GeneralInformation

Hostnames	easywallet.easycard.com.tw 203-66-35-106.hinet-ip.hinet.net
Domains	easycard.com.tw hinet.net
Country	Taiwan
City	Taipei
Organization	Data Communication Business Group,
ISP	Data Communication Business Group
ASN	AS3462

WebTechnologies

Analytics

JavaScript libraries

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443

-1728096012 | 2024-05-08T16:14:37.725129

80 / tcp

HTTP/1.1 200 OK
Server: HiNetCDN/2310
Date: Wed, 08 May 2024 16:14:37 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 33049
Connection: keep-alive
Vary: Accept-Encoding
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=cd4730bb4a149c6b51eba7c9eb554eb9; path=/
Vary: Accept-Encoding,User-Agent
Expires: access plus 1 month
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Cache-Control: max-age=2592000
X-Cache: MISS, MISS
x-request-id: a3250b604e8f4c28c90cfcf9f0058193
Accept-Ranges: bytes

1658491210 | 2024-05-04T14:50:41.134615

443 / tcp

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 14:50:39 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 25628
Connection: keep-alive
Vary: Accept-Encoding
Permissions-Policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=()
x-frame-options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=15552000
Referrer-Policy: strict-origin-when-cross-origin
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding,User-Agent
Set-Cookie: language=%{lang}e; path=/;env=lang;HttpOnly;Secure
Set-Cookie: PHPSESSID=7cb5cd1f5f4a1a02ec403654b2cf70fbaf0483d5; path=/; secure; HttpOnly;HttpOnly;Secure
X-XSS-Protection: 1; mode=block
Content-Security-Policy: script-src 'self' 'nonce-rAnd0mx9' https://www.google-analytics.com https://cdnjs.cloudflare.com https://maps.googleapis.com https://www.youtube.com; object-src 'none';
Access-Control-Allow-Origin: *
Set-Cookie: cookiesession1=678B286D00C5B1A26A8EA51764D2CC9E;Expires=Sun, 04 May 2025 14:50:39 GMT;Path=/;Secure;HttpOnly
x-request-id: 72bf507769bc39db396591f67fb73e92
X-Cache: -
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            47:e8:00:00:00:06:f6:ba:08:75:9b:7b:96:cd:8c:cb
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=TW, O=TAIWAN-CA, CN=TWCA Secure SSL Certification Authority
        Validity
            Not Before: Mar 11 02:33:28 2024 GMT
            Not After : Dec  6 15:59:59 2024 GMT
        Subject: C=TW, ST=Taiwan, L=Taipei, O=EasyCard Corporation, CN=easywallet.easycard.com.tw
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cd:39:78:59:2e:4d:9b:a5:d6:1e:ea:d9:cc:73:
                    de:ea:b6:4c:7a:25:69:da:34:ba:52:e7:3c:b0:a0:
                    77:6b:b6:9f:c8:d0:9f:8c:d2:44:36:e8:e1:58:f4:
                    6e:27:7e:11:5f:52:07:0d:2b:fa:98:61:f0:99:07:
                    ef:8b:19:31:5b:38:ea:da:3f:4f:6c:47:6f:bd:b2:
                    21:5c:9d:a6:55:15:27:5e:46:70:c2:5a:c1:49:7c:
                    b9:bb:e5:7b:c3:86:0e:6e:3d:2b:95:7e:b1:59:ed:
                    99:cb:6f:8d:96:b2:06:5a:6e:ba:a6:9e:82:e7:87:
                    db:f6:6e:84:6d:c2:15:f0:23:4f:5e:01:14:e9:cd:
                    af:1e:33:13:80:8c:4a:8e:44:67:e8:3d:6e:99:4a:
                    3c:2d:43:fe:28:fc:6a:47:b8:c9:00:62:61:30:e1:
                    a7:86:af:28:28:08:4f:55:da:14:ba:c3:72:f4:98:
                    6d:3c:0e:1d:5f:2e:d0:76:b2:9c:c1:a0:42:28:8a:
                    1b:9e:1a:46:88:37:82:eb:d8:e7:ca:1d:03:8f:e0:
                    5d:75:a6:17:59:8b:9b:d5:80:37:35:09:31:f1:00:
                    af:1b:f3:de:b8:f7:e6:85:f4:46:35:26:81:f8:ac:
                    dc:8e:e3:84:1d:d0:c8:a9:26:f2:e3:2a:ad:76:6b:
                    0c:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                92:E7:FA:62:16:71:8C:F3:97:71:42:C6:06:A7:E0:46:61:4B:5C:B6
