| Hostnames |
christianwinecellars.com www.christianwinecellars.com hipex.io production518.hipex.io |
| Domains | christianwinecellars.com hipex.io |
| Country | Germany |
| City | Falkenstein |
| Organization | Hetzner Online GmbH |
| ISP | Hetzner Online GmbH |
| ASN | AS24940 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
-1748149206 | 2024-04-11T13:08:32.92625721 / tcp
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 1 of 50 allowed. 220-Local time is now 14:08. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity. 530 Login authentication failed 214-The following SITE commands are recognized ALIAS CHMOD IDLE UTIME 214 Pure-FTPd - http://pureftpd.org/ 211-Extensions supported: EPRT IDLE MDTM SIZE MFMT REST STREAM MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*; MLSD AUTH TLS PBSZ PROT UTF8 ESTA PASV EPSV SPSV ESTP 211 End.
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:97:08:51:d6:cd:3a:ef:b3:5a:e8:fa:78:c8:2f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Validity
Not Before: Jan 18 00:00:00 2024 GMT
Not After : Jan 22 23:59:59 2025 GMT
Subject: CN=*.hipex.io
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:98:d1:3b:f1:c6:f6:ed:1a:c1:28:79:a5:96:a8:
79:0c:6c:33:44:2a:ae:ee:4b:64:b4:d5:11:bb:ad:
70:30:2b:3b:e4:92:63:e3:c4:05:6d:7a:99:55:aa:
d6:3f:75:87:19:f1:25:f3:28:e1:f8:b6:cb:17:2d:
2c:63:8c:21:14:9b:2a:f8:13:35:e7:e2:cb:c5:c6:
02:2a:e0:4f:12:19:88:b0:ac:6f:e9:5d:17:9e:44:
7e:4b:9c:f8:30:2c:5e:7d:98:a3:ca:0c:cf:dd:e3:
18:37:b4:78:a0:cf:f3:ec:cd:3d:fd:99:23:f1:b3:
06:63:f5:fd:2d:3a:52:39:17:2c:20:ef:dc:2b:60:
fc:9f:a2:f4:fe:ac:ff:ee:b2:b1:2a:90:2a:94:b2:
32:89:ea:99:8b:44:6d:8b:a7:c3:e8:8d:0a:4d:6d:
25:81:1c:17:fd:4d:c9:27:39:de:94:be:6c:81:55:
3d:cd:81:3c:42:d2:41:bc:06:e9:21:4f:24:63:80:
ca:98:77:5f:8b:03:b3:5c:df:a0:8b:3e:7e:5c:6f:
1d:ee:7c:89:f7:d5:9d:3b:01:03:5d:62:dd:46:cd:
2c:12:2b:c3:a6:65:dd:cb:78:eb:0e:8f:77:42:61:
a9:44:aa:83:e2:df:1a:fd:94:7e:ad:c3:3b:4f:96:
8b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
X509v3 Subject Key Identifier:
87:CB:7B:E6:63:6A:0A:7C:BF:FB:92:BD:9F:66:66:F2:F6:3B:69:B9
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.2.7
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1
Authority Information Access:
CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
OCSP - URI:http://ocsp.sectigo.com
X509v3 Subject Alternative Name:
DNS:*.hipex.io, DNS:hipex.io
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Jan 18 09:20:37.482 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:74:25:BE:6A:AA:31:26:DE:D7:CB:DC:1E:
FD:85:CD:D3:03:34:98:BA:DF:22:9B:9A:DC:0D:72:D3:
E2:C7:08:6E:02:20:32:E7:06:6E:15:9B:E3:7F:BC:86:
7D:82:DF:1A:84:AF:27:BE:11:33:D2:86:CC:CB:C6:2F:
EF:B8:95:C5:04:0B
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Jan 18 09:20:37.530 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:0C:DB:58:F9:40:69:FD:F3:87:06:1A:7F:
06:EE:65:64:08:11:DA:C7:B5:09:6F:B7:64:3A:DB:93:
7D:8B:ED:5E:02:21:00:91:32:FE:11:FA:C2:4D:0B:FD:
5F:68:F4:B3:BC:73:16:F8:35:D4:03:77:B4:8D:E7:56:
FD:E7:84:46:D4:24:78
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Jan 18 09:20:37.379 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:36:B5:B7:97:42:11:0E:C2:22:A9:57:2B:
95:FD:CF:74:36:7C:B9:47:96:FB:E3:AA:2A:B0:13:68:
2E:05:C2:19:02:20:5A:05:05:85:A4:DD:3D:E2:03:56:
1D:E2:7C:07:5A:62:FE:89:73:EC:21:ED:04:9A:CA:B2:
2B:50:CD:84:4B:18
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
17:6b:b7:aa:90:82:02:d7:eb:02:c7:11:14:e5:6a:fb:7a:79:
4d:bb:23:78:89:6b:4d:d9:09:69:a2:c2:d1:2d:f0:10:43:ab:
87:a2:1c:95:c0:76:d2:9e:29:e9:dd:00:a6:e1:de:90:ea:db:
a7:e5:13:a2:c4:90:f3:59:41:9b:fa:4a:8c:bd:52:91:a2:88:
e8:36:0c:7c:a0:fe:ef:42:84:fc:c6:f4:8b:a1:a7:8a:bd:16:
f5:1f:2f:c2:d6:11:97:41:81:55:f3:d0:1f:76:2c:7f:d1:a4:
6f:46:8a:da:d2:82:aa:b1:f5:84:10:9a:ca:e5:93:5f:0b:ef:
02:e5:7d:59:82:34:80:2f:01:b4:1a:de:f9:92:e0:24:91:d8:
64:8b:6a:06:f7:3c:07:3d:55:25:9c:57:9f:99:7c:97:8a:6c:
fa:9c:9e:f0:13:b2:ad:09:ce:2e:46:3f:e9:45:5d:3f:3c:81:
fe:90:1d:09:04:3e:03:ab:b8:09:4d:4d:b4:ed:65:80:fc:41:
f7:e4:f0:c0:d7:1f:04:77:7a:2c:51:28:2c:01:56:ca:bb:22:
2e:fb:f2:6c:08:5d:73:b2:b2:7c:8a:c8:2f:73:a2:5d:56:73:
00:e1:34:1d:bf:04:86:88:df:7e:e2:b6:76:09:f8:66:8c:23:
22:16:bc:f2
-578836263 | 2024-04-25T00:48:17.34728080 / tcp
HTTP/1.1 302 Moved Temporarily Server: nginx/1.21.3 Date: Thu, 25 Apr 2024 00:48:17 GMT Content-Type: text/html Content-Length: 145 Connection: keep-alive Location: https://www.testhipex.io/
931237969 | 2024-04-21T01:46:32.643656443 / tcp
HTTP/1.1 200 OK Server: nginx Date: Sun, 21 Apr 2024 01:46:31 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Set-Cookie: PHPSESSID=e7874227f62da27392c10475f560e9fa; expires=Sun, 21 Apr 2024 02:46:31 GMT; Max-Age=3600; path=/; domain=www.christianwinecellars.com; secure; HttpOnly; SameSite=Lax Pragma: no-cache Cache-Control: max-age=0, must-revalidate, no-cache, no-store Expires: Fri, 21 Apr 2023 01:46:31 GMT x-built-with: Hyva Themes Content-Security-Policy-Report-Only: font-src https://www.gstatic.com https://fonts.gstatic.com *.fontawesome.com *.gstatic.com 'self' data: fonts.gstatic.com data: 'self' 'unsafe-inline'; form-action pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com *.youtube.com https://www.google.com/recaptcha/ https://*.google.com https://hcaptcha.com https://*.hcaptcha.com https://challenges.cloudflare.com www.xtento.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net www.googleadservices.com www.google-analytics.com analytics.google.com www.googletagmanager.