GeneralInformation

Hostnames	hotellosleones.com
Domains	hotellosleones.com
Country	United States
City	San Francisco
Organization	Cloudflare, Inc.
ISP	Cloudflare, Inc.
ASN	AS13335

WebTechnologies

Analytics

Blogs

CMS

Databases

JavaScript libraries

Miscellaneous

Photo galleries

Slider Revolution6.6.20

Programming languages

PHP

Widgets

Slider Revolution6.6.20

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-3824	In PHP version 8.0.* before 8.0.30, 8.1.* before 8.1.22, and 8.2.* before 8.2.8, when loading phar file, while reading PHAR directory entries, insufficient length checking may lead to a stack buffer overflow, leading potentially to memory corruption or RCE.
CVE-2023-3823	In PHP versions 8.0.* before 8.0.30, 8.1.* before 8.1.22, and 8.2.* before 8.2.8 various XML functions rely on libxml global state to track configuration variables, like whether external entities are loaded. This state is assumed to be unchanged unless the user explicitly changes it by calling appropriate function. However, since the state is process-global, other modules - such as ImageMagick - may also use this library within the same process, and change that global state for their internal purposes, and leave it in a state where external entities loading is enabled. This can lead to the situation where external XML is parsed with external entities loaded, which can lead to disclosure of any local files accessible to PHP. This vulnerable state may persist in the same process across many requests, until the process is shut down.
CVE-2013-2220	7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
CVE-2007-3205	5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

80 443 2082 2083 2086 2087 8080 8443 8880

-298480868 | 2024-05-01T11:19:39.024021

80 / tcp

HTTP/1.1 403 Forbidden
Date: Wed, 01 May 2024 11:19:39 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5894
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87cf60b4de956c70-DFW

-1135353333 | 2024-05-02T17:13:54.195629

443 / tcp

HTTP/1.1 200 OK
Date: Thu, 02 May 2024 17:13:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/8.0.29
x-pingback: https://hotellosleones.com/xmlrpc.php
link: <https://hotellosleones.com/wp-json/>; rel="https://api.w.org/", <https://hotellosleones.com/wp-json/wp/v2/pages/47>; rel="alternate"; type="application/json", <https://hotellosleones.com/>; rel=shortlink
vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fd8T9R5gt0iB0z5o0QOmzv22OqpiTWaRUF0rHXkMr6LNY15LhX7r4UBZEpCEzJYXcwvN76mmLC0KOyCqtVhi%2FwowLlM7dtrf%2FHwquYhrUetsPustpxNJgQHefXyaVaDd2E9BBgc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 87d9a4f68d1d0ffd-LAX
alt-svc: h3=":443"; ma=86400

