GeneralInformation

Country	China
City	Chengdu
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

WebTechnologies

Editors

Microsoft Word 11

JavaScript frameworks

JavaScript graphics

JavaScript libraries

jQuery1.8.21.4.43.5.11.12.4

jQuery UI1.9.1

DataTables

jQuery Migrate3.3.11.4.1

Underscore.js

Network storage

Synology DiskStation

Operating systems

CentOS

Programming languages

Search engines

UI frameworks

Web server extensions

OpenSSL1.0.2k

Web servers

Apache HTTP Server2.4.6

Wikis

Atlassian Confluence

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2024-0727	Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack Impact summary: Applications loading files in the PKCS12 format from untrusted sources might terminate abruptly. A file in PKCS12 format can contain certificates and keys and may come from an untrusted source. The PKCS12 specification allows certain fields to be NULL, but OpenSSL does not correctly check for this case. This can lead to a NULL pointer dereference that results in OpenSSL crashing. If an application processes PKCS12 files from an untrusted source using the OpenSSL APIs then that application will be vulnerable to this issue. OpenSSL APIs that are vulnerable to this are: PKCS12_parse(), PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes() and PKCS12_newpass(). We have also fixed a similar issue in SMIME_write_PKCS7(). However since this function is related to writing data we do not consider it security significant. The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue.
CVE-2023-5678	Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn't make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn't check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the "-pubcheck" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.
CVE-2023-45802	When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not reclaimed immediately. Instead, de-allocation was deferred to connection close. A client could send new requests and resets, keeping the connection busy and open and causing the memory footprint to keep on growing. On connection close, all resources were reclaimed, but the process might run out of memory before that. This was found by the reporter during testing of CVE-2023-44487 (HTTP/2 Rapid Reset Exploit) with their own test client. During "normal" HTTP/2 use, the probability to hit this bug is very low. The kept memory would not become noticeable before the connection closes or times out. Users are recommended to upgrade to version 2.4.58, which fixes the issue.
CVE-2023-45725	Design document functions which receive a user http request object may expose authorization or session cookie headers of the user who accesses the document. These design document functions are: * list * show * rewrite * update An attacker can leak the session component using an HTML-like output, insert the session as an external resource (such as an image), or store the credential in a _local document with an "update" function. For the attack to succeed the attacker has to be able to insert the design documents into the database, then manipulate a user to access a function from that design document. Workaround: Avoid using design documents from untrusted sources which may attempt to access or manipulate request object's headers
CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2023-3817	Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. After fixing CVE-2023-3446 it was discovered that a large q parameter value can also trigger an overly long computation during some of these checks. A correct q value, if present, cannot be larger than the modulus p parameter, thus it is unnecessary to perform these checks if q is larger than p. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the "-check" option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.
CVE-2023-31122	Out-of-bounds Read vulnerability in mod_macro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57.
CVE-2023-2650	Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow. Impact summary: Applications that use OBJ_obj2txt() directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message size limit may experience notable to very long delays when processing those messages, which may lead to a Denial of Service. An OBJECT IDENTIFIER is composed of a series of numbers - sub-identifiers - most of which have no size limit. OBJ_obj2txt() may be used to translate an ASN.1 OBJECT IDENTIFIER given in DER encoding form (using the OpenSSL type ASN1_OBJECT) to its canonical numeric text form, which are the sub-identifiers of the OBJECT IDENTIFIER in decimal form, separated by periods. When one of the sub-identifiers in the OBJECT IDENTIFIER is very large (these are sizes that are seen as absurdly large, taking up tens or hundreds of KiBs), the translation to a decimal number in text may take a very long time. The time complexity is O(n^2) with 'n' being the size of the sub-identifiers in bytes (*). With OpenSSL 3.0, support to fetch cryptographic algorithms using names / identifiers in string form was introduced. This includes using OBJECT IDENTIFIERs in canonical numeric text form as identifiers for fetching algorithms. Such OBJECT IDENTIFIERs may be received through the ASN.1 structure AlgorithmIdentifier, which is commonly used in multiple protocols to specify what cryptographic algorithm should be used to sign or verify, encrypt or decrypt, or digest passed data. Applications that call OBJ_obj2txt() directly with untrusted data are affected, with any version of OpenSSL. If the use is for the mere purpose of display, the severity is considered low. In OpenSSL 3.0 and newer, this affects the subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS. It also impacts anything that processes X.509 certificates, including simple things like verifying its signature. The impact on TLS is relatively low, because all versions of OpenSSL have a 100KiB limit on the peer's certificate chain. Additionally, this only impacts clients, or servers that have explicitly enabled client authentication. In OpenSSL 1.1.1 and 1.0.2, this only affects displaying diverse objects, such as X.509 certificates. This is assumed to not happen in such a way that it would cause a Denial of Service, so these versions are considered not affected by this issue in such a way that it would be cause for concern, and the severity is therefore considered low.
CVE-2023-26268	Design documents with matching document IDs, from databases on the same cluster, may share a mutable Javascript environment when using these design document functions: * validate_doc_update * list * filter * filter views (using view functions as filters) * rewrite * update This doesn't affect map/reduce or search (Dreyfus) index functions. Users are recommended to upgrade to a version that is no longer affected by this issue (Apache CouchDB 3.3.2 or 3.2.3). Workaround: Avoid using design documents from untrusted sources which may attempt to cache or store data in the Javascript environment.
CVE-2023-26049	Jetty is a java based web server and servlet engine. Nonstandard cookie parsing in Jetty may allow an attacker to smuggle cookies within other cookies, or otherwise perform unintended behavior by tampering with the cookie parsing mechanism. If Jetty sees a cookie VALUE that starts with `"` (double quote), it will continue to read the cookie string until it sees a closing quote -- even if a semicolon is encountered. So, a cookie header such as: `DISPLAY_LANGUAGE="b; JSESSIONID=1337; c=d"` will be parsed as one cookie, with the name DISPLAY_LANGUAGE and a value of b; JSESSIONID=1337; c=d instead of 3 separate cookies. This has security implications because if, say, JSESSIONID is an HttpOnly cookie, and the DISPLAY_LANGUAGE cookie value is rendered on the page, an attacker can smuggle the JSESSIONID cookie into the DISPLAY_LANGUAGE cookie and thereby exfiltrate it. This is significant when an intermediary is enacting some policy based on cookies, so a smuggled cookie can bypass that policy yet still be seen by the Jetty server or its logging system. This issue has been addressed in versions 9.4.51, 10.0.14, 11.0.14, and 12.0.0.beta0 and users are advised to upgrade. There are no known workarounds for this issue.