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com https://static.buckaroo.nl ebizmarts-website.s3.amazonaws.com downloads.mailchimp.com gallery.mailchimp.com https://images.unsplash.com https://*.google.com https://*.gstatic.com https://*.googleapis.com https://*.googleusercontent.com 'self' data: www.xtento.com cdn.xtento.com *.googletagmanager.com *.google-analytics.com ssl.gstatic.com www.gstatic.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com googleads.g.doubleclick.net www.googleadservices.com www.google-analytics.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://static.buckaroo.nl https://checkout.buckaroo.nl https://testcheckout.buckaroo.nl https://buckaroo.nl chimpstatic.com downloads.mailchimp.com *.list-manage.com https://cdn.polyfill.io https://browser.sentry-cdn.com *.google.com https://*.gstatic.com https://*.googleapis.com https://*.ggpht.com https://*.googleusercontent.com https://hcaptcha.com https://*.hcaptcha.com https://challenges.cloudflare.com *.cloudflare.com/ajax/libs/prototype/1.7.3/prototype.js *.gstatic.com www.xtento.com cdn.xtento.com *.googletagmanager.com tagmanager.google.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com https://checkout.buckaroo.nl https://testcheckout.buckaroo.nl downloads.mailchimp.com https://fonts.googleapis.com https://hcaptcha.com https://*.hcaptcha.com *.fontawesome.com *.googleapis.com *.gstatic.com tagmanager.google.com fonts.google.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net www.googleadservices.com www.google-analytics.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com https://static.buckaroo.nl wss://websockets.buckaroo.io/ https://checkout.buckaroo.nl https://testcheckout.buckaroo.nl https://*.ingest.sentry.io https://ipinfo.io https://*.google.com https://*.gstatic.com https://*.googleapis.com https://hcaptcha.com https://*.hcaptcha.com t.elasticsuite.io *.google-analytics.com *.analytics.google.com *.googletagmanager.com 'self' 'unsafe-inline'; child-src http: https: blob: 'self' 'unsafe-inline'; default-src *.googleapis.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block X-Frame-Options: SAMEORIGIN X-Environment: Hipex/3 main
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:62:03:38:f6:b6:cc:2f:6e:93:a8:70:e9:f5:6f:11:45:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 3 10:02:58 2024 GMT
Not After : Jul 2 10:02:57 2024 GMT
Subject: CN=christianwinecellars.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:b2:12:28:00:41:1e:08:74:9e:44:0a:95:8c:25:
50:b5:6f:36:44:1a:81:28:fd:92:97:0f:8b:ba:c7:
53:f8:44:36:97:c8:0d:92:c8:3c:a8:e9:33:fd:95:
85:de:45:0a:7f:4e:ac:bb:e4:de:b1:a3:60:a0:52:
1a:36:a1:b5:dd:2f:71:fc:e3:cd:b5:23:56:57:70:
d4:3d:0d:69:84:6f:5d:d4:75:0c:b7:52:bd:d0:66:
1d:f3:65:de:f2:49:94:c2:8b:2e:00:06:b4:96:4a:
57:7f:ee:b8:ed:a8:69:64:f1:d4:fe:80:ea:1a:89:
b0:a4:7f:45:93:6f:30:17:7d:a3:0b:73:45:ca:72:
bc:c3:a5:04:e5:1e:81:a9:c5:46:5a:9e:d5:fd:32:
