GeneralInformation

Hostnames	www.tbilisisrf.gov.ge 178-134-216-9.dsl.utg.ge
Domains	tbilisisrf.gov.ge utg.ge
Country	Georgia
City	Tbilisi
Organization	SILKNET BROADBAND
ISP	JSC "Silknet"
ASN	AS35805

WebTechnologies

JavaScript libraries

jQuery1.11.3

FancyBox2.1.5

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443

-2050394575 | 2024-04-22T01:25:59.477183

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.25.4
Date: Mon, 22 Apr 2024 01:25:53 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://www.economy.ge

3764892 | 2024-05-04T11:42:45.309268

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.26.0
Date: Sat, 04 May 2024 11:42:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=ssborpo7d1mr0cksu9jpqe53j7; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding,User-Agent
Content-Security-Policy: upgrade-insecure-requests
Strict-Transport-Security: max-age=31536000; includeSubDomains

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:a3:da:36:5a:b6:11:ac:78:34:e5:3c:32:ea:e7:53:7b:41
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 24 12:35:35 2024 GMT
            Not After : Jul 23 12:35:34 2024 GMT
        Subject: CN=www.tbilisisrf.gov.ge
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:5c:7b:b8:d9:56:9d:b7:b8:c2:9a:f2:30:ed:32:
                    39:ed:89:f3:d9:69:73:38:fc:5f:97:e6:69:b0:a2:
                    fe:13:48:23:99:ff:2f:e9:c5:0a:c4:a8:9c:3c:76:
                    c5:4f:26:11:50:dc:89:10:cf:cb:be:87:0e:c0:0c:
                    83:fc:8f:8d:a7
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                6E:D3:DF:32:29:6D:A0:80:BA:3C:55:79:A9:B9:1D:9C:A9:5E:38:09
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:www.tbilisisrf.gov.ge
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 24 13:35:36.202 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FD:7B:2A:3B:24:20:5E:B9:F9:9B:B4:
                                29:2E:07:A1:F0:ED:92:A3:A6:96:5A:D9:98:2A:46:03:
                                6C:B5:14:F4:E6:02:20:07:81:BA:8F:95:B9:11:5F:4D:
                                0A:51:DF:53:33:E0:3F:4E:41:27:6F:1B:DC:B7:4C:82:
                                09:3B:45:0A:00:79:75
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 24 13:35:36.246 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F6:A2:1F:06:3C:50:42:D9:E6:EA:AE:
                                08:67:33:14:00:C5:27:21:B1:0E:19:83:F4:EC:04:1F:
                                B0:91:00:8F:D6:02:21:00:9B:D7:6F:BA:CD:F4:29:65:
                                8E:2E:8B:47:68:65:46:3E:74:03:4D:18:F4:E9:AC:72:
                                D2:D9:0B:00:61:D8:60:C6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        ad:4e:96:9a:91:1d:d7:8a:0e:8d:e6:69:3b:6a:b9:ea:41:c0:
        5e:e8:30:25:57:4e:29:14:0c:d4:4b:16:0e:fe:4b:62:b8:9c:
        7a:a2:ef:d6:68:5b:4b:5a:13:32:03:af:2d:2e:05:46:8f:d2:
        ec:06:d4:c7:6a:05:b3:ea:e5:49:3d:53:52:87:3d:ac:79:ad:
        2a:ce:a8:79:2d:82:d9:55:8f:e8:d4:61:4a:d3:1b:f9:78:46:
        70:07:9e:c2:c0:94:70:72:0d:89:5a:7e:d7:d7:4e:f8:15:9b:
        fe:6c:42:8f:b8:66:9b:98:03:49:fd:e9:b9:7a:ee:ab:a1:e8:
        35:61:a8:99:b6:c8:f3:c2:29:df:04:64:e2:fa:c2:82:66:21:
        87:d9:c1:08:e7:57:20:b1:9b:c1:54:2e:d7:5a:dd:a3:5a:e0:
        3f:47:34:69:85:48:d0:27:c8:5a:d6:6a:22:16:ed:81:34:cd:
        2d:ce:a6:16:e4:d0:6c:4d:ce:5a:0c:17:12:61:a9:7c:78:a4:
        b3:76:49:69:79:5c:f2:ba:6c:d8:6c:23:a8:e1:3c:6d:f6:5d:
        83:e1:3c:fd:b3:cc:46:54:ab:06:8c:7e:b5:da:60:2c:a3:5e:
        d9:cd:6c:bc:07:e7:da:19:c6:92:a8:7e:98:83:ef:80:4f:78:
        75:20:40:88

178.134.216.9

Last Seen: 2024-05-04

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-2050394575 | 2024-04-22T01:25:59.477183
80 / tcp

nginx1.25.4

3764892 | 2024-05-04T11:42:45.309268
443 / tcp

nginx1.26.0

Products

Pricing

Contact Us

178.134.216.9

Last Seen: 2024-05-04

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-2050394575 | 2024-04-22T01:25:59.477183 80 / tcp

nginx1.25.4

3764892 | 2024-05-04T11:42:45.309268 443 / tcp

nginx1.26.0

Products

Pricing

Contact Us

-2050394575 | 2024-04-22T01:25:59.477183
80 / tcp

3764892 | 2024-05-04T11:42:45.309268
443 / tcp