GeneralInformation

Hostnames	iss-safety.co.uk
Domains	iss-safety.co.uk
Country	United States
City	San Francisco
Organization	Cloudflare, Inc.
ISP	Cloudflare, Inc.
ASN	AS13335

WebTechnologies

CDN

JavaScript libraries

Miscellaneous

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-8331	4.3In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2018-20677	4.3In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.
CVE-2018-20676	4.3In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.
CVE-2018-14042	4.3In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.
CVE-2018-14040	4.3In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.
CVE-2016-10735	4.3In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443 2053 2082 2083 2086 2087 8080 8443 8880

231602200 | 2024-05-04T07:59:58.800689

80 / tcp

HTTP/1.1 403 Forbidden
Date: Sat, 04 May 2024 07:59:58 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87e6f45879036602-AMS

595521218 | 2024-05-02T21:47:15.765373

443 / tcp

HTTP/1.1 200 OK
Date: Thu, 02 May 2024 21:47:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C%2FZrXLjHGE4ldwyNF%2FVPVJDToaDF2tqPgmu3ujDpf95%2BRRKO48NYZTaSYAHhWPcHEsMop8pOea03BQ7c379JTBnfdZBT%2FePI6EoCU9OStXZK5uKuYPXFocubtl%2BwcWr0gPNlLd%2Bpgk%2BvsNrfQIBkFAuSeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 87db356d1de87ae0-SJC
alt-svc: h3=":443"; ma=86400

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:01:e5:2e:c8:41:45:b8:20:d3:2e:50:c4:27:86:1a:0f:ff
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E1
        Validity
            Not Before: Apr 25 03:37:12 2024 GMT
            Not After : Jul 24 03:37:11 2024 GMT
        Subject: CN=iss-safety.co.uk
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:fa:76:3a:79:06:f0:f6:e5:6f:ef:de:e0:ae:35:
                    fa:b8:d6:ee:3c:e9:c4:6d:26:f3:96:af:62:80:68:
                    fa:2b:e4:4a:ae:1d:9c:dd:83:bf:8d:f3:b8:9d:21:
                    44:68:b7:0d:e5:7b:4d:48:d3:6f:dd:1f:cc:f3:c9:
                    72:cd:30:c2:3a
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                A6:D5:6A:9A:04:18:AA:5E:BD:79:06:8C:F2:E7:B5:01:97:C3:F6:74
            X509v3 Authority Key Identifier: 
                5A:F3:ED:2B:FC:36:C2:37:79:B9:52:30:EA:54:6F:CF:55:CB:2E:AC
            Authority Information Access: 
                OCSP - URI:http://e1.o.lencr.org
                CA Issuers - URI:http://e1.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.iss-safety.co.uk, DNS:iss-safety.co.uk
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 25 04:37:12.695 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:94:D6:53:F5:13:E5:42:2D:6F:BE:98:
                                AF:DD:4E:1E:97:01:06:93:2B:0A:67:04:B4:5A:13:D8:
                                B7:20:ED:8C:CA:02:21:00:FE:2E:A8:54:D3:78:2E:FA:
                                F9:55:0B:53:54:A4:7A:CA:79:99:7A:6F:68:F4:C9:6D:
                                67:D6:D6:38:DB:48:31:22
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 25 04:37:12.707 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:0A:6E:74:DF:03:5A:68:94:3C:90:22:12:
                                D0:DB:32:BF:99:62:2A:B9:6C:15:BC:B8:7E:C0:57:99:
                                F2:0E:04:4E:02:20:2A:D8:4B:C6:00:8A:C0:E9:64:78:
                                2C:F0:A9:F3:76:FE:59:BB:12:8B:F0:E7:EA:7D:94:8B:
                                DB:D3:CE:22:79:EF
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:64:02:30:48:47:d2:6e:3c:95:45:79:61:f0:de:6b:b2:29:
        82:38:e9:5e:e6:a3:61:88:c1:bd:c8:c7:c0:6e:ee:49:40:13:
        fb:14:97:09:f0:8b:6c:dd:20:2e:5a:4a:19:c8:d2:9d:02:30:
        47:2f:ee:da:0e:ed:fd:c5:26:7d:6a:78:52:56:99:84:40:8c:
        ac:25:14:70:17:81:df:0d:38:9b:be:79:2f:fe:53:51:ce:1b:
        06:26:b0:78:90:01:2d:6c:c6:7b:69:3c

