GeneralInformation

Hostnames	coastalpodiatry.com
Domains	coastalpodiatry.com
Country	United States
City	San Francisco
Organization	Cloudflare, Inc.
ISP	Cloudflare, Inc.
ASN	AS13335

WebTechnologies

CDN

JavaScript libraries

Miscellaneous

Tag managers

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-7656	4.3jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2012-6708	4.3jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.

OpenPorts

80 443 2052 2082 2083 2086 2087 2096 8080 8443 8880

-1354663350 | 2024-06-03T10:21:26.871068

80 / tcp

HTTP/1.1 403 Forbidden
Date: Mon, 03 Jun 2024 10:21:25 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88def4cd7cd36715-AMS

1922709393 | 2024-06-04T04:29:54.453401

443 / tcp

HTTP/1.1 200 OK
Date: Tue, 04 Jun 2024 04:29:53 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: User-Agent,Accept-Encoding
Set-Cookie: CFID=Z4ivx0ikwl2m7zgg5dk906nfmkirvcycxx142615t8k7hhm7qh9-8470090; Domain=.coastalpodiatry.com; Expires=Thu, 28-May-2054 04:29:53 GMT; Path=/; HttpOnly
Set-Cookie: CFTOKEN=Z4ivx0ikwl2m7zgg5dk906nfmkirvcycxx142615t8k7hhm7qh9-d2a4dd82f783deec-CF1B3766-B3D7-6F84-C14948FA314BEAEC; Domain=.coastalpodiatry.com; Expires=Thu, 28-May-2054 04:29:53 GMT; Path=/; HttpOnly
Set-Cookie: ONSERVER=116%2DB%2DEquinix; Path=/
Set-Cookie: EX_HTTP_REFERER=""; Path=/
Set-Cookie: ENTRY_TEMPLATE=www%2Ecoastalpodiatry%2Ecom%2F; Path=/
Set-Cookie: SITE_POPUP=popped; Path=/
X-Powered-By: DSS
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nwaykYHtnsUKQQiNpLucKAx68oleQU929jCpUehGdBGXtxz6JOb79gPhjV9Q3GTB5F8xTN9rA2Iyls7dQAX8cPkxBUaHmW5QecCw2nq%2BTanEgMNT2BwGLbMawXdYpqUxqeZrJEO1n4eEWA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Strict-Transport-Security: max-age=0; preload
Server: cloudflare
CF-RAY: 88e52f3a8bf7cee1-SJC
alt-svc: h3=":443"; ma=86400

