0360/4525/4525_
37.0510346557190.015.3315.33
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8954343490ac9

0-0360/4093/4093_
37.0528649252550.013.5513.55
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_9e0f7e24019d0

0-0360/3411/3411_
37.0474706633130.011.4411.44
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /robots.txt HTTP/1.1

0-0360/3845/3845_
37.0412374716300420.012.8212.82
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BW70m

0-0360/3565/3565_
37.04134814724800.011.7211.72
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

0-0360/3413/3413_
37.04109375294830.011.1011.10
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/3230/3230_
37.0492815772920.010.5510.55
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

0-0363/3356/3356W
37.06006289403.810.9310.93
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /server-status HTTP/1.1

0-0360/2837/2837_
37.04868115454090.09.439.43
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0360/4038/4038_
37.04121456653760.013.6913.69
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0360/2949/2949_
37.04140894920500.09.859.85
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0360/3230/3230_
37.0551046217410.010.9210.92
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-0360/4028/4028_
37.0540945916840.013.7513.75
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_a2cb02f708469

0-0360/3641/3641_
37.0462817049620.012.1412.14
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

0-0360/3508/3508_
37.0534846146610.011.8011.80
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_677d27ddb22e7

0-0360/2787/2787_
37.041154274887540.09.399.39
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0360/3282/3282_
37.0480415105341680.011.0311.03
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0370/2701/2701_
35.4778525903380.09.339.33
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

1-0370/3128/3128_
35.46133646005980.010.7110.71
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_08776cac8a625

1-0370/3058/3058_
35.461458364994830.010.6110.61
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0370/4099/4099_
35.4726815119570.013.6513.65
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

1-0370/3053/3053_
35.4759445390680.010.5010.50
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c4d93265805b4

1-0370/3787/3787_
35.4732816060650.012.4512.45
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

1-0370/3769/3769_
35.472816649660.012.6912.69
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

1-0370/2947/2947_
35.46127544840620.09.889.88
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_fbb7d2703ba01

1-0370/3026/3026_
35.4714816382390.010.3110.31
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

1-0370/3034/3034_
35.461228365306310.010.1810.18
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0370/3118/3118_
35.4738814362530.010.1810.18
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

1-0370/3454/3454_
35.4765946997210.011.4411.44
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_98e4961ea48e2

1-0370/3407/3407_
35.479094955498070.011.5311.53
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2Bdw

1-0370/3353/3353_
35.4753236141520.011.0811.08
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f2e63891e72a4

1-0370/3433/3433_
35.4720813566800.011.8911.89
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET / HTTP/1.1

1-0370/2936/2936_
35.47726457382740.09.629.62
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_7a6de08efc468

1-0370/3381/3381_
35.4797156534850.011.9911.99
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_17eb58fd9a3d0

1-0370/3291/3291_
35.47103276507870.011.6111.61
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/3340/3340_
35.46139757739420.011.4711.47
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_965446e3eb1d7

1-0370/2740/2740_
35.4784946878150.09.569.56
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0370/3579/3579_
35.4747066543080.012.3412.34
127.0.0.1http/1.1ip-10-1-89-118.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/3350/3350_
35.4755855

Found on 2025-05-18 19:42

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd8f4e38e4

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Saturday, 30-Nov-2024 09:21:38 UTC
Restart Time: Thursday, 28-Nov-2024 01:07:45 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 days 8 hours 13 minutes 53 seconds
Server load: 1.08 1.59 1.89
Total accesses: 49422 - Total Traffic: 244.5 MB - Total Duration: 21278211
CPU Usage: u24.37 s12.38 cu0 cs0 - .0182% CPU load
.244 requests/sec - 1266 B/second - 5.1 kB/request - 430.541 ms/request
1 requests currently being processed, 74 idle workers
________________________________________________________________
_________W_.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/930/930_
12.84252102825790.04.734.73
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/830/830_
12.8373543596130.03.823.82
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_5acaadad8bdc8

0-0370/744/744_
12.85653172803700.03.483.48
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNT9wwEL1X6n%2BwfM8

0-0370/773/773_
12.8295213286590.03.863.86
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/845/845_
12.8377314856370.04.544.54
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/808/808_
12.8110033344371720.04.044.04
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vCC5B

0-0370/734/734_
12.82891124828130.03.553.55
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0370/730/730_
12.8435023232850.03.753.75
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0370/768/768_
12.8515413156230.03.613.61
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0370/850/850_
12.8367534712890.04.264.26
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_9dde6ac19ff1b

0-0370/720/720_
12.8281104284590.03.813.81
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0370/785/785_
12.851054422400.04.204.20
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ad0982d49b357

0-0370/944/944_
12.835103163597560.04.694.69
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PEkL1

0-0370/773/773_
12.8365102810140.03.853.85
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET / HTTP/1.1

0-0370/833/833_
12.81109933492160.04.334.33
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/903/903_
12.8429202961930.04.584.58
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET / HTTP/1.1

0-0370/795/795_
12.85191352707850.03.853.85
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/616/616_
12.81103833095830.03.333.33
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_4d04c03efde43

0-0370/763/763_
12.8355492621800.03.593.59
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/724/724_
12.83700262868590.03.303.30
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0370/994/994_
12.83614104984010.05.075.07
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/821/821_
12.844572572493680.04.114.11
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Decw8sW

0-0370/662/662_
12.8441114306710.03.163.16
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET / HTTP/1.1

0-0370/763/763_
12.8512012752680.03.803.80
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0370/729/729_
12.8285693176500.03.343.34
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/908/908_
12.425014039680.04.174.17
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0380/860/860_
12.4211203358780.04.084.08
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET / HTTP/1.1

1-0380/743/743_
12.3988294895080.03.823.82
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/845/845_
12.39102053115290.04.624.62
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0380/759/759_
12.3979643885280.03.913.91
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_220caa06d9bed

1-0380/647/647_
12.4214993001290.03.423.42
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/772/772_
12.3997894880090.04.184.18
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/925/925_
12.3976145186370.04.394.39
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0380/766/766_
12.41636453112350.04.144.14
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f39651568d53e

1-0380/893/893_
12.412397123396540.04.204.20
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTuMwFN0jzT9Y3ufVj

1-0380/934/934_
12.4072053240580.04.764.76
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0380/879/879_
12.41330723337180.04.144.14
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_dbe293fdf52e3

1-0380/887/887_
12.406859114916180.04.254.25
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW79k

1-0380/694/694_
12.4153702109470.03.063.06
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0380/619/619_
12.4139932275540.02.772.77
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_225304e813de5

1-0380/634/634_
12.41494292731140.03.113.11
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0380/760/760_
12.4214454029570.03.673.67
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/644/644_
12.4117112378830.03.073.07
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET / HTTP/1.1

1-0380/747/747_
12.39832123810290.03.513.51
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0380/850/850_
12.4066603029050.04.354.35
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0380/760/760_
12.4128513312840.03.643.64
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/nextmail/clou

Found on 2024-11-30 09:21

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdbc39301f

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Thursday, 28-Nov-2024 07:39:34 UTC
Restart Time: Thursday, 28-Nov-2024 01:07:45 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  6 hours 31 minutes 48 seconds
Server load: 0.87 1.59 1.78
Total accesses: 8736 - Total Traffic: 43.4 MB - Total Duration: 3996521
CPU Usage: u4.4 s2.17 cu0 cs0 - .0279% CPU load
.372 requests/sec - 1935 B/second - 5.1 kB/request - 457.477 ms/request
1 requests currently being processed, 49 idle workers
__W_______________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/280/280_
3.07428563930.01.411.41
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/232/232_
3.028231536020.01.121.12
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-03713/219/219W
3.08003660326.40.900.90
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /server-status HTTP/1.1

0-0370/103/103_
3.02766387408680.00.510.51
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJdT8IwFH038T80fd%2F

0-0370/230/230_
3.0640101335190.01.171.17
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /resources/post.js HTTP/1.1

0-0370/203/203_
3.027278361010550.00.990.99
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjpswEH3PV0S8A8FBN

0-0370/190/190_
3.027003571070960.00.940.94
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0TcgcBml

0-0370/141/141_
3.027885937220.00.710.71
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0370/182/182_
3.028073711139010.00.880.88
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec920p

0-0370/205/205_
3.07292341424270.01.011.01
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_a28b915365e7a

0-0370/126/126_
3.063441075975990.00.690.69
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecyGwg

0-0370/189/189_
3.072327361010590.01.061.06
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0370/259/259_
3.046441344370.01.351.35
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0370/184/184_
3.044679656600.01.021.02
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0370/239/239_
3.04616399842530.01.051.05
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSUgKC

0-0370/139/139_
3.072686768920.00.750.75
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/191/191_
3.0717531857160.00.940.94
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_36882d6348fb9

0-0370/121/121_
3.072160395160.00.630.63
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0370/180/180_
3.064290380760.00.850.85
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0370/103/103_
3.0785444516330.00.470.47
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2Bc5

0-0370/129/129_
3.07129405362090.00.620.62
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BYQ

0-0370/258/258_
3.045278650470.01.221.22
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0370/126/126_
3.06389776898880.00.600.60
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=jVLLbtswEPwVgXc9TMe2T

0-0370/122/122_
3.045841734010.00.660.66
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0370/167/167_
3.04475175672540.00.760.76
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/349/349_
2.8584861252280.01.521.52
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/157/157_
2.89991779940.00.670.67
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0380/166/166_
2.8822431717130.00.840.84
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_767235fb474f7

1-0380/210/210_
2.8920370733870.01.241.24
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7POGGY

1-0380/173/173_
2.89541725930.00.940.94
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0380/136/136_
2.857480875370.00.700.70
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0380/160/160_
2.85816361218540.00.990.99
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/158/158_
2.857952418698560.00.690.69
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0380/212/212_
2.876031743840.01.011.01
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0380/251/251_
2.8770991028030.01.221.22
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0380/132/132_
2.876751505790.00.750.75
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/163/163_
2.87636297774160.00.730.73
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0TcgeBuQ

1-0380/211/211_
2.857784301098470.00.920.92
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j8R8i35M

1-0380/105/105_
2.874201223704070.00.450.45
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNr9owELzzK1DuSUiAA

1-0380/126/126_
2.87569605562210.00.550.55
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec%2B0

1-0380/148/148_
2.8751163830200.00.740.74
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0380/127/127_
2.882821900700.00.710.71
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/92/92_
2.8747895624280.00.430.43
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/146/146_
2.8740672888360.00.750.75
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/186/186_
2.87374903809810.01.021.02
127.0.0.1http/1.1ip-10-1-99-221.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJdT8IwFH038T80fd%2F

1-0380/135/135_
2.874512503380.00.790.79

Found on 2024-11-28 07:39

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdea8f0761

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Tuesday, 26-Nov-2024 09:13:37 UTC
Restart Time: Tuesday, 26-Nov-2024 03:48:43 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  5 hours 24 minutes 53 seconds
Server load: 0.68 1.15 1.34
Total accesses: 6239 - Total Traffic: 29.9 MB - Total Duration: 2068737
CPU Usage: u3.09 s1.53 cu0 cs0 - .0237% CPU load
.32 requests/sec - 1611 B/second - 5033 B/request - 331.582 ms/request
1 requests currently being processed, 49 idle workers
_____________W____________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/108/108_
2.082970221220.00.490.49
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /resources/post.js HTTP/1.1

0-0350/97/97_
2.091708226120.00.490.49
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/178/178_
2.11379212220.00.800.80
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0350/81/81_
2.07333319316850.00.420.42
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Decy2BY

0-0350/188/188_
2.092380297840.00.800.80
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0350/138/138_
2.092131031463170.00.720.72
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/173/173_
2.1086960572780.00.850.85
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BWS

0-0350/162/162_
2.091354101700.00.640.64
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSXDIw

0-0350/96/96_
2.092611203380.00.380.38
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/94/94_
2.091890176680.00.520.52
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0350/106/106_
2.0911947260700.00.500.50
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/133/133_
2.057675069419370.00.510.51
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BR79k

0-0350/188/188_
2.05816453252380.01.091.09
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJLT%2BMwEL6vtP%2FB8

0-0355/82/82W
2.11007164621.20.470.47
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /server-status HTTP/1.1

0-0350/84/84_
2.05730189471230.00.310.31
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/158/158_
2.056463481940.00.730.73
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0350/100/100_
2.056751202670.00.560.56
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/179/179_
2.07488754285210.00.820.82
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSy

0-0350/109/109_
2.075191449050.00.620.62
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0350/119/119_
2.065730459470.00.470.47
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /resources/post.css HTTP/1.1

0-0350/147/147_
2.075381379460.00.650.65
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0350/147/147_
2.057151538730.00.630.63
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/156/156_
2.074047580170.00.790.79
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/106/106_
2.073790444520.00.450.45
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /resources/clipboard.min.js HTTP/1.1

0-0350/151/151_
2.083281577780.00.660.66
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0360/54/54_
1.9733310144580.00.210.21
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0360/144/144_
1.99183755349120.00.750.75
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSUg2B

1-0360/225/225_
2.001251569810.01.251.25
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/135/135_
2.001441615250.00.730.73
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0360/144/144_
2.00694567620.00.760.76
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0360/159/159_
1.9922044310900.00.840.84
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/84/84_
1.97248910246080.00.400.40
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

1-0360/98/98_
1.99201334239900.00.440.44
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2Bdz

1-0360/101/101_
1.972791578060.00.420.42
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/81/81_
1.97332597502530.00.380.38
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2Bdw

1-0360/140/140_
1.973432438790.00.610.61
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_da86b5e9188a9

1-0360/82/82_
1.965253110280.00.400.40
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0360/102/102_
1.9665666317190.00.410.41
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0360/58/58_
1.96550869187020.00.220.22
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec93sw

