GeneralInformation

Hostnames	cas.wbsrvcx.com editor-images.wbsrvcx.com ip232-218-99-192.wbsrvcx.com link.wbsrvcx.com strapi.wbsrvcx.com uiv3.wbsrvcx.com
Domains	wbsrvcx.com
Country	Canada
City	Beauharnois
Organization	Cakemail
ISP	OVH SAS
ASN	AS16276

WebTechnologies

JavaScript libraries

jQuery1.12.4

Security

reCAPTCHA

SecurityContact

Contact	security@cakemail.com
Encryption	https://app.cakemail.com/.well-known/pgppubkey.txt

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443

693035497 | 2024-05-01T10:01:22.034100

80 / tcp

HTTP/1.1 200 OK
Date: Wed, 01 May 2024 10:01:21 GMT
Server: Apache
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-ETWJMGu3Enj4jG4CFECxfP2c3Do3HPOoIGX3RuqSk4E=' 'sha256-UNSjrBN573Gq5WKBQX8pe6R5RxDXbRjK1TIF7JnDtRI=' 'sha256-jsM15EgcnljVkAqUSwvhK2zpKO95FVxVXa/KCLMxHP0=' https://www.gstatic.com https://www.google.com https://ph.cake.io https://use.typekit.net ; style-src 'report-sample' 'self' 'unsafe-inline'; object-src 'self' *; base-uri 'self'; connect-src 'self'; font-src 'self' https://use.typekit.net; frame-ancestors *; frame-src 'self' https://www.google.com; img-src * ; manifest-src 'self'; media-src 'self'; worker-src 'none';
Vary: Accept-Encoding
Content-Length: 4199
Connection: close
Content-Type: text/html; charset=UTF-8
Cache-Control: public, max-age=3600
Referrer-Policy: strict-origin
X-Content-Type-Options: nosniff

