GeneralInformation

Hostnames	trx2.uk.com
Domains	uk.com
Country	United States
City	San Francisco
Organization	Cloudflare, Inc.
ISP	Cloudflare, Inc.
ASN	AS13335

WebTechnologies

CDN

Google Hosted Libraries

JavaScript libraries

jQuery1.8.3

Miscellaneous

HTTP/3

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-7656	4.3jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2012-6708	4.3jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.

OpenPorts

80 443 2052 2082 2083 2086 2087 2095 2096 8080 8443 8880

607680770 | 2024-05-10T01:40:09.557659

80 / tcp

HTTP/1.1 200 OK
Date: Fri, 10 May 2024 01:40:08 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=p8i38vmhcificpnvf5nndmu2k4; path=/
Set-Cookie: currency=EUR; expires=Sun, 09-Jun-2024 01:40:08 GMT; Max-Age=2592000; path=/; domain=www.trx2.uk.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3hHvtWp2m3j5uG%2BlzoZmNM3xzx2PZ9oH51Q6neBbBNKhNWqxRIc%2BH6etTSQOo%2F%2BSUZz%2BaPban25%2FNRJuCm%2FMOUKDGYifRxRjKqG9AQUjDRnsYTzJmdimikehQ4m5S4t6yEQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8816382d5945945e-SJC
alt-svc: h3=":443"; ma=86400

607680770 | 2024-05-11T00:27:01.737645

443 / tcp

HTTP/1.1 200 OK
Date: Sat, 11 May 2024 00:22:15 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=4crbchfid7ij0qb7q1ftph2g31; path=/
Set-Cookie: currency=EUR; expires=Mon, 10-Jun-2024 00:22:15 GMT; Max-Age=2592000; path=/; domain=www.trx2.uk.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UFdKGyFnF%2FWD72FXRhMXmZudWHQsbywvaKFdxlJ7XAB%2FxdKyPW%2F9oJgMusowM7gaGqmERnFtNJc8CP9MhQQoUmZc8SxLpaN0Ve8HMgO1D6y%2FmA%2FRyNsE%2FM3OIMJcYACPY7c%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 881e03770db42adb-LAX
alt-svc: h3=":443"; ma=86400