1-0360/105/105_
1.966082142740.00.410.41
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/wstrust/mex.php HTTP/1.1

1-0360/99/99_
1.966915228210.00.460.46
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du5GvRs

1-0360/91/91_
1.967064730700.00.430.43
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSh78lIKF

1-0360/176/176_
1.9646131925380.00.890.89
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_510c0999fe089

1-0360/119/119_
1.9650417758560.00.560.56
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_fe42677fdd114

1-0360/98/98_
2.001101864480.00.420.42
127.0.0.1http/1.1ip-10-1-100-206.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/97/97_
1.967382216970.00.430.43
127.0.0.1http/1.1ip-10-1-100-206

Found on 2024-11-26 09:13

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd4798663c

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Sunday, 24-Nov-2024 05:40:29 UTC
Restart Time: Thursday, 21-Nov-2024 05:11:12 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 29 minutes 17 seconds
Server load: 1.14 1.72 1.94
Total accesses: 69866 - Total Traffic: 362.3 MB - Total Duration: 29230986
CPU Usage: u31.4 s15.07 cu4.23 cs1.74 - .0201% CPU load
.268 requests/sec - 1455 B/second - 5.3 kB/request - 418.386 ms/request
1 requests currently being processed, 74 idle workers
_____________________________________________W____..............
..........._________________________............................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0380/815/815_
15.60413572896940.04.094.09
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BR70m

0-0380/1026/1026_
15.5942873758450.05.185.18
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/876/876_
15.5868312345480.04.684.68
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0380/1104/1104_
15.6015633280940.06.066.06
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/metadata.php HTTP/1.1

0-0380/1110/1110_
15.5778510534886490.06.226.22
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0380/851/851_
15.5852393419170.04.734.73
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0380/1097/1097_
15.60573492260.05.655.65
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/955/955_
15.60108322961810.04.584.58
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW70m

0-0380/963/963_
15.6022114488110.04.564.56
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0380/791/791_
15.5688563057020.04.174.17
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/718/718_
15.5598862585990.03.613.61
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/917/917_
15.5934304606050.04.744.74
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET / HTTP/1.1

0-0380/989/989_
15.593873033643080.04.884.88
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dek5ALW

0-0380/985/985_
15.5693523853260.05.425.42
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/wstrust/mex.php HTTP/1.1

0-0380/810/810_
15.5865103837860.04.134.13
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0380/963/963_
15.5946204066480.04.644.64
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET / HTTP/1.1

0-0380/1032/1032_
15.5856056274380.05.575.57
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fZLNTsMwEITvSLyD5Xv%2

0-0380/921/921_
15.5684333389910.04.884.88
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=hVNNj5swFLzvr0DcwYEkp

0-0380/858/858_
15.607513597770.04.714.71
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0380/1035/1035_
15.5776225242560.05.235.23
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0380/1344/1344_
15.5926506866720.06.536.53
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /favicon.ico HTTP/1.1

0-0380/916/916_
15.5949313045340.04.684.68
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0380/1040/1040_
15.57720303224950.05.775.77
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_dba3e4467d7db

0-0380/788/788_
15.5858295033100.03.973.97
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0380/837/837_
15.5929613432730.04.544.54
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0137140/398/422_
9.8386722036910.01.892.03
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0137140/586/646_
9.8564262869580.02.943.28
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0137140/550/680_
9.8554842591060.02.653.33
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Decy1hd

1-0137140/567/616_
9.839583231781030.02.913.26
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=jVLLbtswEPwVgXc9zMqOT

1-0137140/514/598_
9.8733422610960.02.653.12
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_b766190794fbf

1-0137140/713/783_
9.85785503038570.03.573.95
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0137140/601/632_
9.8555912946420.02.943.07
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0137140/686/716_
9.85701291748330.03.693.82
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_0516855f47936

1-0137140/451/520_
9.8392821390340.02.222.66
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0137140/697/771_
9.87289414016580.03.283.78
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0137140/614/648_
9.86448642108970.03.213.42
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j8R8s35M

1-0137140/787/822_
9.8738223395170.03.733.89
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_c151a1caac184

1-0137140/705/813_
9.882401979260.03.333.79
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /resources/post.css HTTP/1.1

1-0137140/538/605_
9.8581612122570.02.643.02
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0137140/493/574_
9.864781443880610.02.432.92
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0137140/611/735_
9.8720622951880.02.853.46
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0137140/458/523_
9.8567116343248190.02.222.66
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0137140/486/558_
9.8724623019550.02.532.89
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_8e2371166d5d7

1-0137140/729/761_
9.8741213438780.03.443.60
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0137140/830/877_
9.87143502577130.04.434.65
127.0.0.1http/1.1ip-10-1-95-60.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0137142/536/592W
9.8800

Found on 2024-11-24 05:40

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdfaf6f5bb

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-07-17T18:57:26

Current Time: Friday, 22-Nov-2024 04:09:36 UTC
Restart Time: Friday, 22-Nov-2024 03:35:30 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  34 minutes 6 seconds
Server load: 1.04 2.87 3.40
Total accesses: 701 - Total Traffic: 3.6 MB - Total Duration: 307223
CPU Usage: u.39 s.24 cu0 cs0 - .0308% CPU load
.343 requests/sec - 1868 B/second - 5.3 kB/request - 438.264 ms/request
1 requests currently being processed, 49 idle workers
___________________________W______________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0420/6/6_
0.25142326570.00.030.03
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0420/27/27_
0.25721277460.00.110.11
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0420/7/7_
0.251924649850.00.060.06
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BfK

0-0420/6/6_
0.243243348570.00.050.05
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjpswEH3PV0S8cwkLY

0-0420/53/53_
0.2253411885000.00.280.28
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bdd0d103c2ee8

0-0420/9/9_
0.264440129200.00.070.07
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=jVLLbtswEPwVgXc9zPhJ2

0-0420/9/9_
0.2650929470.00.030.03
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0420/10/10_
0.1464342522410.00.040.04
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec2VZs

0-0420/5/5_
0.14631159670.00.020.02
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0420/9/9_
0.14569141118860.00.030.03
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0420/4/4_
0.145931440.00.010.01
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0420/15/15_
0.1455520640280.00.060.06
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_45eb0e5c56986

0-0420/37/37_
0.22535155390.00.300.30
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0420/8/8_
0.1854011690.00.090.09
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0420/10/10_
0.23482590130.00.040.04
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PBvgY

0-0420/11/11_
0.2446963122500.00.050.05
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec%2BW

0-0420/9/9_
0.244413357115600.00.040.04
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTtwwFN1X4h8i7%2FM

0-0420/4/4_
0.24413529420.00.020.02
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_836eb94ec1e02

0-0420/9/9_
0.243974777180.00.070.07
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_0a798bb37613e

0-0420/15/15_
0.24370104834120.00.060.06
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0420/18/18_
0.24350132120.00.050.05
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0420/7/7_
0.24298111250.00.030.03
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0420/5/5_
0.24277238960.00.020.02
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-0420/16/16_
0.24240052930.00.100.10
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET //plcmelbourne-login.cloudworkengine.net/module.php/core/fr

0-0420/7/7_
0.242243730030.00.040.04
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0430/6/6_
0.1468927193870.00.020.02
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cPOST /saml2/idp/SSOService.php HTTP/1.1

1-0430/9/9_
0.1465978246460.00.040.04
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vGlvZ

1-0436/23/23W
0.30001976519.90.100.10
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /server-status HTTP/1.1

1-0430/21/21_
0.30227243640.00.110.11
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0430/5/5_
0.28897364000.00.020.02
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0430/18/18_
0.281135341480.00.080.08
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0430/17/17_
0.2816818110.00.090.09
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0430/13/13_
0.28203305220.00.030.03
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0430/9/9_
0.254521252460.00.030.03
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0430/7/7_
0.25422139000.00.030.03
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0430/7/7_
0.254085630.00.050.05
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNTxsxEL1X4j9Yvu8nO

1-0430/13/13_
0.2637809120.00.050.05
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0430/10/10_
0.263555117220.00.040.04
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0430/7/7_
0.254754613450.00.030.03
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8d3f241b58981

1-0430/12/12_
0.272633039640.00.080.08
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0430/9/9_
0.26331645930.00.070.07
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec4VFW

1-0430/9/9_
0.14624131920.00.040.04
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0430/24/24_
0.254934121560.00.140.14
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

1-0430/15/15_
0.1461057640970.00.070.07
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cPOST /saml2/idp/SSOService.php HTTP/1.1

1-0430/11/11_
0.1558283062520.00.040.04
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0TcgUA22

1-0430/15/15_
0.263055060170.00.060.06
127.0.0.1http/1.1ip-10-1-93-161.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0

Found on 2024-11-22 04:09

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd3a394ec4

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Thursday, 21-Nov-2024 00:11:49 UTC
Restart Time: Wednesday, 20-Nov-2024 21:35:44 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  2 hours 36 minutes 5 seconds
Server load: 1.47 2.41 2.97
Total accesses: 5039 - Total Traffic: 25.7 MB - Total Duration: 3768918
CPU Usage: u2.6 s1.2 cu0 cs0 - .0406% CPU load
.538 requests/sec - 2872 B/second - 5.2 kB/request - 747.95 ms/request
1 requests currently being processed, 74 idle workers
________________________________________W_______________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0340/83/83_
1.22451671034140.00.640.64
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0340/52/52_
1.224900913920.00.270.27
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /favicon.ico HTTP/1.1

0-0340/63/63_
1.2233940923190.00.360.36
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_7f5ab8601142f

0-0340/84/84_
1.215662691167660.00.470.47
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0340/55/55_
1.223990993280.00.330.33
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /resources/post.css HTTP/1.1

0-0340/101/101_
1.24710589020.00.550.55
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /resources/script.js HTTP/1.1

0-0340/36/36_
1.231001143363380.00.200.20
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0340/109/109_
1.24131901840.00.570.57
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0340/33/33_
1.166693496440.00.170.17
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0340/100/100_
1.1966810588940.00.630.63
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0340/61/61_
1.2158811691760.00.270.27
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0340/43/43_
1.223101732370.00.160.16
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0340/69/69_
1.216491810430.00.420.42
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0340/108/108_
1.23128904395680.00.450.45
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0340/29/29_
1.231920291590.00.100.10
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /favicon.ico HTTP/1.1

0-0340/117/117_
1.137862313130.00.430.43
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0340/116/116_
1.128722302430.00.550.55
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0340/57/57_
1.137471268650.00.260.26
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0340/146/146_
1.176691564890.00.600.60
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0340/22/22_
1.138076053490.00.090.09
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0340/26/26_
1.128353105220.00.160.16
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /saml2/idp/metadata.php HTTP/1.1

0-0340/36/36_
1.2227032489720.00.230.23
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_3aa922f57b678

0-0340/63/63_
1.137256185320.00.340.34
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0340/47/47_
1.225391111700.00.210.21
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0340/68/68_
1.232344561110.00.360.36
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fconnect.

1-0350/71/71_
1.222641580130.00.330.33
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0350/57/57_
1.17669331106350.00.270.27
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_9ed610015e60a

1-0350/112/112_
1.206042982380.00.510.51
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_0cf789af4751e

1-0350/59/59_
1.1479926506270.00.290.29
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/cloudworkauth/mfa/proofup.php?StateId=_65e14bd0

1-0350/33/33_
1.14772361690.00.170.17
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_185333b26734d

1-0350/149/149_
1.17669107548370.00.790.79
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=hVNdb5swFH3vr0C8BwOBt

1-0350/82/82_
1.206371988904930.00.380.38
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BXC

1-0350/107/107_
1.1966984361440.00.560.56
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/chromebook/jquery.js HTTP/1.1

1-0350/101/101_
1.157051004323180.00.440.44
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0350/91/91_
1.148611336290.00.510.51
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0350/38/38_
1.148260316260.00.240.24
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /resources/post.css HTTP/1.1

1-0350/69/69_
1.2232936559360.00.280.28
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0350/156/156_
1.1573811161600.00.710.71
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0350/81/81_
1.2052963367720.00.350.35
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_a82c742d12662

1-0350/54/54_
1.20578215260650.00.230.23
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0357/130/130W
1.240012828331.40.700.70
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /server-status HTTP/1.1

1-0350/43/43_
1.23933931241430.00.150.15
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecxUCr

1-0350/29/29_
1.20481546662860.00.200.20
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec2Ozr

1-0350/72/72_
1.2137736609140.00.350.35
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_5c5688e29cf0d

1-0350/43/43_
1.231196475490.00.180.18
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0350/75/75_
1.232171549230.00.380.38
127.0.0.1http/1.1ip-10-1-94-81.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0350/26/26_

Found on 2024-11-21 00:11

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd1c80d1eb

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Monday, 18-Nov-2024 20:19:19 UTC
Restart Time: Sunday, 17-Nov-2024 23:59:51 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  20 hours 19 minutes 27 seconds
Server load: 1.20 1.24 1.25
Total accesses: 17853 - Total Traffic: 88.5 MB - Total Duration: 14533970
CPU Usage: u10.17 s5.4 cu0 cs0 - .0213% CPU load
.244 requests/sec - 1268 B/second - 5.1 kB/request - 814.091 ms/request
1 requests currently being processed, 74 idle workers
_____________________________________________________W__________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/350/350_
4.5389842181630.01.511.51
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_70e779557a350

0-0350/166/166_
4.547230958490.00.920.92
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /favicon.ico HTTP/1.1

0-0350/207/207_
4.5625002555410.00.890.89
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /resources/post.css HTTP/1.1

0-0350/246/246_
4.5545293197420.01.241.24
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/244/244_
4.55593252468830.01.301.30
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/272/272_
4.5466312562770.01.481.48
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/225/225_
4.55486323126260.01.251.25
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/332/332_
4.5557292918260.01.611.61
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/202/202_
4.5479711323520.00.960.96
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0350/192/192_
4.563292028260.01.011.01
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/214/214_
4.53106511126740.01.131.13
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/221/221_
4.5463942301830.01.051.05
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec10Sw

