GeneralInformation

Hostnames	act.gruppoathesis.it
Domains	gruppoathesis.it
Country	Italy
City	Rome
Organization	EasyDC Rozzano - ospit@
ISP	Telecom Italia S.p.A.
ASN	AS20746

WebTechnologies

JavaScript frameworks

JavaScript libraries

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

21 80 443

-724211622 | 2024-04-25T23:00:56.576646

21 / tcp

220 192.168.221.5 FTP server ready
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
214-CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
214-EPRT    EPSV    ALLO*   RNFR    RNTO    DELE    MDTM    RMD     
214-XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
214-NOOP    FEAT    OPTS    AUTH*   CCC*    CONF*   ENC*    MIC*    
214-PBSZ*   PROT*   TYPE    STRU    MODE    RETR    STOR    STOU    
214-APPE    REST    ABOR    USER    PASS    ACCT*   REIN*   LIST    
214-NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@vm1-3cby7by-16
211-Features:
 UTF8
 EPRT
 SITE SYMLINK
 EPSV
 LANG it-IT.UTF-8;it-IT;en-US.UTF-8*;en-US
 SITE UTIME
 MDTM
 SITE RMDIR
 TVFS
 SITE COPY
 MFMT
 SIZE
 SITE MKDIR
 MFF modify;UNIX.group;UNIX.mode;
 REST STREAM
 MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.mode*;UNIX.owner*;
211 End

-130024521 | 2024-04-28T04:16:46.250849

80 / tcp

HTTP/1.1 302 Found
Date: Sun, 28 Apr 2024 04:16:45 GMT
Server: Apache
Location: https://156.54.131.85/
Content-Length: 206
Content-Type: text/html; charset=iso-8859-1

