| Hostnames |
feuerwehr-brixen.org www.feuerwehr-brixen.org ffbx.org alarm.ffbx.org mail.ffbx.org www.ffbx.org legaci.nl vvf-bressanone.org www.vvf-bressanone.org |
| Domains | feuerwehr-brixen.org ffbx.org legaci.nl vvf-bressanone.org |
| Country | Germany |
| City | Mannheim |
| Organization | WIIT AG |
| ISP | WIIT AG |
| ASN | AS24961 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2020-23064 | Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element. |
| CVE-2020-11023 | 4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0. |
| CVE-2020-11022 | 4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0. |
| CVE-2019-11358 | 4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype. |
-1046898104 | 2024-05-19T09:54:38.86585325 / tcp
220 ffbx.org ESMTP Postfix (Debian/GNU) 250-ffbx.org 250-PIPELINING 250-SIZE 10240000 250-ETRN 250-STARTTLS 250-ENHANCEDSTATUSCODES 250-8BITMIME 250-DSN 250 CHUNKING
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:1b:e4:7b:8e:c2:40:36:bf:6a:e0:ed:47:48:42:bd:22:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 9 18:00:51 2024 GMT
Not After : Jul 8 18:00:50 2024 GMT
Subject: CN=feuerwehr-brixen.org
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b9:94:4c:ac:d1:98:8e:86:5e:2e:51:63:84:39:
ed:65:8f:31:8e:32:df:69:82:0f:79:08:9b:5b:66:
23:13:8d:4b:1f:1d:1a:56:3b:bc:c3:2a:b0:ed:8f:
0f:eb:87:4f:8f:22:b9:bc:03:5b:67:c1:ed:90:37:
ef:ff:27:86:7c:74:db:93:6d:fa:14:26:23:ad:be:
96:80:ba:82:16:51:32:bb:2b:17:e7:14:cf:4b:64:
68:c9:3b:8d:87:43:05:68:3f:6f:af:31:8d:71:98:
6a:e4:6c:bc:cf:0f:8f:c7:fa:24:0b:06:e1:eb:d2:
f6:9a:6f:23:3a:e6:09:99:e9:69:f0:7f:c9:a6:ec:
a5:0f:43:8d:a8:f7:9d:d5:2c:33:0d:e1:45:68:a2:
60:2b:bd:92:db:1a:66:3c:dc:71:69:fe:0b:cb:be:
b8:ab:f9:6e:82:8f:38:97:66:a0:d2:0d:f8:7b:bc:
dd:79:05:70:ad:0c:28:18:41:e1:f1:e1:f6:87:09:
3e:a1:50:3c:f7:c4:86:09:a4:55:cd:ff:12:4e:12:
c2:be:e9:62:c6:7c:3b:18:cf:0d:fc:f0:3c:50:07:
dd:4b:31:08:ff:55:30:08:ec:22:7a:f7:2b:48:fb:
bb:fb:91:9d:5c:1b:e4:61:67:c2:d9:dd:99:cc:40:
b0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
69:46:50:F2:37:9C:46:E5:C6:D5:5A:C2:65:4C:3A:5B:3B:8D:89:94
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:feuerwehr-brixen.org, DNS:ffbx.org, DNS:mail.ffbx.org, DNS:vvf-bressanone.org, DNS:www.feuerwehr-brixen.org, DNS:www.ffbx.org, DNS:www.vvf-bressanone.org
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Apr 9 19:00:51.099 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:1A:3A:17:D3:6E:96:C5:0D:05:91:82:B5:
0D:84:4C:BA:43:A1:2B:24:92:41:93:BD:84:1C:FB:D5:
51:F0:2B:44:02:21:00:9C:4B:43:AB:2B:CF:CD:A3:08:
1F:24:0D:92:B9:04:F7:66:32:BE:4D:EC:F3:CD:CC:D8:
