GeneralInformation

Hostnames	pickingcarts.com 2607-f1c0-100f-f000-0000-0000-0000-0213.elastic-ssl.ui-r.com
Domains	pickingcarts.com ui-r.com
Country	United States
City	Kansas City
Organization	IONOS Inc.
ISP	IONOS SE
ASN	AS8560

WebTechnologies

Analytics

Blogs

CMS

Databases

Ecommerce

JavaScript libraries

Programming languages

PHP

UI frameworks

Bootstrap

WordPress plugins

WooCommerce8.8.2

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443

280586443 | 2024-04-19T00:44:44.817591

80 / tcp

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 19 Apr 2024 00:44:43 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <http://sitanhk.live-website.com/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=797315a9efc7ac891a1e7278b740e5af; path=/

-500627080 | 2024-04-19T13:59:54.392225

443 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 7678
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 19 Apr 2024 13:59:54 GMT
Server: Apache
Last-Modified: Thu, 11 Apr 2024 19:11:41 GMT
ETag: "1dfe-615d6ecdeada1"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:b6:e5:52:b9:1c:98:61:70:c1:36:ca:a1:0d:6e:2b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G2
        Validity
            Not Before: Jul  8 00:00:00 2023 GMT
            Not After : Jul 22 23:59:59 2024 GMT
        Subject: CN=*.pickingcarts.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:af:6b:0e:0d:5f:a9:b0:aa:b3:3b:40:8b:03:a6:
                    37:d1:cf:6b:46:34:52:77:51:0f:7f:bf:31:15:38:
                    66:0f:2d:21:93:17:8d:30:1f:fd:6e:2c:55:1d:fd:
                    90:7b:8b:2c:db:d7:0b:30:fb:81:35:51:c6:9f:6b:
                    e6:b4:39:af:3d:76:c0:cf:b5:ba:28:10:85:d2:fe:
                    0e:b0:0d:81:30:e9:c7:36:c9:3a:db:b2:88:80:4e:
                    f5:3d:84:40:a4:a6:da:f0:bb:89:bf:ed:ba:d1:83:
                    0c:21:0c:5d:b7:c4:b5:0e:a0:51:27:d4:1e:3a:9a:
                    e9:e2:61:56:7b:0d:19:73:57:31:d3:4f:4f:41:52:
                    07:62:27:97:e7:52:96:29:6e:14:cd:ad:a6:01:62:
                    11:ac:05:82:de:ed:95:dc:e4:5e:04:90:6f:25:4f:
                    e1:40:e1:9e:d6:be:64:e5:3e:10:e9:d2:42:4e:a1:
                    7f:2c:2f:bb:13:4c:a5:2d:a2:02:a4:68:54:65:97:
                    ea:90:35:b0:86:f8:10:5b:92:8e:3f:9b:a4:95:cd:
                    1c:df:29:50:b1:f5:96:97:da:8c:65:db:3a:2b:98:
                    96:3b:34:31:e0:00:2e:06:83:3f:5c:73:20:86:d0:
                    82:e1:23:9d:ce:c2:69:6c:ae:a5:e5:bb:62:0c:be:
                    76:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                78:DF:91:90:5F:EE:DE:AC:F6:C5:75:EB:D5:4C:55:53:EF:24:4A:B6
            X509v3 Subject Key Identifier: 
                F4:20:1F:CF:9B:87:B1:57:E8:D9:A5:9E:5D:5B:E3:5D:E5:F5:F4:0C
            X509v3 Subject Alternative Name: 
                DNS:*.pickingcarts.com, DNS:pickingcarts.com
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
            X509v3 Basic Constraints: 
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Jul  8 03:30:09.388 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:3F:2A:DE:7C:1F:55:17:0A:E4:10:19:7D:
                                8A:6B:9E:60:88:8F:9A:32:6B:B4:61:DA:11:D3:B9:B1:
                                55:1A:DC:3E:02:20:42:0D:51:07:99:9E:8D:EF:3A:3A:
                                33:2E:36:7D:81:99:AB:3B:14:B2:37:4D:90:2E:8F:DA:
                                75:8A:66:7E:30:6A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Jul  8 03:30:09.418 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:4D:8A:30:90:C4:5D:C6:E5:DD:80:3F:72:
                                53:51:1A:F7:9F:97:CC:9E:BE:66:7D:6F:D9:01:64:61:
                                AB:99:22:8B:02:20:3F:48:A5:EA:FC:1D:52:76:73:21:
                                5F:A2:93:ED:64:E3:49:A4:E5:22:D2:8D:ED:29:CC:D2:
                                97:5C:DD:BA:38:9A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Jul  8 03:30:09.323 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:86:E0:75:FC:D6:A2:2D:F5:44:A4:7A:
                                82:37:2A:A2:10:70:04:37:91:0A:F0:E4:C3:B2:90:EA:
                                7E:EB:66:CB:86:02:21:00:AF:D3:3A:F3:8B:49:98:AA:
                                EE:0A:EE:3A:07:8E:35:81:DB:4A:40:FF:48:98:7C:6B:
                                E7:D4:98:3C:58:CE:BF:DF
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2d:71:ee:19:3a:c2:81:cb:b5:08:5b:fd:7b:62:9a:bb:6d:b7:
        ff:26:4e:8c:4c:2d:5c:ac:85:53:43:f0:de:38:b0:2b:a5:bc:
        c3:02:ee:65:5e:bc:e7:f9:98:31:ba:2b:35:d4:29:a5:df:78:
        9f:f8:a7:98:87:34:f6:88:d2:64:a8:e1:54:bb:0a:b5:8b:92:
        9a:7f:ee:4a:e5:e5:b9:3b:d4:b4:0d:a3:d4:61:28:91:27:19:
        6b:b5:7c:38:d7:ca:4b:4b:f9:19:6e:fc:6c:7f:1c:2f:76:d0:
        9b:35:e6:fb:7d:d2:57:e3:ec:11:fd:9d:44:66:5d:e5:7c:11:
        ba:50:05:4c:ab:74:b4:6a:fc:a3:e9:fc:6e:99:25:0a:84:8e:
        99:20:17:80:43:3e:9e:53:e7:a8:f6:fe:bc:f7:f2:46:7a:df:
        56:fc:3a:b7:1c:03:f4:0b:fb:4b:41:aa:dd:54:a4:ae:4b:c1:
        a3:19:80:d1:fd:17:47:93:12:ea:e4:12:01:22:78:38:0d:c6:
        69:b3:db:9a:9b:f0:5d:dd:6a:9d:28:b1:30:d7:c2:97:dd:30:
        64:44:72:4a:de:54:d3:59:87:59:fe:c0:09:5c:fd:2f:e7:27:
        53:3d:68:95:ba:8f:aa:7b:f9:8d:40:b7:86:ae:4e:ab:74:98:
        d3:17:b2:a8

2607:f1c0:100f:f000::213

Last Seen: 2024-04-19

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

280586443 | 2024-04-19T00:44:44.817591
80 / tcp

-500627080 | 2024-04-19T13:59:54.392225
443 / tcp

Products

Pricing

Contact Us

2607:f1c0:100f:f000::213

Last Seen: 2024-04-19

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

280586443 | 2024-04-19T00:44:44.817591 80 / tcp

-500627080 | 2024-04-19T13:59:54.392225 443 / tcp

Products

Pricing

Contact Us

280586443 | 2024-04-19T00:44:44.817591
80 / tcp

-500627080 | 2024-04-19T13:59:54.392225
443 / tcp