GeneralInformation

Hostnames	mallardperez.com
Domains	mallardperez.com
Country	United States
City	San Francisco
Organization	Cloudflare, Inc.
ISP	Cloudflare, Inc.
ASN	AS13335

WebTechnologies

CDN

JavaScript libraries

Tag managers

Video players

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-7656	4.3jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2012-6708	4.3jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.

OpenPorts

80 443 2082 2083 2086 2087 2096 8080 8443 8880

-1737511825 | 2024-04-09T04:36:55.758737

80 / tcp

HTTP/1.1 403 Forbidden
Date: Tue, 09 Apr 2024 04:36:55 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8717cc8849936694-AMS

574523084 | 2024-04-20T18:43:10.984861

443 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 18:43:09 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: User-Agent,Accept-Encoding
Set-Cookie: CFID=Z28epskce8cg58ab8fvi5e80l8ccr9f0w9y6t2my7hmweltw94x-92167726; Domain=.mallardperez.com; Expires=Mon, 13-Apr-2054 18:43:09 GMT; Path=/; HttpOnly
Set-Cookie: CFTOKEN=Z28epskce8cg58ab8fvi5e80l8ccr9f0w9y6t2my7hmweltw94x-a6498e734a2a404c-E031D573-0078-0262-D2AD337AB7151F58; Domain=.mallardperez.com; Expires=Mon, 13-Apr-2054 18:43:09 GMT; Path=/; HttpOnly
Set-Cookie: ONSERVER=116%2DB; Path=/
Set-Cookie: EX_HTTP_REFERER=""; Path=/
Set-Cookie: ENTRY_TEMPLATE=www%2Emallardperez%2Ecom%2F; Path=/
X-Powered-By: DSS
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ph9v2uOHNnC5879DlZogTnJPKBeo1k45Nuyv2FBiuc27L08HWfzslPXOvLZBDWrtqI0OHVbEHAzjloh5jgeNDoFlYYy8o4iepXxvqbxN18zykASYUBWSYqfNR7n6tjJgDsKEtKgz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Strict-Transport-Security: max-age=0; preload
Server: cloudflare
CF-RAY: 8777473fd8149870-SJC