91:9D:24:0E:03:7E:B5
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
Timestamp : Apr 9 19:00:53.179 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:8D:6C:70:05:04:30:BA:32:6B:85:B9:
A0:5F:E1:BF:D6:B9:98:19:EA:6C:BB:B9:7B:E0:1C:6B:
F3:38:6A:25:E1:02:20:5E:A6:E0:ED:0E:E1:36:88:44:
1F:65:09:E2:68:BF:60:27:E5:FD:0A:2E:E4:DD:E1:12:
E7:66:AF:0F:07:70:42
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
28:88:2f:4a:fd:a7:7f:48:1f:2c:db:99:7e:1d:81:57:7f:7a:
88:a4:e6:de:e1:88:1e:47:7e:f9:cf:58:6d:ea:3b:36:5e:a5:
03:2e:e1:e8:6b:55:8f:18:b7:45:b3:e4:e7:66:5b:3d:bd:4c:
d6:eb:16:52:aa:a2:4b:a4:1e:56:74:90:8d:57:24:df:6d:a2:
36:04:7a:34:9d:66:05:99:93:8b:99:af:a9:2c:3b:a4:5e:2f:
4b:f4:cf:20:26:a8:a2:3d:cb:aa:84:1c:1c:dc:4e:2c:be:29:
eb:bb:90:03:88:e5:d1:37:01:c2:d9:bf:01:ac:48:2f:d4:1b:
5b:ab:fe:35:78:66:eb:b6:c6:81:c6:ae:6e:3a:56:9f:c2:db:
8d:7c:39:ef:23:a2:3c:96:e1:e6:d5:2c:83:5d:ff:33:bf:b5:
03:82:3c:ed:30:69:1e:9e:83:19:55:e5:41:55:a3:79:6e:45:
eb:e2:d1:d6:3b:3c:0d:5f:92:6b:cc:73:6b:c8:e2:0d:a2:33:
80:a5:63:b0:75:63:23:3a:05:84:62:ce:ee:10:4c:99:a8:26:
e4:d5:64:a0:c7:94:0e:10:cb:ae:63:0e:a3:6d:cd:50:22:3e:
15:ac:bd:e7:dd:a5:3f:45:e5:fb:cf:ec:26:3e:7b:70:c6:26:
84:6a:1c:5f
1406729955 | 2024-05-14T11:05:06.84970580 / tcp
HTTP/1.1 200 OK Date: Tue, 14 May 2024 11:05:06 GMT Server: Kestrel Content-Type: text/html; charset=utf-8 Cache-Control: no-cache, no-store Pragma: no-cache X-Frame-Options: SAMEORIGIN Set-Cookie: .AspNetCore.Antiforgery.CcRiS5X0HXo=CfDJ8LuXR9-7LzJPjtGwgzRfW1aGRJWudPLkFGzhuZ1lH1xpvQAO1wmi9pDjRsbrjALVAtx_MHS9kvwa4bDZsCMoaNxHHKnIESz8wZya6wGpT4GxgxR6yiWDEKlCdyHdSjnzNYw9xim5sxPOF_XsSgm__hc; path=/; samesite=strict; httponly Vary: Accept-Encoding Transfer-Encoding: chunked
1957077569 | 2024-05-03T14:18:43.625390143 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS LOGINDISABLED] Dovecot (Debian) ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS LOGINDISABLED
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:cb:44:02:84:06:3c:2c:44:aa:89:48:43:0a:ec:f0:d3:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Oct 15 10:45:53 2022 GMT
Not After : Jan 13 10:45:52 2023 GMT
Subject: CN=feuerwehr-brixen.org
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c3:bb:1c:68:88:27:9f:8a:1b:5f:03:73:7e:94:
61:7b:a6:c6:70:8c:dd:be:a1:55:02:98:6a:e9:46:
04:9b:f9:ba:60:be:98:80:28:8a:f1:4e:0b:eb:91:
90:23:d2:a9:f8:df:c6:9a:58:36:58:eb:1b:50:e6:
c7:0f:06:29:de:ad:20:13:27:a6:9d:85:26:aa:43:
ef:cf:84:a6:b9:2e:c1:7a:0a:05:3c:66:c1:0c:7f:
23:b5:0d:ce:26:4d:b2:68:17:59:27:18:e1:97:7f:
23:e2:a0:ec:94:9a:a2:4e:9a:69:16:44:a4:06:b6:
16:a8:39:26:91:7d:03:37:27:e5:7c:eb:53:ed:ac:
89:b7:71:3e:7b:4f:7f:b3:34:d4:08:5f:b2:07:f8:
71:6b:6e:c9:dd:55:7f:9d:95:b8:95:20:e4:4d:0c:
a1:c2:a7:b8:c4:60:f4:19:27:b6:75:e7:a6:9f:55:
bd:81:ab:0c:6e:f8:82:7f:0e:62:2e:81:ab:0b:91:
1d:00:0b:3e:9d:1f:2b:98:e2:41:71:e0:3f:07:23:
df:b1:6b:25:82:1d:98:91:a9:2e:37:87:2a:a8:fe:
b4:6b:0a:63:ac:17:7c:30:a8:5e:7c:37:72:86:bf:
27:e4:e8:1c:08:70:cf:18:72:a8:8b:ee:35:b0:b6:
e8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
D2:F6:B5:36:4F:DE:EB:E1:54:5B:CB:5B:67:CB:19:8D:1B:2A:90:04
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:feuerwehr-brixen.org, DNS:ffbx.org, DNS:mail.ffbx.org, DNS:vvf-bressanone.org, DNS:www.feuerwehr-brixen.org, DNS:www.ffbx.org, DNS:www.vvf-bressanone.org
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.44947.1.1.1
CPS: http://cps.letsencrypt.org
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
Timestamp : Oct 15 11:45:54.177 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:CC:FC:4A:26:74:B4:A0:74:37:5D:7E:
08:A7:EE:1E:ED:3C:8F:D7:AC:1F:C5:3E:71:D2:EA:14:
2F:84:FC:1E:50:02:21:00:87:89:2D:FF:67:17:87:61:
CE:95:F9:3F:19:5D:C6:1C:AD:E7:8B:CA:BB:4E:83:12:
22:89:C6:18:48:FA:C4:80
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
Timestamp : Oct 15 11:45:54.217 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:54:59:AC:B0:D2:78:5A:98:2E:79:01:5E:
19:40:C1:2A:09:5B:D7:21:F1:15:1D:19:40:A8:AF:4A:
3C:00:DD:5C:02:21:00:DB:30:62:C5:EF:8E:F0:6B:F5:
5D:06:99:B6:25:78:B4:13:A8:C9:00:07:74:9E:E4:A7:
9B:86:60:7D:3E:4E:41
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
62:60:42:79:f6:60:07:ed:03:0c:dd:bf:33:ee:a6:af:fe:62:
6f:ba:e5:76:fc:a9:fa:60:6f:70:59:7d:f1:5f:67:fd:4c:88:
e7:f8:c0:84:a7:32:fc:d1:04:57:3d:5f:81:fd:39:07:a4:b2:
a7:e1:43:ba:a4:81:9f:d1:fd:d2:80:a1:c9:89:e6:32:88:2a:
7d:b9:7c:8d:d4:7d:40:64:21:ab:e3:91:5b:67:ed:94:85:56:
89:d1:8c:b2:82:69:1d:25:dc:82:b6:38:8a:b9:d8:7b:ca:e2:
66:9d:b2:3a:ac:3b:c7:73:bb:d0:6a:f2:c5:8e:35:01:86:83:
bd:67:a2:63:44:24:22:1e:fa:a6:ed:10:2a:3a:bc:e2:9a:42:
69:d6:47:06:31:b6:b3:42:39:08:12:bd:b7:ac:12:5f:57:af:
26:b0:15:8e:ce:6e:6c:37:8f:29:9e:10:e8:f9:79:38:d3:29:
a1:b1:7c:f2:ed:53:59:46:bf:53:f9:40:f0:f5:2e:7c:ce:ae:
7b:c3:05:05:ba:fb:f5:de:a9:14:00:30:f6:0e:dd:fa:84:73:
48:96:a3:65:fe:80:b7:82:bf:e1:83:4a:96:be:91:8f:fb:de:
b3:6b:ed:68:e9:33:05:b7:c0:18:6e:f3:79:04:f7:04:dd:03:
f3:a9:3f:54
894034004 | 2024-05-14T07:22:34.142819443 / tcp
HTTP/1.1 302 Found Date: Tue, 14 May 2024 07:22:32 GMT Server: Kestrel Content-Length: 0 Location: http://152.89.94.102/Account/Login?ReturnUrl=%2F
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:17:bf:1a:ae:a1:eb:41:4d:c3:59:53:af:3e:23:09:56:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Mar 26 12:37:37 2024 GMT