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            fe:14:86:8f:df:5e:67:6d:11:ea:2f:b2:f4:89:be:17
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Google Trust Services LLC, CN=GTS CA 1P5
        Validity
            Not Before: Apr 24 18:17:45 2024 GMT
            Not After : Jul 23 18:17:44 2024 GMT
        Subject: CN=trx2.uk.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a7:d5:62:e4:1b:f4:10:47:89:39:7f:9e:81:d0:
                    4b:50:3f:f8:1b:60:2b:d6:17:bf:4a:d9:f0:fb:fb:
                    20:04:ba:f3:56:6c:7a:1b:a7:9d:fd:c5:cc:d2:c9:
                    4c:ad:27:17:30:5a:47:f4:19:09:50:ec:2e:27:b0:
                    0b:73:d2:e1:a4:07:99:65:c5:e7:6b:db:74:bf:d8:
                    23:a2:cc:d4:fb:53:97:0b:b1:1a:76:f7:bb:de:c6:
                    b7:43:e5:be:12:ae:75:ac:83:d7:4d:c2:9f:2a:cd:
                    09:0d:1f:40:bb:cd:6b:7d:3c:94:af:20:2a:e6:2c:
                    da:4c:56:e3:66:56:23:49:94:5f:46:4e:a2:dd:4d:
                    fd:e0:2c:c7:e4:cd:48:5d:ba:3c:ff:32:c0:3c:07:
                    ca:ed:fc:94:f2:67:fa:06:7f:77:ce:47:e3:5d:49:
                    21:8f:e2:b4:72:13:d8:7e:bf:d7:9d:a4:16:6e:6c:
                    8b:05:4d:d1:65:17:cb:56:6d:a4:20:da:16:bd:33:
                    06:8d:52:8a:e8:08:cf:46:fb:7b:0f:f4:24:7d:02:
                    96:be:1a:f9:64:81:ea:7a:b0:bf:76:82:c8:bf:41:
                    a7:0e:51:cf:3c:1c:45:db:7d:af:f0:84:82:f0:47:
                    89:7f:70:7d:b7:17:99:6e:ec:2a:2d:6e:25:f5:bc:
                    2d:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                0D:C8:BF:7D:F3:8B:A8:AE:56:5A:AF:A0:1D:EA:16:18:DD:5D:E6:4D
            X509v3 Authority Key Identifier: 
                D5:FC:9E:0D:DF:1E:CA:DD:08:97:97:6E:2B:C5:5F:C5:2B:F5:EC:B8
            Authority Information Access: 
                OCSP - URI:http://ocsp.pki.goog/s/gts1p5/fMGBW0usNA0
                CA Issuers - URI:http://pki.goog/repo/certs/gts1p5.der
            X509v3 Subject Alternative Name: 
                DNS:trx2.uk.com, DNS:*.trx2.uk.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.11129.2.5.3
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crls.pki.goog/gts1p5/eexkC2PJxaw.crl
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 24 19:17:45.756 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:39:C0:17:D7:70:EF:2D:92:24:23:33:1A:
                                83:B6:64:47:E8:BD:55:3F:08:F0:FF:EE:87:EA:6A:F8:
                                18:22:34:E9:02:21:00:FC:4D:C9:0B:2C:E4:69:4D:FC:
                                25:86:83:D2:99:AD:C4:C6:4E:A7:11:4D:7E:A9:1A:7B:
                                00:89:62:0D:C2:FC:A8
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Apr 24 19:17:45.810 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AC:2B:06:0F:CC:CA:7E:49:CD:93:F9:
                                74:48:B3:07:EA:43:DB:9E:DC:55:94:F6:95:AC:49:99:
                                FA:91:7C:6D:71:02:21:00:85:96:E3:8F:03:C7:6B:65:
                                9B:CE:48:2D:5A:37:26:00:8D:BD:08:92:66:3C:D7:64:
                                26:22:50:F2:E1:09:B6:E0
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2d:b1:15:97:4c:e9:aa:eb:eb:1f:0e:ff:0c:39:da:d2:b9:66:
        e7:c8:76:40:98:f9:7d:c6:eb:38:c4:ca:8f:5b:72:13:cf:11:
        87:68:25:ca:98:db:dc:ca:ab:0d:48:9b:e8:b1:ac:d9:c0:4a:
        20:cd:86:6d:35:c1:8a:54:8f:12:29:55:ce:dc:3b:4a:5b:7c:
        0c:00:9d:44:71:7a:1e:e2:82:30:c0:37:93:07:84:81:21:96:
        9e:c3:35:da:25:ef:d9:9d:ce:1c:de:5e:85:b6:ff:17:d7:3b:
        26:01:4b:b8:e6:e9:07:b2:07:a0:a3:44:91:52:b4:e3:c2:4d:
        79:3f:e3:fb:ec:ca:97:a2:f8:1e:1e:ea:a8:f0:b0:0a:67:61:
        1b:be:43:0f:30:e3:70:73:b7:03:37:0e:7d:dc:c0:97:3f:7e:
        38:34:7b:f7:45:61:ae:ed:95:09:9b:00:78:16:36:ca:c1:37:
        57:26:c0:68:ac:56:a2:ce:b9:82:95:ef:b9:38:94:34:1c:9c:
        67:b3:28:ee:57:7c:bc:db:93:3f:54:d1:ed:6e:0b:9e:4d:7f:
        a8:e8:24:ba:6d:27:d6:4d:5b:28:36:61:fe:7a:77:12:f9:ed:
        c5:7c:43:56:bb:db:66:4d:74:a8:63:66:d6:07:bd:11:72:d8:
        f4:50:1c:6e

2076536982 | 2024-05-08T04:52:55.304643

2052 / tcp

HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 04:52:55 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8806d7d59e4a7cb0-LAX

-1128492841 | 2024-05-09T19:03:40.713520

2082 / tcp

HTTP/1.1 403 Forbidden
Date: Thu, 09 May 2024 19:03:40 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5892
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8813f36f5c131e7d-AMS

141477257 | 2024-04-26T23:37:22.641503

2083 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Fri, 26 Apr 2024 23:37:22 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-1418804972 | 2024-05-10T09:33:59.305756