0-0350/208/208_
4.5552632716010.01.071.07
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0350/186/186_
4.5621212264650.00.880.88
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET / HTTP/1.1

0-0350/221/221_
4.5615802055250.01.011.01
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /resources/post.css HTTP/1.1

0-0350/282/282_
4.5483512549030.01.281.28
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0350/174/174_
4.54752111811690.00.850.85
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/171/171_
4.569921603520.00.710.71
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_1f1aadaea3a98

0-0350/345/345_
4.5630902018010.01.571.57
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /resources/post.js HTTP/1.1

0-0350/204/204_
4.5396042159050.01.171.17
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_81b65f5112219

0-0350/250/250_
4.5541801348710.01.281.28
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /resources/post.css HTTP/1.1

0-0350/247/247_
4.5627292880910.01.161.16
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/218/218_
4.5634302144960.00.980.98
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /resources/post.js HTTP/1.1

0-0350/281/281_
4.54692481287210.01.361.36
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0350/454/454_
4.53102122056590.02.252.25
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0360/208/208_
4.5988141472360.00.960.96
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/chromebook/jquery.js HTTP/1.1

1-0360/177/177_
4.59107151578050.00.950.95
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0360/222/222_
4.6242501495210.01.051.05
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /favicon.ico HTTP/1.1

1-0360/277/277_
4.6325613021630.01.351.35
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/303/303_
4.607625941554680.01.401.40
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVJNT9wwEL1X4j9Yvudrq

1-0360/209/209_
4.623641952000020.00.890.89
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSUg23

1-0360/304/304_
4.59105203292210.01.911.91
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET / HTTP/1.1

1-0360/282/282_
4.623256431538860.01.441.44
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec3FKN

1-0360/376/376_
4.633822679350.02.252.25
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0360/166/166_
4.5999211605600.00.800.80
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET / HTTP/1.1

1-0360/214/214_
4.6153371760940.01.081.08
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/326/326_
4.6310653338220.01.821.82
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0360/270/270_
4.6070861931860.01.261.26
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/186/186_
4.6062201489520.00.880.88
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /favicon.ico HTTP/1.1

1-0360/228/228_
4.606723101659880.01.031.03
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vCMeF

1-0360/204/204_
4.59926101738750.00.880.88
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0360/176/176_
4.6081291500630.00.780.78
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/221/221_
4.6250612435470.01.181.18
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0360/238/238_
4.632803262050090.01.061.06
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BW70m

1-0360/257/257_
4.61586361974150.01.261.26
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_e885326ae49d2

1-0360/286/286_
4.6316671962280.01.541.54
127.0.0.1http/1.1ip-10-1-100-9.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/294/294_
4.6246520

Found on 2024-11-18 20:19

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd6969e135

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Saturday, 16-Nov-2024 22:35:46 UTC
Restart Time: Friday, 15-Nov-2024 02:57:47 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 19 hours 37 minutes 59 seconds
Server load: 0.98 1.25 1.20
Total accesses: 65295 - Total Traffic: 250.1 MB - Total Duration: 16180209
CPU Usage: u24.07 s14.28 cu0 cs0 - .0244% CPU load
.416 requests/sec - 1669 B/second - 4015 B/request - 247.802 ms/request
1 requests currently being processed, 49 idle workers
_______W__________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0400/1589/1589_
17.542796834635660.06.366.36
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0400/1228/1228_
17.5359992496200.04.664.66
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0400/1397/1397_
17.54345444092890.05.105.10
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0400/1453/1453_
17.5443972772700.05.545.54
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0400/1173/1173_
17.5517312528010.04.364.36
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0400/1084/1084_
17.5615672951270.04.154.15
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0400/1420/1420_
17.55239102027520.05.505.50
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-04013/1371/1371W
17.570039526441.65.155.15
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /server-status HTTP/1.1

0-0400/1048/1048_
17.5519621996470.03.953.95
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_1c92846ce26ca

0-0400/1243/1243_
17.577522359510.05.375.37
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0400/1125/1125_
17.5438824311960.04.344.34
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_9d73c6ab6a7ac

0-0400/1348/1348_
17.5358313186810.05.275.27
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0400/1604/1604_
17.53471192887790.05.915.91
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0400/1392/1392_
17.5525213609570.05.265.26
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0400/1296/1296_
17.54299113518150.04.924.92
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0400/1375/1375_
17.5349973347350.05.215.21
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0400/1487/1487_
17.5356073422600.05.855.85
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0400/1210/1210_
17.5436803744450.04.564.56
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0400/1428/1428_
17.5365413458670.05.475.47
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0400/1324/1324_
17.573373423680.04.784.78
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0400/1195/1195_
17.56132352758610.04.664.66
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_85933a5180dce

0-0400/1314/1314_
17.5270334062100.05.435.43
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.OPTIONS /saml2/idp/SSOService.php?SAMLRequest=hVJNU8IwEP0rndxJa

0-0400/1295/1295_
17.52675182632690.04.844.84
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.OPTIONS /saml2/idp/SSOService.php?SAMLRequest=hVLLTsMwEPyVyPfai

0-0400/1374/1374_
17.53605273003830.05.515.51
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0400/1420/1420_
17.5428635125600.05.525.52
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/cloudworkauth/mfa/proofup.php?StateId=_d366746f

1-0410/1080/1080_
16.8162123349320.04.264.26
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_df46ffb511737

1-0410/1508/1508_
16.8316552765560.05.765.76
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BR70m

1-0410/1337/1337_
16.851013122730.04.914.91
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0410/1183/1183_
16.8168222871090.04.574.57
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_cf1fe8f1a70fb

1-0410/1531/1531_
16.8160714147000.05.925.92
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

1-0410/1035/1035_
16.8414811925420.04.354.35
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0410/1409/1409_
16.845802556160.05.325.32
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /resources/post.js HTTP/1.1

1-0410/1400/1400_
16.8157013057730.05.505.50
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0410/1087/1087_
16.8166802546910.03.913.91
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

1-0410/1475/1475_
16.8247994252180.05.905.90
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0410/1299/1299_
16.833081363798990.04.904.90
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/cloudworkauth/mfa/proofup.php?StateId=_d366746f

1-0410/1387/1387_
16.8235714236510.05.385.38
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0410/1483/1483_
16.8411903845360.05.515.51
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET / HTTP/1.1

1-0410/1268/1268_
16.8246314913401780.04.424.42
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

1-0410/1291/1291_
16.8332913517220.04.964.96
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0410/1098/1098_
16.8253382543110.04.374.37
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0410/1402/1402_
16.81589422397780.05.255.25
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0410/1138/1138_
16.8327013155760.04.524.52
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0410/967/967_
16.8241043163640.03.773.77
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_459d401e3ae0e

1-0410/1048/1048_
16.832894523131310.04.054.05
127.0.0.1http/1.1ip-10-1-101-123.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0

Found on 2024-11-16 22:35

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd4a38379f

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Thursday, 14-Nov-2024 17:19:52 UTC
Restart Time: Thursday, 14-Nov-2024 03:20:45 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  13 hours 59 minutes 7 seconds
Server load: 2.25 1.96 2.06
Total accesses: 12296 - Total Traffic: 55.9 MB - Total Duration: 7044273
CPU Usage: u6.18 s3.55 cu0 cs0 - .0193% CPU load
.244 requests/sec - 1163 B/second - 4764 B/request - 572.891 ms/request
1 requests currently being processed, 74 idle workers
_______________________W________________________________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0360/214/214_
2.8345541562400.00.920.92
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0360/141/141_
2.82120511031020.00.630.63
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET / HTTP/1.1

0-0360/194/194_
2.841463724520.01.061.06
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0360/180/180_
2.829433881600.00.940.94
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0360/157/157_
2.8212717352880.00.630.63
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/119/119_
2.82881351060990.00.580.58
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/130/130_
2.826231892280.00.590.59
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0360/160/160_
2.8429721580630.00.830.83
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_01b9ffe49ea66

0-0360/106/106_
2.8425298341166720.00.520.52
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BW70m

0-0360/263/263_
2.8258522299430.01.111.11
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0360/171/171_
2.8213326361180.00.730.73
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/122/122_
2.842073746960.00.580.58
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_3f684d67cca8b

0-0360/281/281_
2.8248761484420.01.301.30
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/133/133_
2.8275711901018380.00.690.69
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0360/124/124_
2.8211256727930.00.520.52
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/187/187_
2.8210252897840.00.730.73
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_9a3c260a82b15

0-0360/132/132_
2.825404864050.00.730.73
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0360/136/136_
2.84248654830.00.540.54
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/132/132_
2.828018301158180.00.610.61
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j8R8s35M

0-0360/244/244_
2.8339431229960.00.980.98
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_5d9f236b088e6

0-0360/160/160_
2.84854343550.00.830.83
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_29b74bf9629c4

0-0360/276/276_
2.8433361475580.01.191.19
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/142/142_
2.826973767870.00.700.70
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_609c3a53ec282

0-0362/120/120W
2.8400573012.00.520.52
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /server-status HTTP/1.1

0-0360/130/130_
2.8113936353470.00.520.52
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0370/112/112_
2.763141584230.00.450.45
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0370/175/175_
2.731185221522790.00.670.67
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/loginuserpass.php?AuthState=_21ea726c08ef6

1-0370/286/286_
2.765167818190.01.131.13
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/187/187_
2.73124571130900.01.001.00
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/140/140_
2.77651598300.00.570.57
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET / HTTP/1.1

1-0370/158/158_
2.762904394980.00.690.69
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BW70m

1-0370/142/142_
2.77142545560.00.720.72
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0370/139/139_
2.73132591465630.00.580.58
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0370/247/247_
2.764807539840.00.960.96
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/234/234_
2.763652819410.00.900.90
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET / HTTP/1.1

1-0370/190/190_
2.764259293890.00.760.76
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0370/141/141_
2.7313859701290.00.830.83
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0370/153/153_
2.73100481168230.00.770.77
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/129/129_
2.7712591245420.00.660.66
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0370/130/130_
2.749140954560.00.670.67
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

1-0370/195/195_
2.7657312244940.00.940.94
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0370/135/135_
2.7624510493960.00.570.57
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0370/153/153_
2.73142724994010.00.680.68
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0370/220/220_
2.7461411258420.00.850.85
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0370/126/126_
2.748434549490.00.530.53
127.0.0.1http/1.1ip-10-1-94-76.ap-southeast-2.coGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0370/215/215_
2.73108501297150.01.071.07
127.0.0.1http/1.1

Found on 2024-11-14 17:19

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd6dcb44e2

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Tuesday, 12-Nov-2024 19:55:20 UTC
Restart Time: Thursday, 07-Nov-2024 02:53:22 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  5 days 17 hours 1 minute 57 seconds
Server load: 1.05 1.27 1.42
Total accesses: 132481 - Total Traffic: 605.7 MB - Total Duration: 71882204
CPU Usage: u18.85 s14.64 cu45.11 cs20.02 - .02% CPU load
.269 requests/sec - 1287 B/second - 4794 B/request - 542.585 ms/request
1 requests currently being processed, 74 idle workers
..................................................______________
___________________________________W_________________________...
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0-0/0/2345.
0.00698749579894100.00.0010.16
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0-0/0/2029.
0.0069874584010733230.00.009.08
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0-0/0/2290.
0.0069874636813301880.00.0010.20
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0-0/0/2201.
0.0069874479113268560.00.009.75
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0-0/0/2116.
0.00698745289689300.00.009.41
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0-0/0/1916.
0.006987490839042600.00.009.39
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0-0/0/2092.
0.006987476688991950.00.009.04
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0-0/0/2059.
0.006987475378967190.00.009.34
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0-0/0/2077.
0.006987452648180770.00.009.30
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0-0/0/2051.
0.006987477689279150.00.009.43
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0-0/0/2059.
0.006987449499297440.00.009.14
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0-0/0/2088.
0.0069874796511172420.00.009.30
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0-0/0/1975.
0.0069874244667817920.00.008.20
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNdb9owFH3vr4jyTpwPi

0-0-0/0/1843.
0.00698742634911507250.00.008.84
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNdb5swFH3vr0C8BwNJm

0-0-0/0/1986.
0.0069874137111072240.00.008.98
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0-0/0/1988.
0.00698742285313914040.00.009.55
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNdb9owFH3vr4jyTpykI

0-0-0/0/1984.
0.0069874893111269410.00.009.65
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0-0/0/1948.
0.0069874185688410350.00.008.70
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNdb9owFH3vr4jyTkxSp

0-0-0/0/1937.
0.0069874818511861320.00.008.87
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0-0/0/2322.
0.0069874345511160890.00.0010.27
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0-0/0/1994.
0.006987489219349580.00.008.87
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_35445f9b1ea94

0-0-0/0/2060.
0.0069874304310208110.00.009.76
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_e5e6a051274c6

0-0-0/0/1980.
0.0069874439710980730.00.009.22
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0-0/0/2126.
0.006987452369036100.00.009.36
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0-0/0/1825.
0.00698741940210593980.00.008.85
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNdb9owFH3vr4jyTpyPd

1-0-0/0/2046.
0.0078863308010513120.00.009.20
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0-0/0/1944.
0.0078863158219496040.00.008.51
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNdb5swFH3vr0C8B%2FP

1-0-0/0/1880.
0.0078863180389939310.00.008.51
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVNdb5swFH3vr0C8BxPKa

1-0-0/0/1703.
0.007886342258191330.00.007.95
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0-0/0/2396.
0.0078863567711108730.00.0010.69
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0-0/0/2265.
0.007886338349253320.00.0010.15
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0-0/0/2196.
0.0078863476913097310.00.0010.25
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0-0/0/1899.
0.00788639288328430.00.008.42
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0-0/0/2385.
0.007886345928406560.00.0010.35
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0-0/0/2188.
0.0078863224728904320.00.009.71
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=jZJNT8MwDIb%2FSpR7v9I

