GeneralInformation

Hostnames	admin.demandgenesys.com
Domains	demandgenesys.com
Cloud Provider	DigitalOcean
Cloud Region	us-nj
Country	United States
City	North Bergen
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

WebTechnologies

CDN

JavaScript libraries

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443 2202 3306 33060

677579724 | 2024-05-15T03:24:11.613733

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 15 May 2024 03:24:11 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

1295863 | 2024-05-13T08:25:19.335210

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 13 May 2024 08:25:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: ci_session=ccuhb8tfpt483ctn06veb40ku5a8i41j; expires=Mon, 13-May-2024 10:25:19 GMT; Max-Age=7200; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Request-Method: GET,POST

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:db:52:f7:ba:6c:7d:b7:e1:75:f8:f6:8a:20:56:91:0a:fd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 11 15:12:14 2024 GMT
            Not After : Jul 10 15:12:13 2024 GMT
        Subject: CN=admin.demandgenesys.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e5:b8:c1:7e:88:25:3a:d7:ec:48:f6:b2:e6:92:
                    90:b1:0d:1c:ce:51:75:67:79:5f:8a:4d:d6:fd:be:
                    0f:18:50:98:27:81:d9:9e:58:61:62:f1:bc:34:d4:
                    31:ba:bd:50:56:6f:14:9f:4f:ac:8b:25:a9:08:87:
                    db:bc:e0:d4:67:ec:7c:ba:2e:1b:66:f1:90:36:cc:
                    1c:60:4a:e5:67:fd:48:27:74:f0:24:14:83:bc:a9:
                    ca:f4:ea:b4:69:f4:59:fa:65:db:ea:2e:06:06:61:
                    e7:9c:56:36:65:fb:ee:0e:1a:5e:a9:91:da:44:ba:
                    6c:9f:d5:bf:cc:d5:5e:06:38:fc:f4:31:69:8b:75:
                    60:6e:dd:b5:33:50:83:7c:fa:0d:bb:d9:9a:2f:30:
                    c8:c6:65:d4:30:10:07:e4:b0:32:68:77:cd:cf:e3:
                    6c:13:17:26:3d:42:5f:77:6b:57:0b:35:fc:84:4f:
                    d0:f5:25:97:f4:a6:d8:ed:4c:90:46:2b:61:f8:a7:
                    33:2e:00:63:01:42:5d:39:25:b2:95:36:17:f2:b1:
                    be:8c:d6:49:a8:29:79:c1:6e:bb:99:de:e5:b7:e3:
                    55:bb:68:6c:0e:e4:72:52:ce:b3:00:de:5c:aa:43:
                    7c:c4:01:49:a7:2c:72:64:59:0c:b3:e1:98:bc:f3:
                    93:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                BC:4B:C4:75:B3:7F:F4:52:F3:FB:B7:91:40:63:5C:B0:E4:34:4C:9A
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:admin.demandgenesys.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 11 16:12:14.225 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C2:6E:11:52:B6:EA:84:92:EA:F4:F3:
                                D3:A3:44:38:75:B2:69:85:30:3A:67:67:65:57:78:52:
                                20:AE:50:91:24:02:20:13:01:43:A3:B8:61:49:09:21:
                                49:83:88:70:28:0C:BD:8C:98:87:03:D7:2B:FF:35:12:
                                1A:B3:D0:15:50:70:E6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 11 16:12:14.254 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7F:C7:A9:B2:4D:DB:39:5C:03:8C:BC:13:
                                33:60:48:5C:8D:0C:DA:4F:B9:72:D0:27:51:B5:19:11:
                                EF:64:4E:70:02:20:74:50:3D:BA:1C:E2:FA:34:79:1C:
                                5E:D8:D1:F2:C7:1F:FE:9E:EB:E9:C1:EC:F3:04:5D:7E:
                                19:3F:84:BE:34:9A
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        8c:a8:9e:2f:f9:c8:05:0d:68:3d:b3:a5:fd:55:13:8e:08:e8:
        cf:a6:ea:80:10:a6:63:31:2b:89:bb:e2:bf:d4:58:d9:d1:f4:
        35:f7:c4:88:ec:d4:13:31:a2:52:4b:9d:96:f6:1d:ab:01:6d:
        19:6e:54:a4:08:de:0d:9c:4f:4d:18:bc:5b:a6:93:a9:1c:e1:
        6c:85:97:82:92:b0:45:88:11:50:d0:91:7a:ad:19:c0:f8:ef:
        a4:0c:ec:bf:f9:0f:c5:2e:64:4d:13:82:f7:42:01:66:dd:01:
        4f:ec:67:2a:a6:f2:53:35:94:33:64:68:18:d9:11:57:3a:69:
        c7:96:3c:57:9c:6e:67:f6:3e:54:f7:e1:e0:28:ff:49:95:e1:
        4f:44:8f:9b:65:47:ae:ce:ef:9e:96:4f:f5:5d:fb:d2:92:c9:
        c5:37:49:0e:5f:16:31:9c:1a:37:de:1b:c0:93:62:df:3b:0a:
        70:0b:22:91:6f:f5:ab:41:a1:c9:a9:1b:f1:6f:68:0a:17:59:
        49:b0:27:ed:82:b5:3a:3a:6f:3d:a6:e5:77:25:f9:79:9c:46:
        08:a8:e6:f1:99:57:d6:b8:61:f0:da:0a:ca:87:b7:7c:0e:4b:
        40:aa:82:5e:4e:ff:81:dd:3a:ab:47:6d:f7:f6:1c:13:70:b0:
        2f:1d:6e:33

