GeneralInformation

Hostnames	s522-9.kagoya.net toyonaka.osaka.med.or.jp
Domains	kagoya.net med.or.jp
Country	Japan
City	Osaka
Organization	KAGOYA JAPAN Inc.
ISP	KAGOYA JAPAN Inc.
ASN	AS24282

WebTechnologies

Ecommerce

EC-CUBE

JavaScript libraries

jQuery1.4.2

Programming languages

PHP

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-7656	4.3jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2014-6071	4.3jQuery 1.4.2 allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to use of the text method inside after.
CVE-2012-6708	4.3jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.
CVE-2011-4969	4.3Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.

OpenPorts

25 80 443 873 4949 8080 8443

-229646501 | 2024-04-16T04:43:12.506585

25 / tcp

220 s522-9.kagoya.net ESMTP Postfix
250-s522-9.kagoya.net
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN

-1898384119 | 2024-04-18T00:30:22.932112

80 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 18 Apr 2024 00:30:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=erg6n43pbuq90thdpivjnlhq93; path=/
MS-Author-Via: DAV

-880395740 | 2024-04-18T01:09:24.786517

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 18 Apr 2024 01:09:24 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 253
Connection: keep-alive
Location: http://www.toyonaka.osaka.med.or.jp/index.php

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:f9:4d:02:4f:46:a3:75:00:de:b1:2e:7a:84:cb:16:26:7a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 17 18:50:42 2024 GMT
            Not After : May 17 18:50:41 2024 GMT
        Subject: CN=toyonaka.osaka.med.or.jp
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ad:72:ee:53:97:0c:3f:b7:e8:0f:4a:9c:f2:68:
                    7e:a2:25:ea:18:34:43:1a:40:6f:e0:94:1b:f4:99:
                    55:ef:65:30:50:e7:c8:b4:4e:0c:c8:7e:33:c7:f0:
                    db:db:24:c2:ba:3a:33:dd:f6:f8:0f:e6:ba:e3:f6:
                    70:50:95:f7:f5:f9:96:77:5a:74:fc:76:5f:8b:37:
                    e0:4d:4e:f2:56:2f:22:b1:7c:22:c9:b7:59:f6:76:
                    ff:ea:23:96:da:e5:7c:f3:00:1b:5d:67:98:3d:03:
                    cc:c9:35:e8:9e:59:4a:1a:b6:ee:eb:43:71:8c:34:
                    58:85:78:76:02:ff:cb:dc:5c:2f:4f:20:29:fd:bb:
                    65:c2:40:69:92:c0:32:e4:7e:39:5b:6e:23:c9:00:
                    48:50:07:4c:f8:6a:1c:c0:d5:bf:be:d3:ad:e4:9c:
                    75:02:b8:07:be:90:2d:ee:d2:61:54:0a:f7:88:cd:
                    78:9b:10:e6:08:f5:94:f4:dc:a5:dd:6b:3b:4b:bf:
                    2c:3e:a7:f2:0d:93:01:de:13:82:bc:fa:59:34:8b:
                    45:61:36:78:a1:1d:f5:49:65:21:9f:1f:c1:ef:9f:
                    51:db:ab:a7:35:19:c7:0e:36:4f:84:54:45:be:d2:
                    14:98:8e:52:7d:a8:57:7c:75:06:d3:2d:9a:9d:b0:
                    f5:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                3F:BD:45:E4:75:99:7A:6F:A0:7B:43:F7:98:F2:BC:45:9D:F8:EF:F4
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:toyonaka.osaka.med.or.jp
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb 17 19:50:42.745 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:04:5C:60:3C:73:70:69:15:57:7C:23:5F:
                                93:12:8E:19:A4:DE:C0:4E:74:99:E6:79:CB:2B:CB:93:
                                EA:2A:36:16:02:20:46:46:05:7A:4A:03:31:39:F2:C0:
                                85:2C:59:CA:D8:2D:5F:E6:06:DB:19:14:BA:0F:29:44:
                                56:66:75:CD:AC:3D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Feb 17 19:50:43.298 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:76:D5:DA:96:98:82:0A:AC:51:9A:15:AC:
                                30:A6:1A:16:4D:1A:0D:6C:7E:5A:B8:12:27:77:37:D4:
                                E1:E1:64:C8:02:21:00:A3:DB:F8:85:13:E9:79:16:32:
                                07:35:C2:99:9E:D2:3F:7D:F8:62:6F:99:45:5D:6E:11:
                                BD:17:C3:FE:E7:D3:85
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1d:e4:95:6c:97:82:d1:4f:c6:a0:86:6f:cc:8f:97:fd:71:b7:
        67:f9:9d:c8:87:78:f7:4b:4f:9a:91:d4:d7:fd:ae:fd:01:a7:
        f6:0c:46:10:b8:cd:f4:14:e7:a5:39:0e:79:b2:a3:2f:79:60:
        ff:83:ea:f1:91:89:fb:40:5c:38:45:fe:43:54:91:5d:56:ea:
        8f:2c:06:8a:d2:9e:69:18:ab:99:1d:f4:03:d0:06:94:ef:2b:
        81:1c:a0:49:3a:dd:84:bd:c4:0a:d5:75:0a:26:d2:ac:c3:3d:
        90:11:8f:e9:c2:cc:95:fb:76:77:9d:49:9d:b9:c4:70:ca:90:
        2b:44:98:dc:26:d5:42:e4:42:a3:ec:97:62:6e:af:61:e0:b5:
        a2:df:29:b0:b4:4c:ff:5a:93:06:60:77:a9:45:68:aa:5e:9d:
        82:61:d5:4e:87:dc:77:4b:a7:c6:90:0f:68:28:af:48:07:29:
        8c:a3:4b:85:b2:d6:16:e8:72:13:dc:4f:55:7c:9f:21:07:22:
        ad:e0:b5:80:3b:ae:60:b5:b0:4d:bc:e0:21:84:b3:d4:ab:3a:
        06:61:c9:05:c6:77:99:1e:bd:61:9d:92:c8:f8:29:4b:d4:5a:
        83:86:9f:1a:39:02:3a:66:ef:d9:4b:15:eb:eb:70:d5:d0:af:
        19:50:c1:ec