d1:77:c4:f2:38:11:4a:09:f2:d7:48:e6:44:71:27:
3f:3c:aa:0b:5d:3d:b5:18:32:32:ba:5a:b3:3c:51:
be:a9:04:a9:5f:4d:eb:8b:dc:55:e0:89:f1:a1:dd:
93:62:53:3f:09:21:3a:61:97:5f:7f:39:8f:fa:a3:
e4:a2:64:11:a7:4a:4e:7f:b7:0f:ac:18:55:53:41:
f3:06:36:9c:44:71:64:d9:b7:f3:68:5d:0b:4c:f9:
ae:bf:23:6b:28:b9:f3:66:18:0f:07:cc:9d:35:5b:
7f:69:87:9e:79:3d:4f:db:c5:52:ac:df:49:99:c9:
04:58:b2:e1:2b:e9:ea:5f:ac:83:a5:0e:3e:d0:d6:
77:8b:8a:6a:5d:94:e6:91:c4:38:60:81:65:99:37:
c0:e1:0e:28:6a:56:3f:ab:a1:93:c3:34:0b:71:85:
13:8a:98:26:15:a1:dc:c7:85:a7:b6:d8:4c:6a:b0:
60:43:0f:7c:52:d5:f0:94:e8:8c:ff:6d:b6:8f:98:
71:85:43:38:70:ff:a1:44:13:4a:3d:bb:72:8a:a3:
50:d2:6b:e9:db:df:6b:72:de:05:7d:fd:c1:49:42:
90:5b:61:ec:11:e7:ea:16:07:5e:2f:5a:58:c7:39:
da:4e:44:eb:fa:9b:8f:32:54:14:5b:91:e0:6b:d9:
92:29:8d:8c:e6:d9:c7:cc:5f:c4:5c:f9:60:ff:d7:
57:dc:6f:8b:92:1c:67:06:2a:b1:07:07:d6:5a:35:
8a:ab:86:60:b2:91:ba:3a:7d:97:ec:44:06:85:b8:
74:a9:e8:96:e7:34:1d:8a:8f:c3:41:6f:4c:4f:a8:
90:33:f6:73:8b:7e:73:2b:63:a8:5c:a4:72:dc:40:
3e:b4:8b:6e:79:f5:23:36:a4:ab:81:1f:0c:f0:47:
5e:60:43:4f:c9:cb:9a:78:f4:04:19:cf:96:61:29:
56:55:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
0D:9F:9F:73:76:69:C4:D2:B6:99:82:19:66:8D:A4:C3:72:48:D4:41
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:christianwinecellars.com, DNS:www.christianwinecellars.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Apr 3 11:02:58.147 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:51:FB:1D:D9:E0:BA:E4:05:7C:13:11:2A:
14:78:7F:5A:B4:5B:3C:3D:35:75:71:54:0F:B9:92:06:
D9:75:B4:63:02:21:00:83:C5:79:36:04:4A:8E:0E:03:
F5:F1:55:D9:8E:9C:8F:E0:32:64:B6:1F:05:27:D8:8F:
2C:83:C0:18:98:AD:D1
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
Timestamp : Apr 3 11:02:58.346 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:73:59:39:44:6B:08:D4:39:F5:57:72:A9:
C9:67:A9:19:C8:FA:69:63:31:E7:C8:07:66:2F:53:B9:
F9:89:A2:B8:02:20:18:C8:DA:0E:13:64:CD:9D:FC:AE:
AA:60:2C:3B:30:26:BA:25:B7:46:DA:B4:0E:80:A5:7C:
81:4F:4F:B1:F8:60
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
62:a5:49:4a:ab:59:76:52:e9:2a:30:21:2a:a5:af:44:b0:43:
90:51:83:df:30:a1:db:88:d4:17:0c:b9:e8:e1:d2:a2:bd:9b:
86:ed:f8:73:cc:85:28:a5:ae:3d:02:2d:31:13:77:0a:b0:a6:
91:4e:95:ce:c7:3e:35:99:03:15:b0:61:69:3d:18:64:cf:db:
a7:76:3e:d1:3d:56:5a:ff:85:6a:5b:ab:7c:a8:10:4c:22:87:
92:d7:dc:61:5f:b6:1f:b7:86:c6:28:06:75:a3:5b:46:ed:4c:
1e:4f:87:35:f5:44:b4:bc:63:00:d7:4e:06:d4:92:09:bf:e5:
c4:cb:1e:b9:86:24:a5:58:19:aa:68:aa:2c:1f:7a:49:00:4f:
48:74:f3:77:a5:48:b1:3d:b4:e2:1c:f0:84:18:03:8b:f7:11:
7e:43:9e:29:bf:82:6a:a3:10:db:77:35:7b:32:38:c3:9f:32:
87:52:af:cc:39:b5:00:89:27:ec:cd:39:7d:e7:ff:79:59:a1:
fb:8c:2c:5e:52:2f:70:67:ee:de:9b:05:d0:93:f0:7c:94:01:
cb:1c:c0:c6:fd:c5:36:9e:72:65:e0:de:25:50:e4:85:63:1a:
09:e3:e9:e5:ce:d4:75:ca:54:5b:e1:eb:c0:49:45:e4:7b:e1:
94:ff:6e:f9