GeneralInformation

Hostnames	expressexpense.com
Domains	expressexpense.com
Country	United States
City	San Francisco
Organization	Cloudflare, Inc.
ISP	Cloudflare, Inc.
ASN	AS13335

WebTechnologies

JavaScript libraries

OWL Carousel

jQuery3.3.1

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

OpenPorts

80 443 2082 2083 2086 2087 8080 8443 8880

-1321500190 | 2024-04-20T07:19:53.772106

80 / tcp

HTTP/1.1 403 Forbidden
Date: Sat, 20 Apr 2024 07:19:53 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87735e60bee64183-LHR

-649052484 | 2024-04-20T14:13:50.105229

443 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 14:13:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 8775bcb93a1067ac-SJC
CF-Cache-Status: DYNAMIC
Cache-Control: max-age=2592000, must-revalidate
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=cd9k1br90a9q4qmqe7feifk0rp; path=/
Vary: Accept-Encoding
Pragma: no-cache
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dv49FU5%2FelI%2F%2FMWWQaxG5v2yHtWWHRaWIH%2B15LVEU%2FHC%2FFc0JRMMk7C46ZJS%2FAR5dIzd99%2BJvba8JfRJJZR0lzYG2WJx7LYJkhohreJis1oSXiFrrNkxUVS%2F1l0d95wNJw0vdg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:c8:a4:10:c6:a1:1c:33:68:de:ad:26:fa:0d:77:d6:0f:72
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E1
        Validity
            Not Before: Apr  4 01:13:32 2024 GMT
            Not After : Jul  3 01:13:31 2024 GMT
        Subject: CN=expressexpense.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:fd:f3:dc:7d:dc:c4:18:c0:9a:a9:ea:2d:69:07:
                    cf:4e:7b:e5:7a:2c:dc:74:f7:6c:13:c1:8f:fa:8a:
                    77:df:57:7a:5f:70:0b:f8:f9:45:f1:a8:e2:aa:9c:
                    79:af:74:5d:c3:4e:3e:51:08:70:9d:7d:1f:43:2d:
                    16:65:05:05:99
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B9:C3:16:16:FD:7B:DE:AF:38:C9:53:24:AC:E4:D2:C5:5C:26:C2:19
            X509v3 Authority Key Identifier: 
                5A:F3:ED:2B:FC:36:C2:37:79:B9:52:30:EA:54:6F:CF:55:CB:2E:AC
            Authority Information Access: 
                OCSP - URI:http://e1.o.lencr.org
                CA Issuers - URI:http://e1.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.expressexpense.com, DNS:expressexpense.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr  4 02:13:32.753 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:EC:0F:44:78:66:79:54:0B:A1:97:49:
                                8C:8B:B2:B1:BA:C0:0C:A3:B0:85:37:85:35:01:AB:D9:
                                46:66:FC:86:A3:02:20:77:D3:E0:EC:2F:46:DB:C0:B5:
                                3E:56:A1:2D:57:6A:14:C0:77:65:33:81:32:95:54:EA:
                                CF:F4:DA:A0:12:E1:E6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr  4 02:13:32.768 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:45:74:4F:E4:43:4D:44:CE:87:C7:C3:00:
                                3B:B1:2A:37:3E:A9:9B:B0:E1:C6:DD:D5:8F:B6:95:39:
                                C7:E0:0F:A2:02:20:53:FC:C9:C5:D3:2A:CB:22:7F:07:
                                4A:11:22:1D:0B:E2:20:2C:66:AC:BD:A4:F6:CE:7D:A2:
                                3C:51:C0:1E:B3:B8
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:6d:a4:bd:ab:35:3f:a6:69:0f:39:fe:53:31:40:
        0f:d2:bd:61:c2:d4:7d:e7:a6:d8:83:b2:74:0f:f3:d5:a9:7a:
        71:4b:f0:c2:29:d8:55:3b:69:a4:b7:64:8b:f4:32:4b:02:31:
        00:98:dd:43:cc:c5:39:de:0f:0c:45:56:12:e1:ea:cb:5e:bf:
        03:bb:e4:c3:50:76:29:eb:71:a6:59:45:e7:50:35:53:a3:02:
        9b:2c:87:e9:31:58:3c:4a:56:3c:94:95:52