CVE-2023-26048	Jetty is a java based web server and servlet engine. In affected versions servlets with multipart support (e.g. annotated with `@MultipartConfig`) that call `HttpServletRequest.getParameter()` or `HttpServletRequest.getParts()` may cause `OutOfMemoryError` when the client sends a multipart request with a part that has a name but no filename and very large content. This happens even with the default settings of `fileSizeThreshold=0` which should stream the whole part content to disk. An attacker client may send a large multipart request and cause the server to throw `OutOfMemoryError`. However, the server may be able to recover after the `OutOfMemoryError` and continue its service -- although it may take some time. This issue has been patched in versions 9.4.51, 10.0.14, and 11.0.14. Users are advised to upgrade. Users unable to upgrade may set the multipart parameter `maxRequestSize` which must be set to a non-negative value, so the whole multipart content is limited (although still read into memory).
CVE-2023-25690	Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack. Configurations are affected when mod_proxy is enabled along with some form of RewriteRule or ProxyPassMatch in which a non-specific pattern matches some portion of the user-supplied request-target (URL) data and is then re-inserted into the proxied request-target using variable substitution. For example, something like: RewriteEngine on RewriteRule "^/here/(.*)" "http://example.com:8080/elsewhere?$1"; [P] ProxyPassReverse /here/ http://example.com:8080/ Request splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.
CVE-2023-0466	The function X509_VERIFY_PARAM_add0_policy() is documented to implicitly enable the certificate policy check when doing certificate verification. However the implementation of the function does not enable the check which allows certificates with invalid or incorrect policies to pass the certificate verification. As suddenly enabling the policy check could break existing deployments it was decided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy() function. Instead the applications that require OpenSSL to perform certificate policy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly enable the policy check by calling X509_VERIFY_PARAM_set_flags() with the X509_V_FLAG_POLICY_CHECK flag argument. Certificate policy checks are disabled by default in OpenSSL and are not commonly used by applications.
CVE-2023-0465	Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate policies in leaf certificates are silently ignored by OpenSSL and other certificate policy checks are skipped for that certificate. A malicious CA could use this to deliberately assert invalid certificate policies in order to circumvent policy checking on the certificate altogether. Policy processing is disabled by default but can be enabled by passing the `-policy' argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()' function.
CVE-2023-0464	A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems. Policy processing is disabled by default but can be enabled by passing the `-policy' argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()' function.
CVE-2023-0286	There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1_STRING but the public structure definition for GENERAL_NAME incorrectly specified the type of the x400Address field as ASN1_TYPE. This field is subsequently interpreted by the OpenSSL function GENERAL_NAME_cmp as an ASN1_TYPE rather than an ASN1_STRING. When CRL checking is enabled (i.e. the application sets the X509_V_FLAG_CRL_CHECK flag), this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call, enabling them to read memory contents or enact a denial of service. In most cases, the attack requires the attacker to provide both the certificate chain and CRL, neither of which need to have a valid signature. If the attacker only controls one of these inputs, the other input must already contain an X.400 address as a CRL distribution point, which is uncommon. As such, this vulnerability is most likely to only affect applications which have implemented their own functionality for retrieving CRLs over a network.
CVE-2023-0215	The public API function BIO_new_NDEF is a helper function used for streaming ASN.1 data via a BIO. It is primarily used internally to OpenSSL to support the SMIME, CMS and PKCS7 streaming capabilities, but may also be called directly by end user applications. The function receives a BIO from the caller, prepends a new BIO_f_asn1 filter BIO onto the front of it to form a BIO chain, and then returns the new head of the BIO chain to the caller. Under certain conditions, for example if a CMS recipient public key is invalid, the new filter BIO is freed and the function returns a NULL result indicating a failure. However, in this case, the BIO chain is not properly cleaned up and the BIO passed by the caller still retains internal pointers to the previously freed filter BIO. If the caller then goes on to call BIO_pop() on the BIO then a use-after-free will occur. This will most likely result in a crash. This scenario occurs directly in the internal function B64_write_ASN1() which may cause BIO_new_NDEF() to be called and will subsequently call BIO_pop() on the BIO. This internal function is in turn called by the public API functions PEM_write_bio_ASN1_stream, PEM_write_bio_CMS_stream, PEM_write_bio_PKCS7_stream, SMIME_write_ASN1, SMIME_write_CMS and SMIME_write_PKCS7. Other public API functions that may be impacted by this include i2d_ASN1_bio_stream, BIO_new_CMS, BIO_new_PKCS7, i2d_CMS_bio_stream and i2d_PKCS7_bio_stream. The OpenSSL cms and smime command line applications are similarly affected.
CVE-2022-4304	A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. To achieve a successful decryption an attacker would have to be able to send a very large number of trial messages for decryption. The vulnerability affects all RSA padding modes: PKCS#1 v1.5, RSA-OEAP and RSASVE. For example, in a TLS connection, RSA is commonly used by a client to send an encrypted pre-master secret to the server. An attacker that had observed a genuine connection between a client and a server could use this flaw to send trial messages to the server and record the time taken to process them. After a sufficiently large number of messages the attacker could recover the pre-master secret used for the original connection and thus be able to decrypt the application data sent over that connection.
CVE-2022-37436	Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client.
CVE-2022-36760	Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.54 and prior versions.
CVE-2022-31813	7.5Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers to the origin server based on client side Connection header hop-by-hop mechanism. This may be used to bypass IP based authentication on the origin server/application.
CVE-2022-31629	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications.
CVE-2022-31628	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.
CVE-2022-30556	5.0Apache HTTP Server 2.4.53 and earlier may return lengths to applications calling r:wsread() that point past the end of the storage allocated for the buffer.
CVE-2022-29404	5.0In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r:parsebody(0) may cause a denial of service due to no default limit on possible input size.
CVE-2022-28615	6.4Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond bounds in ap_strcmp_match() when provided with an extremely large input buffer. While no code distributed with the server can be coerced into such a call, third-party modules or lua scripts that use ap_strcmp_match() may hypothetically be affected.
CVE-2022-28614	5.0The ap_rwrite() function in Apache HTTP Server 2.4.53 and earlier may read unintended memory if an attacker can cause the server to reflect very large input using ap_rwrite() or ap_rputs(), such as with mod_luas r:puts() function. Modules compiled and distributed separately from Apache HTTP Server that use the 'ap_rputs' function and may pass it a very large (INT_MAX or larger) string must be compiled against current headers to resolve the issue.
CVE-2022-28330	5.0Apache HTTP Server 2.4.53 and earlier on Windows may read beyond bounds when configured to process requests with the mod_isapi module.
CVE-2022-26377	5.0Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.53 and prior versions.
CVE-2022-24706	10.0In Apache CouchDB prior to 3.2.2, an attacker can access an improperly secured default installation without authenticating and gain admin privileges. The CouchDB documentation has always made recommendations for properly securing an installation, including recommending using a firewall in front of all CouchDB installations.
CVE-2022-23943	7.5Out-of-bounds Write vulnerability in mod_sed of Apache HTTP Server allows an attacker to overwrite heap memory with possibly attacker provided data. This issue affects Apache HTTP Server 2.4 version 2.4.52 and prior versions.
CVE-2022-22721	5.8If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes. This issue affects Apache HTTP Server 2.4.52 and earlier.