            X509v3 Subject Key Identifier: 
                DE:59:EF:EE:A8:0A:1F:BF:2C:75:7C:DD:EF:D1:92:35:5E:81:23:9A:4B:A5:80:04:30:BD:57:58:1D:74:28:F6
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://sslserver.twca.com.tw/sslserver/Securessl_revoke_sha2_2023G3.crl
            X509v3 Subject Alternative Name: 
                DNS:easywallet.easycard.com.tw
            Authority Information Access: 
                CA Issuers - URI:http://sslserver.twca.com.tw/cacert/secure_sha2_2023G3.crt
                OCSP - URI:http://twcasslocsp.twca.com.tw/
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.40869.1.1.21
                  CPS: https://www.twca.com.tw/
                Policy: 2.23.140.1.2.2
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 55:81:D4:C2:16:90:36:01:4A:EA:0B:9B:57:3C:53:F0:
                                C0:E4:38:78:70:25:08:17:2F:A3:AA:1D:07:13:D3:0C
                    Timestamp : Mar 11 02:33:29.260 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B2:64:74:C6:77:07:D6:61:25:16:34:
                                3C:89:8C:CF:E5:A0:76:69:24:DE:DA:69:6A:7E:9D:2C:
                                A2:29:F1:CD:47:02:21:00:B5:83:8F:C9:F0:46:94:C3:
                                A2:C7:AC:24:D7:1B:1E:CF:7A:BC:FD:21:EA:48:9D:5C:
                                19:1B:8E:A0:C6:55:F5:E3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar 11 02:33:29.169 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FF:D5:37:67:89:DD:15:57:B0:66:B6:
                                09:14:12:6C:F0:5E:7E:EB:A4:9E:9A:E1:F1:54:C7:7F:
                                70:6D:75:CE:E4:02:21:00:C7:AB:5B:B0:14:60:FD:3A:
                                88:CC:EB:D9:B5:BC:53:1E:A9:87:A4:B0:8F:2D:88:F3:
                                74:88:D3:46:38:A6:CC:02
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Mar 11 02:33:29.208 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:13:EE:8B:4F:12:D8:94:E8:F0:CF:EB:30:
                                17:A1:4B:31:FB:D2:E3:C1:D9:28:23:C9:F7:7E:14:B5:
                                3A:E4:64:86:02:20:51:73:78:0A:0A:07:81:09:6A:7E:
                                B0:6B:63:AB:B1:AA:C8:70:AE:51:09:BA:88:F3:2F:07:
                                79:53:2F:ED:0D:28
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        3f:ba:fe:8e:e1:75:be:e8:51:f2:85:3b:ff:29:12:6c:b2:a5:
        1a:7a:3f:2b:72:4c:3f:2a:2a:3a:97:56:be:b8:60:ef:0b:0b:
        89:29:9f:e8:a4:b7:0b:75:94:1c:ed:e2:34:2a:33:02:0e:1d:
        f6:9a:74:5f:a2:d9:bb:ae:2b:83:26:42:1a:18:0a:67:46:1c:
        30:bd:ca:04:b5:b0:4d:60:e7:da:07:9e:8b:1d:c1:83:65:39:
        40:39:a0:a7:ef:61:a1:26:64:d4:d9:c1:53:e1:46:d3:02:88:
        48:ee:f9:e5:64:f4:f8:cf:ee:24:5c:30:48:64:fa:ac:bf:fe:
        68:26:ae:86:4e:b0:45:08:e4:57:77:ce:67:2f:49:99:a8:c8:
        16:03:6e:38:93:de:7a:3e:68:d5:23:cc:c3:f4:d0:4f:cc:c1:
        0c:f7:bd:ac:ff:25:b3:e3:fe:a5:5b:fc:f6:b3:0a:97:e8:e2:
        d3:41:8e:a9:3d:d4:e9:89:a2:06:de:e2:49:f5:48:21:fa:9a:
        ad:94:34:03:7f:b4:f5:70:9c:e9:77:b0:c6:f1:54:70:bd:87:
        9f:e8:e4:5e:6d:e4:2f:08:1f:04:b5:f3:be:ed:58:ab:61:63:
        2f:f4:da:bf:1a:9e:fa:bf:49:b2:6c:f6:63:50:90:97:84:36:
        d7:bc:29:f0

203.66.35.106

Last Seen: 2024-05-08

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1728096012 | 2024-05-08T16:14:37.725129
80 / tcp

1658491210 | 2024-05-04T14:50:41.134615
443 / tcp

Products

Pricing

Contact Us

203.66.35.106

Last Seen: 2024-05-08

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1728096012 | 2024-05-08T16:14:37.725129 80 / tcp

1658491210 | 2024-05-04T14:50:41.134615 443 / tcp

Products

Pricing

Contact Us

-1728096012 | 2024-05-08T16:14:37.725129
80 / tcp

1658491210 | 2024-05-04T14:50:41.134615
443 / tcp