141477257 | 2024-04-22T03:19:37.204525

2053 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Mon, 22 Apr 2024 03:19:37 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-589400351 | 2024-04-28T14:40:11.311523

2082 / tcp

HTTP/1.1 403 Forbidden
Date: Sun, 28 Apr 2024 14:40:11 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87b7ce56a94a486e-DFW

141477257 | 2024-04-25T20:35:20.578371

2083 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 25 Apr 2024 20:35:20 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

1280023587 | 2024-04-24T11:26:25.415681

2086 / tcp

HTTP/1.1 403 Forbidden
Date: Wed, 24 Apr 2024 11:26:25 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8795bd00da467b36-DEN

141477257 | 2024-05-03T10:35:38.282085

2087 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Fri, 03 May 2024 10:35:38 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

1449532300 | 2024-04-25T04:18:43.005580

8080 / tcp

HTTP/1.1 403 Forbidden
Date: Thu, 25 Apr 2024 04:18:43 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 879b87dabf465346-DEN

141477257 | 2024-04-19T11:34:18.358330

8443 / tcp

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Fri, 19 Apr 2024 11:34:18 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

-1220937137 | 2024-05-01T07:58:30.608989

8880 / tcp

HTTP/1.1 403 Forbidden
Date: Wed, 01 May 2024 07:58:30 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 87ce3a112f6b6c2e-DFW

error code: 1003

172.67.189.84

Last Seen: 2024-05-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

231602200 | 2024-05-04T07:59:58.800689
80 / tcp

CloudFlare

595521218 | 2024-05-02T21:47:15.765373
443 / tcp

141477257 | 2024-04-22T03:19:37.204525
2053 / tcp

-589400351 | 2024-04-28T14:40:11.311523
2082 / tcp

141477257 | 2024-04-25T20:35:20.578371
2083 / tcp

1280023587 | 2024-04-24T11:26:25.415681
2086 / tcp

141477257 | 2024-05-03T10:35:38.282085
2087 / tcp

1449532300 | 2024-04-25T04:18:43.005580
8080 / tcp

CloudFlare

141477257 | 2024-04-19T11:34:18.358330
8443 / tcp

CloudFlare

-1220937137 | 2024-05-01T07:58:30.608989
8880 / tcp

Products

Pricing

Contact Us

172.67.189.84

Last Seen: 2024-05-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

231602200 | 2024-05-04T07:59:58.800689 80 / tcp

CloudFlare

595521218 | 2024-05-02T21:47:15.765373 443 / tcp

141477257 | 2024-04-22T03:19:37.204525 2053 / tcp

-589400351 | 2024-04-28T14:40:11.311523 2082 / tcp

141477257 | 2024-04-25T20:35:20.578371 2083 / tcp

1280023587 | 2024-04-24T11:26:25.415681 2086 / tcp

141477257 | 2024-05-03T10:35:38.282085 2087 / tcp

1449532300 | 2024-04-25T04:18:43.005580 8080 / tcp

CloudFlare

141477257 | 2024-04-19T11:34:18.358330 8443 / tcp

CloudFlare

-1220937137 | 2024-05-01T07:58:30.608989 8880 / tcp

Products

Pricing

Contact Us

231602200 | 2024-05-04T07:59:58.800689
80 / tcp

595521218 | 2024-05-02T21:47:15.765373
443 / tcp

141477257 | 2024-04-22T03:19:37.204525
2053 / tcp

-589400351 | 2024-04-28T14:40:11.311523
2082 / tcp

141477257 | 2024-04-25T20:35:20.578371
2083 / tcp

1280023587 | 2024-04-24T11:26:25.415681
2086 / tcp

141477257 | 2024-05-03T10:35:38.282085
2087 / tcp

1449532300 | 2024-04-25T04:18:43.005580
8080 / tcp

141477257 | 2024-04-19T11:34:18.358330
8443 / tcp

-1220937137 | 2024-05-01T07:58:30.608989
8880 / tcp