1-0-0/0/1929.
0.0078863624212221380.00.008.54
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0-0/0/1908.
0.0078863576411723880.00.008.93
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0-0/0/2135.
0.0078863113143140.00.009.27
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0-0/0/1974.
0.00788631549610594120.00.009.01
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPbjtowFHzfr4jyTpwLd

1-0-0/0/1987.
0.0078863643312185960.00.009.18
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0-0/0/1946.
0.0078863360511743020.00.009.34
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

1-0-0/0/1798.
0.0078863395810708360.00.008.65
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0-0/0/1962.
0.0078863293312239640.00.009.37
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0-0/0/2411.
0.007886359099673650.00.0011.06
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0-0/0/1940.
0.00788631516911209500.00.008.50
127.0.0.1http/1.1ip-10-1-104-84.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVPRbtowFH3vV0R5J07SA</

Found on 2024-11-12 19:55

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd040ef215

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Sunday, 10-Nov-2024 17:34:12 UTC
Restart Time: Wednesday, 06-Nov-2024 21:39:20 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 19 hours 54 minutes 51 seconds
Server load: 0.78 1.80 1.57
Total accesses: 94058 - Total Traffic: 427.2 MB - Total Duration: 45747196
CPU Usage: u42.68 s23.65 cu0 cs0 - .02% CPU load
.284 requests/sec - 1353 B/second - 4762 B/request - 486.372 ms/request
1 requests currently being processed, 74 idle workers
________________________W_______________________________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/1190/1190_
20.60144865457270.05.315.31
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/1367/1367_
20.60129936802860.06.266.26
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_cd01b32741120

0-0350/1314/1314_
20.60116744667950.06.166.16
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-0350/1397/1397_
20.60104586809330.06.226.22
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/1370/1370_
20.6083467491790.06.246.24
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/1512/1512_
20.6246867246410.06.936.93
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/1426/1426_
20.60111667029650.06.476.47
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/1373/1373_
20.6238437322880.06.666.66
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/1005/1005_
20.6074505131280.04.874.87
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET / HTTP/1.1

0-0350/1379/1379_
20.6159137852610.06.256.25
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0350/1473/1473_
20.6087408170960.06.386.38
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0350/1385/1385_
20.639365837780.06.296.29
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/1491/1491_
20.6220026494100.06.916.91
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/1302/1302_
20.60136047284770.06.086.08
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/1281/1281_
20.6230217397310.05.845.84
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0350/1211/1211_
20.6095565557320.05.315.31
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/1547/1547_
20.6164511935512970.06.756.75
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0350/1402/1402_
20.5914932805042110.06.716.71
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLbtswELwXyD8QvOtlB

0-0350/1333/1333_
20.60123868305080.05.835.83
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/1341/1341_
20.591542238643080.06.406.40
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/1081/1081_
20.6226364740960.04.994.99
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/1369/1369_
20.615577075127150.06.136.13
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTuswEN0j8Q%2BW90m

0-0350/1318/1318_
20.6169815615340.05.825.82
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0350/1433/1433_
20.633367187360.06.176.17
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0352/1411/1411W
20.63008627992.06.716.71
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /server-status HTTP/1.1

1-0360/1386/1386_
20.0934638124610.06.306.30
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_180becf5fd126

1-0360/1430/1430_
20.08128516092640.05.975.97
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET / HTTP/1.1

1-0360/1303/1303_
20.0811533977956240.05.985.98
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BR70m

1-0360/1233/1233_
20.0928665952320.05.395.39
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/1110/1110_
20.0814811254796940.05.095.09
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0360/1389/1389_
20.08120665415510.06.386.38
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/1198/1198_
20.0952934570580.05.155.15
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_43fa0acd4ad8c

1-0360/1362/1362_
20.091665525170.06.186.18
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/1441/1441_
20.098731036034610.06.466.46
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cPOST /module.php/wstrust/active.php HTTP/1.1

1-0360/1600/1600_
20.0957416967540.06.906.90
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0360/1052/1052_
20.08134585744920.04.864.86
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/1646/1646_
20.08101735698200.07.697.69
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0360/1353/1353_
20.098547873470.06.336.33
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BW70m

1-0360/1255/1255_
20.09734326584510.05.615.61
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_5b6232ca9c6da

1-0360/1421/1421_
20.0992586124930.06.346.34
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/1154/1154_
20.0915766083560.05.275.27
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/1228/1228_
20.0963312188159350.05.465.46
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0360/1244/1244_
20.0968587042720.05.595.59
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/1393/1393_
20.08107777512920.06.096.09
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/1340/1340_
20.0944466029900.05.885.88
127.0.0.1http/1.1ip-10-1-102-48.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

Found on 2024-11-10 17:34

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fde08999b6

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Friday, 08-Nov-2024 17:54:20 UTC
Restart Time: Thursday, 07-Nov-2024 22:11:20 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  19 hours 42 minutes 59 seconds
Server load: 1.19 0.84 0.89
Total accesses: 21476 - Total Traffic: 101.1 MB - Total Duration: 12545043
CPU Usage: u10.27 s4.95 cu0 cs0 - .0214% CPU load
.303 requests/sec - 1494 B/second - 4938 B/request - 584.142 ms/request
1 requests currently being processed, 49 idle workers
______________________________________________W___..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0340/507/507_
6.7132323066650.02.352.35
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0340/398/398_
6.7128112118280.01.921.92
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0340/416/416_
6.7144992666350.01.841.84
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0340/490/490_
6.71247102248570.02.022.02
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0340/533/533_
6.689605882945240.02.412.41
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJdT8IwFH038T8sfd%2F

0-0340/266/266_
6.7062821969140.01.341.34
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0340/409/409_
6.69813131335920.01.731.73
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0340/342/342_
6.7067651579130.01.531.53
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0340/404/404_
6.7149441758160.01.851.85
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_cf472a86df8ee

0-0340/439/439_
6.7065813136000.02.192.19
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0340/363/363_
6.6988112714400.01.681.68
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0340/591/591_
6.7114652664190.02.702.70
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_26ea482077880

0-0340/343/343_
6.7158141936210.01.651.65
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0340/497/497_
6.7073663066980.02.572.57
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_285eeb8b66fc8

0-0340/404/404_
6.7165273073270.01.981.98
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0340/371/371_
6.7076631339390.01.631.63
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c1c1cf2d0b7b8

0-0340/342/342_
6.712542295440.01.591.59
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_6a81adf619f5a

0-0340/434/434_
6.7155441835690.02.052.05
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0340/368/368_
6.71389344634190.01.741.74
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0340/455/455_
6.7193112957360.02.192.19
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0340/370/370_
6.7118742091230.01.741.74
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_f2f777e747e0f

0-0340/645/645_
6.6893222800520.03.183.18
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0340/433/433_
6.6985792081920.02.282.28
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0340/589/589_
6.7136011686307990.02.442.44
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BR70m

0-0340/379/379_
6.699114422593050.01.881.88
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJbtswEL0X6D8QvGtzC

1-0350/338/338_
6.7375311683260.01.781.78
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET / HTTP/1.1

1-0350/425/425_
6.7420732279190.01.991.99
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0350/314/314_
6.738758751824240.01.591.59
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BW70m

1-0350/393/393_
6.7430942571330.01.991.99
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_d20f7f7d012dc

1-0350/391/391_
6.74573132002830.01.991.99
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0350/338/338_
6.7433112856580.01.531.53
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0350/447/447_
6.7415311939010.01.991.99
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET / HTTP/1.1

1-0350/631/631_
6.7382754203700.02.752.75
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0350/527/527_
6.7426793560510.02.612.61
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0350/360/360_
6.7370593770500.02.032.03
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0350/563/563_
6.73887244543870.02.672.67
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0350/350/350_
6.7466523162850.01.531.53
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

1-0350/379/379_
6.74511511804770.01.891.89
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0350/487/487_
6.7446143002071550.02.092.09
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLbtswELwX6D8QvEuyj

1-0350/350/350_
6.7391842097790.01.561.56
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_05805add51ce6

1-0350/479/479_
6.748691958430.02.202.20
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0350/393/393_
6.7294832101390.01.981.98
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_0c12a25d2d547

1-0350/511/511_
6.74126102261190.02.212.21
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0350/382/382_
6.74644332001450.01.831.83
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0350/433/433_
6.7443142143730.01.901.90
127.0.0.1http/1.1ip-10-1-90-165.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0350/525/525_
6.7432841740930.02.642.64
</

Found on 2024-11-08 17:54

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd39c4bbf5

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Wednesday, 06-Nov-2024 20:49:17 UTC
Restart Time: Friday, 01-Nov-2024 02:56:04 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  5 days 17 hours 53 minutes 12 seconds
Server load: 1.58 1.61 1.54
Total accesses: 180536 - Total Traffic: 745.8 MB - Total Duration: 80376562
CPU Usage: u24.86 s19.15 cu50.13 cs22.63 - .0235% CPU load
.364 requests/sec - 1575 B/second - 4331 B/request - 445.211 ms/request
1 requests currently being processed, 74 idle workers
_______________________________________________________W________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0149500/948/3084_
11.0322853811571930.03.8211.95
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_e55a873d40358

0-0149500/854/2731_
11.141328511069450.03.2510.96
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0149500/481/2407_
11.032065113002180.02.0210.33
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0149500/657/2489_
11.34197313493630.02.5710.42
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_83c0b473bd74c

0-0149500/588/2485_
11.04201549594490.02.4010.11
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0149500/845/2988_
11.332942814216680.03.3512.67
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/cloudworkauth/mfa/proofup.php?StateId=_756a5875

0-0149500/871/2559_
11.151106415607020.03.3010.34
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0149500/828/2599_
11.159921012166750.03.3510.90
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0149500/912/2715_
11.3330373810346420.03.4811.48
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/cloudworkauth/mfa/cid.php?StateId=_756a5875b0e6

0-0149500/631/2313_
11.131458012236430.02.699.82
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0149500/941/2975_
11.225483012970040.03.9512.55
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0149500/913/3069_
11.131656511606920.03.5412.08
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0149500/653/2357_
11.141160411212270.02.8010.12
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0149500/666/2108_
11.141429313660250.02.729.42
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0149500/907/2596_
11.081761411053750.03.8111.31
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0149500/1421/3260_
11.274326211476500.05.6412.89
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0149500/858/2865_
11.34178012648220.03.3712.32
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0149500/840/2951_
11.35123513364400.03.0911.69
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0149500/1065/3005_
11.3594412035430.04.0811.76
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2FPolicies

0-0149500/878/2755_
11.131569510414380.03.5311.07
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0149500/856/2851_
11.141247312247940.03.4411.90
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0149500/629/2255_
11.15885310184390.02.539.28
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2FPolicies

0-0149500/989/2549_
11.20695410685550.04.2610.93
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0149500/827/2767_
11.19710311888510.03.2310.93
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0149500/939/2626_
11.151039312087810.03.6311.00
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_089e153b1c121

1-0135020/1164/2841_
12.956273110256100.04.7812.01
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0135020/990/2763_
12.83177239098190.04.0311.60
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_7dfd9c30003d6

1-0135020/764/2686_
12.8413901011421870.03.3411.16
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0135020/994/3072_
12.831587313778140.04.2212.96
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2FPolicies

1-0135020/892/2583_
12.96253311249850.03.9811.17
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_3ed8dc6291902

1-0135020/742/2771_
12.929031014127390.03.2411.27
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0135020/1018/3090_
12.96321413340400.03.9112.74
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0135020/1239/3210_
12.841448912539260.04.7713.15
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0135020/918/2554_
12.93902310927560.03.8511.15
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_ea29bc772f3df

1-0135020/1033/3110_
12.831983312244690.04.4513.39
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_c2c362482aeaf

1-0135020/959/2886_
12.93741911124510.03.6911.89
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0135020/726/2425_
12.84155419809090.03.0410.32
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0135020/801/2621_
12.832047392810334510.03.2510.75
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

1-0135020/1190/2730_
12.9710959885350.04.7911.28
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

1-0135020/995/2867_
12.871216411736560.03.8311.75
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVNNj5swFLzvr0DcwZiif

1-0135020/816/2517_
12.832029511350080.03.3510.33
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0135020/913/2859_
12.96532114137450.03.7211.74
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0135020/1231/2888_
12.93836311703280.04.7612.78
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_ac9aa73b6e429

1-0135020/653/2683_
12.881107912717520.02.9111.41
127.0.0.1http/1.1ip-10-1-105-145.ap-southeast-2.GET /modul

Found on 2024-11-06 20:49

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdc65bf426

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Saturday, 02-Nov-2024 21:02:59 UTC
Restart Time: Friday, 01-Nov-2024 00:16:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 20 hours 46 minutes 52 seconds
Server load: 3.09 2.47 1.77
Total accesses: 34998 - Total Traffic: 169.7 MB - Total Duration: 16496240
CPU Usage: u17.02 s9.96 cu0 cs0 - .0167% CPU load
.217 requests/sec - 1103 B/second - 5084 B/request - 471.348 ms/request
1 requests currently being processed, 74 idle workers
_________________________________________W______________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0360/419/419_
7.98118613937270.01.941.94
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0360/570/570_
8.0273142028810.02.762.76
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0360/575/575_
8.0212342886120.02.842.84
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_7538ada0144d7

0-0360/518/518_
8.02166142706720.02.362.36
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW71n

0-0360/537/537_
7.99100303050420.02.612.61
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /resources/script.js HTTP/1.1

0-0360/457/457_
7.981066982712160.02.232.23
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j8R8s3%2