Not After : Jun 24 12:37:36 2024 GMT
Subject: CN=alarm.ffbx.org
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ef:69:9c:cf:bb:58:9f:bb:97:90:04:39:0f:c9:
dc:ba:c6:66:33:ab:51:3e:0f:3b:05:2f:f6:1f:d5:
d3:be:5d:58:23:c3:db:a4:7d:8d:03:de:36:b5:a2:
26:1e:d0:fb:e8:1f:19:8d:75:6a:fe:f2:d1:18:20:
d2:4d:35:d4:44:60:17:0f:3b:93:58:ec:54:a2:6e:
b4:99:68:c7:ef:df:47:0c:6c:55:24:b1:fa:95:57:
dc:fb:82:d9:7e:ea:bb:e7:9b:fb:33:d8:b1:88:a1:
76:68:9c:d7:62:fa:75:6e:75:57:43:e1:c1:bb:6f:
8e:a4:fa:22:ab:fa:ef:a4:1f:90:ed:6a:18:d6:db:
74:0e:6c:e4:3d:6a:24:06:41:ab:c7:2c:40:f2:d3:
a3:d5:b2:c7:c1:79:36:22:92:80:16:ca:89:9a:a9:
06:ae:91:89:d7:f1:bc:ae:17:7e:42:53:09:51:96:
3d:79:1c:43:68:a5:e1:e6:65:e4:19:2d:12:63:a7:
d7:e1:8f:42:5e:9c:dd:21:73:05:3b:fe:39:b5:99:
92:81:26:bd:5e:ef:c9:47:a2:19:0f:4d:2c:a7:ab:
0a:5e:40:31:7f:a8:58:14:f7:7e:af:23:b3:1b:cf:
de:06:88:cf:dd:03:db:4c:be:f1:98:74:94:c5:c0:
80:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
50:4D:54:7F:71:34:54:02:DC:F4:E3:AF:35:4A:61:44:77:1E:57:F5
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:alarm.ffbx.org
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
Timestamp : Mar 26 13:37:37.637 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:CC:A0:94:B7:43:23:A8:25:57:36:0E:
82:95:18:5F:B4:87:5D:8C:74:7B:76:94:50:C1:5C:38:
39:3D:CF:38:C7:02:20:7F:6B:D6:C4:FF:3C:7B:E2:56:
80:66:61:79:1A:21:D5:AD:93:AD:91:CE:4A:AB:A3:3A:
00:1E:02:C6:42:13:DC
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Mar 26 13:37:37.606 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:C9:46:E8:24:F4:90:70:89:E3:0B:2B:
1A:E7:9F:0E:8D:B5:15:52:D1:C5:D4:29:6F:B4:EC:4E:
1B:9A:EA:A3:F7:02:21:00:D7:A3:15:48:02:D9:4A:B0:
FD:D1:C5:FA:FF:14:99:52:32:6F:FF:DB:EC:07:CF:5C:
8E:6C:F2:2F:C9:7A:B2:C2
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
83:ac:fb:03:46:29:12:eb:d2:be:01:c4:93:d4:63:5e:9b:f5:
c8:d7:4b:0d:76:59:a5:2f:6b:6f:0b:18:0e:2f:1f:39:67:f3:
d8:29:68:69:c4:f2:14:86:58:0a:2d:c2:13:d9:8a:c8:04:00:
30:e2:c9:66:e6:ab:de:ef:aa:b9:cb:d9:63:6b:10:a9:16:34:
a0:e3:5a:5c:f0:a2:2c:6a:83:b6:5f:15:0d:82:d0:23:78:42:
7e:16:05:5f:65:91:62:fa:24:70:a9:96:d0:8e:c8:93:14:82:
ac:c6:7d:48:dd:11:69:ab:3f:09:27:99:c2:ec:1a:56:98:fa:
de:e5:9b:b6:e8:73:69:10:b7:c6:f8:79:42:86:4f:fc:7a:f8:
84:47:df:73:f1:cd:31:5e:7c:05:ed:54:d1:f9:a9:03:a9:81:
47:c3:f4:cf:44:a8:99:ec:0f:e4:9c:42:46:57:46:24:ea:fe:
5c:42:a8:f9:8d:9d:d7:71:09:de:bd:99:93:d9:87:1e:18:a5:
bb:7d:9c:a9:58:75:28:cb:e1:76:7a:83:f3:e4:f7:dd:15:db:
6c:00:4a:7f:1c:da:e0:f5:c5:ce:2e:34:3f:95:55:e5:62:55:
6a:be:39:08:92:fe:54:21:26:1d:49:aa:ce:60:5d:85:69:6e:
69:d3:e0:fd