| Hostnames |
gmoserver.jp ftp15.gmoserver.jp rentalserver.jp |
| Domains | gmoserver.jp rentalserver.jp |
| Country | Japan |
| City | Yokohama |
| Organization | GMO Internet Group, Inc. |
| ISP | GMO Internet,Inc |
| ASN | AS7506 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2020-23064 | Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element. |
| CVE-2020-11023 | 4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0. |
| CVE-2020-11022 | 4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0. |
| CVE-2019-11358 | 4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype. |
687499562 | 2024-04-19T07:27:45.39176521 / tcp
220 133.130.64.26 FTP server ready 530 Login incorrect. 214-The following commands are recognized (* =>'s unimplemented): CWD XCWD CDUP XCUP SMNT* QUIT PORT PASV EPRT EPSV ALLO* RNFR RNTO DELE MDTM RMD XRMD MKD XMKD PWD XPWD SIZE SYST HELP NOOP FEAT OPTS AUTH CCC* CONF* ENC* MIC* PBSZ PROT TYPE STRU MODE RETR STOR STOU APPE REST ABOR USER PASS ACCT* REIN* LIST NLST STAT SITE MLSD MLST 214 Direct comments to root@ftp01-ext.sd214 211-Features: PBSZ LANG ja-JP.UTF-8;ja-JP AUTH TLS MFF modify;UNIX.group;UNIX.mode; REST STREAM MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.mode*;UNIX.owner*; UTF8 EPRT EPSV MDTM SSCN TVFS MFMT SIZE PROT CCC 211 End
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:38:ff:15:81:29:ae:dd:91:6b:2f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R3 DV TLS CA 2020
Validity
Not Before: Oct 11 09:40:31 2023 GMT
Not After : Nov 11 09:40:30 2024 GMT
Subject: CN=*.gmoserver.jp
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:cd:32:19:00:76:8a:ff:87:5e:3c:50:2f:d4:42:
ae:7e:7a:a3:b2:af:f7:a8:25:2e:f6:b0:8d:15:af:
43:56:40:a0:64:d4:04:f4:38:ac:b5:18:85:03:1d:
2c:7b:63:78:d6:f0:a1:86:8c:68:de:fb:fd:4e:d8:
10:ad:94:f9:ca:29:95:89:30:78:54:b6:3e:7c:17:
fb:33:48:b9:14:2a:0d:c6:64:02:48:d5:76:2c:2c:
61:a1:02:3c:1b:d9:60:83:6b:a9:de:de:d9:8d:56:
c4:f7:22:f3:e3:ac:eb:64:4c:ac:f2:64:83:b3:60:
a2:7e:42:17:5b:f3:79:94:8c:b9:ed:98:ce:1d:d8:
cf:46:ac:a0:a5:19:47:ae:c4:7f:c3:10:b5:a8:c6:
fa:74:e7:65:36:34:07:d5:f7:5b:08:80:73:9f:b2:
d7:2d:ff:71:4e:af:7d:e9:97:cd:68:23:d3:38:90:
df:db:59:59:42:57:97:33:82:1e:ea:ff:b6:77:2b:
9c:ba:a9:f5:4c:7f:4e:86:22:bf:6b:5b:a8:fd:24:
8c:f7:fc:91:4e:ce:7a:68:60:68:91:86:a7:80:a4:
ce:eb:62:66:d5:99:39:35:d1:86:63:ff:63:ff:5b:
5b:1d:32:fd:68:d3:62:a4:0a:c1:d9:8d:5f:1c:d3:
05:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
Authority Information Access:
CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
OCSP - URI:http://ocsp.globalsign.com/gsgccr3dvtlsca2020
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.4146.1.10
CPS: https://www.globalsign.com/repository/
Policy: 2.23.140.1.2.1
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
X509v3 Subject Alternative Name:
DNS:*.gmoserver.jp, DNS:gmoserver.jp
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Authority Key Identifier:
0D:98:C0:73:7F:AB:BD:BD:D9:47:4B:49:AD:0A:4A:0C:AC:3E:C7:7C
X509v3 Subject Key Identifier:
A3:67:92:4F:05:1F:61:BF:BE:85:1F:B9:CC:60:73:27:D1:25:96:A0