CVE-2022-22720	7.5Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling
CVE-2022-22719	5.0A carefully crafted request body can cause a read to a random memory area which could cause the process to crash. This issue affects Apache HTTP Server 2.4.52 and earlier.
CVE-2022-2068	10.0In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection were found by code review. When the CVE-2022-1292 was fixed it was not discovered that there are other places in the script where the file names of certificates being hashed were possibly passed to a command executed through the shell. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.4 (Affected 3.0.0,3.0.1,3.0.2,3.0.3). Fixed in OpenSSL 1.1.1p (Affected 1.1.1-1.1.1o). Fixed in OpenSSL 1.0.2zf (Affected 1.0.2-1.0.2ze).
CVE-2022-2048	5.0In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. This can lead to a Denial of Service scenario where there are no enough resources left to process good requests.
CVE-2022-2047	4.0In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenario.
CVE-2022-1292	10.0The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.3 (Affected 3.0.0,3.0.1,3.0.2). Fixed in OpenSSL 1.1.1o (Affected 1.1.1-1.1.1n). Fixed in OpenSSL 1.0.2ze (Affected 1.0.2-1.0.2zd).
CVE-2022-0778	5.0The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).
CVE-2021-44790	7.5A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts). The Apache httpd team is not aware of an exploit for the vulnerabilty though it might be possible to craft one. This issue affects Apache HTTP Server 2.4.51 and earlier.
CVE-2021-4160	4.3There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some of the TLS 1.3 default curves. Impact was not analyzed in detail, because the pre-requisites for attack are considered unlikely and include reusing private keys. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH private key among multiple clients, which is no longer an option since CVE-2016-0701. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0.0. It was addressed in the releases of 1.1.1m and 3.0.1 on the 15th of December 2021. For the 1.0.2 release it is addressed in git commit 6fc1aaaf3 that is available to premium support customers only. It will be made available in 1.0.2zc when it is released. The issue only affects OpenSSL on MIPS platforms. Fixed in OpenSSL 3.0.1 (Affected 3.0.0). Fixed in OpenSSL 1.1.1m (Affected 1.1.1-1.1.1l). Fixed in OpenSSL 1.0.2zc-dev (Affected 1.0.2-1.0.2zb).
CVE-2021-40438	6.8A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.
CVE-2021-39275	7.5ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and earlier.
CVE-2021-38295	6.0In Apache CouchDB, a malicious user with permission to create documents in a database is able to attach a HTML attachment to a document. If a CouchDB admin opens that attachment in a browser, e.g. via the CouchDB admin interface Fauxton, any JavaScript code embedded in that HTML attachment will be executed within the security context of that admin. A similar route is available with the already deprecated _show and _list functionality. This privilege escalation vulnerability allows an attacker to add or remove data in any database or make configuration changes. This issue affected Apache CouchDB prior to 3.1.2
CVE-2021-3712	5.8ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL's own "d2i" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the "data" and "length" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the "data" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).
CVE-2021-34798	5.0Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.
CVE-2021-34428	3.6For Eclipse Jetty versions <= 9.4.40, <= 10.0.2, <= 11.0.2, if an exception is thrown from the SessionListener#sessionDestroyed() method, then the session ID is not invalidated in the session ID manager. On deployments with clustered sessions and multiple contexts this can result in a session not being invalidated. This can result in an application used on a shared computer being left logged in.
CVE-2021-32792	4.3mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In mod_auth_openidc before version 2.4.9, there is an XSS vulnerability in when using `OIDCPreservePost On`.
CVE-2021-32791	4.3mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In mod_auth_openidc before version 2.4.9, the AES GCM encryption in mod_auth_openidc uses a static IV and AAD. It is important to fix because this creates a static nonce and since aes-gcm is a stream cipher, this can lead to known cryptographic issues, since the same key is being reused. From 2.4.9 onwards this has been patched to use dynamic values through usage of cjose AES encryption routines.
CVE-2021-32786	5.8mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In versions prior to 2.4.9, `oidc_validate_redirect_url()` does not parse URLs the same way as most browsers do. As a result, this function can be bypassed and leads to an Open Redirect vulnerability in the logout functionality. This bug has been fixed in version 2.4.9 by replacing any backslash of the URL to redirect with slashes to address a particular breaking change between the different specifications (RFC2396 / RFC3986 and WHATWG). As a workaround, this vulnerability can be mitigated by configuring `mod_auth_openidc` to only allow redirection whose destination matches a given regular expression.
CVE-2021-32785	4.3mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. When mod_auth_openidc versions prior to 2.4.9 are configured to use an unencrypted Redis cache (`OIDCCacheEncrypt off`, `OIDCSessionType server-cache`, `OIDCCacheType redis`), `mod_auth_openidc` wrongly performed argument interpolation before passing Redis requests to `hiredis`, which would perform it again and lead to an uncontrolled format string bug. Initial assessment shows that this bug does not appear to allow gaining arbitrary code execution, but can reliably provoke a denial of service by repeatedly crashing the Apache workers. This bug has been corrected in version 2.4.9 by performing argument interpolation only once, using the `hiredis` API. As a workaround, this vulnerability can be mitigated by setting `OIDCCacheEncrypt` to `on`, as cache keys are cryptographically hashed before use when this option is enabled.
CVE-2021-28169	5.0For Eclipse Jetty versions <= 9.4.40, <= 10.0.2, <= 11.0.2, it is possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory. For example a request to `/concat?/%2557EB-INF/web.xml` can retrieve the web.xml file. This can reveal sensitive information regarding the implementation of a web application.
CVE-2021-26691	7.5In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap overflow
CVE-2021-26690	5.0Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Cookie header handled by mod_session can cause a NULL pointer dereference and crash, leading to a possible Denial Of Service
CVE-2021-23841	4.3The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field (which might occur if the issuer field is maliciously constructed). This may subsequently result in a NULL pointer deref and a crash leading to a potential denial of service attack. The function X509_issuer_and_serial_hash() is never directly called by OpenSSL itself so applications are only vulnerable if they use this function directly and they use it on certificates that may have been obtained from untrusted sources. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).
CVE-2021-23840	5.0Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating success), but the output length value will be negative. This could cause applications to behave incorrectly or crash. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).
CVE-2020-7656	4.3jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.
CVE-2020-35452	6.8Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in mod_auth_digest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or compilation option might make it possible, with limited consequences anyway due to the size (a single byte) and the value (zero byte) of the overflow
CVE-2020-27216	4.4In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thru 10.0.0.beta2, and 11.0.0.alpha1 thru 11.0.0.beta2O, on Unix like systems, the system's temporary directory is shared between all users on that system. A collocated user can observe the process of creating a temporary sub directory in the shared temporary directory and race to complete the creation of the temporary subdirectory. If the attacker wins the race then they will have read and write permission to the subdirectory used to unpack web applications, including their WEB-INF/lib jar files and JSP files. If any code is ever executed out of this temporary directory, this can lead to a local privilege escalation vulnerability.
