GeneralInformation

Hostnames	kwvd.de www.kwvd.de wa6.rzone.de
Domains	kwvd.de rzone.de
Country	Germany
City	Aalen
Organization	STRATO AG
ISP	Strato AG
ASN	AS6724

WebTechnologies

Blogs

CMS

Cookie compliance

Databases

Font scripts

Form builders

JavaScript libraries

Page builders

Photo galleries

Slider Revolution6.6.14

Programming languages

PHP

UI frameworks

Bootstrap4

Widgets

Slider Revolution6.6.14

WordPress plugins

Elementor3.20.1

Contact Form 75.9.2

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2013-2220	7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
CVE-2007-3205	5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

21 80 443

-1403991200 | 2024-05-07T00:21:09.512520

21 / tcp

220 Speak friend, and enter
530 Login incorrect
214-
  ftpd.bin - Round-robin File Transfer Server, version 3.4.0r16
  (C)1997,1998,1999 by Marc Huber <marc@sixpack.de>

  The following FTP commands are available:
  ABOR  ALLO  APPE  AUTH  CWD   CDUP  DELE  HELP  HOST  FEAT  LANG  LIST
  LPRT  LPSV  NLST  MDTM  MFMT  MKD   MLSD  MLST  NOOP  OPTS  PASS  PASV
  PBSZ  PORT  PROT  PWD   QUIT  REIN  REST  RETR  RMD   RNFR  RNTO  SITE
  SIZE  STAT  STOR  STOU  SYST  TYPE  USER  XCUP  XCWD  XMKD  XPWD  XRMD


214 That's all, folks.
211-Extensions supported:
 HOST
 MDTM
 REST STREAM
 SIZE
 MFMT
 MLST Type*;Size*;Modify*;Create;Unique*;Perm*;UNIX.mode;UNIX.owner;UNIX.group;
 LANG EN*;DE;FR;NL;ES;IT;
211 End.

1409248888 | 2024-05-09T06:38:39.664598

80 / tcp

HTTP/1.1 200 OK
Date: Thu, 09 May 2024 06:38:38 GMT
Server: Apache/2.4.59 (Unix)
X-Powered-By: PHP/7.4.33
Pragma: no-cache
Cache-Control: no-cache, must-revalidate
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Vary: User-Agent
Content-Type: text/html; charset=utf-8
Set-Cookie: PHPSESSID=8jo4fl22c1j37cue5o9pgu8dp2; path=/
Transfer-Encoding: chunked