-925104792 | 2024-04-20T11:46:35.515960

2082 / tcp

HTTP/1.1 403 Forbidden
Date: Sat, 20 Apr 2024 11:46:35 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8774e50bcbe39709-AMS

141477257 | 2024-04-20T15:18:14.747863

2083 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Sat, 20 Apr 2024 15:18:14 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-413443842 | 2024-04-20T08:58:26.120890

2086 / tcp

HTTP/1.1 403 Forbidden
Date: Sat, 20 Apr 2024 08:58:26 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8773eeb93d0d7ae6-SJC

141477257 | 2024-04-20T11:05:05.642943

2087 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Sat, 20 Apr 2024 11:05:05 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

2057373803 | 2024-04-20T13:04:06.787677

8080 / tcp

HTTP/1.1 403 Forbidden
Date: Sat, 20 Apr 2024 13:04:06 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8775569a39d2cec9-SJC

141477257 | 2024-04-20T12:38:34.390613

8443 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Sat, 20 Apr 2024 12:38:34 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-860810988 | 2024-04-20T02:35:22.835815

8880 / tcp

HTTP/1.1 403 Forbidden
Date: Sat, 20 Apr 2024 02:35:22 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 8771bd9baadf6893-SJC

error code: 1003

104.26.5.208

Last Seen: 2024-04-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1321500190 | 2024-04-20T07:19:53.772106
80 / tcp

CloudFlare

-649052484 | 2024-04-20T14:13:50.105229
443 / tcp

-925104792 | 2024-04-20T11:46:35.515960
2082 / tcp

141477257 | 2024-04-20T15:18:14.747863
2083 / tcp

-413443842 | 2024-04-20T08:58:26.120890
2086 / tcp

141477257 | 2024-04-20T11:05:05.642943
2087 / tcp

2057373803 | 2024-04-20T13:04:06.787677
8080 / tcp

CloudFlare

141477257 | 2024-04-20T12:38:34.390613
8443 / tcp

CloudFlare

-860810988 | 2024-04-20T02:35:22.835815
8880 / tcp

Products

Pricing

Contact Us

104.26.5.208

Last Seen: 2024-04-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1321500190 | 2024-04-20T07:19:53.772106 80 / tcp

CloudFlare

-649052484 | 2024-04-20T14:13:50.105229 443 / tcp

-925104792 | 2024-04-20T11:46:35.515960 2082 / tcp

141477257 | 2024-04-20T15:18:14.747863 2083 / tcp

-413443842 | 2024-04-20T08:58:26.120890 2086 / tcp

141477257 | 2024-04-20T11:05:05.642943 2087 / tcp

2057373803 | 2024-04-20T13:04:06.787677 8080 / tcp

CloudFlare

141477257 | 2024-04-20T12:38:34.390613 8443 / tcp

CloudFlare

-860810988 | 2024-04-20T02:35:22.835815 8880 / tcp

Products

Pricing

Contact Us

-1321500190 | 2024-04-20T07:19:53.772106
80 / tcp

-649052484 | 2024-04-20T14:13:50.105229
443 / tcp

-925104792 | 2024-04-20T11:46:35.515960
2082 / tcp

141477257 | 2024-04-20T15:18:14.747863
2083 / tcp

-413443842 | 2024-04-20T08:58:26.120890
2086 / tcp

141477257 | 2024-04-20T11:05:05.642943
2087 / tcp

2057373803 | 2024-04-20T13:04:06.787677
8080 / tcp

141477257 | 2024-04-20T12:38:34.390613
8443 / tcp

-860810988 | 2024-04-20T02:35:22.835815
8880 / tcp