CVE-2020-1971	4.3The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERAL_NAME_cmp which compares different instances of a GENERAL_NAME to see if they are equal or not. This function behaves incorrectly when both GENERAL_NAMEs contain an EDIPARTYNAME. A NULL pointer dereference and a crash may occur leading to a possible denial of service attack. OpenSSL itself uses the GENERAL_NAME_cmp function for two purposes: 1) Comparing CRL distribution point names between an available CRL and a CRL distribution point embedded in an X509 certificate 2) When verifying that a timestamp response token signer matches the timestamp authority name (exposed via the API functions TS_RESP_verify_response and TS_RESP_verify_token) If an attacker can control both items being compared then that attacker could trigger a crash. For example if the attacker can trick a client or server into checking a malicious certificate against a malicious CRL then this may occur. Note that some applications automatically download CRLs based on a URL embedded in a certificate. This checking happens prior to the signatures on the certificate and CRL being verified. OpenSSL's s_server, s_client and verify tools have support for the "-crl_download" option which implements automatic CRL downloading and this attack has been demonstrated to work against those tools. Note that an unrelated bug means that affected versions of OpenSSL cannot parse or construct correct encodings of EDIPARTYNAME. However it is possible to construct a malformed EDIPARTYNAME that OpenSSL's parser will accept and hence trigger this attack. All OpenSSL 1.1.1 and 1.0.2 versions are affected by this issue. Other OpenSSL releases are out of support and have not been checked. Fixed in OpenSSL 1.1.1i (Affected 1.1.1-1.1.1h). Fixed in OpenSSL 1.0.2x (Affected 1.0.2-1.0.2w).
CVE-2020-1968	4.3The Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman (DH) based ciphersuite. In such a case this would result in the attacker being able to eavesdrop on all encrypted communications sent over that TLS connection. The attack can only be exploited if an implementation re-uses a DH secret across multiple TLS connections. Note that this issue only impacts DH ciphersuites and not ECDH ciphersuites. This issue affects OpenSSL 1.0.2 which is out of support and no longer receiving public updates. OpenSSL 1.1.1 is not vulnerable to this issue. Fixed in OpenSSL 1.0.2w (Affected 1.0.2-1.0.2v).
CVE-2020-1934	5.0In Apache HTTP Server 2.4.0 to 2.4.41, mod_proxy_ftp may use uninitialized memory when proxying to a malicious FTP server.
CVE-2020-1927	5.8In Apache HTTP Server 2.4.0 to 2.4.41, redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an an unexpected URL within the request URL.
CVE-2020-13938	2.1Apache HTTP Server versions 2.4.0 to 2.4.46 Unprivileged local users can stop httpd on Windows
CVE-2020-11985	4.3IP address spoofing when proxying using mod_remoteip and mod_rewrite For configurations using proxying with mod_remoteip and certain mod_rewrite rules, an attacker could spoof their IP address for logging and PHP scripts. Note this issue was fixed in Apache HTTP Server 2.4.24 but was retrospectively allocated a low severity CVE in 2020.
CVE-2020-11579	5.0An issue was discovered in Chadha PHPKB 9.0 Enterprise Edition. installer/test-connection.php (part of the installation process) allows a remote unauthenticated attacker to disclose local files on hosts running PHP before 7.2.16, or on hosts where the MySQL ALLOW LOCAL DATA INFILE option is enabled.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-9641	7.5An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_TIFF.
CVE-2019-9639	5.0An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the data_len variable.
CVE-2019-9638	5.0An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the maker_note->offset relationship to value_len.
CVE-2019-9637	5.0An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename() across filesystems is implemented, it is possible that file being renamed is briefly available with wrong permissions while the rename is ongoing, thus enabling unauthorized users to access the data.
CVE-2019-9024	5.0An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. xmlrpc_decode() can allow a hostile XMLRPC server to cause PHP to read memory outside of allocated areas in base64_decode_xmlrpc in ext/xmlrpc/libxmlrpc/base64.c.
CVE-2019-9023	7.5An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A number of heap-based buffer over-read instances are present in mbstring regular expression functions when supplied with invalid multibyte data. These occur in ext/mbstring/oniguruma/regcomp.c, ext/mbstring/oniguruma/regexec.c, ext/mbstring/oniguruma/regparse.c, ext/mbstring/oniguruma/enc/unicode.c, and ext/mbstring/oniguruma/src/utf32_be.c when a multibyte regular expression pattern contains invalid multibyte sequences.
CVE-2019-9021	7.5An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the file name, a different vulnerability than CVE-2018-20783. This is related to phar_detect_phar_fname_ext in ext/phar/phar.c.
CVE-2019-9020	7.5An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. Invalid input to the function xmlrpc_decode() can lead to an invalid memory access (heap out of bounds read or read after free). This is related to xml_elem_parse_buf in ext/xmlrpc/libxmlrpc/xml_element.c.
CVE-2019-6977	6.8gdImageColorMatch in gd_color_match.c in the GD Graphics Library (aka LibGD) 2.2.5, as used in the imagecolormatch function in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1, has a heap-based buffer overflow. This can be exploited by an attacker who is able to trigger imagecolormatch calls with crafted image data.
CVE-2019-17567	5.0Apache HTTP Server versions 2.4.6 to 2.4.46 mod_proxy_wstunnel configured on an URL that is not necessarily Upgraded by the origin server was tunneling the whole connection regardless, thus allowing for subsequent requests on the same connection to pass through with no HTTP validation, authentication or authorization possibly configured.
CVE-2019-1563	4.3In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sending a very large number of messages to be decrypted, can recover a CMS/PKCS7 transported encryption key or decrypt any RSA encrypted message that was encrypted with the public RSA key, using a Bleichenbacher padding oracle attack. Applications are not affected if they use a certificate together with the private RSA key to the CMS_decrypt or PKCS7_decrypt functions to select the correct recipient info to decrypt. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).
CVE-2019-1559	4.3If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is received with an invalid MAC. If the application then behaves differently based on that in a way that is detectable to the remote peer, then this amounts to a padding oracle that could be used to decrypt data. In order for this to be exploitable "non-stitched" ciphersuites must be in use. Stitched ciphersuites are optimised implementations of certain commonly used ciphersuites. Also the application must call SSL_shutdown() twice even if a protocol error has occurred (applications should not do this but some do anyway). Fixed in OpenSSL 1.0.2r (Affected 1.0.2-1.0.2q).
CVE-2019-1552	1.9OpenSSL has internal defaults for a directory tree where it can find a configuration file as well as certificates used for verification in TLS. This directory is most commonly referred to as OPENSSLDIR, and is configurable with the --prefix / --openssldir configuration options. For OpenSSL versions 1.1.0 and 1.1.1, the mingw configuration targets assume that resulting programs and libraries are installed in a Unix-like environment and the default prefix for program installation as well as for OPENSSLDIR should be '/usr/local'. However, mingw programs are Windows programs, and as such, find themselves looking at sub-directories of 'C:/usr/local', which may be world writable, which enables untrusted users to modify OpenSSL's default configuration, insert CA certificates, modify (or even replace) existing engine modules, etc. For OpenSSL 1.0.2, '/usr/local/ssl' is used as default for OPENSSLDIR on all Unix and Windows targets, including Visual C builds. However, some build instructions for the diverse Windows targets on 1.0.2 encourage you to specify your own --prefix. OpenSSL versions 1.1.1, 1.1.0 and 1.0.2 are affected by this issue. Due to the limited scope of affected deployments this has been assessed as low severity and therefore we are not creating new releases at this time. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).