1846076295 | 2024-05-17T13:01:00.410021

2202 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCxMIEBSuw613x+oclW+p1j5p5RxwRecmXwR0tCDkrdUS/5
OMFFvjTtJzJk/a/5zUhQNxK+nzD+SvkmS2O7xhBLtTrx9nt8Ua44lmk7Y9vq5x99D3TJmwQH1nsb
ga53I5TEIJA4rxHLUG3TvBLJf6yWYMadL+bvT5xrjPNrBYfcCCEKC1Z8ok4ILlt/T+1HiKBuRbL3
pAFTIFOp2ze7+NsQ6ZI+tmYGXWkTSz0maL55Hod40daf7j0jARiXoTTg8RwJwe2A/vXKlziqDpAv
U8OKTkVg5B8yBJW80/Dr2dFlixnZuld3AoPaFvTrO36dreWncNCYGGunUyR6GiipCiAqTkdIipGd
h8ktX961KH4EwNcN1pbLqBB5+wUdzKAl1A01uvDYb9eajpeMcXJrglGXuHFJdQ6Zjj8QLgJjJvrY
2S5Q7mxFIttSC7zRGhekZHLUTqp2sWsP5MLaHHPBQndBGFCGPP3KY29eUUwqFH4u+3cVmT6eTiAT
nAhEd8sPJ6E=
Fingerprint: e1:0a:1f:26:3b:8c:94:ff:36:17:2c:a0:4d:11:61:3b

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

748751232 | 2024-05-16T08:01:17.357180

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 8.0.36-0ubuntu0.20.04.1
  Capabilities: 65535
  Server Language: 255
  Server Status: 2
  Extended Server Capabilities: 57343
  Authentication Plugin: caching_sha2_password

-795948505 | 2024-05-02T12:05:20.155704

33060 / tcp

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

143.244.166.29

Last Seen: 2024-05-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

677579724 | 2024-05-15T03:24:11.613733
80 / tcp

nginx1.18.0

1295863 | 2024-05-13T08:25:19.335210
443 / tcp

nginx1.18.0

1846076295 | 2024-05-17T13:01:00.410021
2202 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

748751232 | 2024-05-16T08:01:17.357180
3306 / tcp

MySQL8.0.36-0ubuntu0.20.04.1

-795948505 | 2024-05-02T12:05:20.155704
33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

143.244.166.29

Last Seen: 2024-05-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

677579724 | 2024-05-15T03:24:11.613733 80 / tcp

nginx1.18.0

1295863 | 2024-05-13T08:25:19.335210 443 / tcp

nginx1.18.0

1846076295 | 2024-05-17T13:01:00.410021 2202 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

748751232 | 2024-05-16T08:01:17.357180 3306 / tcp

MySQL8.0.36-0ubuntu0.20.04.1

-795948505 | 2024-05-02T12:05:20.155704 33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

677579724 | 2024-05-15T03:24:11.613733
80 / tcp

1295863 | 2024-05-13T08:25:19.335210
443 / tcp

1846076295 | 2024-05-17T13:01:00.410021
2202 / tcp

748751232 | 2024-05-16T08:01:17.357180
3306 / tcp

-795948505 | 2024-05-02T12:05:20.155704
33060 / tcp