GeneralInformation

Hostnames	adque.com create.adque.com create-staging.adque.com manage.adque.com manage-staging.adque.com smtp.adque.com www.adque.com adque.net www.adque.net adque.org www.adque.org
Domains	adque.com adque.net adque.org
Country	United States
City	Prestonsburg
Organization	DATA CONCEPTS, INC.
ISP	AT&T Services, Inc.
ASN	AS7018
Operating System	Windows

WebTechnologies

CDN

Google Hosted Libraries

JavaScript libraries

jQuery1.8.2

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2022-22707	4.3In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes representing -1), as demonstrated by remote denial of service (daemon crash) in a non-default configuration. The non-default configuration requires handling of the Forwarded header in a somewhat unusual manner. Also, a 32-bit system is much more likely to be affected than a 64-bit system.
CVE-2020-7656	4.3jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2012-6708	4.3jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.

OpenPorts

80 443 8081

-118456554 | 2024-05-31T22:14:26.577900

80 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Wed, 21 Sep 2022 14:12:00 GMT
Accept-Ranges: bytes
ETag: "be651ec4cdd81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 31 May 2024 22:14:26 GMT
Content-Length: 12629

-118456554 | 2024-05-28T12:39:58.996903

443 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Wed, 21 Sep 2022 14:12:00 GMT
Accept-Ranges: bytes
ETag: "be651ec4cdd81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Tue, 28 May 2024 12:39:58 GMT
Content-Length: 12629

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:18:cb:60:32:04:4e:da:34:c9:e1:d6:65:6c:77:41
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Jan  3 00:00:00 2024 GMT
            Not After : Feb  2 23:59:59 2025 GMT
        Subject: CN=adque.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c8:2c:b6:04:d1:ac:e1:03:47:b4:6b:3d:24:aa:
                    5b:d9:cd:dd:83:8c:a2:02:a0:e7:9e:a4:50:1f:10:
                    d3:29:b4:52:10:1a:f5:aa:2c:33:47:4d:67:fc:2a:
                    ec:81:3a:1b:da:f0:85:68:d1:e1:1e:60:ce:2c:31:
                    05:b0:21:bc:2c:ee:0e:91:dc:67:9a:1b:17:9c:25:
                    39:35:63:e9:f7:c2:4e:f6:c9:23:79:19:09:58:32:
                    7e:78:75:5e:26:d3:73:f9:1b:1a:d3:38:17:c4:04:
                    f2:be:61:1c:d1:75:a3:b2:45:0c:52:58:89:e5:75:
                    b7:9d:9a:62:cb:38:98:fa:cb:78:06:7a:ce:a4:26:
                    2d:a9:a6:6b:d3:97:2c:5e:d9:47:9a:47:a8:de:2d:
                    72:dd:d6:53:62:90:ac:64:0f:f3:9e:58:62:bb:48:
                    9c:3b:8a:52:a2:61:ca:a8:61:28:13:8f:5d:41:cf:
                    4e:25:df:0d:87:f1:44:04:27:21:ca:06:14:dc:15:
                    4b:27:0b:1d:86:55:64:c6:78:f8:01:bd:7e:14:20:
                    2e:49:1f:7c:b8:f7:8d:8b:f6:e0:04:46:d2:19:f8:
                    ba:0d:66:07:96:a8:51:15:09:51:b1:5d:7a:46:a2:
                    18:49:7f:6b:91:2a:6d:dc:5f:53:43:22:ee:a0:a0:
                    6f:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                BA:7B:B7:C7:6E:36:92:99:B1:AB:8A:61:94:DB:BF:78:6A:BF:D7:76
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Jan  3 02:30:47.646 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:42:42:09:60:5A:4F:35:E6:B7:06:6E:2E:
                                09:58:6F:A1:09:1A:C3:C3:84:F6:78:29:CF:79:96:7B:
                                A4:D5:46:DF:02:21:00:D1:16:D0:98:3F:15:B5:D1:90:
                                DE:34:DE:4D:84:C3:0E:C4:3C:8C:62:90:31:B1:A6:E8:
                                8F:25:C0:AA:90:82:AF
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Jan  3 02:30:47.628 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D4:C1:9E:29:50:FA:A5:88:45:C4:B5:
                                FE:D5:02:86:2C:1E:88:6E:A6:13:D0:81:7B:84:8E:F1:
                                26:ED:D5:A1:FB:02:21:00:80:56:2E:77:E8:B0:B7:51:
                                34:D5:7F:89:5D:0A:92:C8:ED:A8:16:40:42:47:08:1B:
                                50:8C:8F:1E:08:AC:8C:83
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Jan  3 02:30:47.609 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:0D:18:07:A0:03:05:3D:C7:A5:E6:01:D6:
                                44:91:68:39:A0:69:49:E9:07:E3:77:CB:24:25:70:83:
                                73:7C:DA:59:02:21:00:D8:0D:A3:AE:E5:B4:46:52:67:
                                6E:5F:B7:78:A8:E9:DD:6E:BE:6E:C5:1C:1C:37:06:A1:
                                AF:92:01:55:76:AC:A3
            X509v3 Subject Alternative Name: 
                DNS:adque.com, DNS:adque.net, DNS:adque.org, DNS:create-staging.adque.com, DNS:create.adque.com, DNS:manage-staging.adque.com, DNS:manage.adque.com, DNS:www.adque.com, DNS:www.adque.net, DNS:www.adque.org
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7d:fb:67:6f:e4:a2:a3:1c:4e:d1:89:8e:f4:a6:d7:a2:e6:ac:
        46:bb:02:73:1e:da:37:45:14:07:8c:7a:37:4d:ee:b4:93:56:
        ce:6a:9a:86:f0:79:0d:93:f3:03:63:96:ca:53:b3:e0:9f:e4:
        3b:13:ae:a6:b3:08:9a:4b:2c:a5:cc:f6:e2:4c:f6:11:42:b7:
        9b:1a:bc:b6:99:66:8b:d0:79:16:17:cc:df:95:f0:4d:52:78:
        30:66:9e:14:0d:99:50:ec:11:48:66:a4:4d:99:2b:dd:66:e0:
        35:40:78:2f:56:f7:0b:56:a2:b8:1d:fa:d3:a3:5a:17:e3:6b:
        9e:64:6d:12:17:a1:14:f0:6e:d4:8c:b6:e8:ed:42:e0:80:26:
        c2:2c:c9:51:18:f6:39:ce:81:e7:ff:ce:9e:ab:b1:97:d6:40:
        e3:75:85:b0:06:f7:0d:55:64:a5:78:8f:f9:04:2a:43:be:14:
        4a:52:fd:84:18:f9:0b:0b:c3:a4:18:8a:b2:fa:b7:f6:e4:92:
        3e:45:3f:16:92:e4:68:6b:88:53:e7:82:b3:de:88:30:9f:16:
        62:73:6e:da:f9:f8:f8:5b:59:09:ce:00:f0:e8:04:b2:a6:c3:
        27:de:e9:58:e8:53:ad:46:fc:57:d0:ed:03:45:35:ed:56:b0:
        4f:27:7a:5e

