GeneralInformation

Hostnames	buckinghamapartments.com www.buckinghamapartments.com
Domains	buckinghamapartments.com
Cloud Provider	Azure
Cloud Region	southcentralus
Cloud Service	AzureCloud
Country	United States
City	San Antonio
Organization	Microsoft Corporation
ISP	Microsoft Corporation
ASN	AS8075
Operating System	Windows

WebTechnologies

CDN

Google Hosted Libraries

JavaScript libraries

Maps

Miscellaneous

Security

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-8331	4.3In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2018-20677	4.3In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.
CVE-2018-20676	4.3In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.
CVE-2018-14042	4.3In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.
CVE-2018-14040	4.3In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.
CVE-2016-10735	4.3In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.
CVE-2014-4078	5.1The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka "IIS Security Feature Bypass Vulnerability."

OpenPorts

80 443

1489525118 | 2024-04-23T10:14:04.337896

80 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 23 Apr 2024 10:14:03 GMT
Connection: close
Content-Length: 315

1076974000 | 2024-04-22T13:56:45.696138

443 / tcp

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/8.5
Set-Cookie: ASP.NET_SessionId=1yfguf2zujybzevm1jfhleot; path=/; HttpOnly
Set-Cookie: FirstSession=1yfguf2zujybzevm1jfhleot; expires=Sat, 22-Apr-2034 00:00:00 GMT; path=/
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: content-type
Date: Mon, 22 Apr 2024 13:56:42 GMT
Content-Length: 35330

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:d5:a3:f4:ab:19:1b:63:70:87:6d:ec:b4:c6:93:21:c2:80
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  7 09:02:56 2024 GMT
            Not After : Jul  6 09:02:55 2024 GMT
        Subject: CN=www.buckinghamapartments.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:8c:16:aa:e3:98:e5:7f:40:ed:13:c0:7b:64:02:
                    4c:78:a6:dc:c2:b7:52:a1:da:11:c5:ae:9a:66:31:
                    0f:ec:c5:94:06:10:6c:2c:c9:dd:76:27:aa:67:19:
                    3c:a5:f0:38:82:07:27:06:8c:31:17:bb:6d:7f:71:
                    b0:c1:5f:90:e1
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                3B:A1:B7:D2:84:6D:12:30:A9:06:AE:DE:C6:59:4C:69:25:0E:5C:A9
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:buckinghamapartments.com, DNS:www.buckinghamapartments.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr  7 10:02:56.693 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AF:B4:2E:15:37:05:41:ED:15:F9:57:
                                D3:6B:1A:18:C0:44:15:F3:24:F1:DF:B1:34:8D:AE:97:
                                3E:39:90:00:77:02:21:00:F5:EA:3F:3C:23:55:C7:82:
                                70:D4:D4:72:A7:6C:1E:BD:92:22:B5:2B:4D:90:0B:0C:
                                2A:9B:70:9B:E9:3B:8E:B4
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr  7 10:02:56.724 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:2E:73:22:22:40:F4:B0:1D:35:2F:AB:48:
                                C0:D5:1C:EE:10:DF:DD:04:68:00:6E:5A:54:5D:06:EA:
                                72:33:22:95:02:21:00:A6:52:D2:F9:14:A6:FE:43:5A:
                                09:E6:B2:8C:DC:14:2D:39:8C:99:6A:EC:EE:CF:3E:4D:
                                AD:79:69:5D:4E:A3:18
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        6c:32:44:56:a4:46:46:3d:d1:31:8b:00:71:5f:3c:d7:a6:ba:
        8e:78:80:92:d1:e1:ca:e0:59:b9:7e:2b:a9:b0:d1:6d:ee:c5:
        79:b6:e0:31:56:1f:b7:11:fb:98:d5:c1:13:33:38:2b:c1:96:
        71:d8:86:81:7d:a6:f4:16:b7:d8:51:48:4d:d6:93:f9:f7:0d:
        cc:a2:05:43:d8:00:6d:7e:ed:3f:b9:14:ac:33:ce:fb:9e:52:
        ad:fa:c4:6f:5c:e9:64:aa:ba:6f:13:f0:ea:32:a9:cb:4a:00:
        42:6a:3a:9d:38:d5:ac:c8:0d:e6:9d:90:79:43:a3:e8:2b:9f:
        0b:32:a6:5e:8e:05:4d:49:24:cd:54:aa:ed:90:5a:f7:c0:f7:
        ee:45:ed:32:e0:85:08:c7:0b:b3:26:95:28:c6:76:8c:1f:32:
        e0:e4:3a:c6:8c:e5:b4:03:db:dc:2e:06:c8:eb:2c:a4:c3:a0:
        9e:38:ad:be:50:7f:cc:98:3a:a3:10:43:aa:e3:18:63:c6:60:
        66:03:3d:c6:99:1b:e1:33:93:3e:73:03:a8:6e:46:a5:ca:c7:
        d8:11:c8:f0:c7:11:cb:9a:74:42:1e:76:f5:cd:ba:e4:88:1e:
        27:6f:ad:36:59:cd:1a:ea:05:dc:87:84:31:ee:c1:b0:4c:c3:
        71:d7:f1:dd

104.44.135.111

Last Seen: 2024-04-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1489525118 | 2024-04-23T10:14:04.337896
80 / tcp

Microsoft HTTPAPI httpd2.0

1076974000 | 2024-04-22T13:56:45.696138
443 / tcp

Microsoft IIS httpd8.5

Products

Pricing

Contact Us

104.44.135.111

Last Seen: 2024-04-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1489525118 | 2024-04-23T10:14:04.337896 80 / tcp

Microsoft HTTPAPI httpd2.0

1076974000 | 2024-04-22T13:56:45.696138 443 / tcp

Microsoft IIS httpd8.5

Products

Pricing

Contact Us

1489525118 | 2024-04-23T10:14:04.337896
80 / tcp

1076974000 | 2024-04-22T13:56:45.696138
443 / tcp