CVE-2019-1551	5.0There is an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH512 are considered just feasible. However, for an attack the target would have to re-use the DH512 private key, which is not recommended anyway. Also applications directly using the low level API BN_mod_exp may be affected if they use BN_FLG_CONSTTIME. Fixed in OpenSSL 1.1.1e (Affected 1.1.1-1.1.1d). Fixed in OpenSSL 1.0.2u (Affected 1.0.2-1.0.2t).
CVE-2019-1547	1.9Normally in OpenSSL EC groups always have a co-factor present and this is used in side channel resistant code paths. However, in some cases, it is possible to construct a group using explicit parameters (instead of using a named curve). In those cases it is possible that such a group does not have the cofactor present. This can occur even where all the parameters match a known named curve. If such a curve is used then OpenSSL falls back to non-side channel resistant code paths which may result in full key recovery during an ECDSA signature operation. In order to be vulnerable an attacker would have to have the ability to time the creation of a large number of signatures where explicit parameters with no co-factor present are in use by an application using libcrypto. For the avoidance of doubt libssl is not vulnerable because explicit parameters are never used. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2019-11072	7.5lighttpd before 1.4.54 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a malicious HTTP GET request, as demonstrated by mishandling of /%2F? in burl_normalize_2F_to_slash_fix in burl.c. NOTE: The developer states "The feature which can be abused to cause the crash is a new feature in lighttpd 1.4.50, and is not enabled by default. It must be explicitly configured in the config file (e.g. lighttpd.conf). Certain input will trigger an abort() in lighttpd when that feature is enabled. lighttpd detects the underflow or realloc() will fail (in both 32-bit and 64-bit executables), also detected in lighttpd. Either triggers an explicit abort() by lighttpd. This is not exploitable beyond triggering the explicit abort() with subsequent application exit.
CVE-2019-10098	5.8In Apache HTTP server 2.4.0 to 2.4.39, Redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an unexpected URL within the request URL.
CVE-2019-10092	4.3In Apache HTTP Server 2.4.0-2.4.39, a limited cross-site scripting issue was reported affecting the mod_proxy error page. An attacker could cause the link on the error page to be malformed and instead point to a page of their choice. This would only be exploitable where a server was set up with proxying enabled but was misconfigured in such a way that the Proxy Error page was displayed.
CVE-2019-0220	5.0A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. When the path component of a request URL contains multiple consecutive slashes ('/'), directives such as LocationMatch and RewriteRule must account for duplicates in regular expressions while other aspects of the servers processing will implicitly collapse them.
CVE-2019-0217	6.0In Apache HTTP Server 2.4 release 2.4.38 and prior, a race condition in mod_auth_digest when running in a threaded server could allow a user with valid credentials to authenticate using another username, bypassing configured access control restrictions.
CVE-2018-8007	9.0Apache CouchDB administrative users can configure the database server via HTTP(S). Due to insufficient validation of administrator-supplied configuration settings via the HTTP API, it is possible for a CouchDB administrator user to escalate their privileges to that of the operating system's user that CouchDB runs under, by bypassing the blacklist of configuration settings that are not allowed to be modified via the HTTP API. This privilege escalation effectively allows an existing CouchDB admin user to gain arbitrary remote code execution, bypassing already disclosed CVE-2017-12636. Mitigation: All users should upgrade to CouchDB releases 1.7.2 or 2.1.2.
CVE-2018-7584	7.5In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing an HTTP response in the php_stream_url_wrap_http_ex function in ext/standard/http_fopen_wrapper.c. This subsequently results in copying a large string.
CVE-2018-5712	4.3An issue was discovered in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. There is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file.
CVE-2018-5711	4.3gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated by a call to the imagecreatefromgif or imagecreatefromstring PHP function. This is related to GetCode_ and gdImageCreateFromGifCtx.
CVE-2018-5407	1.9Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention'.
CVE-2018-20783	5.0In PHP before 5.6.39, 7.x before 7.0.33, 7.1.x before 7.1.25, and 7.2.x before 7.2.13, a buffer over-read in PHAR reading functions may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse a .phar file. This is related to phar_parse_pharfile in ext/phar/phar.c.
CVE-2018-19520	6.5An issue was discovered in SDCMS 1.6 with PHP 5.x. app/admin/controller/themecontroller.php uses a check_bad function in an attempt to block certain PHP functions such as eval, but does not prevent use of preg_replace 'e' calls, allowing users to execute arbitrary code by leveraging access to admin template management.
CVE-2018-19396	5.0ext/standard/var_unserializer.c in PHP 5.x through 7.1.24 allows attackers to cause a denial of service (application crash) via an unserialize call for the com, dotnet, or variant class.
CVE-2018-19395	5.0ext/standard/var.c in PHP 5.x through 7.1.24 on Windows allows attackers to cause a denial of service (NULL pointer dereference and application crash) because com and com_safearray_proxy return NULL in com_properties_get in ext/com_dotnet/com_handlers.c, as demonstrated by a serialize call on COM("WScript.Shell").
CVE-2018-19052	5.0An issue was discovered in mod_alias_physical_handler in mod_alias.c in lighttpd before 1.4.50. There is potential ../ path traversal of a single directory above an alias target, with a specific mod_alias configuration where the matched alias lacks a trailing '/' character, but the alias target filesystem path does have a trailing '/' character.
CVE-2018-17199	5.0In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessions since the expiry time is loaded when the session is decoded.
CVE-2018-17188	6.5Prior to CouchDB version 2.3.0, CouchDB allowed for runtime-configuration of key components of the database. In some cases, this lead to vulnerabilities where CouchDB admin users could access the underlying operating system as the CouchDB user. Together with other vulnerabilities, it allowed full system entry for unauthenticated users. Rather than waiting for new vulnerabilities to be discovered, and fixing them as they come up, the CouchDB development team decided to make changes to avoid this entire class of vulnerabilities.
CVE-2018-17082	4.3The Apache2 component in PHP before 5.6.38, 7.0.x before 7.0.32, 7.1.x before 7.1.22, and 7.2.x before 7.2.10 allows XSS via the body of a "Transfer-Encoding: chunked" request, because the bucket brigade is mishandled in the php_handler function in sapi/apache2handler/sapi_apache2.c.
CVE-2018-15132	5.0An issue was discovered in ext/standard/link_win32.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8. The linkinfo function on Windows doesn't implement the open_basedir check. This could be abused to find files on paths outside of the allowed directories.
CVE-2018-14883	5.0An issue was discovered in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8. An Integer Overflow leads to a heap-based buffer over-read in exif_thumbnail_extract of exif.c.
CVE-2018-14851	4.3exif_process_IFD_in_MAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG file.
CVE-2018-1312	6.8In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication configuration, HTTP requests could be replayed across servers by an attacker without detection.
CVE-2018-1303	5.0A specially crafted HTTP request header could have crashed the Apache HTTP Server prior to version 2.4.30 due to an out of bound read while preparing data to be cached in shared memory. It could be used as a Denial of Service attack against users of mod_cache_socache. The vulnerability is considered as low risk since mod_cache_socache is not widely used, mod_cache_disk is not concerned by this vulnerability.
CVE-2018-1302	4.3When an HTTP/2 stream was destroyed after being handled, the Apache HTTP Server prior to version 2.4.30 could have written a NULL pointer potentially to an already freed memory. The memory pools maintained by the server make this vulnerability hard to trigger in usual configurations, the reporter and the team could not reproduce it outside debug builds, so it is classified as low risk.