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6c:8b:3d:62:c5:17:7f:ae:13:8a:68:aa:db:82:1f:fe
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Google Trust Services LLC, CN=GTS CA 1P5
        Validity
            Not Before: Apr 25 00:33:07 2024 GMT
            Not After : Jul 24 00:33:06 2024 GMT
        Subject: CN=coastalpodiatry.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a9:20:73:01:bf:62:0b:1f:06:c0:a8:90:4b:d2:
                    e5:c5:f5:2a:03:fc:69:45:46:86:ff:22:93:d8:e2:
                    d0:e2:e5:d4:d3:5a:3e:2f:2a:2a:33:73:87:36:dd:
                    9a:43:7b:01:63:24:3c:e2:62:fc:d8:9d:c4:e7:c1:
                    22:c6:92:ea:de:d5:fb:53:2e:01:08:ee:73:e4:fe:
                    5a:70:7c:53:74:4f:3e:38:c5:46:0b:6b:34:24:44:
                    28:74:5f:45:7f:24:dd:cf:82:ec:08:2f:d9:f0:c8:
                    7f:47:9b:a2:b6:63:c4:ec:d7:3e:08:24:7b:32:9b:
                    49:02:9d:f0:a0:6c:64:a4:7d:0c:74:b0:ac:1f:76:
                    9b:70:c2:61:11:4a:34:dc:08:f3:72:05:93:c8:e3:
                    b5:f1:70:45:ec:b1:1a:5f:98:9a:b0:40:90:ce:e6:
                    46:4c:b9:a2:8c:41:7b:4b:85:c0:c3:d0:de:b8:79:
                    f9:9e:ed:19:03:bf:be:5f:4f:03:1f:0e:99:9c:b6:
                    0d:f5:68:ca:fc:41:20:68:8a:1b:87:19:18:77:85:
                    f8:99:0c:db:5d:f1:e7:52:86:83:85:78:49:ec:83:
                    73:08:e8:23:95:ec:f6:29:a9:68:47:67:e1:49:13:
                    0e:11:78:ca:9e:a0:46:32:cd:e2:05:87:19:11:e2:
                    7d:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B0:BD:90:E4:9D:D9:10:E8:8E:6C:A4:18:2D:19:F6:5B:67:47:71:EB
            X509v3 Authority Key Identifier: 
                D5:FC:9E:0D:DF:1E:CA:DD:08:97:97:6E:2B:C5:5F:C5:2B:F5:EC:B8
            Authority Information Access: 
                OCSP - URI:http://ocsp.pki.goog/s/gts1p5/IZ8Bh0DaNUU
                CA Issuers - URI:http://pki.goog/repo/certs/gts1p5.der
            X509v3 Subject Alternative Name: 
                DNS:coastalpodiatry.com, DNS:*.coastalpodiatry.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.11129.2.5.3
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crls.pki.goog/gts1p5/1eLAQ7_rI1Q.crl
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 25 01:33:07.591 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:06:DB:D5:D5:89:E8:93:4F:5E:3F:B8:5E:
                                1A:53:47:3A:B7:C7:E1:05:43:28:D2:A1:8C:AC:E5:85:
                                FD:35:D4:52:02:20:02:B1:F6:0E:CB:72:A5:9C:F2:A0:
                                B9:62:7D:0E:60:22:05:A0:3A:33:07:ED:0A:B9:3E:05:
                                0E:25:4E:C1:E5:9F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 25 01:33:07.573 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B9:4E:D1:ED:6B:C4:19:5F:6D:C8:AC:
                                89:E2:01:20:F8:75:78:0A:AD:1B:15:E2:18:45:61:66:
                                63:25:F0:5C:78:02:20:70:66:9E:02:89:40:1F:E6:E5:
                                5C:19:61:26:54:9C:E6:7A:30:E1:23:E0:4E:AF:13:9C:
                                79:C4:38:E7:25:6A:C2
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4c:32:47:7b:94:b3:ef:67:19:2b:6a:44:1d:4c:02:e4:cb:f1:
        a0:7d:a5:09:1b:4b:e3:7e:52:0b:4c:15:68:65:f9:f4:21:79:
        d0:33:83:2f:29:c7:e1:6a:42:15:bd:c3:6c:a8:12:59:a0:2e:
        22:e2:5b:8c:82:14:ac:b7:82:61:c0:ba:b0:08:9e:64:1c:77:
        6e:9e:4b:10:62:94:d7:1a:94:a5:4a:ae:e0:dd:3a:70:40:9b:
        83:ef:ec:de:66:d8:5c:f1:d0:0f:ae:54:c8:b4:ec:b5:c2:dc:
        8d:6a:4f:17:a2:f0:c5:2d:d9:13:e0:71:45:23:16:b5:9d:11:
        7f:8d:6d:7d:4d:72:73:ab:ff:15:6c:cb:c2:d6:8f:f1:64:e6:
        d5:f6:84:4a:42:9d:f1:9a:a6:a8:0b:43:35:6f:49:d0:04:c1:
        9b:0a:22:05:20:c2:a7:68:27:31:71:46:e8:bb:68:91:db:69:
        a8:21:20:3e:bb:95:92:88:bc:16:24:48:09:da:78:e8:27:11:
        ca:51:ed:cc:11:1a:8a:0b:34:23:0c:91:38:c6:b4:4d:c1:6d:
        53:12:73:74:6a:5d:eb:18:05:1d:57:29:2d:94:f8:aa:39:54:
        4b:90:69:17:60:e4:4c:89:3b:f8:0e:9d:2a:7d:c4:de:0c:02:
        4b:f7:50:39

545266614 | 2024-05-06T06:34:34.848685

2052 / tcp

HTTP/1.1 403 Forbidden
Date: Mon, 06 May 2024 06:34:34 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87f6f1ff28f196fe-AMS