-1650823187 | 2024-05-23T21:46:55.529664

8081 / tcp

HTTP/1.1 200 OK
Content-type: text/html
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
X-Frame-Options: SAMEORIGIN
Content-Length: 3705
Date: Thu, 23 May 2024 21:46:56 GMT
Server: lighttpd/1.4.55

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 11000000 (0xa7d8c0)
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, ST=Minnesota, L=Minneapolis, O=Ecessa Corp., OU=PowerLink, CN=PowerLink/emailAddress=help@ecessa.com
        Validity
            Not Before: Oct 30 11:33:16 2020 GMT
            Not After : Mar 16 11:33:16 2048 GMT
        Subject: C=US, ST=Minnesota, L=Minneapolis, O=Ecessa Corp., OU=PowerLink, CN=PowerLink/emailAddress=help@ecessa.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:db:80:8d:a1:2a:97:58:a6:a8:75:c4:81:b8:d4:
                    02:aa:e8:bb:cb:cf:1c:6d:37:67:58:20:81:ae:c0:
                    85:1b:b3:15:05:e7:2e:91:c4:c3:e8:54:5b:06:ea:
                    73:f8:16:e6:b2:25:6c:0d:09:0b:05:98:03:00:a9:
                    db:53:2a:01:76:2c:cc:bc:53:fb:9e:87:eb:fb:e3:
                    fb:41:f4:bf:f8:55:96:a8:f9:2e:81:f5:41:51:0d:
                    d0:68:7f:41:ef:39:7e:91:e8:06:96:1c:9c:09:11:
                    32:ac:ae:54:46:04:ff:cc:ea:e3:a6:a6:92:8c:c2:
                    1d:6e:07:a3:14:28:1f:b8:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                35:5C:11:EB:92:C4:6A:88:19:CA:7C:28:BE:18:8A:C0:08:D4:C5:B7
            X509v3 Authority Key Identifier: 
                keyid:35:5C:11:EB:92:C4:6A:88:19:CA:7C:28:BE:18:8A:C0:08:D4:C5:B7
                DirName:/C=US/ST=Minnesota/L=Minneapolis/O=Ecessa Corp./OU=PowerLink/CN=PowerLink/emailAddress=help@ecessa.com
                serial:A7:D8:C0
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        0f:6b:39:4a:47:9b:9e:e3:06:2d:74:2c:a5:f1:10:ad:53:ff:
        5b:88:10:d3:a1:4c:f8:72:27:e6:cc:fc:8a:ef:ce:f5:16:84:
        6b:8b:d5:60:9b:11:d1:9f:d2:ad:6a:d0:ca:26:66:30:a5:c6:
        63:0d:50:e4:95:25:fe:19:ed:e9:4f:f8:79:52:6f:cc:82:07:
        12:b9:c4:8c:37:b1:9a:f9:2e:8d:01:9f:71:e3:08:20:33:73:
        20:8e:0b:63:61:13:88:8d:c3:40:27:f1:40:85:2f:bd:42:e2:
        22:cf:74:4b:f8:e6:69:13:f5:d4:d6:1e:cc:26:be:25:14:f4:
        99:d1

12.96.158.230

Last Seen: 2024-05-31

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-118456554 | 2024-05-31T22:14:26.577900
80 / tcp

Microsoft IIS httpd10.0

-118456554 | 2024-05-28T12:39:58.996903
443 / tcp

Microsoft IIS httpd10.0

-1650823187 | 2024-05-23T21:46:55.529664
8081 / tcp

lighttpd1.4.55

Products

Pricing

Contact Us

12.96.158.230

Last Seen: 2024-05-31

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-118456554 | 2024-05-31T22:14:26.577900 80 / tcp

Microsoft IIS httpd10.0

-118456554 | 2024-05-28T12:39:58.996903 443 / tcp

Microsoft IIS httpd10.0

-1650823187 | 2024-05-23T21:46:55.529664 8081 / tcp

lighttpd1.4.55

Products

Pricing

Contact Us

-118456554 | 2024-05-31T22:14:26.577900
80 / tcp

-118456554 | 2024-05-28T12:39:58.996903
443 / tcp

-1650823187 | 2024-05-23T21:46:55.529664
8081 / tcp