GeneralInformation

Hostnames	hse.ru
Domains	hse.ru
Country	Russian Federation
City	Moscow
Organization	Obshchestvo s ogranichennoy otvetstvennostyu Oblachnii Technologii
ISP	HLL LLC
ASN	AS51115

WebTechnologies

JavaScript libraries

SecurityContact

Contact	underground@hse.ru
Expires	2029-12-31T21:00:00.000Z

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	6.1In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	6.1In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	6.1jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443

1933989416 | 2024-04-17T06:04:08.439118

80 / tcp

HTTP/1.1 404 Not Found
Server: QRATOR
Date: Wed, 17 Apr 2024 06:04:08 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 33511
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "65e8587e-82e7"

-1064516006 | 2024-04-18T19:18:36.434428

443 / tcp

HTTP/1.1 200 OK
Server: QRATOR
Date: Thu, 18 Apr 2024 19:13:52 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
X-Accel-Expires: 180
ETag: W/"0d5a5937f9a6b39348d328dfdf34480c7fdcbad53b3f9f0d70a547418cbd62b9ce5e9c45b4739674974382d833a4417b3f5c8bc8e14538a0343d792546dcfe49"
Expires: Thu, 18 Apr 2024 19:28:51 GMT
Cache-Control: max-age=900
X-Ireland-Cache-Status: HIT
Strict-Transport-Security: max-age=15552000
X-XSS-Protection: 1; mode=block; report=https://www.hse.ru/n/api/xss/report
Set-Cookie: tracking=ZEsUBGYhcO+EnBMgAwVSAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.hse.ru; path=/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            34:95:55:52:43:dd:fa:52:c7:06:14:d5
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R6 AlphaSSL CA 2023
        Validity
            Not Before: Feb 13 15:19:07 2024 GMT
            Not After : Mar 16 15:19:06 2025 GMT
        Subject: CN=*.hse.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c6:50:29:e3:93:08:e0:f8:06:3b:0b:d1:15:1b:
                    ff:5d:3b:11:2c:86:7d:b0:f9:8b:71:de:b7:10:8e:
                    47:12:2d:f4:26:a9:4f:7a:a0:1a:00:bd:7e:a8:d0:
                    76:b5:44:f3:aa:06:62:f6:9d:b5:70:71:0b:70:9d:
                    3e:33:76:68:01:01:9e:1a:e0:10:5e:04:af:d7:e6:
                    ab:f0:f2:d3:dd:7e:6e:62:c1:bf:4b:d9:f6:59:a1:
                    1a:e0:01:18:a9:43:e8:5b:40:4e:3f:eb:60:97:01:
                    bd:49:65:d6:57:01:8b:14:57:18:35:67:b8:09:0f:
                    4b:b3:dd:62:9b:f3:1f:22:23:72:88:f4:16:4b:24:
                    75:f4:12:b3:78:80:1a:48:46:fb:24:1a:26:d1:a7:
                    e7:b5:0a:22:eb:af:c8:9d:d4:d4:49:e1:d6:ee:26:
                    89:b2:a3:6e:1c:ec:8a:60:fd:5a:38:bb:0b:82:1a:
                    b9:3e:4a:84:cf:a3:81:ac:50:55:90:05:d5:80:62:
                    32:ae:a1:e4:08:8f:bc:ed:43:03:57:f9:e0:6b:db:
                    3a:02:40:bf:8d:7e:de:68:92:df:46:95:53:38:21:
                    cf:88:d7:08:cc:c3:8a:f5:82:26:ae:de:e1:c8:57:
                    6c:a1:e5:31:be:f5:7a:a9:c2:ba:19:39:cb:37:35:
                    97:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr6alphasslca2023.crt
                OCSP - URI:http://ocsp.globalsign.com/gsgccr6alphasslca2023
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.4146.10.1.3
                  CPS: https://www.globalsign.com/repository/
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsgccr6alphasslca2023.crl