CVE-2018-1301	4.3A specially crafted request could have crashed the Apache HTTP Server prior to version 2.4.30, due to an out of bound access after a size limit is reached by reading the HTTP header. This vulnerability is considered very hard if not impossible to trigger in non-debug mode (both log and build level), so it is classified as low risk for common server usage.
CVE-2018-1283	3.5In Apache httpd 2.4.0 to 2.4.29, when mod_session is configured to forward its session data to CGI applications (SessionEnv on, not the default), a remote user may influence their content by using a "Session" header. This comes from the "HTTP_SESSION" variable name used by mod_session to forward its data to CGIs, since the prefix "HTTP_" is also used by the Apache HTTP Server to pass HTTP header fields, per CGI specifications.
CVE-2018-11769	9.0CouchDB administrative users before 2.2.0 can configure the database server via HTTP(S). Due to insufficient validation of administrator-supplied configuration settings via the HTTP API, it is possible for a CouchDB administrator user to escalate their privileges to that of the operating system's user under which CouchDB runs, by bypassing the blacklist of configuration settings that are not allowed to be modified via the HTTP API. This privilege escalation effectively allows a CouchDB admin user to gain arbitrary remote code execution, bypassing CVE-2017-12636 and CVE-2018-8007.
CVE-2018-10549	6.8An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exif_read_data in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exif_iif_add_value mishandles the case of a MakerNote that lacks a final '\0' character.
CVE-2018-10548	5.0An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. ext/ldap/ldap.c allows remote LDAP servers to cause a denial of service (NULL pointer dereference and application crash) because of mishandling of the ldap_get_dn return value.
CVE-2018-10547	4.3An issue was discovered in ext/phar/phar_object.c in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. There is Reflected XSS on the PHAR 403 and 404 error pages via request data of a request for a .phar file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2018-5712.
CVE-2018-10546	5.0An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. An infinite loop exists in ext/iconv/iconv.c because the iconv stream filter does not reject invalid multibyte sequences.
CVE-2018-10545	1.9An issue was discovered in PHP before 5.6.35, 7.0.x before 7.0.29, 7.1.x before 7.1.16, and 7.2.x before 7.2.4. Dumpable FPM child processes allow bypassing opcache access controls because fpm_unix.c makes a PR_SET_DUMPABLE prctl call, allowing one user (in a multiuser environment) to obtain sensitive information from the process memory of a second user's PHP applications by running gcore on the PID of the PHP-FPM worker process.
CVE-2018-0739	4.3Constructed ASN.1 types with a recursive definition (such as can be found in PKCS7) could eventually exceed the stack given malicious input with excessive recursion. This could result in a Denial Of Service attack. There are no such structures used within SSL/TLS that come from untrusted sources so this is considered safe. Fixed in OpenSSL 1.1.0h (Affected 1.1.0-1.1.0g). Fixed in OpenSSL 1.0.2o (Affected 1.0.2b-1.0.2n).
CVE-2018-0737	4.3The OpenSSL RSA Key generation algorithm has been shown to be vulnerable to a cache timing side channel attack. An attacker with sufficient access to mount cache timing attacks during the RSA key generation process could recover the private key. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2b-1.0.2o).
CVE-2018-0734	4.3The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a (Affected 1.1.1). Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q (Affected 1.0.2-1.0.2p).
CVE-2018-0732	5.0During key agreement in a TLS handshake using a DH(E) based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client has finished. This could be exploited in a Denial Of Service attack. Fixed in OpenSSL 1.1.0i-dev (Affected 1.1.0-1.1.0h). Fixed in OpenSSL 1.0.2p-dev (Affected 1.0.2-1.0.2o).
CVE-2017-9798	5.0Apache httpd allows remote attackers to read secret data from process memory if the Limit directive can be set in a user's .htaccess file, or if httpd.conf has certain misconfigurations, aka Optionsbleed. This affects the Apache HTTP Server through 2.2.34 and 2.4.x through 2.4.27. The attacker sends an unauthenticated OPTIONS HTTP request when attempting to read secret data. This is a use-after-free issue and thus secret data is not always sent, and the specific data depends on many factors including configuration. Exploitation with .htaccess can be blocked with a patch to the ap_limit_section function in server/core.c.
CVE-2017-9788	6.4In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in [Proxy-]Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by mod_auth_digest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior request, leading to leakage of potentially confidential information, and a segfault in other cases resulting in denial of service.
CVE-2017-9735	5.0Jetty through 9.4.x is prone to a timing channel in util/security/Password.java, which makes it easier for remote attackers to obtain access by observing elapsed times before rejection of incorrect passwords.
CVE-2017-9226	7.5An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write or read occurs in next_state_val() during regular expression compilation. Octal numbers larger than 0xff are not handled correctly in fetch_token() and fetch_token_in_cc(). A malformed regular expression containing an octal number in the form of '\700' would produce an invalid code point value larger than 0xff in next_state_val(), resulting in an out-of-bounds write memory corruption.
CVE-2017-9224	7.5An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A stack out-of-bounds read occurs in match_at() during regular expression searching. A logical error involving order of validation and access in match_at() could result in an out-of-bounds read from a stack buffer.
CVE-2017-8923	7.5The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact by leveraging a script's use of .= with a long string.
CVE-2017-7963	5.0The GNU Multiple Precision Arithmetic Library (GMP) interfaces for PHP through 7.1.4 allow attackers to cause a denial of service (memory consumption and application crash) via operations on long strings. NOTE: the vendor disputes this, stating "There is no security issue here, because GMP safely aborts in case of an OOM condition. The only attack vector here is denial of service. However, if you allow attacker-controlled, unbounded allocations you have a DoS vector regardless of GMP's OOM behavior.
CVE-2017-7890	4.3The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read ~700 bytes from the top of the stack, potentially disclosing sensitive information.
CVE-2017-7679	7.5In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_mime can read one byte past the end of a buffer when sending a malicious Content-Type response header.
CVE-2017-7658	7.5In Eclipse Jetty Server, versions 9.2.x and older, 9.3.x (all non HTTP/1.x configurations), and 9.4.x (all HTTP/1.x configurations), when presented with two content-lengths headers, Jetty ignored the second. When presented with a content-length and a chunked encoding header, the content-length was ignored (as per RFC 2616). If an intermediary decided on the shorter length, but still passed on the longer body, then body content could be interpreted by Jetty as a pipelined request. If the intermediary was imposing authorization, the fake pipelined request would bypass that authorization.
CVE-2017-7657	7.5In Eclipse Jetty, versions 9.2.x and older, 9.3.x (all configurations), and 9.4.x (non-default configuration with RFC2616 compliance enabled), transfer-encoding chunks are handled poorly. The chunk length parsing was vulnerable to an integer overflow. Thus a large chunk size could be interpreted as a smaller chunk size and content sent as chunk body could be interpreted as a pipelined request. If Jetty was deployed behind an intermediary that imposed some authorization and that intermediary allowed arbitrarily large chunks to be passed on unchanged, then this flaw could be used to bypass the authorization imposed by the intermediary as the fake pipelined request would not be interpreted by the intermediary as a request.
