GeneralInformation

Hostnames	listserv2.npr.org
Domains	npr.org
Cloud Provider	Azure
Cloud Region	eastus2
Cloud Service	AzureCloud
Country	United States
City	Boydton
Organization	Microsoft Corporation
ISP	Microsoft Corporation
ASN	AS8075
Operating System	Windows

WebTechnologies

JavaScript libraries

jQuery3.3.1

jQuery UI1.12.1

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

OpenPorts

25 80 443

171675302 | 2024-04-19T22:34:28.136650

25 / tcp

220 LISTSERV2.NPR.ORG ready.
250 Go ahead.

476806825 | 2024-04-20T07:45:24.979297

80 / tcp

HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://20.97.154.204/
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sat, 20 Apr 2024 07:45:24 GMT
Content-Length: 145

-1411515501 | 2024-04-20T07:45:29.627372

443 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Frame-Options: SAMEORIGIN
X-Powered-By: ASP.NET
Date: Sat, 20 Apr 2024 07:45:28 GMT
Connection: close
Content-Length: 70947

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:02:1d:97:2b:0b:0f:81:ed:11:29:68:e5:7f:08:a4:c5:65
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  9 12:29:29 2024 GMT
            Not After : Jul  8 12:29:28 2024 GMT
        Subject: CN=listserv2.npr.org
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (3072 bit)
                Modulus:
                    00:9a:3d:29:f1:b0:3e:24:89:8c:31:0d:fe:e3:9f:
                    73:62:c6:d7:12:f5:e1:8b:36:bb:39:23:5c:96:b2:
                    6f:30:64:b8:73:89:ec:7d:56:ad:43:27:b8:42:72:
                    91:1e:f9:07:b7:6d:46:36:40:b2:35:2c:04:a0:76:
                    ef:88:73:b9:4e:8d:3e:22:70:eb:59:94:45:66:91:
                    1c:d1:5e:11:77:88:7d:07:98:29:4c:7a:c1:57:21:
                    3e:db:a5:3e:fe:ee:11:06:d7:63:a4:06:a3:49:f4:
                    60:1f:c2:55:d8:79:f2:65:c3:d3:31:ea:50:2f:27:
                    91:08:cc:4b:5e:9a:65:1e:71:e4:39:77:ea:3d:d3:
                    75:61:42:bc:eb:35:14:b3:5b:0b:d9:f7:b5:02:e1:
                    70:b8:b7:44:8b:98:23:5c:fe:47:c6:79:06:ce:80:
                    6b:15:37:8c:4a:90:32:00:87:0e:88:0f:76:17:d0:
                    a2:91:6f:aa:f2:30:11:be:99:45:7a:e0:48:4f:33:
                    d2:30:31:c9:0a:75:cf:b9:8f:c8:90:bf:41:7b:12:
                    67:f2:25:0f:50:0e:c0:45:4c:86:23:81:f8:1d:fc:
                    59:3f:01:82:82:c7:20:cb:80:ee:d1:5d:90:d5:b6:
                    5a:37:ba:ff:5e:fe:e8:9f:82:7d:0e:9b:9b:02:c4:
                    a3:c9:3d:ac:5b:41:49:4f:cc:28:ec:a6:68:c7:3d:
                    c4:3e:dd:02:8d:dc:1a:fd:d6:80:74:6b:b8:4c:cc:
                    99:ae:0b:cc:e7:6b:d1:d3:05:c0:e3:5c:55:2c:ed:
                    f5:a2:bc:ca:99:00:4c:fb:14:d0:e1:fe:e0:60:ad:
                    a1:b8:99:d3:87:ec:d9:57:0e:a3:95:2c:b4:f2:7c:
                    c5:6c:bf:c6:74:e1:d0:f2:bd:8f:68:46:b6:b3:02:
                    bc:17:f4:da:f2:01:ec:7a:46:29:18:c3:1b:19:b0:
                    1d:22:93:e3:c2:38:2e:01:90:cc:9d:3d:df:36:d2:
                    23:98:68:2f:6f:d1:71:a3:a9:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                0E:9A:A9:00:17:B5:EC:12:3C:4D:CA:CA:7A:BA:AD:0D:42:3C:9D:23
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:listserv2.npr.org
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr  9 13:29:29.531 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:28:67:18:C4:E5:6B:C4:34:5B:B5:5B:83:
                                DD:16:9F:B3:1E:F7:AF:C4:4F:11:C3:3A:59:F2:89:9B:
                                23:19:81:BB:02:20:15:30:1A:F2:6A:6E:51:1E:CA:F7:
                                72:B3:6B:6D:F0:4B:1C:69:81:12:48:6F:24:B4:EE:85:
                                3A:1B:E6:17:37:0F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : Apr  9 13:29:29.726 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:22:9C:83:AD:49:AE:A3:08:02:2D:F8:DD:
                                71:3C:03:92:33:C1:9B:09:C7:84:CD:A1:40:D1:50:F3:
                                9D:4E:9C:89:02:21:00:C1:D1:7C:66:BC:46:CC:80:D0:
                                4D:29:9A:EF:D6:31:A1:D1:4B:C4:FF:60:9F:90:4F:8A:
                                A0:74:9E:C0:CA:19:6D
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        04:17:7d:94:b6:f5:a1:8b:7e:a2:10:02:f9:c8:5a:9d:54:7d:
        a5:22:e1:29:c8:f5:65:0b:66:8e:b6:29:80:d8:27:e4:69:b8:
        84:cf:14:e9:23:fa:43:00:c6:e4:4a:52:cb:9f:67:42:86:f3:
        27:1f:ff:2d:56:3c:0e:6c:b3:5f:ef:b3:e5:c0:74:e1:82:e0:
        99:3e:cd:87:2b:35:bb:6f:51:a0:b3:67:8e:ff:21:f9:43:4a:
        c0:41:6c:0e:8d:06:3a:71:dd:91:47:f4:e3:2a:f0:7b:35:5f:
        74:09:a1:e9:3c:01:45:6a:15:b2:1d:ec:e9:37:bc:41:cd:cf:
        be:b4:61:ef:0a:39:3e:6f:d0:2d:a4:42:7a:f6:dd:5e:91:4c:
        97:d0:bc:74:8a:47:9e:ed:6f:57:fd:8a:b1:76:8b:03:92:1b:
        0c:43:80:a5:be:61:0f:7c:92:57:5a:29:d6:4d:df:5b:7e:71:
        53:fd:df:50:0b:ca:ad:40:d2:5e:b8:cd:b4:10:b9:f7:c9:34:
        21:94:11:a0:df:35:6f:49:ef:be:ca:73:17:71:61:56:20:2c:
        8f:5b:82:17:f9:ad:c7:ba:0e:33:7f:d4:9a:df:21:7a:91:75:
        fc:15:13:b5:ea:bb:92:c3:08:f8:89:f0:ae:a4:d7:97:b6:18:
        45:17:34:96

20.97.154.204

Last Seen: 2024-04-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

171675302 | 2024-04-19T22:34:28.136650
25 / tcp

476806825 | 2024-04-20T07:45:24.979297
80 / tcp

Microsoft IIS httpd10.0

-1411515501 | 2024-04-20T07:45:29.627372
443 / tcp

Microsoft IIS httpd10.0

Products

Pricing

Contact Us

20.97.154.204

Last Seen: 2024-04-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

171675302 | 2024-04-19T22:34:28.136650 25 / tcp

476806825 | 2024-04-20T07:45:24.979297 80 / tcp

Microsoft IIS httpd10.0

-1411515501 | 2024-04-20T07:45:29.627372 443 / tcp

Microsoft IIS httpd10.0

Products

Pricing

Contact Us

171675302 | 2024-04-19T22:34:28.136650
25 / tcp

476806825 | 2024-04-20T07:45:24.979297
80 / tcp

-1411515501 | 2024-04-20T07:45:29.627372
443 / tcp