650871242 | 2024-04-15T05:53:05.706345

8080 / tcp

HTTP/1.1 403 Forbidden
Date: Mon, 15 Apr 2024 05:53:05 GMT
Server: Apache
Last-Modified: Thu, 17 Oct 2019 08:30:05 GMT
Accept-Ranges: bytes
Content-Length: 574
MS-Author-Via: DAV
Connection: close
Content-Type: text/html

-655190874 | 2024-04-04T07:49:05.631698

8443 / tcp

HTTP/1.1 403 Forbidden
Date: Thu, 04 Apr 2024 07:49:05 GMT
Server: Apache
Last-Modified: Thu, 17 Oct 2019 08:30:05 GMT
Accept-Ranges: bytes
Content-Length: 574
MS-Author-Via: DAV
Connection: close
Content-Type: text/html

<HTML>
  <HEAD>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
    <META http-equiv="Content-Style-Type" content="text/css">
    <TITLE>アクセス権限がありません</TITLE>
  </HEAD>
  <BODY>
    <CENTER><H3>指定されたページにアクセス権限がありません。</H3>
    <H4>Error Code 403(FORBIDDEN)</H4>
    <P>サーバー管理者がサイトの閲覧を禁止している可能性があります。<BR>
    または、入力したアドレスに間違いがある可能性があります。</P></CENTER>
  </BODY>
</HTML>

133.18.34.28

Last Seen: 2024-04-18

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-229646501 | 2024-04-16T04:43:12.506585
25 / tcp

Postfix smtpd

-1898384119 | 2024-04-18T00:30:22.932112
80 / tcp

nginx

-880395740 | 2024-04-18T01:09:24.786517
443 / tcp

nginx

650871242 | 2024-04-15T05:53:05.706345
8080 / tcp

Apache httpd

-655190874 | 2024-04-04T07:49:05.631698
8443 / tcp

Apache httpd

Products

Pricing

Contact Us

133.18.34.28

Last Seen: 2024-04-18

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-229646501 | 2024-04-16T04:43:12.506585 25 / tcp

Postfix smtpd

-1898384119 | 2024-04-18T00:30:22.932112 80 / tcp

nginx

-880395740 | 2024-04-18T01:09:24.786517 443 / tcp

nginx

650871242 | 2024-04-15T05:53:05.706345 8080 / tcp

Apache httpd

-655190874 | 2024-04-04T07:49:05.631698 8443 / tcp

Apache httpd

Products

Pricing

Contact Us

-229646501 | 2024-04-16T04:43:12.506585
25 / tcp

-1898384119 | 2024-04-18T00:30:22.932112
80 / tcp

-880395740 | 2024-04-18T01:09:24.786517
443 / tcp

650871242 | 2024-04-15T05:53:05.706345
8080 / tcp

-655190874 | 2024-04-04T07:49:05.631698
8443 / tcp