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            90:e6:a1:7f:3a:d8:e7:a5:0e:71:29:dd:d1:43:28:ec
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Google Trust Services LLC, CN=GTS CA 1P5
        Validity
            Not Before: Apr 17 10:10:58 2024 GMT
            Not After : Jul 16 10:10:57 2024 GMT
        Subject: CN=mallardperez.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:98:f6:ca:27:90:33:e7:08:08:1c:17:29:76:14:
                    89:eb:4a:66:05:10:84:1b:e0:fb:a3:4b:4b:7d:59:
                    27:20:32:60:49:21:97:bf:8e:33:56:67:e0:d8:4a:
                    24:3a:a3:c6:66:29:ff:84:ab:e4:d9:e1:60:1a:53:
                    b5:8d:b0:c3:9f:0e:53:31:64:71:4e:75:ac:dc:df:
                    bc:3b:07:ec:8f:83:1e:a0:7b:7a:57:6a:64:0f:d8:
                    dd:05:e7:90:6c:fa:f5:c9:1c:5c:fd:8f:d2:8c:34:
                    3d:02:6b:55:9e:69:f1:02:e6:18:7d:e9:1f:5f:e8:
                    cd:1a:43:d6:48:20:6b:2f:1d:b2:86:6d:ea:b7:2e:
                    0b:13:f7:09:21:03:ba:d5:ef:15:98:bb:cf:62:73:
                    4f:64:1d:08:8d:14:c0:cc:7b:f5:90:f7:8f:2c:6c:
                    62:fc:58:e3:24:e9:d2:98:f3:62:fc:fa:61:37:b5:
                    6f:c8:df:d6:3a:a7:02:0d:60:fb:82:9d:39:e4:94:
                    b9:df:6d:c5:3f:61:17:9a:82:16:84:5a:77:49:09:
                    a1:b8:2e:9f:82:21:50:34:90:d7:eb:24:0c:fc:d7:
                    2b:2d:7d:27:96:bb:3b:eb:7c:b5:ac:6e:4b:2d:3d:
                    6c:e9:5d:55:3a:49:97:17:10:7d:97:ed:5b:09:74:
                    af:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                DC:42:C8:24:11:08:94:0B:3E:EF:A0:BA:8B:7D:2B:45:95:78:C1:5C
            X509v3 Authority Key Identifier: 
                D5:FC:9E:0D:DF:1E:CA:DD:08:97:97:6E:2B:C5:5F:C5:2B:F5:EC:B8
            Authority Information Access: 
                OCSP - URI:http://ocsp.pki.goog/s/gts1p5/zfQl6P_4QAw
                CA Issuers - URI:http://pki.goog/repo/certs/gts1p5.der
            X509v3 Subject Alternative Name: 
                DNS:mallardperez.com, DNS:*.mallardperez.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.11129.2.5.3
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crls.pki.goog/gts1p5/bwQpHEpM95g.crl
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 17 11:10:59.253 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:2F:F3:C5:B9:3E:66:94:F8:28:E4:33:E1:
                                DE:72:D2:4A:0F:77:B0:3A:C5:96:4A:DA:25:E3:FD:98:
                                B1:EA:E0:FB:02:21:00:EB:FB:39:83:7B:C7:87:E8:85:
                                A5:75:55:04:5D:FC:A4:FB:BA:0F:50:81:FC:7C:2D:F8:
                                18:97:39:88:63:20:C6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 17 11:10:59.399 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:12:0E:7A:3A:BF:97:21:63:4E:FF:D1:9F:
                                30:99:EC:13:54:DF:E5:5A:E3:06:9B:47:6D:DB:0D:93:
                                23:7C:03:B2:02:21:00:AE:D9:F1:54:43:42:6E:97:AF:
                                BE:B9:0D:7B:71:E0:BB:74:EA:D0:0E:61:C1:DB:13:E4:
                                8C:28:33:5E:F9:C2:57
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a1:b8:1b:d7:a1:5a:c4:1a:c2:59:03:0e:57:2c:9d:83:fb:de:
        e1:6e:ad:df:72:f4:a1:71:4a:b7:5e:98:73:ed:e4:cf:67:22:
        3e:0a:12:b4:fe:2a:fe:f4:64:2c:78:0e:14:b0:3a:e2:73:89:
        28:1a:a7:5b:fe:de:0d:84:af:25:13:5f:27:02:3e:85:d0:2a:
        d3:31:9f:73:96:05:ed:3b:cf:35:58:bc:06:0a:ef:18:09:44:
        98:dc:67:54:74:c7:c2:42:84:32:69:b4:fc:6c:0c:bc:ad:82:
        62:cc:c5:75:81:a8:a1:6c:f5:5a:0c:fd:c6:a8:bf:0e:70:39:
        9b:01:d9:c5:ed:37:bc:34:ce:5a:b1:62:16:76:fd:60:4b:d4:
        02:e2:26:d4:4e:90:49:3f:e9:24:c9:a2:da:6a:e1:ed:3c:e6:
        e4:33:90:fa:19:cf:24:19:14:e0:1c:6d:30:89:70:1d:a4:d2:
        09:23:12:5a:de:54:01:89:b4:2f:85:9d:8c:fd:df:5a:14:d4:
        3c:44:0a:61:f4:d7:e6:a6:3d:fc:c4:14:91:b8:81:df:57:7d:
        c5:be:e4:66:0f:1f:1c:c4:4a:7b:cc:83:d7:fb:67:67:df:03:
        23:12:51:62:16:8c:1d:55:bf:33:20:2c:a9:85:94:53:20:18:
        e7:5f:68:9b