            X509v3 Subject Alternative Name: 
                DNS:*.hse.ru, DNS:hse.ru
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                BD:05:B7:F3:8A:93:3C:73:CB:79:FA:0F:85:12:A1:77:96:18:91:74
            X509v3 Subject Key Identifier: 
                E6:92:4A:65:FD:1D:8D:4A:04:FD:63:FB:23:67:9C:3A:F5:BF:F7:5E
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Feb 13 15:19:09.328 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:34:1C:BA:6F:43:10:1E:E7:89:7E:3E:5D:
                                3D:10:60:56:5C:57:9A:AF:A8:A4:BC:47:A6:5C:16:F7:
                                06:D2:FE:4B:02:21:00:AC:A2:0F:AA:8E:8A:E8:CD:C5:
                                9E:02:E4:31:48:9B:7E:47:6E:DA:AB:6A:5C:32:99:F7:
                                97:6C:3B:FC:25:8B:65
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Feb 13 15:19:09.110 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E3:44:A6:EF:43:DB:20:08:91:4A:49:
                                54:31:1D:B8:2A:5E:D4:C9:14:9D:30:20:77:29:D3:83:
                                9E:38:3E:D7:D0:02:21:00:C1:F1:F4:EB:AA:35:DC:71:
                                0B:8B:8B:D7:A3:51:40:71:B7:CE:54:6A:86:9B:8F:EF:
                                36:34:0D:46:0A:49:00:B1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 13 15:19:09.345 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D9:1D:96:F7:D9:AF:59:F6:2A:6A:CB:
                                DF:9F:64:12:F3:C6:51:45:01:9F:60:41:EA:CE:CC:57:
                                93:8A:69:D8:07:02:21:00:EA:25:C7:29:EE:CF:4B:46:
                                3C:BF:20:60:AD:43:1B:83:38:F6:2B:9E:1E:B1:DD:02:
                                11:63:8E:1F:38:24:53:91
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b5:89:ce:b3:be:9b:61:09:d2:19:7a:26:6c:d4:68:89:38:36:
        67:40:13:cb:dd:1d:9e:78:06:23:84:98:7e:2a:d5:f3:77:4a:
        47:89:ab:eb:c7:47:f5:f9:eb:fd:4a:e7:5b:48:02:03:36:89:
        17:1e:51:d1:48:a8:42:1f:e6:6d:bb:18:56:72:2b:39:f9:b9:
        fe:5a:48:5a:de:59:6c:3f:05:83:90:45:b3:2e:14:b4:56:e6:
        60:5a:25:fe:f9:68:b0:76:aa:65:c8:1a:8f:7f:53:d8:6d:e2:
        82:c3:ee:a9:8f:38:d2:0f:f7:77:14:23:53:0d:39:75:78:ac:
        09:98:27:bb:21:68:39:25:48:69:69:d0:5b:94:b6:1f:c1:b3:
        ed:ae:5b:d4:d3:17:51:a2:0b:c0:54:d1:5c:0e:cf:13:9f:39:
        3f:00:73:e1:ca:42:46:5c:46:fc:20:5b:4c:48:99:9b:9a:95:
        6b:13:07:f1:5f:b8:f1:4b:74:2a:53:89:c8:87:e0:39:b0:2e:
        85:dc:35:34:69:fe:fa:ca:ad:7f:f8:c3:6f:01:d3:83:69:a4:
        83:e8:1a:ae:1d:62:ab:8f:f0:21:75:ef:6b:72:1f:6e:d3:d9:
        5a:45:e1:eb:ca:32:64:54:e2:a6:c8:a0:c4:b2:2c:9d:97:1f:
        b6:cd:b3:e4

178.248.234.104

Last Seen: 2024-04-18

GeneralInformation

WebTechnologies

SecurityContact

Vulnerabilities

OpenPorts

1933989416 | 2024-04-17T06:04:08.439118
80 / tcp

-1064516006 | 2024-04-18T19:18:36.434428
443 / tcp

Products

Pricing

Contact Us

178.248.234.104

Last Seen: 2024-04-18

GeneralInformation

WebTechnologies

SecurityContact

Vulnerabilities

OpenPorts

1933989416 | 2024-04-17T06:04:08.439118 80 / tcp

-1064516006 | 2024-04-18T19:18:36.434428 443 / tcp

Products

Pricing

Contact Us

1933989416 | 2024-04-17T06:04:08.439118
80 / tcp

-1064516006 | 2024-04-18T19:18:36.434428
443 / tcp