CVE-2017-7656	5.0In Eclipse Jetty, versions 9.2.x and older, 9.3.x (all configurations), and 9.4.x (non-default configuration with RFC2616 compliance enabled), HTTP/0.9 is handled poorly. An HTTP/1 style request line (i.e. method space URI space version) that declares a version of HTTP/0.9 was accepted and treated as a 0.9 request. If deployed behind an intermediary that also accepted and passed through the 0.9 version (but did not act on it), then the response sent could be interpreted by the intermediary as HTTP/1 headers. This could be used to poison the cache if the server allowed the origin client to generate arbitrary content in the response.
CVE-2017-7272	5.8PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is recognized, fsockopen will use the port number that is specified in the hostname argument, instead of the port number in the second argument of the function.
CVE-2017-3738	4.3There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.
CVE-2017-3737	4.3OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an "error state" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the explicit handshake functions (SSL_do_handshake(), SSL_accept() and SSL_connect()), however due to a bug it does not work correctly if SSL_read() or SSL_write() is called directly. In that scenario, if the handshake fails then a fatal error will be returned in the initial function call. If SSL_read()/SSL_write() is subsequently called by the application for the same SSL object then it will succeed and the data is passed without being decrypted/encrypted directly from the SSL/TLS record layer. In order to exploit this issue an application bug would have to be present that resulted in a call to SSL_read()/SSL_write() being issued after having already received a fatal error. OpenSSL version 1.0.2b-1.0.2m are affected. Fixed in OpenSSL 1.0.2n. OpenSSL 1.1.0 is not affected.
CVE-2017-3736	4.0There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.
CVE-2017-3735	5.0While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g.
CVE-2017-3167	7.5In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, use of the ap_get_basic_auth_pw() by third-party modules outside of the authentication phase may lead to authentication requirements being bypassed.
CVE-2017-16642	5.0In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelib_meridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parse_date.c out-of-bounds reads affecting the php_parse_date function. NOTE: this is a different issue than CVE-2017-11145.
CVE-2017-15715	6.8In Apache httpd 2.4.0 to 2.4.29, the expression specified in <FilesMatch> could match '$' to a newline character in a malicious filename, rather than matching only the end of the filename. This could be exploited in environments where uploads of some files are are externally blocked, but only by matching the trailing portion of the filename.
CVE-2017-15710	5.0In Apache httpd 2.0.23 to 2.0.65, 2.2.0 to 2.2.34, and 2.4.0 to 2.4.29, mod_authnz_ldap, if configured with AuthLDAPCharsetConfig, uses the Accept-Language header value to lookup the right charset encoding when verifying the user's credentials. If the header value is not present in the charset conversion table, a fallback mechanism is used to truncate it to a two characters value to allow a quick retry (for example, 'en-US' is truncated to 'en'). A header value of less than two characters forces an out of bound write of one NUL byte to a memory location that is not part of the string. In the worst case, quite unlikely, the process would crash which could be used as a Denial of Service attack. In the more likely case, this memory is already reserved for future use and the issue has no effect at all.
CVE-2017-12933	7.5The finish_nested_data function in ext/standard/var_unserializer.re in PHP before 5.6.31, 7.0.x before 7.0.21, and 7.1.x before 7.1.7 is prone to a buffer over-read while unserializing untrusted data. Exploitation of this issue can have an unspecified impact on the integrity of PHP.
CVE-2017-12868	7.5The secureCompare method in lib/SimpleSAML/Utils/Crypto.php in SimpleSAMLphp 1.14.13 and earlier, when used with PHP before 5.6, allows attackers to conduct session fixation attacks or possibly bypass authentication by leveraging missing character conversions before an XOR operation.
CVE-2017-12636	9.0CouchDB administrative users can configure the database server via HTTP(S). Some of the configuration options include paths for operating system-level binaries that are subsequently launched by CouchDB. This allows an admin user in Apache CouchDB before 1.7.0 and 2.x before 2.1.1 to execute arbitrary shell commands as the CouchDB user, including downloading and executing scripts from the public internet.
CVE-2017-12635	10.0Due to differences in the Erlang-based JSON parser and JavaScript-based JSON parser, it is possible in Apache CouchDB before 1.7.0 and 2.x before 2.1.1 to submit _users documents with duplicate keys for 'roles' used for access control within the database, including the special case '_admin' role, that denotes administrative users. In combination with CVE-2017-12636 (Remote Code Execution), this can be used to give non-admin users access to arbitrary shell commands on the server as the database system user. The JSON parser differences result in behaviour that if two 'roles' keys are available in the JSON, the second one will be used for authorising the document write, but the first 'roles' key is used for subsequent authorization for the newly created user. By design, users can not assign themselves roles. The vulnerability allows non-admin users to give themselves admin privileges.
CVE-2017-11628	6.8In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, a stack-based buffer overflow in the zend_ini_do_op() function in Zend/zend_ini_parser.c could cause a denial of service or potentially allow executing code. NOTE: this is only relevant for PHP applications that accept untrusted input (instead of the system's php.ini file) for the parse_ini_string or parse_ini_file function, e.g., a web application for syntax validation of php.ini directives.
CVE-2017-11147	6.4In PHP before 5.6.30 and 7.x before 7.0.15, the PHAR archive handler could be used by attackers supplying malicious archive files to crash the PHP interpreter or potentially disclose information due to a buffer over-read in the phar_parse_pharfile function in ext/phar/phar.c.
CVE-2017-11145	5.0In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, an error in the date extension's timelib_meridian parsing code could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parse_date.c out-of-bounds reads affecting the php_parse_date function. NOTE: the correct fix is in the e8b7698f5ee757ce2c8bd10a192a491a498f891c commit, not the bd77ac90d3bdf31ce2a5251ad92e9e75 gist.
CVE-2017-11144	5.0In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, the openssl extension PEM sealing code did not check the return value of the OpenSSL sealing function, which could lead to a crash of the PHP interpreter, related to an interpretation conflict for a negative number in ext/openssl/openssl.c, and an OpenSSL documentation omission.
CVE-2017-11143	5.0In PHP before 5.6.31, an invalid free in the WDDX deserialization of boolean parameters could be used by attackers able to inject XML for deserialization to crash the PHP interpreter, related to an invalid free for an empty boolean element in ext/wddx/wddx.c.
CVE-2017-11142	7.8In PHP before 5.6.31, 7.x before 7.0.17, and 7.1.x before 7.1.3, remote attackers could cause a CPU consumption denial of service attack by injecting long form variables, related to main/php_variables.c.
CVE-2016-9935	7.5The php_wddx_push_element function in ext/wddx/wddx.c in PHP before 5.6.29 and 7.x before 7.0.14 allows remote attackers to cause a denial of service (out-of-bounds read and memory corruption) or possibly have unspecified other impact via an empty boolean element in a wddxPacket XML document.
CVE-2016-9934	5.0ext/wddx/wddx.c in PHP before 5.6.28 and 7.x before 7.0.13 allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted serialized data in a wddxPacket XML document, as demonstrated by a PDORow string.
CVE-2016-9933	5.0Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library (aka libgd) before 2.2.2, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service (segmentation violation) via a crafted imagefilltoborder call that triggers use of a negative color value.
CVE-2016-9138	7.5PHP through 5.6.27 and 7.x through 7.0.12 mishandles property modification during __wakeup processing, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted serialized data, as demonstrated by Exception::__toString with DateInterval::__wakeup.
CVE-2016-9137	7.5Use-after-free vulnerability in the CURLFile implementation in ext/curl/curl_file.c in PHP before 5.6.27 and 7.x before 7.0.12 allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted serialized data that is mishandled during __wakeup processing.