-1877926511 | 2024-04-27T23:05:49.223977

443 / tcp

HTTP/1.1 200 OK
Date: Sat, 27 Apr 2024 23:05:49 GMT
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
ETag: W/"7505-1470052876000"
Last-Modified: Mon, 01 Aug 2016 12:01:16 GMT
Content-Type: text/html
Content-Length: 7505
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:32:80:c5:d6:ff:d6:60:bc:60:d3:0d:8c:0a:4a:32:17:7f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  5 08:29:06 2024 GMT
            Not After : Jul  4 08:29:05 2024 GMT
        Subject: CN=act.gruppoathesis.it
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:af:45:d5:7e:42:f9:26:21:1d:dc:32:f6:b0:ec:
                    cd:a4:24:7e:9d:2b:9e:6c:8b:cd:0b:a3:c8:1e:40:
                    46:21:30:af:a5:03:1e:e0:9a:57:46:9e:3c:97:f1:
                    2c:25:4b:7f:64:d4:12:b0:d8:90:56:a8:6a:3d:ee:
                    98:7e:79:65:ca:83:89:2d:75:d0:81:49:eb:65:a8:
                    b8:7a:a8:96:38:b8:55:1d:42:3f:f6:5d:a7:cf:7d:
                    07:2f:86:bc:08:42:b9:c8:f5:c3:28:f0:38:7b:21:
                    cf:77:3b:78:89:de:44:a0:b2:41:77:15:83:32:2a:
                    fa:b7:a1:3d:68:c9:a2:17:71:2e:28:8f:02:13:fc:
                    53:c0:02:82:19:34:91:3a:9e:df:f8:13:15:78:18:
                    5b:46:6a:f9:f7:3e:6b:7c:f1:5e:0b:f3:18:a3:a8:
                    97:fb:ec:a9:1c:6e:65:a2:83:65:45:b7:d9:63:dc:
                    86:64:6d:aa:3b:63:31:21:92:c6:96:e1:28:99:a3:
                    3b:bf:fe:be:3d:a7:18:ad:5a:19:24:09:b6:0b:dc:
                    d7:eb:e2:32:75:c4:87:58:24:10:1c:43:f3:8b:4c:
                    b6:04:15:19:19:a1:07:70:9f:6b:f4:a7:ca:2c:9d:
                    d7:d0:44:14:78:8f:9c:71:b5:a7:b4:53:fa:bf:f9:
                    f9:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                BF:DF:D2:7B:6C:B2:5F:64:4D:54:C0:EA:F7:42:1E:3A:CD:61:0A:75
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:act.gruppoathesis.it
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr  5 09:29:06.383 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D8:23:75:0A:F2:A5:47:D5:F3:80:1A:
                                32:F8:C0:0B:57:AC:1A:DF:6B:EC:12:7C:18:3F:E6:F5:
                                D2:76:0F:8E:CA:02:20:44:DA:A7:CC:AF:BB:62:87:53:
                                90:AE:97:64:DB:5E:F3:A2:24:CE:B1:09:61:22:52:65:
                                DB:BB:57:0D:2B:B7:03
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr  5 09:29:06.413 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7E:48:AB:E5:4F:D4:FF:97:FC:0E:80:B7:
                                88:00:AD:22:FF:79:47:9F:AA:5A:1D:5A:75:DF:C1:3D:
                                1A:A3:01:44:02:20:5D:C5:DE:04:1B:9E:B2:F5:B6:4A:
                                86:84:7E:51:CE:50:66:5C:8C:5D:53:AA:B8:E6:9D:09:
                                A5:51:83:B6:3A:B2
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        80:84:50:d2:95:39:d5:e1:39:c3:d8:23:fa:37:f0:27:30:82:
        54:b2:bc:51:0c:e2:10:16:51:45:c1:97:81:90:fa:4f:82:00:
        b1:e1:a3:1b:77:7f:2e:24:e0:6c:56:9f:4e:ca:b5:75:9f:b0:
        20:d8:f1:74:78:dd:75:b9:f8:6d:4f:5a:77:d4:d8:f7:2a:aa:
        d9:52:56:d0:d7:06:3b:06:7d:5a:01:12:44:49:45:bc:d8:f7:
        8b:dc:9f:3b:01:4c:65:d1:7c:39:0c:86:e2:a8:25:82:67:36:
        6e:0d:45:86:6c:77:13:eb:0b:0c:49:cf:81:62:be:e2:f2:a4:
        f6:1e:d6:fd:f9:16:fe:97:3e:3b:f2:e3:40:55:ef:7e:09:58:
        f9:85:7b:24:8e:b1:73:04:28:ea:33:e7:46:e8:fb:22:e8:e9:
        bd:da:41:81:6d:eb:bd:de:37:01:06:5e:7e:6e:64:3a:47:dd:
        56:88:13:4f:b7:93:04:d1:59:0e:01:df:41:ba:5e:48:0e:c1:
        71:65:3b:7b:3b:fc:34:89:c0:c0:60:39:44:ae:74:d7:26:a4:
        35:7a:b9:8f:bf:31:37:5b:02:15:1c:af:d2:ce:8f:e2:6b:35:
        50:4e:29:d6:67:1f:73:96:07:99:f0:52:f5:1a:b0:e3:d1:c3:
        53:b1:73:63

156.54.131.85

Last Seen: 2024-04-28

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-724211622 | 2024-04-25T23:00:56.576646
21 / tcp

ProFTPD

-130024521 | 2024-04-28T04:16:46.250849
80 / tcp

Apache httpd

-1877926511 | 2024-04-27T23:05:49.223977
443 / tcp

Apache Tomcat/Coyote JSP engine1.1

Products

Pricing

Contact Us

156.54.131.85

Last Seen: 2024-04-28

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-724211622 | 2024-04-25T23:00:56.576646 21 / tcp

ProFTPD

-130024521 | 2024-04-28T04:16:46.250849 80 / tcp

Apache httpd

-1877926511 | 2024-04-27T23:05:49.223977 443 / tcp

Apache Tomcat/Coyote JSP engine1.1

Products

Pricing

Contact Us

-724211622 | 2024-04-25T23:00:56.576646
21 / tcp

-130024521 | 2024-04-28T04:16:46.250849
80 / tcp

-1877926511 | 2024-04-27T23:05:49.223977
443 / tcp