0-0360/528/528_
8.0143293196020.02.512.51
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/415/415_
8.0057312178000.02.032.03
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0360/463/463_
8.0129431749610.02.022.02
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0360/569/569_
7.9990242504350.02.902.90
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_7a4a7450586de

0-0360/527/527_
8.01345542952560.02.662.66
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/506/506_
7.98102332028930.02.492.49
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_5ec6db8a032e2

0-0360/385/385_
7.9811013272243670.01.801.80
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BU5

0-0360/394/394_
7.9996231466920.02.072.07
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0360/494/494_
8.0138342317650.02.282.28
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0360/615/615_
8.00613131965310.03.343.34
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0360/422/422_
8.032103185510.02.122.12
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/503/503_
8.00667381837730.02.512.51
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_3706fc2bcc97c

0-0360/485/485_
7.99766333074400.02.112.11
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_efe5f427faf4e

0-0360/509/509_
7.99841102402780.02.522.52
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/507/507_
8.00702202757880.02.552.55
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fZJLT%2BswEIX3V%2BI%2

0-0360/508/508_
8.0150103579530.02.592.59
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0360/463/463_
8.0242601643300.02.182.18
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_dde6b56a51e73

0-0360/517/517_
8.0224452771690.02.362.36
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVJNTxsxEL1X4j9Yvu%2B

0-0360/450/450_
8.0220111852510.02.382.38
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0370/510/510_
8.0427313456960.02.292.29
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0370/438/438_
8.0360402102010.02.082.08
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /favicon.ico HTTP/1.1

1-0370/638/638_
8.0268061672720.03.123.12
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW71k

1-0370/521/521_
8.0419092824380.02.542.54
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/506/506_
8.0337231970900.02.572.57
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0370/387/387_
8.01110111783980.01.861.86
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0370/581/581_
8.02978103101770.02.882.88
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/529/529_
8.04105102660630.02.412.41
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/562/562_
8.0432912988060.02.982.98
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0370/401/401_
8.0355391823720.02.032.03
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/477/477_
8.0415812039800.02.472.47
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0370/428/428_
8.0423432340900.02.142.14
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_3376a77750cc8

1-0370/523/523_
8.01116262815030.02.512.51
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0370/494/494_
8.0341632629520.02.332.33
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_a0c5daffa14a5

1-0370/521/521_
8.054312450650.02.282.28
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0370/552/552_
8.0365852006460.03.013.01
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0372/536/536W
8.05002933312.02.692.69
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /server-status HTTP/1.1

1-0370/466/466_
8.03493132820690.02.462.46
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0370/559/559_
8.046341581000.02.542.54
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0370/468/468_
8.029369752450670.02.262.26
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW71m

1-0370/386/386_

Found on 2024-11-02 21:02

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd13d7dd8a

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Friday, 01-Nov-2024 16:14:16 UTC
Restart Time: Friday, 01-Nov-2024 00:16:07 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  15 hours 58 minutes 8 seconds
Server load: 0.95 0.85 0.82
Total accesses: 15061 - Total Traffic: 74.4 MB - Total Duration: 8987914
CPU Usage: u7.65 s4.02 cu0 cs0 - .0203% CPU load
.262 requests/sec - 1357 B/second - 5.1 kB/request - 596.767 ms/request
1 requests currently being processed, 74 idle workers
_____________________________________________________________W__
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0360/182/182_
3.7349552506920.00.820.82
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0360/299/299_
3.7266251534880.01.561.56
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_2c0d51bd138ce

0-0360/306/306_
3.72722282090050.01.481.48
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0360/312/312_
3.72783242290110.01.461.46
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0360/274/274_
3.7332951849640.01.371.37
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0360/196/196_
3.7337141794770.00.890.89
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_bbeae06ac357b

0-0360/247/247_
3.71128901638440.01.301.30
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET / HTTP/1.1

0-0360/168/168_
3.72121841623920.00.840.84
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

0-0360/186/186_
3.721031121003090.00.850.85
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/202/202_
3.732235602260.01.001.00
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fconnect.

0-0360/264/264_
3.721108122093270.01.211.21
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/232/232_
3.7328541351190.01.071.07
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_e912c309f470c

0-0360/178/178_
3.73434121321270.00.800.80
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/163/163_
3.7325034809610.00.860.86
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0360/236/236_
3.721169121315570.01.251.25
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/204/204_
3.7114090568240.01.131.13
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET / HTTP/1.1

0-0360/187/187_
3.7355541563100.00.990.99
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_0adae24ac0d01

0-0360/243/243_
3.7115156766110.01.311.31
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0360/197/197_
3.7311451561350.00.850.85
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_1d97f82cec492

0-0360/162/162_
3.731755828160.00.810.81
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_2526cdafd0c0b

0-0360/219/219_
3.7354121351230.01.071.07
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/179/179_
3.711349152160810.00.920.92
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0360/184/184_
3.736011973810.00.920.92
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0360/253/253_
3.7292741472190.01.191.19
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_0532388d47888

0-0360/192/192_
3.72865191057070.01.131.13
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0370/244/244_
3.92908122626100.01.091.09
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/191/191_
3.92139461376340.00.860.86
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_ea2817c4edeaf

1-0370/298/298_
3.92147312892400.01.371.37
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/285/285_
3.92846202102600.01.291.29
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_bd3952734d661

1-0370/263/263_
3.92115261397600.01.411.41
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0370/168/168_
3.9341861004900.00.900.90
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0370/291/291_
3.9327802234440.01.431.43
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

1-0370/302/302_
3.92689151729390.01.311.31
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0370/266/266_
3.92109162274350.01.601.60
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0370/197/197_
3.9213346942470.01.081.08
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0370/235/235_
3.927490851430.01.371.37
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET / HTTP/1.1

1-0370/171/171_
3.9298712957330.00.900.90
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/177/177_
3.9347961432560.00.900.90
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_2f656fd7a2473

1-0370/204/204_
3.921213121182640.00.930.93
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/295/295_
3.9257801572900.01.451.45
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

1-0370/242/242_
3.94812952920.01.421.42
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/264/264_
3.93540131431030.01.521.52
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/213/213_
3.92127351111760.01.091.09
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_6b861a9f7f190

1-0370/295/295_
3.926290997630.01.291.29
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET / HTTP/1.1

1-0370/226/226_
3.9324311828710.01.031.03
127.0.0.1http/1.1ip-10-1-101-134.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0370/157/157_
3.933115527360.0

Found on 2024-11-01 16:14

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fddefc303b

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Wednesday, 30-Oct-2024 18:28:36 UTC
Restart Time: Wednesday, 30-Oct-2024 02:55:03 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  15 hours 33 minutes 33 seconds
Server load: 0.73 1.03 1.42
Total accesses: 12227 - Total Traffic: 56.0 MB - Total Duration: 6704401
CPU Usage: u5.96 s3.72 cu0 cs0 - .0173% CPU load
.218 requests/sec - 1047 B/second - 4799 B/request - 548.328 ms/request
1 requests currently being processed, 49 idle workers
________________________W_________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0350/300/300_
4.2766031773040.01.431.43
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0350/247/247_
4.26103061095380.01.141.14
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/252/252_
4.269844858350.01.151.15
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_27c21d4072a95

0-0350/317/317_
4.2686243733230.01.241.24
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/310/310_
4.2772461442610.01.521.52
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/275/275_
4.2683811694410.01.141.14
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0350/322/322_
4.2752902897410.01.501.50
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET / HTTP/1.1

0-0350/197/197_
4.2776911177710.00.770.77
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET / HTTP/1.1

0-0350/205/205_
4.2758911863980.01.021.02
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET / HTTP/1.1

0-0350/216/216_
4.276133586230.01.041.04
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0350/274/274_
4.273652849380.01.301.30
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/wstrust/mex.php HTTP/1.1

0-0350/259/259_
4.2512127911350.01.271.27
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/327/327_
4.2694981928930.01.431.43
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0350/205/205_
4.26110542221740.00.990.99
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_bf1587212ddba

0-0350/155/155_
4.2611665651410.00.650.65
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0350/356/356_
4.2610691946140.01.701.70
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET / HTTP/1.1

0-0350/289/289_
4.272966760760.01.341.34
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0350/291/291_
4.2746911136910.01.581.58
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET / HTTP/1.1

0-0350/252/252_
4.2723531487230.01.301.30
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_9b672c0b619b6

0-0350/240/240_
4.26909302987950.01.201.20
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0350/255/255_
4.27213361950920.01.111.11
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_97f826154dcc4

0-0350/180/180_
4.2712921391530.00.810.81
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_7ec8867eb818b

0-0350/177/177_
4.28702542020.00.840.84
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_0411d4d2f0347

0-0350/260/260_
4.26113801931860.01.031.03
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0354/227/227W
4.2800863359.51.021.02
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /server-status HTTP/1.1

1-0360/216/216_
3.8596928599390.00.870.87
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0360/202/202_
3.8592372193980.00.940.94
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/260/260_
3.8584822150410.01.131.13
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_925e76002206b

1-0360/227/227_
3.8510090888880.01.141.14
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET / HTTP/1.1

1-0360/247/247_
3.8410444673170.01.031.03
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_868c6940d4191

1-0360/235/235_
3.8735761066090.01.071.07
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/241/241_
3.8728511399460.01.201.20
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0360/193/193_
3.864796562110.00.810.81
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/321/321_
3.8710921373700.01.531.53
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET / HTTP/1.1

1-0360/249/249_
3.8722911506430.01.161.16
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET / HTTP/1.1

1-0360/259/259_
3.8741621650860.01.141.14
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_23de0b3bb7f6f

1-0360/312/312_
3.84118981426280.01.401.40
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/171/171_
3.87491940420.00.640.64
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET / HTTP/1.1

1-0360/222/222_
3.8653801034940.01.001.00
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

1-0360/216/216_
3.8716912135630.01.031.03
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET / HTTP/1.1

1-0360/296/296_
3.8588991392660.01.251.25
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/224/224_
3.866990660180.01.111.11
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /robots.txt HTTP/1.1

1-0360/216/216_
3.8412284655720.01.041.04
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_eae6ebc980302

1-0360/249/249_
3.8664901472590.01.031.03
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET / HTTP/1.1

1-0360/231/231_
3.84112991320700.01.161.16
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0360/231/231_
3.8410916967380.01.031.03
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0360/195/195_
3.867872976620.00.790.79
127.0.0.1http/1.1ip-10-1-105-20.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_ef0624d93fa79

Found on 2024-10-30 18:28

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd22e0e5ae

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Sunday, 27-Oct-2024 00:04:52 UTC
Restart Time: Wednesday, 23-Oct-2024 03:49:35 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  3 days 20 hours 15 minutes 16 seconds
Server load: 0.54 0.87 0.86
Total accesses: 79828 - Total Traffic: 388.9 MB - Total Duration: 40793859
CPU Usage: u41.48 s22.2 cu0 cs.01 - .0192% CPU load
.24 requests/sec - 1227 B/second - 5108 B/request - 511.022 ms/request
1 requests currently being processed, 74 idle workers
___________W____________________________________________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0380/1013/1013_
18.43454015251470.04.674.67
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVLJbtswEL0X6D8QvGszA

0-0380/1040/1040_
18.4122827335083550.05.285.28
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PG8pY

0-0380/1347/1347_
18.4315216732180.06.626.62
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0380/1136/1136_
18.3884504998440.05.375.37
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET / HTTP/1.1

0-0380/1007/1007_
18.41365163384390.04.864.86
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0380/1075/1075_
18.4132005489650.04.874.87
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /favicon.ico HTTP/1.1

0-0380/1009/1009_
18.4061314409260.04.884.88
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0380/991/991_
18.4055112126523380.04.524.52
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

0-0380/973/973_
18.41422485197790.04.684.68
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0380/1084/1084_
18.37980136465160.05.405.40
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/1257/1257_
18.406943535484990.06.136.13
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BW70m

0-03812/1261/1261W
18.430045311236.86.436.43
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /server-status HTTP/1.1

0-0380/1125/1125_
18.43123517344540.05.685.68
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0380/1227/1227_
18.40643625046210.05.595.59
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0380/1242/1242_
18.4127131916947870.06.366.36
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjpswEH3PV0S8cw2b7

0-0380/1051/1051_
18.405168615427310.04.914.91
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVLJTsMwEL0j8Q%2BW71k

0-0380/991/991_
18.3880914996440.04.964.96
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0380/950/950_
18.38779415175400.04.574.57
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.POST /module.php/core/loginuserpass.php HTTP/1.1

0-0380/1176/1176_
18.3888746316540.05.765.76
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0380/1056/1056_
18.371025155280920.05.365.36
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

0-0380/940/940_
18.43893504958190.04.224.22
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec93dA

0-0380/1136/1136_
18.414785653606060.05.365.36
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0380/914/914_
18.38738134266090.04.304.30
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/981/981_
18.389404365213010.05.135.13
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVLLTuMwFN0jzT9Y3ufRD

0-0380/1127/1127_
18.37108505649620.05.365.36
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /favicon.ico HTTP/1.1

1-0390/912/912_
17.90827123861210.04.334.33
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0390/1148/1148_
17.899971216926830.05.585.58
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0390/941/941_
17.9161314971610.04.444.44
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

1-0390/873/873_
17.91583133683730.04.264.26
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0390/1047/1047_
17.9166513682310.05.655.65
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET / HTTP/1.1

1-0390/903/903_
17.9213418575880.04.464.46
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0390/1090/1090_
17.9243644732660.04.774.77
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_9b8c2c1c241c3

1-0390/1037/1037_
17.929566736820.05.165.16
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_f9e4694319741

1-0390/1089/1089_
17.88110067478470.05.275.27
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0390/1058/1058_
17.89962514876310.05.305.30
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0390/1040/1040_
17.9239704496230.04.964.96
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /favicon.ico HTTP/1.1

