GeneralInformation

Hostnames	secure.myloan.studentaid.alberta.ca www.secure.myloan.studentaid.alberta.ca
Domains	alberta.ca
Country	Canada
City	Toronto
Organization	D+H Limited Partnership
ISP	TELUS Communications Inc.
ASN	AS852

WebTechnologies

JavaScript libraries

jQuery2.1.4

Tag managers

Google Tag Manager

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443

1180059459 | 2024-06-03T11:40:02.974403

80 / tcp

HTTP/1.0 302 Found
Location: https://216.9.57.254/
Server: BigIP
Connection: Keep-Alive
Content-Length: 0

930278605 | 2024-06-03T11:52:59.730464

443 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Thu, 14 Dec 2023 19:00:38 GMT
Accept-Ranges: bytes
ETag: "04f54d3bf2eda1:0"
Date: Mon, 03 Jun 2024 11:52:59 GMT
Content-Length: 2368
Set-Cookie: TS0181ec64=016642442314c0bd7401e701788c878c74956ed58fac47bad40258af3505379c3f6a6081aa55b6db16184ca874c97fdb6130a00577; Path=/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            e4:4a:17:bc:14:52:7f:7e:a5:44:02:3b:a1:f0:49:f9
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Organization Validation Secure Server CA
        Validity
            Not Before: Aug 15 00:00:00 2023 GMT
            Not After : Aug 14 23:59:59 2024 GMT
        Subject: C=CA, ST=Alberta, O=Government of the Province of Alberta, CN=secure.myloan.studentaid.alberta.ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:99:5e:e0:b6:0a:07:cd:20:83:08:6e:9c:f4:47:
                    f8:3a:ae:5b:d1:d9:e6:ce:0a:8d:d1:95:4b:58:ae:
                    a1:c5:b6:8a:21:9b:fc:c2:6c:db:7a:27:51:f2:eb:
                    45:12:32:14:34:19:e8:a6:c5:c3:48:cf:81:fd:de:
                    b4:be:93:01:1e:dc:82:4a:c4:5c:0e:ed:cd:8b:a4:
                    2b:81:92:4e:8d:8d:d5:77:1e:14:93:06:61:0c:4c:
                    86:a5:2e:e6:5f:cc:53:53:66:f0:43:dc:ea:1d:49:
                    bb:57:b2:4f:86:53:7a:89:83:16:2f:17:0b:76:c8:
                    12:25:a3:41:f8:9c:60:68:ae:67:1c:15:af:0f:3a:
                    1a:3e:ee:3d:f6:1f:c9:28:8e:24:ce:8a:1e:f4:05:
                    1b:31:b9:80:6c:fa:13:e1:e6:3c:82:75:b6:bc:f2:
                    97:72:5e:e8:47:fc:07:5c:27:44:1b:eb:7b:d2:e4:
                    d4:de:d5:a9:14:d8:b3:1e:4a:fe:ff:db:b9:c3:17:
                    0a:3e:87:43:a5:5c:8d:a6:c0:e7:b6:e1:4e:c6:32:
                    62:61:e6:0b:b8:72:42:bb:15:3c:80:fe:94:7f:b2:
                    6f:8c:df:5f:f3:66:3f:b4:8b:55:d1:0a:81:89:e6:
                    94:e9:ca:11:6a:97:cf:7a:f5:ef:c9:ed:84:67:11:
                    85:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                17:D9:D6:25:27:67:F9:31:C2:49:43:D9:30:36:44:8C:6C:A9:4F:EB
            X509v3 Subject Key Identifier: 
                8D:FA:BC:D7:78:F6:33:62:69:02:25:F3:5F:D2:D8:B3:58:15:CC:36
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.1.3.4
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:secure.myloan.studentaid.alberta.ca, DNS:www.secure.myloan.studentaid.alberta.ca
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Aug 15 21:38:47.854 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:BA:FF:D8:BA:FC:1E:AF:5E:D9:18:5A:
                                C1:76:FF:37:E0:1E:99:5A:88:67:2E:07:5A:D0:E4:2F:
                                79:B4:3E:49:C1:02:21:00:C7:15:93:B1:34:55:2E:F7:
                                BC:89:53:A3:2D:13:03:E9:2B:D4:58:94:CE:AD:8D:AF:
                                3C:66:66:CB:C3:FF:00:E2
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Aug 15 21:38:47.941 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:20:24:3F:E7:75:5D:A4:E7:D4:6D:F3:9B:
                                AE:1D:04:3D:05:8F:A0:FB:DE:35:9D:CE:59:CD:98:B7:
                                0B:86:A4:A2:02:20:6A:2A:28:89:57:C3:13:F4:6C:30:
                                4D:98:AF:E9:02:9A:93:A3:D6:8B:53:C3:3A:00:B7:E4:
                                60:92:E5:86:1B:61
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Aug 15 21:38:47.976 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:3C:18:F0:1D:4C:70:50:AA:06:93:E6:4F:
                                18:49:A9:05:B2:B1:17:3E:35:2E:AF:AA:CE:FE:24:3B:
                                86:AB:FE:7D:02:21:00:C3:54:FC:EB:16:11:F7:0F:21:
                                88:01:E8:EE:72:21:BE:3B:6B:66:B7:D3:F4:48:38:F9:
                                48:80:DB:40:DE:95:6C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2f:9e:4f:0b:ac:4c:43:87:a2:c4:bc:53:71:76:43:1f:11:37:
        ad:79:13:d9:86:77:21:fc:f6:7d:0e:73:f5:da:4a:0e:df:a0:
        94:a0:2e:54:25:dd:21:23:51:1f:c9:e8:6a:76:bb:0c:27:e3:
        19:22:18:c4:ba:fa:0c:bf:f5:d0:10:57:04:a5:55:ee:09:96:
        72:69:2c:37:eb:5e:ec:8b:18:b3:c3:68:12:9e:3d:48:ec:27:
        95:87:3d:a9:68:d8:f5:a0:69:9f:dc:e0:66:12:35:5f:42:59:
        e7:be:9c:ff:32:be:ac:d2:86:76:28:f3:c5:52:1f:19:98:b7:
        ec:2a:2b:5a:3c:b1:ad:c8:24:1e:3b:e8:cf:49:28:cc:27:d9:
        df:3b:c9:1d:61:df:fc:91:c4:29:17:47:eb:13:86:11:77:ef:
        99:98:2f:a5:88:a3:8f:0d:17:6e:21:9a:2c:8a:25:47:f5:c1:
        c0:bb:1b:51:46:f4:03:fa:7f:df:8f:74:6b:ab:5e:a6:fc:d9:
        e7:90:f9:78:4f:11:a2:58:e5:d0:c8:92:b1:8e:a0:10:e0:02:
        2c:09:39:5a:06:48:30:b6:47:f5:3c:ed:e5:5e:ea:43:8f:dc:
        69:61:80:73:6a:96:1f:8b:1f:89:c2:ea:68:3e:23:95:dc:a3:
        b0:10:ee:60

216.9.57.254

Last Seen: 2024-06-03

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1180059459 | 2024-06-03T11:40:02.974403
80 / tcp

BigIP

930278605 | 2024-06-03T11:52:59.730464
443 / tcp

Products

Pricing

Contact Us

216.9.57.254

Last Seen: 2024-06-03

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1180059459 | 2024-06-03T11:40:02.974403 80 / tcp

BigIP

930278605 | 2024-06-03T11:52:59.730464 443 / tcp

Products

Pricing

Contact Us

1180059459 | 2024-06-03T11:40:02.974403
80 / tcp

930278605 | 2024-06-03T11:52:59.730464
443 / tcp