693035497 | 2024-05-01T01:12:10.637151

443 / tcp

HTTP/1.1 200 OK
Date: Wed, 01 May 2024 01:12:10 GMT
Server: Apache
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-ETWJMGu3Enj4jG4CFECxfP2c3Do3HPOoIGX3RuqSk4E=' 'sha256-UNSjrBN573Gq5WKBQX8pe6R5RxDXbRjK1TIF7JnDtRI=' 'sha256-jsM15EgcnljVkAqUSwvhK2zpKO95FVxVXa/KCLMxHP0=' https://www.gstatic.com https://www.google.com https://ph.cake.io https://use.typekit.net ; style-src 'report-sample' 'self' 'unsafe-inline'; object-src 'self' *; base-uri 'self'; connect-src 'self'; font-src 'self' https://use.typekit.net; frame-ancestors *; frame-src 'self' https://www.google.com; img-src * ; manifest-src 'self'; media-src 'self'; worker-src 'none';
Vary: Accept-Encoding
Content-Length: 4199
Connection: close
Content-Type: text/html; charset=UTF-8
Cache-Control: public, max-age=3600
Referrer-Policy: strict-origin
Strict-Transport-Security: max-age=60
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:39:c3:25:35:f2:3c:dd:62:f6:cd:27:68:6d:be:2b:4f:40
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 19 19:25:36 2024 GMT
            Not After : Jun 17 19:25:35 2024 GMT
        Subject: CN=uiv3.wbsrvcx.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ac:ee:fb:bd:ce:e9:3e:c9:bd:c0:b6:a2:db:1b:
                    7b:50:72:d1:dd:cd:a3:7e:56:4f:09:87:94:2f:03:
                    53:db:61:76:b6:20:f0:79:7c:71:b5:96:80:ff:0a:
                    27:0c:7c:4a:39:fa:fc:74:31:56:13:67:b0:a7:3a:
                    a2:8e:14:21:8a:f2:67:11:57:e8:60:07:ec:4a:eb:
                    c8:ed:3d:33:57:00:f3:78:ae:45:34:8e:37:6f:0b:
                    a4:c8:d6:fe:d6:41:d2:30:5a:3d:4e:ff:61:d7:6c:
                    ab:cc:2a:1b:c4:54:8f:bf:e2:56:01:24:63:18:e9:
                    13:a2:87:42:39:11:47:da:88:40:31:1d:e9:1d:7a:
                    58:44:01:cf:6b:26:ca:dc:c5:85:49:40:a8:7b:04:
                    b9:d4:01:3a:c3:1d:da:d3:7d:08:63:de:75:31:97:
                    b6:e0:69:90:28:8d:09:bb:19:f9:85:0e:05:02:01:
                    4d:b0:45:59:81:66:d8:07:d2:8f:97:7e:b6:09:68:
                    c5:c3:46:4e:9c:01:de:f1:8f:ea:07:fb:ff:4a:23:
                    ab:b5:61:3a:a6:4e:83:1c:71:e0:3b:bc:b8:03:97:
                    ee:ed:ff:3b:65:d5:23:17:ef:7a:7e:70:84:b3:b4:
                    39:ee:6d:ff:e8:6a:96:6f:30:6f:e4:4a:5c:de:87:
                    0d:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                E1:93:56:71:23:2A:08:3E:EA:75:76:EE:1C:0A:DC:F5:8A:89:1A:A6
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:cas.wbsrvcx.com, DNS:editor-images.wbsrvcx.com, DNS:link.wbsrvcx.com, DNS:strapi.wbsrvcx.com, DNS:uiv3.wbsrvcx.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 19 20:25:37.152 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E1:70:4A:B6:5F:58:7C:94:26:33:8B:
                                6F:F8:3C:3E:CB:0E:7C:1D:7E:79:03:34:B6:A4:77:C9:
                                1C:94:C5:0A:9B:02:21:00:B2:E8:54:85:06:36:A3:F7:
                                AC:81:8F:FE:F6:62:76:2A:6C:5B:BE:45:47:12:43:EB:
                                A7:23:16:E6:70:D6:36:89
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar 19 20:25:37.159 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FF:1B:D9:23:F3:68:09:F2:3D:ED:C3:
                                88:C6:BD:A3:C5:6B:D3:24:68:BD:E5:2C:55:00:A9:A7:
                                23:BC:8E:26:F8:02:21:00:AB:6F:FB:64:11:A2:A5:4D:
                                A8:B4:0E:0A:A3:01:EE:53:53:1E:38:FE:44:2C:5E:F9:
                                5A:B7:0C:34:58:0F:09:F4
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        29:d2:69:58:17:2b:53:a4:85:8b:39:3e:0e:13:bf:66:b4:60:
        41:c3:8b:b3:b2:64:d4:17:4a:ac:e5:4b:d1:d2:94:8c:98:39:
        1d:cb:fe:28:18:7e:8a:c1:3c:ac:f3:49:87:79:fa:c5:50:6e:
        f3:c2:3b:71:60:4e:bf:c0:a7:85:57:d4:99:ed:1e:1a:81:62:
        4d:60:31:61:e2:c4:44:1e:e2:61:22:bd:7b:7f:85:31:a7:ec:
        b3:53:80:71:de:9f:3f:ec:46:f2:da:91:9d:af:1b:c6:3a:1e:
        98:3b:9c:b0:88:8b:c5:0e:e6:58:db:0f:84:87:d5:cf:e6:92:
        34:e7:46:50:ad:6d:28:0c:46:a3:99:44:c2:38:b9:03:0c:f2:
        ae:5b:ea:77:d2:1e:c8:94:1a:95:8a:fc:e1:3e:1f:f2:c5:d0:
        d2:13:d8:5c:de:2c:4e:98:35:8d:8c:a5:7a:0f:45:cb:57:e9:
        88:9d:4c:77:bc:df:e8:b9:2a:23:15:ca:66:13:98:50:6d:e6:
        fe:04:74:c4:58:68:e9:01:41:e4:39:e8:f7:09:df:fb:47:9d:
        22:79:62:17:9e:bd:a4:09:47:e9:34:5b:f8:14:b1:e2:d6:ee:
        39:4a:09:06:e3:96:2b:7e:29:3a:3d:2a:e6:ce:07:41:a6:44:
        c7:2c:74:0b

192.99.218.232

Last Seen: 2024-05-01

GeneralInformation

WebTechnologies

SecurityContact

Vulnerabilities

OpenPorts

693035497 | 2024-05-01T10:01:22.034100
80 / tcp

Apache httpd

693035497 | 2024-05-01T01:12:10.637151
443 / tcp

Apache httpd

Products

Pricing

Contact Us

192.99.218.232

Last Seen: 2024-05-01

GeneralInformation

WebTechnologies

SecurityContact

Vulnerabilities

OpenPorts

693035497 | 2024-05-01T10:01:22.034100 80 / tcp

Apache httpd

693035497 | 2024-05-01T01:12:10.637151 443 / tcp

Apache httpd

Products

Pricing

Contact Us

693035497 | 2024-05-01T10:01:22.034100
80 / tcp

693035497 | 2024-05-01T01:12:10.637151
443 / tcp