1-0390/1034/1034_
17.92185165534130.05.155.15
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0390/1196/1196_
17.925515145840.05.785.78
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0390/942/942_
17.915292587319550.04.674.67
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BWQ

1-0390/903/903_
17.9090314871540.04.114.11
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0390/1197/1197_
17.92340137096410.05.755.75
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0390/905/905_
17.9172114328680.04.474.47
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0390/1273/1273_
17.92305166611960.06.276.27
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0390/1001/1001_
17.921315024120.04.994.99
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0390/1213/1213_
17.9224505358110.05.975.97
127.0.0.1http/1.1ip-10-1-100-179.ap-southeast-2.GET / HTTP/1.1

1-0390/1023/1023_
17.89103817464576470.04.914

Found on 2024-10-27 00:04

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdbb17dc39

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Thursday, 24-Oct-2024 23:03:01 UTC
Restart Time: Thursday, 24-Oct-2024 22:12:32 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  50 minutes 28 seconds
Server load: 2.28 2.68 2.51
Total accesses: 1401 - Total Traffic: 6.3 MB - Total Duration: 1979150
CPU Usage: u.64 s.32 cu0 cs0 - .0317% CPU load
.463 requests/sec - 2194 B/second - 4742 B/request - 1412.67 ms/request
4 requests currently being processed, 46 idle workers
_________W_________W__________________W___W_______..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0360/22/22_
0.401171883370.00.080.08
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0360/10/10_
0.3620112720.00.020.02
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0360/35/35_
0.4012325552701690.00.150.15
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVNNj5swFLzvr0DcwUAXJ

0-0360/10/10_
0.39146152748000.00.090.09
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_f964aea19603d

0-0360/12/12_
0.3914780586270.00.070.07
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0360/16/16_
0.4013660181070.00.110.11
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/51/51_
0.411131783900.00.240.24
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0360/16/16_
0.3914779987950.00.090.09
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0360/27/27_
0.344542650450.00.130.13
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0360/108/108W
0.32170603110.00.500.50
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DeczNhu

0-0360/15/15_
0.41474249397430.00.050.05
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0Tc%2BUa

0-0360/27/27_
0.391471085125240.00.100.10
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0360/38/38_
0.391461141128760.00.170.17
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

0-0360/8/8_
0.3444251615220.00.020.02
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/6/6_
0.39147103390190.00.050.05
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0360/20/20_
0.419369301068990.00.110.11
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSXBg2

0-0360/5/5_
0.3914787588340.00.050.05
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0360/14/14_
0.419620485780.00.070.07
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_3155dc2701bc2

0-0360/8/8_
0.41683112310.00.030.03
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_c3fc97a67e9dd

0-0360/34/34W
0.328075270.00.120.12
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vEygX

0-0360/16/16_
0.3433832437130.00.070.07
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_0dc719184745a

0-0360/5/5_
0.343710113150.00.020.02
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /resources/script.js HTTP/1.1

0-0360/52/52_
0.362492106850.00.220.22
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_57ce0b7c02407

0-0360/44/44_
0.362211245970.00.150.15
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0360/48/48_
0.361582495334480.00.230.23
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.POST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0370/22/22_
0.42188129820.00.110.11
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0370/13/13_
0.42174128570.00.040.04
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0370/22/22_
0.451101893470.00.120.12
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0370/27/27_
0.4511434399814670.00.100.10
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=hVNdb5swFH3vr0C8g8HJW

1-0370/23/23_
0.451161992670.00.170.17
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0370/116/116_
0.4412021016040.00.440.44
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0370/9/9_
0.4411829769617280.00.040.04
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecyWrR

1-0370/36/36_
0.43146884204170.00.150.15
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0370/13/13_
0.4314686277300.00.080.08
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0370/14/14_
0.374914803540.00.050.05
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_ff643f5b4a7dd

1-0370/21/21_
0.451052632500.00.070.07
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0370/34/34_
0.374481814100.00.140.14
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0370/74/74_
0.46412965200.00.300.30
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/wstrust/mex.php HTTP/1.1

1-0376/22/22W
0.460010508157.10.180.18
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /server-status HTTP/1.1

1-0370/19/19_
0.43147948119910.00.130.13
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/core/loginuserpass.php?AuthState=_3032307250e1e

1-0370/9/9_
0.441221592940.00.030.03
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0370/16/16_
0.4574221650110.00.100.10
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0Tc%2Bdw

1-0370/11/11W
0.37110624450.00.040.04
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BSS

1-0370/7/7_
0.4314786071660.00.050.05
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/chromebook/jquery.js HTTP/1.1

1-0370/111/111_
0.431461159372470.00.470.47
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0370/31/31_
0.43147106097170.00.110.11
127.0.0.1http/1.1ip-10-1-106-185.ap-southeast-2.GET /module.ph

Found on 2024-10-24 23:02

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fdfab74d5a

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Tuesday, 22-Oct-2024 22:01:45 UTC
Restart Time: Tuesday, 22-Oct-2024 21:40:36 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  21 minutes 8 seconds
Server load: 3.53 2.92 2.12
Total accesses: 585 - Total Traffic: 3.1 MB - Total Duration: 213919
CPU Usage: u.32 s.12 cu0 cs0 - .0347% CPU load
.461 requests/sec - 2556 B/second - 5.4 kB/request - 365.673 ms/request
1 requests currently being processed, 49 idle workers
_______________W__________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0330/7/7_
0.0840612050.00.030.03
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0330/18/18_
0.0836727239710.00.100.10
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0TcgUAh3

0-0330/9/9_
0.083454664100.00.030.03
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0330/15/15_
0.1031422731800.00.180.18
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BfI

0-0330/5/5_
0.1029016780.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0330/17/17_
0.112484516840.00.090.09
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0330/11/11_
0.12224142320.00.070.07
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0330/8/8_
0.1221421915520.00.040.04
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0Tc%2BQh

0-0330/4/4_
0.12199124670.00.020.02
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0330/5/5_
0.1219016590.00.020.02
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0330/4/4_
0.12144501950.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0330/25/25_
0.1211515199110.00.130.13
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0330/50/50_
0.18386537110.00.300.30
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0330/25/25_
0.176742971640.00.170.17
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0330/2/2_
0.157218480.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-03313/16/16W
0.19002120040.60.060.06
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /server-status HTTP/1.1

0-0330/7/7_
0.05784113948990.00.030.03
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BYT

0-0330/1/1_
0.05750360.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

0-0330/1/1_
0.06726490.00.030.03
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0330/11/11_
0.0666569820.00.060.06
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0330/1/1_
0.0661476815360.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjpswEH3PV0S8A4GSm

0-0330/5/5_
0.07567027200.00.020.02
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /resources/post.js HTTP/1.1

0-0330/3/3_
0.075050700.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0330/2/2_
0.07484411510.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0330/7/7_
0.07445022260.00.030.03
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0340/2/2_
0.1323111350.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0340/8/8_
0.13198169450.00.040.04
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0340/15/15_
0.141664798880.00.060.06
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0340/8/8_
0.1515303590.00.020.02
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0340/16/16_
0.16980135900.00.090.09
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0340/14/14_
0.15106037970.00.050.05
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /apple-touch-icon-precomposed.png HTTP/1.1

1-0340/47/47_
0.1967036980.00.340.34
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0340/6/6_
0.167212460.00.020.02
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

1-0340/18/18_
0.2147011430.00.080.08
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0340/6/6_
0.215013300.00.020.02
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0340/1/1_
0.037745100.00.000.00
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0340/3/3_
0.037264579590.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTsMwELwj8Q%2BR70m

1-0340/2/2_
0.037145570.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0340/65/65_
0.085931965730.00.320.32
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0340/1/1_
0.085844478950.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLT8MwDL4j8R%2Bq3Nu

1-0340/46/46_
0.10515152670.00.200.20
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0340/4/4_
0.11492491620.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0340/11/11_
0.12466012410.00.040.04
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0340/8/8_
0.1242364524170.00.030.03
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1DuSUgC7

1-0340/14/14_
0.12380274878030.00.090.09
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0340/2/2_
0.123603310100.00.010.01
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0340/5/5_
0.1233301540.00.040.04
127.0.0.1http/1.1ip-10-1-99-150.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-034

Found on 2024-10-22 22:01

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd4c2b121a

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Sunday, 20-Oct-2024 22:42:45 UTC
Restart Time: Wednesday, 16-Oct-2024 21:32:33 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 days 1 hour 10 minutes 11 seconds
Server load: 2.55 2.14 2.21
Total accesses: 95084 - Total Traffic: 430.0 MB - Total Duration: 49534498
CPU Usage: u44.31 s25.39 cu0 cs0 - .0199% CPU load
.272 requests/sec - 1288 B/second - 4741 B/request - 520.955 ms/request
1 requests currently being processed, 74 idle workers
__________________W_____________________________________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0380/1294/1294_
20.2712423947965790.05.765.76
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec10ou

0-0380/1158/1158_
20.41517686944600.04.984.98
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8ad63c6dc267f

0-0380/1529/1529_
20.3865638912640.06.986.98
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_7afb1a6e38ef1

0-0380/1289/1289_
20.16161244063520.05.585.58
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0380/1089/1089_
20.23129644870000.04.784.78
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0380/1357/1357_
20.17147978569930.06.076.07
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/1128/1128_
20.17146510305722630.05.425.42
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=hVJNU8IwEP0rndxJSlqFZ

0-0380/1143/1143_
20.17144275313160.05.575.57
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/1330/1330_
20.4147224453690.05.745.74
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_85ed2fc04b64e

0-0380/1233/1233_
20.4056336273140.05.575.57
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0380/1152/1152_
20.3272758612970.05.385.38
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0380/1125/1125_
20.3471248124980.05.575.57
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLTuMwFN0j8Q%2BW93k

0-0380/1404/1404_
20.28118536483710.06.326.32
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0380/1183/1183_
20.28831375319930.05.505.50
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_886e60a25d228

0-0380/1231/1231_
20.3962526143560.05.705.70
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0380/1123/1123_
20.3956946851460.05.405.40
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0380/1601/1601_
20.16164447281460.06.956.95
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2FPolicies

0-0380/1410/1410_
20.4140616906550.06.326.32
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-038100/1385/1385W
20.4500451744360.06.216.21
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /server-status HTTP/1.1

0-0380/1240/1240_
20.3372747650820.05.745.74
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0380/1298/1298_
20.16151975986910.06.016.01
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/1258/1258_
20.3864177510480.05.475.47
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/1699/1699_
20.4131239331250.07.737.73
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

0-0380/1236/1236_
20.28120038035420.05.875.87
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0380/1267/1267_
20.3959957894300.05.535.53
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0390/1430/1430_
19.93128206790400.06.436.43
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0390/1534/1534_
20.1042036472730.06.506.50
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_0a8ac706ba10f

1-0390/1380/1380_
19.86154047492660.06.046.04
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0390/1166/1166_
20.10433134853640.05.415.41
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0390/1301/1301_
19.92135325506110.06.096.09
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_67f8c750628dc

1-0390/1339/1339_
19.84158574678490.05.735.73
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0390/1321/1321_
19.803423875675190.06.206.20
127.0.0.1http/1.1

1-0390/1092/1092_
19.86146614421720.04.724.72
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0390/1374/1374_
20.0356986695090.06.226.22
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0390/1267/1267_
20.0266148724840.06.016.01
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_209eedf83fa57

1-0390/1262/1262_
20.06495105056620.05.885.88
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=google.com&RelayState=

1-0390/1211/1211_
19.9894646921300.05.395.39
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0390/1193/1193_
20.0269766978200.05.385.38
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0390/1212/1212_
20.0266017264980.05.265.26
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0390/1124/1124_
19.92132918392980.05.355.35
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0390/993/993_
20.0272707906410.04.184.18
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /resources/script.js HTTP/1.1

1-0390/1129/1129_
19.93122716233560.04.924.92
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0390/1166/1166_
20.0272716271780.05.815.81
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0390/1195/1195_
20.0173446280700.05.635.63
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0390/1188/1188_
19.861474328076820.05.115.11
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1De

Found on 2024-10-20 22:42

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd58d0e0b9

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Saturday, 19-Oct-2024 00:38:22 UTC
Restart Time: Thursday, 17-Oct-2024 22:10:32 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 2 hours 27 minutes 50 seconds
Server load: 0.45 0.96 1.13
Total accesses: 21020 - Total Traffic: 103.2 MB - Total Duration: 12611285
CPU Usage: u10.74 s5.76 cu0 cs0 - .0173% CPU load
.221 requests/sec - 1136 B/second - 5.0 kB/request - 599.966 ms/request
1 requests currently being processed, 74 idle workers
__________________W_____________________________________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0360/344/344_
5.7794113608820.01.751.75
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0360/298/298_
5.7610894251979070.01.511.51
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j8R8s3%2

0-0360/294/294_
5.7864511588790.01.351.35
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0360/366/366_
5.7784574275630.01.771.77
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/302/302_
5.7840411711952940.01.321.32
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1DecwXEY

0-0360/353/353_
5.7610013331943920.01.801.80
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj5swEL3nV0TcAUPK7

0-0360/389/389_
5.78796371982850.02.012.01
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_98604761dbbae

0-0360/427/427_
5.78746352851960.02.082.08
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_6c7c4456d6d2f

0-0360/417/417_
5.76103913333840.02.112.11
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0360/406/406_
5.7828321713653470.01.991.99
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJLbxoxEL5X6n%2BwfN8

0-0360/427/427_
5.783141002970410.01.971.97
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/295/295_
5.7789932891300.01.331.33
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0360/297/297_
5.7870311249030.01.341.34
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET / HTTP/1.1

0-0360/311/311_
5.7923311726400.01.501.50
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0360/341/341_
5.7920711529210.01.871.87
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0360/360/360_
5.791724641514800.01.661.66
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BXA