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            f3:7c:c2:c2:d8:0f:a1:d8:0d:c2:1e:ae:59:b2:04:02
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Google Trust Services LLC, CN=GTS CA 1P5
        Validity
            Not Before: Apr 21 02:14:26 2024 GMT
            Not After : Jul 20 02:14:25 2024 GMT
        Subject: CN=hotellosleones.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:8f:3d:0e:3c:70:ae:d8:71:13:97:4d:80:f5:f4:
                    e6:bd:50:dd:f2:4a:49:c9:e4:a9:1e:1e:82:6b:0a:
                    0e:f4:27:b6:77:0b:b8:2e:84:bb:4e:fe:88:56:9c:
                    ff:10:c3:85:4e:66:39:7f:78:a3:a7:97:1b:2f:96:
                    03:bf:1b:c0:96:bc:c4:5a:cd:0b:55:2b:b4:f2:8d:
                    cb:62:ec:fc:51:f2:a9:ec:5e:9b:23:af:9d:b0:d4:
                    43:c9:80:63:8a:70:89:f3:0f:34:ab:ab:96:4a:96:
                    9d:87:04:6a:d6:c0:3f:39:c7:80:70:3a:1b:7b:bf:
                    c4:f0:63:ea:5e:dd:68:96:86:e0:14:b1:ec:4e:97:
                    45:8f:9d:3c:09:43:d7:12:a1:4b:b5:42:70:e0:d9:
                    59:fd:ef:b6:66:37:87:3c:c1:99:18:d3:02:e0:c4:
                    c7:7c:24:41:57:21:e3:57:dc:ed:64:78:30:20:89:
                    5b:26:75:14:31:9b:b9:5c:ef:88:5b:5a:b0:62:85:
                    51:45:81:ea:5c:e4:0e:95:78:3c:4e:eb:85:8d:21:
                    95:97:1f:44:82:1c:99:68:e0:fd:c6:29:00:40:3f:
                    16:d0:f7:db:a1:a4:fd:79:06:90:50:57:7f:f5:2a:
                    7c:9d:8b:a6:a9:f5:f2:ca:a9:e4:de:f8:11:40:3b:
                    bd:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                5E:F6:40:0C:13:62:8C:41:27:E9:99:14:B2:0A:60:6E:D7:FD:41:BE
            X509v3 Authority Key Identifier: 
                D5:FC:9E:0D:DF:1E:CA:DD:08:97:97:6E:2B:C5:5F:C5:2B:F5:EC:B8
            Authority Information Access: 
                OCSP - URI:http://ocsp.pki.goog/s/gts1p5/UPLzIhrp19E
                CA Issuers - URI:http://pki.goog/repo/certs/gts1p5.der
            X509v3 Subject Alternative Name: 
                DNS:hotellosleones.com, DNS:*.hotellosleones.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.11129.2.5.3
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crls.pki.goog/gts1p5/P5F4NwTe1ho.crl
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Apr 21 03:14:27.332 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:67:B7:E4:15:E0:2E:5E:BC:97:6A:20:97:
                                17:40:E1:28:2D:B7:A1:6C:22:27:9A:18:2E:83:1D:75:
                                EA:AC:43:E3:02:20:14:C2:58:B2:19:20:B4:98:C0:69:
                                5F:47:8B:C1:0A:13:74:E8:10:80:FF:B4:59:AA:A6:9D:
                                F8:94:F3:4F:41:35
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 21 03:14:27.283 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A4:CD:D3:27:D0:CB:DE:7B:FB:E0:1B:
                                6B:20:F8:A4:E9:57:AA:F9:F4:53:4D:DA:59:68:E3:F5:
                                0C:D6:32:53:2E:02:20:42:BA:5E:0B:38:E9:0E:00:CF:
                                86:1E:E5:AE:F9:FC:01:DF:19:CA:E8:27:5D:28:A0:DA:
                                ED:75:C8:C0:1F:2D:81
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5c:3e:9a:b8:e3:14:e9:9f:b1:52:f1:8c:0b:07:7b:53:cb:28:
        b9:c7:7b:4e:1e:72:88:45:a3:6e:0b:94:36:32:1c:0b:3d:f5:
        2f:6f:23:5d:89:a4:70:f4:94:44:73:64:b1:b4:90:26:37:67:
        f1:eb:b8:7d:1a:09:6f:59:74:12:0b:0d:00:00:03:78:c5:a2:
        83:77:52:81:9c:f3:53:ef:4d:c4:74:f8:6e:bb:4b:53:5c:86:
        e5:b2:56:92:4d:0c:86:bc:6f:ac:b1:c2:a6:e8:f9:98:b3:a5:
        4f:37:d2:c4:15:e5:64:85:31:42:60:b9:23:01:8f:0d:0c:d7:
        9e:64:59:ca:31:12:0d:5e:82:20:90:1d:8d:4c:a7:ad:c8:28:
        ef:48:2f:dc:10:60:a4:53:bb:d2:9a:64:69:fb:9d:80:ba:6f:
        25:b4:55:ee:45:6d:48:c2:15:9b:8e:f5:85:28:6c:5e:36:cb:
        18:de:e7:3a:42:02:96:29:a9:0e:75:3a:f1:1a:d6:79:56:7f:
        d2:3e:1f:1b:75:1f:5f:ab:aa:c8:53:de:52:0e:00:c2:a8:1c:
        54:db:73:f8:bf:44:87:f6:e0:92:8b:0f:e3:bf:cd:8e:87:98:
        da:57:eb:f7:33:fc:4a:b2:c0:47:70:c2:86:7c:ab:0f:ae:23:
        ba:5f:b4:83