2117431072 | 2024-04-20T05:05:15.551139

2082 / tcp

HTTP/1.1 403 Forbidden
Date: Sat, 20 Apr 2024 05:05:15 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 877299282e030fb3-LAX

141477257 | 2024-04-18T06:09:45.794491

2083 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 18 Apr 2024 06:09:45 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

892447540 | 2024-04-12T04:22:13.219935

2086 / tcp

HTTP/1.1 403 Forbidden
Date: Fri, 12 Apr 2024 04:22:13 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87306f1c9c2c7b20-DEN

-1029224523 | 2024-04-20T09:35:20.176767

2087 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Sat, 20 Apr 2024 09:35:20 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>cloudflare</center>
</body>
</html>

141477257 | 2024-04-03T08:27:47.376347

2096 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Wed, 03 Apr 2024 08:27:47 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-2121607091 | 2024-04-21T16:25:55.293772

8080 / tcp

HTTP/1.1 403 Forbidden
Date: Sun, 21 Apr 2024 16:25:55 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 877ebb989922ea4b-DFW

141477257 | 2024-04-22T03:28:48.842367

8443 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Mon, 22 Apr 2024 03:28:48 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

1113815777 | 2024-04-09T02:41:16.116273

8880 / tcp

HTTP/1.1 403 Forbidden
Date: Tue, 09 Apr 2024 02:41:16 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 8717231bbf85e746-DFW

error code: 1003

104.26.9.176

Last Seen: 2024-04-22

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1737511825 | 2024-04-09T04:36:55.758737
80 / tcp

CloudFlare

574523084 | 2024-04-20T18:43:10.984861
443 / tcp

2117431072 | 2024-04-20T05:05:15.551139
2082 / tcp

141477257 | 2024-04-18T06:09:45.794491
2083 / tcp

892447540 | 2024-04-12T04:22:13.219935
2086 / tcp

-1029224523 | 2024-04-20T09:35:20.176767
2087 / tcp

141477257 | 2024-04-03T08:27:47.376347
2096 / tcp

-2121607091 | 2024-04-21T16:25:55.293772
8080 / tcp

CloudFlare

141477257 | 2024-04-22T03:28:48.842367
8443 / tcp

CloudFlare

1113815777 | 2024-04-09T02:41:16.116273
8880 / tcp

Products

Pricing

Contact Us

104.26.9.176

Last Seen: 2024-04-22

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1737511825 | 2024-04-09T04:36:55.758737 80 / tcp

CloudFlare

574523084 | 2024-04-20T18:43:10.984861 443 / tcp

2117431072 | 2024-04-20T05:05:15.551139 2082 / tcp

141477257 | 2024-04-18T06:09:45.794491 2083 / tcp

892447540 | 2024-04-12T04:22:13.219935 2086 / tcp

-1029224523 | 2024-04-20T09:35:20.176767 2087 / tcp

141477257 | 2024-04-03T08:27:47.376347 2096 / tcp

-2121607091 | 2024-04-21T16:25:55.293772 8080 / tcp

CloudFlare

141477257 | 2024-04-22T03:28:48.842367 8443 / tcp

CloudFlare

1113815777 | 2024-04-09T02:41:16.116273 8880 / tcp

Products

Pricing

Contact Us

-1737511825 | 2024-04-09T04:36:55.758737
80 / tcp

574523084 | 2024-04-20T18:43:10.984861
443 / tcp

2117431072 | 2024-04-20T05:05:15.551139
2082 / tcp

141477257 | 2024-04-18T06:09:45.794491
2083 / tcp

892447540 | 2024-04-12T04:22:13.219935
2086 / tcp

-1029224523 | 2024-04-20T09:35:20.176767
2087 / tcp

141477257 | 2024-04-03T08:27:47.376347
2096 / tcp

-2121607091 | 2024-04-21T16:25:55.293772
8080 / tcp

141477257 | 2024-04-22T03:28:48.842367
8443 / tcp

1113815777 | 2024-04-09T02:41:16.116273
8880 / tcp