2086 / tcp

HTTP/1.1 403 Forbidden
Date: Fri, 10 May 2024 09:33:59 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5894
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8818ee4d9929b8d2-AMS

-1973748499 | 2024-05-09T11:08:29.321285

2087 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 09 May 2024 11:08:29 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>cloudflare</center>
</body>
</html>

-2042869652 | 2024-04-24T14:37:58.037142

2095 / tcp

HTTP/1.1 403 Forbidden
Date: Wed, 24 Apr 2024 14:37:58 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8796d595bff62ad0-LAX

141477257 | 2024-05-10T21:16:45.030950

2096 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Fri, 10 May 2024 21:16:45 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-2047105309 | 2024-05-06T00:01:22.477068

8080 / tcp

HTTP/1.1 403 Forbidden
Date: Mon, 06 May 2024 00:01:22 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5894
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87f4b2036f7dc21e-VIE

141477257 | 2024-05-02T04:58:37.641179

8443 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 02 May 2024 04:58:37 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-2055374280 | 2024-05-10T14:03:09.628767

8880 / tcp

HTTP/1.1 403 Forbidden
Date: Fri, 10 May 2024 14:03:09 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 881a7899290c5ba6-VIE

error code: 1003

104.21.67.2

Last Seen: 2024-05-11

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

607680770 | 2024-05-10T01:40:09.557659
80 / tcp

607680770 | 2024-05-11T00:27:01.737645
443 / tcp

2076536982 | 2024-05-08T04:52:55.304643
2052 / tcp

-1128492841 | 2024-05-09T19:03:40.713520
2082 / tcp

141477257 | 2024-04-26T23:37:22.641503
2083 / tcp

-1418804972 | 2024-05-10T09:33:59.305756
2086 / tcp

-1973748499 | 2024-05-09T11:08:29.321285
2087 / tcp

-2042869652 | 2024-04-24T14:37:58.037142
2095 / tcp

141477257 | 2024-05-10T21:16:45.030950
2096 / tcp

-2047105309 | 2024-05-06T00:01:22.477068
8080 / tcp

CloudFlare

141477257 | 2024-05-02T04:58:37.641179
8443 / tcp

CloudFlare

-2055374280 | 2024-05-10T14:03:09.628767
8880 / tcp

Products

Pricing

Contact Us

104.21.67.2

Last Seen: 2024-05-11

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

607680770 | 2024-05-10T01:40:09.557659 80 / tcp

607680770 | 2024-05-11T00:27:01.737645 443 / tcp

2076536982 | 2024-05-08T04:52:55.304643 2052 / tcp

-1128492841 | 2024-05-09T19:03:40.713520 2082 / tcp

141477257 | 2024-04-26T23:37:22.641503 2083 / tcp

-1418804972 | 2024-05-10T09:33:59.305756 2086 / tcp

-1973748499 | 2024-05-09T11:08:29.321285 2087 / tcp

-2042869652 | 2024-04-24T14:37:58.037142 2095 / tcp

141477257 | 2024-05-10T21:16:45.030950 2096 / tcp

-2047105309 | 2024-05-06T00:01:22.477068 8080 / tcp

CloudFlare

141477257 | 2024-05-02T04:58:37.641179 8443 / tcp

CloudFlare

-2055374280 | 2024-05-10T14:03:09.628767 8880 / tcp

Products

Pricing

Contact Us

607680770 | 2024-05-10T01:40:09.557659
80 / tcp

607680770 | 2024-05-11T00:27:01.737645
443 / tcp

2076536982 | 2024-05-08T04:52:55.304643
2052 / tcp

-1128492841 | 2024-05-09T19:03:40.713520
2082 / tcp

141477257 | 2024-04-26T23:37:22.641503
2083 / tcp

-1418804972 | 2024-05-10T09:33:59.305756
2086 / tcp

-1973748499 | 2024-05-09T11:08:29.321285
2087 / tcp

-2042869652 | 2024-04-24T14:37:58.037142
2095 / tcp

141477257 | 2024-05-10T21:16:45.030950
2096 / tcp

-2047105309 | 2024-05-06T00:01:22.477068
8080 / tcp

141477257 | 2024-05-02T04:58:37.641179
8443 / tcp

-2055374280 | 2024-05-10T14:03:09.628767
8880 / tcp