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Oct 11 09:40:32.640 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:95:FA:05:F3:46:94:C1:16:61:39:E6:
24:42:A7:79:6F:99:F8:B8:CB:91:CD:88:D2:7F:05:F8:
21:F6:DD:60:C9:02:20:62:DA:B7:70:7D:74:D0:1B:07:
9B:81:B6:83:C1:FD:C3:DF:A6:04:D0:0B:60:DA:AC:35:
21:D5:04:D8:AF:C9:01
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Oct 11 09:40:32.987 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:B7:9B:90:14:2D:03:A1:CA:1F:91:C1:
F0:F7:5D:8C:85:71:AD:CE:0B:D7:18:A0:5B:00:F0:DB:
F8:C9:8A:B4:F9:02:21:00:E1:33:34:64:47:5A:3D:0A:
B9:A1:FC:7F:AD:5B:A2:07:DF:10:DD:59:69:E6:AA:E2:
9D:86:AC:0C:02:E1:E8:79
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Oct 11 09:40:32.286 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:D2:4C:87:A2:30:FF:28:3F:41:C4:7F:
EB:A6:8A:0C:69:2C:62:32:18:F8:D3:CC:EE:C9:92:28:
89:B7:1F:5F:82:02:21:00:F8:22:CB:76:C4:32:77:FA:
50:4F:62:A1:08:B9:E7:E6:58:3E:DA:3E:61:23:B4:D5:
57:67:4E:77:AD:60:04:4C
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
0a:d2:0c:2e:2f:fa:5d:ee:78:5b:09:9a:95:c1:d8:62:e8:77:
7c:b7:a5:80:91:41:fa:d9:38:4b:12:be:2d:96:d3:91:26:5b:
45:73:30:e3:1d:fe:c0:0a:28:af:6c:94:79:b7:fd:84:69:3f:
fc:f7:1f:4e:fa:97:74:aa:4b:95:ab:61:06:ba:24:f3:61:91:
c1:3c:ff:b1:cd:f6:89:e9:c8:e8:89:60:67:74:99:53:e0:51:
11:4b:35:83:d2:50:c5:53:76:6e:20:1b:68:5b:58:24:c5:b6:
3d:6f:a8:ff:0d:55:e1:1f:14:ac:5d:b3:f1:ff:ab:1f:de:4a:
4f:52:08:0b:2d:b5:ad:19:8e:17:95:09:3f:0f:ec:56:85:73:
ec:31:a7:da:65:f0:78:b8:29:43:ed:92:18:9f:68:08:22:b0:
51:8f:9d:f7:79:fb:57:fa:f9:00:e5:06:a2:d7:e1:ed:25:15:
de:14:5f:9f:24:85:32:36:fa:02:d5:a4:9f:5b:6c:8f:89:d5:
80:4d:30:07:d6:e3:7f:78:95:ea:be:88:c3:3c:22:1f:ef:3b:
02:c8:59:ca:87:91:f0:f0:a8:ca:46:bf:df:9c:18:78:2a:97:
3b:ed:18:98:b9:4b:44:9a:42:88:40:b5:b4:e1:1a:bd:34:2e:
84:6c:ef:87
-2000135773 | 2024-04-19T13:19:54.92150380 / tcp
HTTP/1.1 301 Moved Permanently Date: Fri, 19 Apr 2024 13:19:54 GMT Server: Apache Location: https://sd-webmail15.rentalserver.jp/ Content-Length: 245 Content-Type: text/html; charset=iso-8859-1
-1655752756 | 2024-04-19T15:52:21.120928443 / tcp
HTTP/1.1 200 OK Date: Fri, 19 Apr 2024 15:52:20 GMT Server: Apache Set-Cookie: roundcube_sessid=53e18a7c4658940e253fa94cddf185a4; path=/; secure; HttpOnly Expires: Fri, 19 Apr 2024 15:52:20 GMT Cache-Control: private, no-cache, no-store, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Last-Modified: Fri, 19 Apr 2024 15:52:20 GMT X-DNS-Prefetch-Control: off X-Frame-Options: sameorigin Content-Language: ja Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:7d:24:0a:bc:35:01:a3:f5:d1:37:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R3 DV TLS CA 2020
Validity
Not Before: Feb 29 08:31:28 2024 GMT
Not After : Apr 1 08:31:27 2025 GMT
Subject: CN=*.rentalserver.jp
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ad:2f:57:aa:7c:8d:06:7d:15:21:a0:50:1d:fd:
21:b1:1f:21:05:a5:f6:97:11:f6:3e:14:90:ff:23:
ba:e9:b3:e5:65:29:81:e1:ce:88:25:27:c7:95:4e:
32:f5:ea:bf:e1:98:1c:93:cc:f4:b0:36:c5:39:c7:
d8:02:8e:dc:0b:87:96:5b:5a:b2:53:33:59:39:63:
f8:c7:aa:2d:54:5b:4a:b6:92:72:bf:b7:df:0c:9a:
ed:e0:f0:ff:d1:12:0c:a2:a8:bd:0f:1f:a3:9c:05:
45:ec:cb:7f:ed:67:4f:b0:9c:f8:b6:4d:ee:61:b4:
c1:95:36:64:f0:ba:41:20:0a:40:8c:ae:a5:81:33:
06:ff:92:ae:cd:68:d3:c9:29:09:c3:f1:c8:6c:dc:
ea:41:05:10:e4:01:cc:87:ea:a3:d9:f2:23:09:71:
9b:dd:6c:24:8c:55:e2:8a:0e:87:1f:07:6f:31:73:
de:ab:4d:f1:d9:6c:79:da:c1:ec:2d:d6:5c:4a:0f:
d2:bb:25:d7:75:0f:99:e3:45:84:fb:40:4a:ec:f4:
60:7f:f2:1e:14:c9:d3:e8:45:bc:cf:17:f2:25:69:
e8:35:a5:0c:1f:b2:14:b8:0c:04:e0:48:1a:f8:1f:
f9:88:78:2a:b2:d9:2f:ad:8d:57:86:0e:bc:cd:79:
d4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
Authority Information Access:
CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
OCSP - URI:http://ocsp.globalsign.com/gsgccr3dvtlsca2020
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.4146.1.10
CPS: https://www.globalsign.com/repository/
Policy: 2.23.140.1.2.1
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
X509v3 Subject Alternative Name:
DNS:*.rentalserver.jp, DNS:rentalserver.jp
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Authority Key Identifier:
0D:98:C0:73:7F:AB:BD:BD:D9:47:4B:49:AD:0A:4A:0C:AC:3E:C7:7C
X509v3 Subject Key Identifier:
17:95:39:1D:B8:FB:3E:EC:46:C2:C1:43:82:6F:C2:37:0C:4F:7C:DC
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Feb 29 08:31:30.063 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:2C:ED:9F:37:7C:DC:51:28:17:5C:DD:E9:
72:E7:50:33:4A:D6:06:E4:4A:2C:08:0B:AB:20:F1:D9:
81:2F:BA:1B:02:20:1C:AC:77:6B:4B:69:37:D8:D1:20:
ED:8A:38:AC:C4:88:0E:0A:65:8A:43:03:85:8D:14:06:
15:42:31:C3:12:6B
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Feb 29 08:31:30.121 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:CE:5D:78:01:41:06:25:D7:AA:A6:FA:
54:B9:33:22:56:1B:53:FF:F8:8E:B0:6E:4B:E7:B4:BD:
2E:DE:AB:66:FF:02:21:00:94:B5:F4:8C:56:77:C0:80:
3E:D5:35:55:56:A3:A8:A2:0F:27:59:11:D2:67:A2:52:
3F:AD:98:6D:7C:AF:10:88
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Feb 29 08:31:30.022 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:AC:B9:73:9E:2A:A7:20:98:67:4E:C6:
F3:85:6D:76:FC:2F:84:5E:F5:10:29:38:A7:25:3E:56:
36:C6:35:A2:A5:02:21:00:C5:17:8D:55:EC:0C:6C:99:
AC:EB:00:F1:53:E4:14:BB:E5:46:EC:45:26:4C:24:FB:
99:77:DF:F4:E7:41:B6:DD
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
42:35:f6:ec:d6:f9:6a:74:28:cb:4d:7c:bc:9e:fd:e2:ff:8b:
f4:34:0d:b8:68:e7:0f:d7:55:fe:ba:31:79:c9:36:4b:57:e4:
e8:66:52:6f:46:ac:a9:23:44:fa:a5:0b:6c:fa:0d:94:e0:26:
f5:8f:b3:27:0e:7f:16:4e:4b:b1:b3:5e:8e:aa:58:bb:91:13:
73:ce:2c:d9:fa:7c:53:b3:19:90:80:cc:b0:7e:dc:2b:85:d3:
f8:4c:00:3c:fb:0a:a8:83:1e:ca:a3:7d:84:9b:a6:20:f8:18:
86:f8:5f:96:63:bd:db:87:c4:97:f5:29:26:bd:88:7e:19:1c:
04:55:82:21:cc:14:2e:b1:3c:9e:38:6a:27:d0:50:70:c1:10:
7a:ce:da:2b:0b:37:63:82:da:64:50:e5:a1:12:b1:17:84:a7:
fc:aa:17:30:b7:76:e1:32:77:79:25:ed:ea:98:56:fd:70:4c:
76:1a:a1:5c:70:f0:0b:b8:86:3f:68:97:ba:61:21:3a:26:5e:
3c:21:1c:73:dc:d1:9c:fd:06:17:90:b1:40:4b:f3:8e:78:4d:
1b:02:66:61:34:cc:fd:7d:0d:da:eb:9d:55:c1:08:3f:31:80:
a2:93:96:1d:8b:9c:15:4a:47:8f:32:64:7d:9d:58:70:5e:3b:
72:d7:86:1a