1876661858 | 2024-04-14T23:23:55.903106

2082 / tcp

HTTP/1.1 403 Forbidden
Date: Sun, 14 Apr 2024 23:23:55 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8747724a5c832ef8-LAX

141477257 | 2024-04-19T13:59:39.751839

2083 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Fri, 19 Apr 2024 13:59:39 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-1925123915 | 2024-04-25T14:41:10.336322

2086 / tcp

HTTP/1.1 403 Forbidden
Date: Thu, 25 Apr 2024 14:41:10 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 879f17a79f44e71a-DFW

-1654929860 | 2024-05-02T03:49:05.673072

2087 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 02 May 2024 03:49:05 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>cloudflare</center>
</body>
</html>

1564187929 | 2024-05-03T11:57:40.289159

8080 / tcp

HTTP/1.1 403 Forbidden
Date: Fri, 03 May 2024 11:57:40 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87e01326c92251fd-DEN

141477257 | 2024-04-26T15:55:33.595279

8443 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Fri, 26 Apr 2024 15:55:33 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-40295083 | 2024-05-02T06:09:49.958154

8880 / tcp

HTTP/1.1 403 Forbidden
Date: Thu, 02 May 2024 06:09:48 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 87d5d83508f07970-AMS

error code: 1003

172.67.168.163

Last Seen: 2024-05-03

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-298480868 | 2024-05-01T11:19:39.024021
80 / tcp

CloudFlare

-1135353333 | 2024-05-02T17:13:54.195629
443 / tcp

1876661858 | 2024-04-14T23:23:55.903106
2082 / tcp

141477257 | 2024-04-19T13:59:39.751839
2083 / tcp

-1925123915 | 2024-04-25T14:41:10.336322
2086 / tcp

-1654929860 | 2024-05-02T03:49:05.673072
2087 / tcp

1564187929 | 2024-05-03T11:57:40.289159
8080 / tcp

CloudFlare

141477257 | 2024-04-26T15:55:33.595279
8443 / tcp

CloudFlare

-40295083 | 2024-05-02T06:09:49.958154
8880 / tcp

Products

Pricing

Contact Us

172.67.168.163

Last Seen: 2024-05-03

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-298480868 | 2024-05-01T11:19:39.024021 80 / tcp

CloudFlare

-1135353333 | 2024-05-02T17:13:54.195629 443 / tcp

1876661858 | 2024-04-14T23:23:55.903106 2082 / tcp

141477257 | 2024-04-19T13:59:39.751839 2083 / tcp

-1925123915 | 2024-04-25T14:41:10.336322 2086 / tcp

-1654929860 | 2024-05-02T03:49:05.673072 2087 / tcp

1564187929 | 2024-05-03T11:57:40.289159 8080 / tcp

CloudFlare

141477257 | 2024-04-26T15:55:33.595279 8443 / tcp

CloudFlare

-40295083 | 2024-05-02T06:09:49.958154 8880 / tcp

Products

Pricing

Contact Us

-298480868 | 2024-05-01T11:19:39.024021
80 / tcp

-1135353333 | 2024-05-02T17:13:54.195629
443 / tcp

1876661858 | 2024-04-14T23:23:55.903106
2082 / tcp

141477257 | 2024-04-19T13:59:39.751839
2083 / tcp

-1925123915 | 2024-04-25T14:41:10.336322
2086 / tcp

-1654929860 | 2024-05-02T03:49:05.673072
2087 / tcp

1564187929 | 2024-05-03T11:57:40.289159
8080 / tcp

141477257 | 2024-04-26T15:55:33.595279
8443 / tcp

-40295083 | 2024-05-02T06:09:49.958154
8880 / tcp