0-0360/347/347_
5.7911361958260.01.721.72
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/373/373_
5.761211242326000.01.891.89
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b59b922f0b166

0-0364/323/323W
5.790021197011.81.571.57
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /server-status HTTP/1.1

0-0360/344/344_
5.79400959640.01.551.55
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0360/387/387_
5.7849821993590.01.801.80
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0360/369/369_
5.7854272690460.02.072.07
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/332/332_
5.76115171618100.01.811.81
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/305/305_
5.7860261674940.01.401.40
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/313/313_
5.7845801610630.01.421.42
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0370/384/384_
6.0172431274920.01.761.76
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_7b5ed6a1e292d

1-0370/391/391_
6.0251304909380.01.841.84
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0370/360/360_
6.0186171705580.01.661.66
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/369/369_
6.0242033306620.01.721.72
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_1d35c9684efec

1-0370/418/418_
6.0177742032450.02.122.12
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PBWax

1-0370/487/487_
6.0255822087100.02.422.42
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0370/503/503_
6.018211902093320.02.462.46
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=nVLLbtswEPwVgXdJ1qOKQ

1-0370/387/387_
6.0190523250390.02.072.07
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_0f8b2a127e9bf

1-0370/444/444_
6.01105211162736890.02.112.11
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLLThsxFN1X4h8s7%2Bc

1-0370/449/449_
6.011015322356880.02.102.10
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0370/328/328_
6.00116421906870.01.661.66
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0370/408/408_
6.0243022691950.01.831.83
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_3b23f6e587397

1-0370/321/321_
6.019635593187040.01.601.60
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLJTiMxEL0jzT9Yvvc6H

1-0370/353/353_
6.0335561107770.01.811.81
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0370/253/253_
6.0324622445100.01.611.61
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_31c1e095a07a8

1-0370/255/255_
6.03294301872020.01.461.46
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0370/312/312_
6.0321831735690.01.581.58
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/metadata.php HTTP/1.1

1-0370/264/264_
6.03123352615870.01.281.28
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_1b1dd45bccb35

1-0370/325/325_
6.0318522242230.01.731.73
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0370/319/319_
6.041011285550.01.671.67
127.0.0.1http/1.1ip-10-1-89-222.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0370/291/291_
6.03

Found on 2024-10-19 00:38

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd97c7861f

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Thursday, 17-Oct-2024 07:29:04 UTC
Restart Time: Wednesday, 16-Oct-2024 22:21:36 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 hours 7 minutes 28 seconds
Server load: 1.33 1.33 1.41
Total accesses: 9260 - Total Traffic: 46.6 MB - Total Duration: 9233271
CPU Usage: u5.23 s2.65 cu0 cs0 - .024% CPU load
.282 requests/sec - 1487 B/second - 5.2 kB/request - 997.114 ms/request
1 requests currently being processed, 74 idle workers
_________________________________________W______________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/159/159_
2.8038932930140.00.700.70
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cHEAD /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j8R8i3%

0-0370/157/157_
2.785106971307350.00.700.70
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec90Ed

0-0370/123/123_
2.818911654930.00.670.67
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/167/167_
2.8120501439110.00.680.68
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0370/131/131_
2.81254387925300.00.670.67
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vLkK1

0-0370/112/112_
2.7791531208880.00.540.54
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_1f308455f225e

0-0370/136/136_
2.76105801336500.00.750.75
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0370/128/128_
2.7610831442570.00.810.81
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/160/160_
2.7844113042430200.00.700.70
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0370/122/122_
2.74135611698980.00.460.46
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0370/156/156_
2.78472301862450.00.850.85
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/103/103_
2.786450758810.00.530.53
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0370/115/115_
2.7856611502720.00.540.54
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0370/179/179_
2.813033902650730.01.021.02
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BYZ

0-0370/179/179_
2.7870512202540.01.111.11
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0370/165/165_
2.751282432966310.00.920.92
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNTyshFN2b%2BB8I%2B

0-0370/163/163_
2.7860111661424400.00.820.82
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0370/161/161_
2.823111828200.00.680.68
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/118/118_
2.751318401859380.00.640.64
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b2ccb83273212

0-0370/171/171_
2.751233161183500.00.940.94
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0370/159/159_
2.78842101744720.00.960.96
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/150/150_
2.761163526772710.00.700.70
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrpswEN3nKyL2PNtLi

0-0370/149/149_
2.7799311400760.00.860.86
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/140/140_
2.7876001519900.00.880.88
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /resources/post.js HTTP/1.1

0-0370/158/158_
2.81160151278880.00.740.74
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0380/238/238_
2.789942394410.01.221.22
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c636f89637f1f

1-0380/133/133_
2.701095411046550.00.550.55
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/120/120_
2.70106551363150.00.580.58
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/126/126_
2.75485411308410.00.720.72
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_82e870502dd64

1-0380/100/100_
2.76452451274590.00.480.48
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/269/269_
2.7557612223930.01.281.28
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/124/124_
2.74653231811020.00.670.67
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0380/133/133_
2.74714111622900.00.720.72
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/94/94_
2.7816831337270.00.450.45
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0380/193/193_
2.76411242159380.01.001.00
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cHEAD /saml2/idp/SSOService.php?SAMLRequest=fVLJTuQwEL0j8Q%2BW71

1-0380/164/164_
2.7553341611590.00.930.93
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0380/111/111_
2.7477315812070.00.490.49
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0380/152/152_
2.75610462653370.00.670.67
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/165/165_
2.795712119140.00.700.70
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/115/115_
2.691299391009360.00.490.49
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/163/163_
2.7826611947420.00.730.73
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

1-03847/143/143W
2.8000186381150.80.720.72
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /server-status HTTP/1.1

1-0380/161/161_
2.6912561774300.00.960.96
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0380/87/87_
2.6911801751960.00.490.49
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0380/196/196_
2.73853161265950.01.021.02
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0380/152/152_
2.782112581649630.00.730.73
127.0.0.1http/1.1</

Found on 2024-10-17 07:28

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd001b6a98

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Thursday, 17-Oct-2024 07:29:04 UTC
Restart Time: Wednesday, 16-Oct-2024 22:21:36 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 hours 7 minutes 27 seconds
Server load: 1.33 1.33 1.41
Total accesses: 9256 - Total Traffic: 46.6 MB - Total Duration: 9233268
CPU Usage: u5.23 s2.65 cu0 cs0 - .024% CPU load
.282 requests/sec - 1487 B/second - 5.2 kB/request - 997.544 ms/request
1 requests currently being processed, 74 idle workers
_________________________________________W______________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0370/159/159_
2.8038932930140.00.700.70
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cHEAD /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j8R8i3%

0-0370/157/157_
2.785106971307350.00.700.70
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec90Ed

0-0370/123/123_
2.818811654930.00.670.67
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/167/167_
2.8120401439110.00.680.68
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0370/131/131_
2.81253387925300.00.670.67
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vLkK1

0-0370/112/112_
2.7791431208880.00.540.54
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_1f308455f225e

0-0370/136/136_
2.76105801336500.00.750.75
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0370/128/128_
2.7610821442570.00.810.81
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/160/160_
2.7844113042430200.00.700.70
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0370/122/122_
2.74135511698980.00.460.46
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0370/156/156_
2.78471301862450.00.850.85
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0370/103/103_
2.786450758810.00.530.53
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0370/115/115_
2.7856511502720.00.540.54
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0370/179/179_
2.813033902650730.01.021.02
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BYZ

0-0370/179/179_
2.7870512202540.01.111.11
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

0-0370/165/165_
2.751281432966310.00.920.92
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNTyshFN2b%2BB8I%2B

0-0370/163/163_
2.7860011661424400.00.820.82
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0370/161/161_
2.823111828200.00.680.68
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/118/118_
2.751317401859380.00.640.64
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_b2ccb83273212

0-0370/171/171_
2.751232161183500.00.940.94
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0370/159/159_
2.78841101744720.00.960.96
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0370/150/150_
2.761162526772710.00.700.70
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrpswEN3nKyL2PNtLi

0-0370/149/149_
2.7799211400760.00.860.86
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0370/140/140_
2.7876001519900.00.880.88
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /resources/post.js HTTP/1.1

0-0370/158/158_
2.81159151278880.00.740.74
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/frontpage_welcome.php HTTP/1.1

1-0380/238/238_
2.789842394410.01.221.22
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c636f89637f1f

1-0380/133/133_
2.701094411046550.00.550.55
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/120/120_
2.70106451363150.00.580.58
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/126/126_
2.75485411308410.00.720.72
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_82e870502dd64

1-0380/100/100_
2.76452451274590.00.480.48
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/269/269_
2.7557512223930.01.281.28
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/124/124_
2.74653231811020.00.670.67
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0380/133/133_
2.74713111622900.00.720.72
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0380/94/94_
2.7816831337270.00.450.45
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0380/193/193_
2.76410242159380.01.001.00
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cHEAD /saml2/idp/SSOService.php?SAMLRequest=fVLJTuQwEL0j8Q%2BW71

1-0380/164/164_
2.7553241611590.00.930.93
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0380/111/111_
2.7477215812070.00.490.49
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0380/152/152_
2.75609462653370.00.670.67
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/165/165_
2.795712119140.00.700.70
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0380/115/115_
2.691298391009360.00.490.49
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0380/163/163_
2.7826511947420.00.730.73
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

1-03843/139/139W
2.8000186378143.30.710.71
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /server-status HTTP/1.1

1-0380/161/161_
2.6912561774300.00.960.96
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0380/87/87_
2.6911801751960.00.490.49
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0380/196/196_
2.73852161265950.01.021.02
127.0.0.1http/1.1ip-10-1-109-72.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0380/152/152_
2.782102581649630.00.730.73
127.0.0.1http/1.1</

Found on 2024-10-17 07:28

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fda7b363cc

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Thursday, 17-Oct-2024 07:29:04 UTC
Restart Time: Thursday, 17-Oct-2024 02:56:29 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 hours 32 minutes 34 seconds
Server load: 0.76 0.76 0.87
Total accesses: 4532 - Total Traffic: 23.3 MB - Total Duration: 3138215
CPU Usage: u2.35 s1.01 cu0 cs0 - .0205% CPU load
.277 requests/sec - 1491 B/second - 5.3 kB/request - 692.457 ms/request
1 requests currently being processed, 49 idle workers
__W_______________________________________________..............
................................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0360/87/87_
1.518412478870.00.560.56
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

0-0360/78/78_
1.518203659080.00.460.46
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cHEAD /saml2/idp/SSOService.php?SAMLRequest=fVLLTuMwFN0j8Q%2BW93

0-03642/177/177W
1.590052537136.70.950.95
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /server-status HTTP/1.1

0-0360/76/76_
1.574246319590.00.370.37
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/153/153_
1.57574883700.00.740.74
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

0-0360/86/86_
1.542286281040.00.540.54
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/104/104_
1.561911145774370.00.580.58
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0360/100/100_
1.56986840960.00.390.39
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/77/77_
1.561541015966140.00.370.37
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0360/81/81_
1.51730671704410.00.400.40
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BST

0-0360/95/95_
1.517757491500.00.480.48
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/104/104_
1.5170448234200.00.670.67
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/73/73_
1.5260836882020.00.320.32
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/67/67_
1.516450720800.00.320.32
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /resources/post.css HTTP/1.1

0-0360/68/68_
1.5257511408250.00.380.38
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/nextmail/cloudwork/css/theme.css HTTP/1.1

0-0360/83/83_
1.5249643927650.00.550.55
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0360/121/121_
1.525651676310.00.580.58
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

0-0360/81/81_
1.525871471010.00.430.43
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0360/85/85_
1.516609468850.00.430.43
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0360/102/102_
1.524712774530.00.470.47
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_3aa39819b499e

0-0360/79/79_
1.544263444540.00.340.34
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cHEAD /saml2/idp/SSOService.php?SAMLRequest=fVLLTuswEN0j8Q%2BW93

0-0360/157/157_
1.5445010346180.00.990.99
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0360/85/85_
1.544117452010.00.390.39
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0360/84/84_
1.543421933226140.00.310.31
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

0-0360/96/96_
1.542904866120.00.490.49
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0400/86/86_
1.337681273462220.00.490.49
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVNNj9owEL3zK1Du%2BQK

1-0400/73/73_
1.328700467780.00.330.33
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0400/72/72_
1.37680245950.00.320.32
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0400/101/101_
1.3283410041467950.00.640.64
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PHkEL

1-0400/76/76_
1.38283611631620.00.260.26
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j8R8s3%2

1-0400/89/89_
1.37889331330.00.340.34
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

1-0400/85/85_
1.372296570480.00.460.46
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0400/70/70_
1.3376001053430.00.400.40
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0400/113/113_
1.3372487556520.00.500.50
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0400/105/105_
1.336614177090.00.640.64
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0400/79/79_
1.33668864190940.00.420.42
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fconnect.

