GeneralInformation

Hostnames	bartels.pinkmarketing.nl
Domains	pinkmarketing.nl
Cloud Provider	DigitalOcean
Cloud Region	nl-nh
Country	Netherlands
City	Amsterdam
Organization	Digital Ocean, Inc.
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-20372	5.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

80 443

-2026190465 | 2024-04-17T21:07:36.845510

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.16.1
Date: Wed, 17 Apr 2024 21:07:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://onlinetuesday.nl/

-182095361 | 2024-04-18T16:08:20.231749

443 / tcp

HTTP/1.1 500 Internal Server Error
Server: nginx/1.16.1
Date: Thu, 18 Apr 2024 16:08:20 GMT
Content-Type: text/html
Content-Length: 579
Connection: close

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:e5:e0:b5:27:e7:20:0a:23:24:7f:7b:4a:3f:e9:0f:ef:90
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Jun 18 13:15:24 2022 GMT
            Not After : Sep 16 13:15:23 2022 GMT
        Subject: CN=bartels.pinkmarketing.nl
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c7:df:7d:bf:09:63:cd:28:58:b8:7a:da:82:c4:
                    f7:f7:d9:0d:f6:8f:27:27:0b:ad:16:5a:e3:b1:bd:
                    f1:c4:fe:c3:c2:fb:15:12:84:c4:60:09:71:42:39:
                    3f:22:eb:db:88:5f:2c:41:fb:d1:1e:72:f7:d4:f3:
                    90:84:93:1d:f8:92:55:39:d7:51:98:77:01:d4:05:
                    e9:44:be:b2:2b:b3:24:73:a3:5a:90:7c:f3:5b:1f:
                    c6:cd:98:25:49:01:68:f8:e7:eb:a8:83:42:5e:8c:
                    70:99:26:f8:f1:25:62:7f:10:40:36:4a:e5:26:5a:
                    8b:55:85:2d:04:ab:ff:45:1f:8c:87:0f:c9:15:a8:
                    5b:d0:d7:03:c7:19:9e:35:56:b2:02:8e:e8:80:a1:
                    64:a1:10:f0:50:37:5f:30:b5:61:46:04:9f:4b:10:
                    61:32:47:a2:48:02:2a:31:20:71:16:ec:92:e9:a7:
                    c2:eb:5a:74:a2:34:87:03:cf:c9:85:c5:71:b4:11:
                    a1:0e:06:25:4c:9b:0a:d3:a7:4c:07:08:1c:da:ff:
                    fb:4f:54:73:0b:19:66:16:f8:b7:00:87:24:1f:4d:
                    39:b0:a6:52:61:b3:75:4b:93:f7:e1:f0:cd:ec:77:
                    48:75:ea:23:f8:34:f7:8d:79:6c:cf:7d:39:88:73:
                    9a:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                7A:98:B6:1D:2C:83:63:99:10:91:F2:48:9F:45:55:06:DE:39:EB:A4
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:bartels.pinkmarketing.nl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
                                11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
                    Timestamp : Jun 18 14:15:24.674 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C8:8F:B0:FC:2B:51:65:76:62:EE:B8:
                                B9:46:00:52:72:9B:CC:13:AE:B5:81:BB:42:25:C4:C2:
                                F4:22:7C:55:E4:02:20:17:1B:08:82:4D:DD:21:A4:89:
                                D3:D8:61:AC:08:A8:90:9B:13:5D:BF:94:84:60:47:CC:
                                5D:B6:8F:FD:FF:4A:8E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 41:C8:CA:B1:DF:22:46:4A:10:C6:A1:3A:09:42:87:5E:
                                4E:31:8B:1B:03:EB:EB:4B:C7:68:F0:90:62:96:06:F6
                    Timestamp : Jun 18 14:15:25.150 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:7C:E8:24:23:F0:75:CB:4B:F5:15:59:6B:
                                70:02:E4:AD:AD:42:C4:3D:D2:70:A1:AD:FA:CD:B6:4D:
                                96:00:EF:5F:02:21:00:F3:70:AA:FD:07:79:05:72:C8:
                                3B:D3:C0:54:A3:39:CA:14:5B:B5:D5:F1:ED:EC:70:39:
                                E3:DF:C8:FF:48:65:22
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4b:25:42:45:67:33:7a:ae:1b:26:75:5e:a5:fb:a5:04:19:b2:
        23:01:10:25:19:12:7d:e2:cc:d5:32:43:52:51:74:b6:1a:cb:
        7d:34:d2:6e:d5:1b:b6:57:67:38:fa:64:ca:27:21:7c:15:8e:
        d5:6d:4e:3b:c8:a4:d7:10:e1:59:fc:a5:0f:63:6f:de:fc:23:
        b7:5a:96:c9:01:18:b8:90:77:d0:8d:5b:45:c6:1c:9a:f2:41:
        66:ca:05:20:89:de:ba:ff:93:00:ae:e7:46:76:05:82:df:c3:
        ea:4b:45:9f:8f:15:32:43:ea:4a:1b:be:46:7c:b0:c2:de:9a:
        54:8d:ef:a8:2b:ce:04:ae:b5:31:18:5f:44:5a:76:f4:45:c8:
        3e:48:51:84:d2:39:80:3e:f7:6e:21:b6:7e:d3:8c:ec:e8:4c:
        aa:e0:3b:9e:1c:ac:9e:e2:eb:30:8b:ba:f8:ef:7b:d5:4d:36:
        06:56:76:89:3f:61:26:a4:f4:ec:c1:78:6a:68:53:0d:3f:1c:
        bb:f8:7a:5f:47:a0:ca:52:ad:0b:ae:9d:f9:f0:ab:9c:a1:3e:
        ae:6b:90:44:f8:b5:81:58:19:63:2f:ef:35:3b:8f:0c:06:b7:
        cc:7d:ef:40:f4:32:b9:80:38:4d:06:66:ea:8b:0e:7b:cd:8c:
        dc:4d:8a:1b

188.166.60.243

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2026190465 | 2024-04-17T21:07:36.845510
80 / tcp

nginx1.16.1

-182095361 | 2024-04-18T16:08:20.231749
443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

188.166.60.243

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2026190465 | 2024-04-17T21:07:36.845510 80 / tcp

nginx1.16.1

-182095361 | 2024-04-18T16:08:20.231749 443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

-2026190465 | 2024-04-17T21:07:36.845510
80 / tcp

-182095361 | 2024-04-18T16:08:20.231749
443 / tcp