GeneralInformation

Hostnames	www.24kspice.com ns5014378.ip-15-235-80.net
Domains	24kspice.com ip-15-235-80.net
Country	Canada
City	Beauharnois
Organization	OVH Hosting, Inc.
ISP	OVH SAS
ASN	AS16276

WebTechnologies

CMS

Odoo

Databases

PostgreSQL

Miscellaneous

Less

Programming languages

Python

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 8069 8080

1651973090 | 2024-05-13T16:02:51.145546

80 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 13 May 2024 16:02:51 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Fri, 02 Sep 2022 18:41:51 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "63124e6f-264"
Accept-Ranges: bytes

-52409368 | 2024-05-19T05:13:46.622195

443 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 May 2024 05:13:46 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: frontend_lang=en_US; Path=/
Set-Cookie: session_id=a98900ff8feea3aaf3e8edf40d6ffe2b188eb65a; Expires=Sat, 17-Aug-2024 05:13:46 GMT; Max-Age=7776000; HttpOnly; Path=/
X-Frame-Options: SAMEORIGIN

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:69:68:de:43:1c:c2:03:dd:5e:1c:32:ae:48:b7:1a:dc:ed
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May 13 19:23:14 2024 GMT
            Not After : Aug 11 19:23:13 2024 GMT
        Subject: CN=www.24kspice.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:f1:b4:ff:13:d1:39:b2:1e:14:c0:7f:77:82:97:
                    ee:1c:06:0b:fa:53:57:73:f5:8c:6c:01:5f:fa:d5:
                    8a:ed:53:68:ec:e3:c8:00:0a:12:1b:42:9f:1d:2a:
                    16:7b:db:fd:ed:a4:86:8f:ed:1a:b1:10:7e:2d:93:
                    a3:49:d6:bb:b4
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                7A:06:9B:4E:68:A6:FD:35:58:EF:AA:B5:7E:F8:0F:13:23:11:72:74
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:www.24kspice.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : May 13 20:23:14.178 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:85:41:CC:BB:E6:89:25:21:9B:F3:4A:
                                A7:8A:08:9D:64:E9:4A:EC:4A:C3:86:B0:A4:1D:98:5A:
                                62:0A:61:85:B8:02:21:00:A9:96:87:3B:4C:DF:89:BB:
                                55:8F:D2:36:CF:C5:E9:25:FA:45:F7:38:C7:44:DE:13:
                                F3:56:D2:5A:61:65:E7:06
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : May 13 20:23:14.378 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CD:F4:4F:EC:0D:3E:6B:B6:CE:33:2C:
                                A9:97:EA:3A:ED:5F:9B:BE:BA:00:20:EE:69:9F:85:18:
                                38:10:7D:96:42:02:21:00:D8:D7:7D:53:46:F4:B1:2E:
                                28:D8:35:84:01:E5:D2:62:B9:10:CC:77:B9:F7:20:E1:
                                68:86:1C:A7:69:5C:CB:04
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        77:2b:4f:11:1b:cb:0f:51:8e:f3:f1:75:c6:40:20:11:0a:14:
        81:97:73:d2:1a:cc:d9:50:80:75:5a:60:85:a7:12:dd:34:d6:
        b5:85:61:d1:32:d7:55:47:7e:8b:0f:aa:90:00:85:2f:4f:89:
        c0:f2:35:4c:d6:b0:bc:98:c3:f0:89:f2:4a:e9:dd:8c:ab:97:
        81:4d:1f:b7:09:b2:49:b9:c6:53:c5:51:b2:1a:84:a9:9b:5d:
        b7:fe:8e:dd:ec:c6:5c:eb:30:86:84:d2:4c:a1:c4:28:48:0e:
        88:51:4e:eb:79:6e:b0:0c:63:b2:4c:2a:da:b1:f2:93:50:83:
        15:b4:3d:fb:82:5b:c5:a1:f6:13:e4:59:56:29:bd:c0:97:b1:
        51:5e:e7:39:f5:d1:d4:4b:bf:53:09:83:e9:16:8f:53:c7:3a:
        42:31:9d:72:3b:06:eb:c7:e2:b8:de:1c:8a:84:4f:d0:5d:4c:
        2c:39:11:fc:99:7a:86:b3:23:a3:c8:d5:eb:84:9d:67:2c:75:
        7a:18:db:63:5b:60:82:b7:46:e3:5d:e0:44:3f:4d:80:10:bc:
        c3:96:bd:91:a6:6b:02:18:57:f1:d5:e2:8e:8b:ac:a0:dd:ad:
        9c:28:3c:89:2f:a3:2d:e7:c3:d1:7d:9e:80:10:cf:21:df:74:
        c6:4c:13:44

1480927976 | 2024-05-10T21:10:00.085905

8069 / tcp

HTTP/1.0 200 OK
Content-Type: text/html; charset=utf-8
Set-Cookie: frontend_lang=en_US; Path=/
Set-Cookie: session_id=9d00fae579d32f55a3aaac6544da5082e0b85762; Expires=Thu, 08-Aug-2024 21:10:00 GMT; Max-Age=7776000; HttpOnly; Path=/
Content-Length: 12249
Server: Werkzeug/0.16.1 Python/3.8.10
Date: Fri, 10 May 2024 21:10:00 GMT

-2005620571 | 2024-04-22T06:26:55.403839

8080 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 22 Apr 2024 06:26:55 GMT
Content-Type: text/html
Content-Length: 571
Last-Modified: Mon, 27 Jul 2020 20:34:35 GMT
Connection: keep-alive
ETag: "5f1f3a5b-23b"
Accept-Ranges: bytes

15.235.80.15

Last Seen: 2024-05-19

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1651973090 | 2024-05-13T16:02:51.145546
80 / tcp

nginx

-52409368 | 2024-05-19T05:13:46.622195
443 / tcp

nginx

1480927976 | 2024-05-10T21:10:00.085905
8069 / tcp

-2005620571 | 2024-04-22T06:26:55.403839
8080 / tcp

nginx1.18.0

Products

Pricing

Contact Us

15.235.80.15

Last Seen: 2024-05-19

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1651973090 | 2024-05-13T16:02:51.145546 80 / tcp

nginx

-52409368 | 2024-05-19T05:13:46.622195 443 / tcp

nginx

1480927976 | 2024-05-10T21:10:00.085905 8069 / tcp

-2005620571 | 2024-04-22T06:26:55.403839 8080 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1651973090 | 2024-05-13T16:02:51.145546
80 / tcp

-52409368 | 2024-05-19T05:13:46.622195
443 / tcp

1480927976 | 2024-05-10T21:10:00.085905
8069 / tcp

-2005620571 | 2024-04-22T06:26:55.403839
8080 / tcp