1-0400/56/56_
1.336191676810.00.200.20
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0400/57/57_
1.3556541005190.00.240.24
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/chromebook/jquery.js HTTP/1.1

1-0400/79/79_
1.3360235280580.00.320.32
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0400/87/87_
1.35530770442880.00.450.45
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dekzgpb

1-0400/73/73_
1.3359221296220.00.430.43
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0400/104/104_
1.354611956710.00.570.57
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/cloudworkauth/simplewebauthn.es5.umd.min.js HTT

1-0400/71/71_
1.3544334572370.00.320.32
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0400/93/93_
1.3548438602650.00.490.49
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_c513cb5c24ef1

1-0400/63/63_
1.354210493410.00.260.26
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0400/119/119_
1.373181418750.00.690.69
127.0.0.1http/1.1ip-10-1-93-140.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

Found on 2024-10-17 07:28

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb316a1283fd6a1283fd3c48ecf4

Apache Status

Apache Server Status for plcv-login.cloudworkengine.net (via 127.0.0.1)

Server Version: Apache/2.4.52 (Ubuntu) mod_fcgid/2.3.9
Server MPM: worker
Server Built: 2024-04-10T17:45:18

Current Time: Thursday, 17-Oct-2024 07:29:04 UTC
Restart Time: Wednesday, 16-Oct-2024 21:32:33 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  9 hours 56 minutes 30 seconds
Server load: 1.48 1.82 2.14
Total accesses: 10640 - Total Traffic: 55.5 MB - Total Duration: 10721552
CPU Usage: u6.88 s3.85 cu0 cs0 - .03% CPU load
.297 requests/sec - 1627 B/second - 5.3 kB/request - 1007.66 ms/request
1 requests currently being processed, 74 idle workers
_____________W__________________________________________________
___________.....................................................
................................................................
................................................................
................................................................
................................................................
................
Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-0380/177/177_
3.2520401512260.00.920.92
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /favicon.ico HTTP/1.1

0-0380/111/111_
3.23409271016790.00.530.53
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cHEAD /saml2/idp/SSOService.php?SAMLRequest=fVLJTuQwEL0jzT9YvmfV

0-0380/151/151_
3.19962132075940.00.770.77
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/120/120_
3.235651839120.00.620.62
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /resources/uitheme1.8/jquery-ui.css HTTP/1.1

0-0380/128/128_
3.2266111220040.00.680.68
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

0-0380/207/207_
3.2630503175990.00.980.98
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0380/133/133_
3.22616341527210.00.840.84
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0380/189/189_
3.2588491566660.01.101.10
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0380/122/122_
3.2258616769400.00.520.52
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/nextmail/cloudwork/favicon.ico HTTP/1.1

0-0380/95/95_
3.217111135846530.00.450.45
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7vAhpK

0-0380/124/124_
3.181082602128840.00.520.52
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0380/108/108_
3.1991601123760.00.610.61
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /resources/post.js HTTP/1.1

0-0380/188/188_
3.25289681704840.00.980.98
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-03831/137/137W
3.2900167652193.10.780.78
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /server-status HTTP/1.1

0-0380/207/207_
3.18120241434060.01.131.13
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

0-0380/130/130_
3.25345322774220.00.670.67
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0380/146/146_
3.23461561431850.00.810.81
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0380/162/162_
3.23496551018540.00.920.92
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

0-0380/97/97_
3.25168121271950.00.580.58
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/183/183_
3.1811587081416510.00.800.80
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVJNTxsxEL1X4j9Yvu9XW

0-0380/116/116_
3.2343941084230.00.670.67
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cHEAD /saml2/idp/SSOService.php?SAMLRequest=fVJNT%2BMwEL0j7X%2Bw

0-0380/114/114_
3.181022111495400.00.480.48
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

0-0380/231/231_
3.21822102338530.01.221.22
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cHEAD /saml2/idp/SSOService.php?SAMLRequest=fVLLTuswEN1fiX%2BwvM

0-0380/206/206_
3.2176110182998500.01.091.09
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVLPT8IwFP5Xlt5ptykja

0-0380/177/177_
3.2185151712150.00.880.88
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0390/145/145_
3.065621335920.00.780.78
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0390/147/147_
3.05167111561280.00.650.65
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0390/161/161_
3.0538651284120.00.720.72
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_3a0fd82ad8cfc

1-0390/111/111_
3.025751634720.00.600.60
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/cloudworkauth/webauthn.js HTTP/1.1

1-0390/113/113_
2.9811651747190.00.490.49
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/chromebook/jquery.cookie.js HTTP/1.1

1-0390/149/149_
3.053020977080.00.780.78
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0390/118/118_
3.0522841611820.00.740.74
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwysedev.

1-0390/106/106_
3.0264501161590.00.570.57
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /resources/post.js HTTP/1.1

1-0390/148/148_
3.066321264540.00.700.70
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cPOST /module.php/cloudworkauth/mfa/webauthn/get_login_options.p

1-0390/150/150_
3.0089343373810.00.840.84
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/loginuserpass.php?AuthState=_8045bdd2aef38

1-0390/171/171_
3.069841064250.01.041.04
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?spentityid=https%3A%2F%2Fwyse.plc

1-0390/110/110_
3.01723434921160.00.500.50
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec4Mkg

1-0390/107/107_
2.9812020726830.00.630.63
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /resources/post.css HTTP/1.1

1-0390/101/101_
3.024211095831380.00.520.52
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0390/109/109_
3.0260202176660.00.620.62
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /favicon.ico HTTP/1.1

1-0390/149/149_
3.02471112313460.00.650.65
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /module.php/core/no_cookie.php?retryURL=https%3A%2F%2Fplcme

1-0390/96/96_
2.98109117691000910.00.510.51
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cPOST /module.php/core/loginuserpass.php HTTP/1.1

1-0390/233/233_
3.0096841125460.01.141.14
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cHEAD /saml2/idp/SSOService.php?SAMLRequest=fVLLbtswELwX6D8QvOtl

1-0390/102/102_
3.024454141064940.00.570.57
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPLrtowEN3zFSj7PEkUs

1-0390/98/98_
3.009299962828650.00.490.49
127.0.0.1http/1.1ip-10-1-97-148.ap-southeast-2.cGET /saml2/idp/SSOService.php?SAMLRequest=fVPbjtowEH3nK1Dec11YW

1-0390/177/177_
3.0267216917350.00.840.84
127.0.0.1http/1.1

Found on 2024-10-17 07:28

Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 52.222.214.52
Domain: gfs-demo.d1fx.com
Port: 443
URL: https://gfs-demo.d1fx.com

First seen 2023-02-02 23:57
Last seen 2025-06-30 20:25
Open for 878 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a6522b214566a

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:appnadiathailand/shiseido_gfs_cms.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "feature/1201617020764070"]
	remote = origin
	merge = refs/heads/feature/1201617020764070
[branch "develop"]
	remote = origin
	merge = refs/heads/develop

Found on 2025-06-30 20:25

442 Bytes

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65223a918e70

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
[remote "origin"]
	url = git@bitbucket.org:appnadiathailand/shiseido_gfs_cms.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "master"]
	remote = origin
	merge = refs/heads/master
[branch "develop"]
	remote = origin
	merge = refs/heads/develop
[branch "feature/CMS-1158661022605393"]
	remote = origin
	merge = refs/heads/feature/CMS-1158661022605393
[branch "feature/CMS-1188786639912309"]
	remote = origin
	merge = refs/heads/feature/CMS-1188786639912309
[branch "fix_import_analytics"]
	remote = origin
	merge = refs/heads/fix_import_analytics

Found on 2023-02-02 23:57

646 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 65.9.95.60
Domain: sam-subscribe.thebodycoach.com
Port: 443
URL: https://sam-subscribe.thebodycoach.com

First seen 2024-09-24 07:28
Last seen 2024-11-12 08:47
Open for 49 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d89a8fd6d89a8fd6d89a8fd6d89a8fd6d
```
Found 1 files trough .DS_Store spidering:

/img
```
  Found on 2024-11-12 08:47
Create report
Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 65.9.95.60
Domain: iwb183rdda.xyz
Port: 443
URL: https://iwb183rdda.xyz

First seen 2023-11-27 14:11
Last seen 2024-02-02 11:47
Open for 66 days
- Severity: medium
  Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65224a02fe66
```
[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	hooksPath = /dev/null
[remote "origin"]
	url = http://git.2jsncsk2dxks.xyz/zhi/zhi-luodiye-guide.git
	fetch = +refs/heads/*:refs/remotes/origin/*
```
  Found on 2024-02-02 11:47
  
  239 Bytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 65.9.95.60
Domain: glassdome.kr
Port: 443
URL: https://glassdome.kr

First seen 2022-12-10 03:31
Last seen 2023-02-21 00:16
Open for 72 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9dccc05e77ccc05e77ccc05e77ccc05e77
```
Found 1 files trough .DS_Store spidering:

/main
```
  Found on 2022-12-10 03:31
Create report

Open service 65.9.95.60:443 · www.malible.com

2026-01-12 21:34

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Content-Length: 161183
Connection: close
Date: Thu, 08 Jan 2026 22:46:58 GMT
x-nextjs-prerender: 1
x-amzn-RequestId: 8701b90a-a434-4a5a-87e7-05625b5e44fe
x-nextjs-cache: HIT
x-amzn-Remapped-content-length: 161183
Cache-Control: s-maxage=603950, stale-while-revalidate=2592000
ETag: "r7rlevtstx3gcq"
X-Amzn-Trace-Id: Root=1-696033e1-29094c1d3f538b6f33c10841;Parent=4e0f71e59229e4f2;Sampled=0;Lineage=1:0919b5c1:0
x-nextjs-stale-time: 4294967294
X-Cache: Hit from cloudfront
Via: 1.1 168125097acf734cd7750e139a974b38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: PRG50-C1
X-Amz-Cf-Id: HsjfMrb62UVrUqT2Zv9IAI8FOtZwLbDA2KTCpG1XmkhBtXw5lojr-g==
Age: 341229

Page title: Malible | AI-Powered Headless CMS for Modern Digital Experiences

<!DOCTYPE html><html lang="en" class="__className_f367f3"><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1"/><meta name="viewport" content="width=device-width, initial-scale=1"/><link rel="preload" href="/_next/static/media/e4af272ccee01ff0-s.p.woff2" as="font" crossorigin="" type="font/woff2"/><link rel="preload" as="image" href="/images/bg_hero.svg"/><link rel="preload" as="image" href="/images/testimonial-rating-left.svg"/><link rel="preload" as="image" href="/images/testimonial-rating-right.svg"/><link rel="preload" as="image" imageSrcSet="/_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=16&amp;q=75 16w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=32&amp;q=75 32w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=48&amp;q=75 48w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=64&amp;q=75 64w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=96&amp;q=75 96w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=128&amp;q=75 128w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=256&amp;q=75 256w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=384&amp;q=75 384w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=640&amp;q=75 640w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=750&amp;q=75 750w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=828&amp;q=75 828w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=1080&amp;q=75 1080w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=1200&amp;q=75 1200w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=1920&amp;q=75 1920w, /_next/image?url=%2Fimages%2FContainer-Main01.png&amp;w=2048&amp;q=75 2048w" imageSizes="(max-width: 768px) 728px, 1000px" fetchPriority="high"/><link rel="preload" as="image" href="/images/designed-for-all.svg"/><link rel="preload" as="image" href="/images/first-time.svg"/><link rel="preload" as="image" href="/images/effortless.svg"/><link rel="preload" as="image" href="/images/cost-effective.svg"/><link rel="preload" as="image" href="/images/safety.svg"/><link rel="preload" as="image" href="/images/bg-newslatter.svg"/><link rel="stylesheet" href="/_next/static/css/9ebfdc88278b32f0.css" data-precedence="next"/><link rel="preload" as="script" fetchPriority="low" href="/_next/static/chunks/webpack-b34f1aa858dcd8b7.js"/><script src="/_next/static/chunks/4bd1b696-51970047f2f64233.js" async=""></script><script src="/_next/static/chunks/517-9dd29d5a40342c83.js" async=""></script><script src="/_next/static/chunks/main-app-651e4ef8c91ed6f9.js" async=""></script><script src="/_next/static/chunks/633-efa504d15ef9ad89.js" async=""></script><script src="/_next/static/chunks/198-1f91d4f393fab9c9.js" async=""></script><script src="/_next/static/chunks/app/layout-e88c81884d4680e9.js" async=""></script><script src="/_next/static/chunks/f97e080b-50f16e122ffefc34.js" async=""></script><script src="/_next/static/chunks/c15bf2b0-0dc09ba9254d61fa.js" async=""></script><script src="/_next/static/chunks/897-1c1bd676b26cf406.js" async=""></script><script src="/_next/static/chunks/613-4ce1cefa07914416.js" async=""></script><script src="/_next/static/chunks/548-bbf572d1c92af513.js" async=""></script><script src="/_next/static/chunks/859-0fb24a15daae00f9.js" async=""></script><script src="/_next/static/chunks/app/page-411ef4c7eb0637ef.js" async=""></script><link rel="preload" href="https://www.googletagmanager.com/gtag/js?id=G-VLJTTJ3QCC" as="script"/><link rel="preload" as="image" href="/images/malible-logo.svg"/><meta name="next-size-adjust" content=""/><link rel="preconnect" href="https://www.googletagmanager.com"/><link rel="dns-prefetch" href="https://www.google-analytics.com"/><link rel="preload" as="image" href="/images/hero-bg-mobile_w640.avif" type="image/avif" media="(max-width: 768px)"/><link rel="preload" as="image" href="/images/hero-bg_w1080.avif" type="image/avif" media="(min-width: 769px)"/><title>Malible | AI-Powered Headless CMS for Modern Digital Experiences</title><meta name="description" content="Deliver content an

Found 3 days ago by HttpPlugin

Host 65.9.95.60

United States

Software information

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Git configuration and history exposed

MacOS file listing through .DS_Store file

Apache server-status page is publicly available

Git configuration and history exposed

MacOS file listing through .DS_Store file

Git configuration and history exposed

MacOS file listing through .DS_Store file

www.malible.commalible.com

tasknegative.net*.tasknegative.net

bmoretattoo.com*.bmoretattoo.com

lambda-lite.global.on.awslitefcp-test-sfeirfnewu.054973743515.lambda-lite.global.on.aws

lambda-lite.global.on.awslitefcp-test-1mogdyhuby.705241974751.lambda-lite.global.on.aws

lambda-lite.global.on.awscanary-litecu-20260103t204223-267870fefe.488435278729.lambda-lite.global.on.aws

lambda-lite.global.on.awscl-q7h3pfox3vfevpq3nce6hzddum-default.799634395721.lambda-lite.global.on.aws

Domain summary