GeneralInformation

Hostnames	www.hannainst.ro
Domains	hannainst.ro
Cloud Provider	DigitalOcean
Cloud Region	nl-nh
Country	Netherlands
City	Amsterdam
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

WebTechnologies

Analytics

Google Analytics

JavaScript libraries

jQuery2.1.4

Widgets

Elfsight

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443

-1015227023 | 2024-05-10T10:55:12.696747

80 / tcp

HTTP/1.1 200 OK
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Type: text/html; charset=UTF-8
Date: Fri, 10 May 2024 10:55:12 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
G-Hdr: 224.12.1.234
Pragma: no-cache
Ratelimit-Policy: 100; w=1
Server: Caddy
Server: nginx
Set-Cookie: f79d7693ae9e9046ffabf71b4548d564=e1e158f9964167d9e76775d4d39297a9; path=/
Vary: Accept-Encoding
Transfer-Encoding: chunked

1819663131 | 2024-05-15T08:02:57.886230

443 / tcp

HTTP/1.1 200 OK
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Alt-Svc: h3=":443"; ma=2592000
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Type: text/html; charset=UTF-8
Date: Wed, 15 May 2024 08:02:50 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
G-Hdr: 224.234.38.159
Link: <https://fonts.googleapis.com>; rel=dns-prefetch,<https://fonts.gstatic.com>; rel=dns-prefetch,<https://connect.facebook.net>; rel=dns-prefetch,<https://www.facebook.com>; rel=dns-prefetch,<https://www.googletagmanager.com>; rel=dns-prefetch, <https://gomagcdn.ro>; rel=preconnect; crossorigin=anonymous
Pragma: no-cache
Ratelimit-Policy: 100; w=1
Server: Caddy
Server: Gomag
Set-Cookie: b6bf2a540e0a990b394af8ffa2fb4b4d=9bc317c08863beaea5600bcbfca89706; path=/
Strict-Transport-Security: max-age=31536000;
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Gomag
X-Xss-Protection: 1
Transfer-Encoding: chunked

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            a0:7c:ee:79:40:18:72:4e:d1:a0:b9:43:47:e5:20:46
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=AT, O=ZeroSSL, CN=ZeroSSL ECC Domain Secure Site CA
        Validity
            Not Before: Apr 20 00:00:00 2024 GMT
            Not After : Jul 19 23:59:59 2024 GMT
        Subject: CN=www.hannainst.ro
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:35:cd:a2:6e:96:19:59:d8:3b:80:12:be:3a:22:
                    cf:38:c2:6a:51:c1:0b:23:89:79:79:03:4a:c7:90:
                    3f:a9:bf:db:f7:de:13:46:e0:f7:a4:24:65:f1:04:
                    25:bc:ee:3c:dd:e3:0a:94:f5:94:e5:c2:20:d4:94:
                    3e:7b:6c:5d:ed
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                0F:6B:E6:4B:CE:39:47:AE:F6:7E:90:1E:79:F0:30:91:92:C8:5F:A3
            X509v3 Subject Key Identifier: 
                CE:14:96:3E:63:04:86:CC:CB:B2:39:D9:67:32:86:F1:89:82:4B:65
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.78
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://zerossl.crt.sectigo.com/ZeroSSLECCDomainSecureSiteCA.crt
                OCSP - URI:http://zerossl.ocsp.sectigo.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 20 15:02:28.252 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:87:98:D3:B1:06:4B:51:C6:6B:23:2C:
                                EA:2D:CA:99:61:97:EE:47:78:B3:61:34:8C:D7:D0:0D:
                                E4:50:07:FD:46:02:20:2E:97:FD:9B:81:58:03:83:B7:
                                15:65:BB:25:E4:96:51:81:67:03:5E:06:C9:57:D3:86:
                                1E:A3:F7:0C:EA:45:85
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 20 15:02:28.220 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:21:22:66:D1:3D:5A:98:60:95:E6:D6:59:
                                44:E6:08:A1:89:55:C2:76:4A:EA:3F:BC:BF:25:3D:4E:
                                C9:41:51:3D:02:20:35:59:6D:B4:3F:24:E9:05:1D:6A:
                                27:33:52:54:F7:CA:DC:3C:C2:C5:92:F4:02:0E:E6:6C:
                                98:1E:52:54:20:CF
            X509v3 Subject Alternative Name: 
                DNS:www.hannainst.ro
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:66:02:31:00:bf:db:92:2f:82:c8:89:a8:9d:98:d3:ab:60:
        70:aa:4f:b6:2f:41:85:7f:ab:19:9b:7d:49:f6:d8:a9:ad:80:
        9c:80:03:d0:7f:c9:9e:74:da:86:e8:f3:e8:11:4e:17:96:02:
        31:00:fb:4a:70:1a:6b:ad:0a:59:36:76:24:b2:ef:1f:6d:08:
        e3:9d:e3:7b:ff:d0:b7:f6:45:32:0c:a1:dc:27:a3:5a:14:a3:
        13:c5:8c:fb:f9:a4:bc:b1:ea:2e:76:37:8e:d5

167.71.70.107

Last Seen: 2024-05-15

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1015227023 | 2024-05-10T10:55:12.696747
80 / tcp

1819663131 | 2024-05-15T08:02:57.886230
443 / tcp

Products

Pricing

Contact Us

167.71.70.107

Last Seen: 2024-05-15

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1015227023 | 2024-05-10T10:55:12.696747 80 / tcp

1819663131 | 2024-05-15T08:02:57.886230 443 / tcp

Products

Pricing

Contact Us

-1015227023 | 2024-05-10T10:55:12.696747
80 / tcp

1819663131 | 2024-05-15T08:02:57.886230
443 / tcp