-496482799 | 2024-05-27T17:41:21.414942

2082 / tcp

HTTP/1.1 403 Forbidden
Date: Mon, 27 May 2024 17:41:21 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5892
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88a7cb98abdfb7e5-AMS

141477257 | 2024-05-29T01:50:35.271191

2083 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Wed, 29 May 2024 01:50:35 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

2022060358 | 2024-06-04T10:36:59.767913

2086 / tcp

HTTP/1.1 403 Forbidden
Date: Tue, 04 Jun 2024 10:36:59 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88e748f98f062abc-LAX

-289035279 | 2024-06-03T11:15:44.500074

2087 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Mon, 03 Jun 2024 11:15:44 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>cloudflare</center>
</body>
</html>

141477257 | 2024-05-19T08:24:16.534125

2096 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Sun, 19 May 2024 08:24:16 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

20451651 | 2024-05-20T20:49:39.886522

8080 / tcp

HTTP/1.1 403 Forbidden
Date: Mon, 20 May 2024 20:49:39 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5892
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 886f31d03d8c2b7a-LAX

141477257 | 2024-05-31T00:46:21.475206

8443 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Fri, 31 May 2024 00:46:21 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

1978633916 | 2024-06-04T09:54:50.801394

8880 / tcp

HTTP/1.1 403 Forbidden
Date: Tue, 04 Jun 2024 09:54:50 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 88e70b3b5bda2ee7-LAX

error code: 1003

172.67.166.218

Last Seen: 2024-06-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1354663350 | 2024-06-03T10:21:26.871068
80 / tcp

CloudFlare

1922709393 | 2024-06-04T04:29:54.453401
443 / tcp

545266614 | 2024-05-06T06:34:34.848685
2052 / tcp

-496482799 | 2024-05-27T17:41:21.414942
2082 / tcp

141477257 | 2024-05-29T01:50:35.271191
2083 / tcp

2022060358 | 2024-06-04T10:36:59.767913
2086 / tcp

-289035279 | 2024-06-03T11:15:44.500074
2087 / tcp

141477257 | 2024-05-19T08:24:16.534125
2096 / tcp

20451651 | 2024-05-20T20:49:39.886522
8080 / tcp

CloudFlare

141477257 | 2024-05-31T00:46:21.475206
8443 / tcp

CloudFlare

1978633916 | 2024-06-04T09:54:50.801394
8880 / tcp

Products

Pricing

Contact Us

172.67.166.218

Last Seen: 2024-06-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1354663350 | 2024-06-03T10:21:26.871068 80 / tcp

CloudFlare

1922709393 | 2024-06-04T04:29:54.453401 443 / tcp

545266614 | 2024-05-06T06:34:34.848685 2052 / tcp

-496482799 | 2024-05-27T17:41:21.414942 2082 / tcp

141477257 | 2024-05-29T01:50:35.271191 2083 / tcp

2022060358 | 2024-06-04T10:36:59.767913 2086 / tcp

-289035279 | 2024-06-03T11:15:44.500074 2087 / tcp

141477257 | 2024-05-19T08:24:16.534125 2096 / tcp

20451651 | 2024-05-20T20:49:39.886522 8080 / tcp

CloudFlare

141477257 | 2024-05-31T00:46:21.475206 8443 / tcp

CloudFlare

1978633916 | 2024-06-04T09:54:50.801394 8880 / tcp

Products

Pricing

Contact Us

-1354663350 | 2024-06-03T10:21:26.871068
80 / tcp

1922709393 | 2024-06-04T04:29:54.453401
443 / tcp

545266614 | 2024-05-06T06:34:34.848685
2052 / tcp

-496482799 | 2024-05-27T17:41:21.414942
2082 / tcp

141477257 | 2024-05-29T01:50:35.271191
2083 / tcp

2022060358 | 2024-06-04T10:36:59.767913
2086 / tcp

-289035279 | 2024-06-03T11:15:44.500074
2087 / tcp

141477257 | 2024-05-19T08:24:16.534125
2096 / tcp

20451651 | 2024-05-20T20:49:39.886522
8080 / tcp

141477257 | 2024-05-31T00:46:21.475206
8443 / tcp

1978633916 | 2024-06-04T09:54:50.801394
8880 / tcp