683115141 | 2024-05-11T22:34:19.855838

443 / tcp

HTTP/1.1 200 OK
Date: Sat, 11 May 2024 22:34:07 GMT
Server: Apache/2.4.59 (Unix)
X-Powered-By: PHP/8.0.30
Link: <https://kwvd.de/wp-json/>; rel="https://api.w.org/"
Link: <https://kwvd.de/wp-json/wp/v2/pages/13644>; rel="alternate"; type="application/json"
Link: <https://kwvd.de/>; rel=shortlink
Vary: User-Agent
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:1b:61:76:73:f6:af:5a:d6:fe:9c:51:fb:d8:4d:24
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G2
        Validity
            Not Before: Oct 15 00:00:00 2023 GMT
            Not After : Oct 28 23:59:59 2024 GMT
        Subject: CN=www.kwvd.de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c9:e1:00:4e:8c:31:02:75:55:30:f9:c6:53:f9:
                    e6:69:b6:4b:a6:e4:9e:db:cf:9a:34:b7:34:66:7c:
                    d9:d5:61:ce:ac:9e:a6:ce:6d:e4:67:90:c6:6e:b6:
                    34:85:9c:3d:17:8b:58:f0:12:f0:a8:39:ff:c5:56:
                    b8:00:81:17:4a:9e:2a:1c:22:b7:7d:1d:ee:f8:54:
                    bc:ab:36:6a:8c:c6:37:fe:23:a4:ca:39:a9:78:f9:
                    f0:09:5d:f1:10:47:2d:25:72:d7:c3:17:4b:05:4e:
                    4b:8f:19:ac:52:2a:b0:b7:1a:9b:f6:87:fc:b1:cb:
                    8a:d7:e9:28:b6:c9:b0:56:d5:6b:11:23:cd:e5:41:
                    e4:ad:ff:90:1f:aa:fe:4f:3d:0e:15:54:fa:70:5c:
                    30:67:c9:c3:cd:12:b4:7e:10:1d:4a:b0:d6:e5:a9:
                    fc:3d:4b:f1:d4:c4:fe:8f:30:62:38:25:1a:45:35:
                    9a:b7:eb:37:1a:a9:ef:e0:24:21:7b:ee:d6:d2:0f:
                    c3:d8:16:07:e3:8a:94:a4:c9:63:79:9f:2a:8f:a4:
                    39:0f:64:0c:ea:6b:04:66:d0:31:de:da:1d:3e:b7:
                    0d:50:9a:fe:e8:2f:09:2e:ee:ee:f2:81:ad:95:8c:
                    2e:f8:41:20:34:6d:9c:08:7c:c7:5c:9a:14:ff:01:
                    79:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                78:DF:91:90:5F:EE:DE:AC:F6:C5:75:EB:D5:4C:55:53:EF:24:4A:B6
            X509v3 Subject Key Identifier: 
                63:B4:08:0D:D1:4C:D5:D5:BE:E9:5A:00:28:4D:0A:9D:01:BF:05:EC
            X509v3 Subject Alternative Name: 
                DNS:www.kwvd.de, DNS:kwvd.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 15 23:43:06.341 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:13:48:76:56:17:C1:18:29:53:5E:EA:63:
                                8B:2F:88:96:97:A6:90:1C:33:7E:57:D6:DD:FB:E3:E9:
                                DF:33:CB:6E:02:20:65:B6:86:B0:DF:A9:00:97:43:7C:
                                8C:27:1D:A8:21:AC:76:62:76:32:73:2F:3F:35:B9:D3:
                                A9:23:EA:EC:57:4B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Oct 15 23:43:06.340 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:29:6C:00:0B:F2:98:47:B8:D3:0C:F7:08:
                                1E:58:2C:BF:21:5D:8B:B5:E9:BB:EE:57:E4:71:F6:F3:
                                FA:C2:6B:6A:02:21:00:EB:11:94:46:F8:4E:0C:A4:C9:
                                32:88:DE:6C:1D:0B:64:EA:DE:D5:A8:BF:E6:EA:1D:2F:
                                8E:81:4E:EF:08:6B:9C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 15 23:43:06.337 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A1:8F:52:6D:17:42:8E:AC:D0:4A:7D:
                                1E:78:CB:1F:52:55:F4:DD:CE:5C:7B:B7:66:97:FE:CA:
                                B2:F5:F0:B5:AD:02:21:00:C3:46:08:2F:EF:8A:67:6A:
                                29:4E:73:BD:F4:DE:9D:C7:06:20:3A:60:00:3A:D1:CB:
                                FA:D8:05:2E:D3:BE:C5:FE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        59:60:1b:2d:b1:59:53:5a:b5:fa:11:9b:ae:9b:ba:a1:74:3c:
        0c:3c:f5:5b:54:cb:c1:83:08:ff:82:9f:0f:90:e1:aa:3f:bf:
        71:bb:48:ad:f6:90:be:30:2b:a3:c5:23:6a:37:1e:cb:ed:54:
        36:7d:b3:21:7f:09:11:aa:dd:e5:ac:6f:1d:d1:bf:40:e4:fc:
        9a:31:eb:47:17:0d:79:e8:a3:bf:a3:be:f4:11:38:b7:64:d4:
        80:4b:26:12:67:d0:bd:7e:ba:98:90:7a:1d:2f:8f:c2:37:02:
        1f:38:ab:fc:16:c8:0c:2c:29:e0:19:c8:90:0b:0b:54:7d:13:
        4d:49:33:3f:25:d2:e2:b6:c4:19:51:89:70:39:b2:3e:89:44:
        45:e3:51:36:89:9d:87:fc:b3:0d:3d:61:8e:d0:57:c6:02:11:
        67:a2:3c:50:19:3c:0a:1d:73:5f:70:a3:1a:a9:0d:7c:29:61:
        c1:83:49:66:c6:fa:70:10:5e:82:b8:3a:71:cb:de:4a:ee:2e:
        63:7e:74:7b:a5:5d:26:9f:47:49:2b:9d:9b:06:cb:23:63:e4:
        d0:1e:c5:26:96:33:74:52:34:51:96:42:e1:d6:71:a1:12:56:
        b9:c2:30:f2:d8:57:88:e5:83:c9:d7:0b:58:5d:dc:d1:58:14:
        59:4b:81:ed

2a01:238:20a:202:1166::

Last Seen: 2024-05-11

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1403991200 | 2024-05-07T00:21:09.512520
21 / tcp

1409248888 | 2024-05-09T06:38:39.664598
80 / tcp

Apache httpd2.4.59

683115141 | 2024-05-11T22:34:19.855838
443 / tcp

Apache httpd2.4.59

Products

Pricing

Contact Us

2a01:238:20a:202:1166::

Last Seen: 2024-05-11

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1403991200 | 2024-05-07T00:21:09.512520 21 / tcp

1409248888 | 2024-05-09T06:38:39.664598 80 / tcp

Apache httpd2.4.59

683115141 | 2024-05-11T22:34:19.855838 443 / tcp

Apache httpd2.4.59

Products

Pricing

Contact Us

-1403991200 | 2024-05-07T00:21:09.512520
21 / tcp

1409248888 | 2024-05-09T06:38:39.664598
80 / tcp

683115141 | 2024-05-11T22:34:19.855838
443 / tcp