CVE-2016-8743	5.0Apache HTTP Server, in all releases prior to 2.2.32 and 2.4.25, was liberal in the whitespace accepted from requests and sent in response lines and headers. Accepting these different behaviors represented a security concern when httpd participates in any chain of proxies or interacts with back-end application servers, either through mod_proxy or using conventional CGI mechanisms, and may result in request smuggling, response splitting and cache pollution.
CVE-2016-8670	7.5Integer signedness error in the dynamicGetbuf function in gd_io_dp.c in the GD Graphics Library (aka libgd) through 2.2.3, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a crafted imagecreatefromstring call.
CVE-2016-8612	3.3Apache HTTP Server mod_cluster before version httpd 2.4.23 is vulnerable to an Improper Input Validation in the protocol parsing logic in the load balancer resulting in a Segmentation Fault in the serving httpd process.
CVE-2016-7478	5.0Zend/zend_exceptions.c in PHP, possibly 5.x before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service (infinite loop) via a crafted Exception object in serialized data, a related issue to CVE-2015-8876.
CVE-2016-7418	5.0The php_wddx_push_element function in ext/wddx/wddx.c in PHP before 5.6.26 and 7.x before 7.0.11 allows remote attackers to cause a denial of service (invalid pointer access and out-of-bounds read) or possibly have unspecified other impact via an incorrect boolean element in a wddxPacket XML document, leading to mishandling in a wddx_deserialize call.
CVE-2016-7417	7.5ext/spl/spl_array.c in PHP before 5.6.26 and 7.x before 7.0.11 proceeds with SplArray unserialization without validating a return value and data type, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted serialized data.
CVE-2016-7416	5.0ext/intl/msgformat/msgformat_format.c in PHP before 5.6.26 and 7.x before 7.0.11 does not properly restrict the locale length provided to the Locale class in the ICU library, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a MessageFormatter::formatMessage call with a long first argument.
CVE-2016-7414	7.5The ZIP signature-verification feature in PHP before 5.6.26 and 7.x before 7.0.11 does not ensure that the uncompressed_filesize field is large enough, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via a crafted PHAR archive, related to ext/phar/util.c and ext/phar/zip.c.
CVE-2016-7413	7.5Use-after-free vulnerability in the wddx_stack_destroy function in ext/wddx/wddx.c in PHP before 5.6.26 and 7.x before 7.0.11 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a wddxPacket XML document that lacks an end-tag for a recordset field element, leading to mishandling in a wddx_deserialize call.
CVE-2016-7412	6.8ext/mysqlnd/mysqlnd_wireprotocol.c in PHP before 5.6.26 and 7.x before 7.0.11 does not verify that a BIT field has the UNSIGNED_FLAG flag, which allows remote MySQL servers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted field metadata.
CVE-2016-7411	7.5ext/standard/var_unserializer.re in PHP before 5.6.26 mishandles object-deserialization failures, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via an unserialize call that references a partially constructed object.
CVE-2016-7132	5.0ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly have unspecified other impact via an invalid wddxPacket XML document that is mishandled in a wddx_deserialize call, as demonstrated by a stray element inside a boolean element, leading to incorrect pop processing.
CVE-2016-7131	5.0ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly have unspecified other impact via a malformed wddxPacket XML document that is mishandled in a wddx_deserialize call, as demonstrated by a tag that lacks a < (less than) character.
CVE-2016-7130	5.0The php_wddx_pop_element function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly have unspecified other impact via an invalid base64 binary value, as demonstrated by a wddx_deserialize call that mishandles a binary element in a wddxPacket XML document.
CVE-2016-7129	7.5The php_wddx_process_data function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via an invalid ISO 8601 time value, as demonstrated by a wddx_deserialize call that mishandles a dateTime element in a wddxPacket XML document.
CVE-2016-7128	5.0The exif_process_IFD_in_TIFF function in ext/exif/exif.c in PHP before 5.6.25 and 7.x before 7.0.10 mishandles the case of a thumbnail offset that exceeds the file size, which allows remote attackers to obtain sensitive information from process memory via a crafted TIFF image.
CVE-2016-7127	7.5The imagegammacorrect function in ext/gd/gd.c in PHP before 5.6.25 and 7.x before 7.0.10 does not properly validate gamma values, which allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact by providing different signs for the second and third arguments.
CVE-2016-7126	7.5The imagetruecolortopalette function in ext/gd/gd.c in PHP before 5.6.25 and 7.x before 7.0.10 does not properly validate the number of colors, which allows remote attackers to cause a denial of service (select_colors allocation error and out-of-bounds write) or possibly have unspecified other impact via a large value in the third argument.
CVE-2016-7125	5.0ext/session/session.c in PHP before 5.6.25 and 7.x before 7.0.10 skips invalid session names in a way that triggers incorrect parsing, which allows remote attackers to inject arbitrary-type session data by leveraging control of a session name, as demonstrated by object injection.
CVE-2016-7124	7.5ext/standard/var_unserializer.c in PHP before 5.6.25 and 7.x before 7.0.10 mishandles certain invalid objects, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted serialized data that leads to a (1) __destruct call or (2) magic method call.
CVE-2016-6297	6.8Integer overflow in the php_stream_zip_opener function in ext/zip/zip_stream.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a crafted zip:// URL.
CVE-2016-6296	7.5Integer signedness error in the simplestring_addn function in simplestring.c in xmlrpc-epi through 0.54.2, as used in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a long first argument to the PHP xmlrpc_encode_request function.
CVE-2016-6295	7.5ext/snmp/snmp.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact via crafted serialized data, a related issue to CVE-2016-5773.
CVE-2016-6294	7.5The locale_accept_from_http function in ext/intl/locale/locale_methods.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 does not properly restrict calls to the ICU uloc_acceptLanguageFromHTTP function, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a call with a long argument.
CVE-2016-6292	4.3The exif_process_user_comment function in ext/exif/exif.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted JPEG image.
CVE-2016-6291	7.5The exif_process_IFD_in_MAKERNOTE function in ext/exif/exif.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service (out-of-bounds array access and memory corruption), obtain sensitive information from process memory, or possibly have unspecified other impact via a crafted JPEG image.
CVE-2016-6290	7.5ext/session/session.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 does not properly maintain a certain hash data structure, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via vectors related to session deserialization.
CVE-2016-6289	6.8Integer overflow in the virtual_file_ex function in TSRM/tsrm_virtual_cwd.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a crafted extract operation on a ZIP archive.
CVE-2016-6288	7.5The php_url_parse_ex function in ext/standard/url.c in PHP before 5.5.38 allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via vectors involving the smart_str data type.
CVE-2016-6174	6.8applications/core/modules/front/system/content.php in Invision Power Services IPS Community Suite (aka Invision Power Board, IPB, or Power Board) before 4.1.13, when used with PHP before 5.4.24 or 5.5.x before 5.5.8, allows remote attackers to execute arbitrary code via the content_class parameter.
CVE-2016-5773	7.5php_zip.c in the zip extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and application crash) via crafted serialized data containing a ZipArchive object.
CVE-2016-5772	7.5Double free vulnerability in the php_wddx_process_data function in wddx.c in the WDDX extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted XML data that is mishandled in a wddx_deserialize call.
CVE-2016-5771	7.5spl_array.c in the SPL extension in PHP before 5.5.37 and 5.6.x before 5.6.23 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and application crash) via crafted serialized data.
CVE-2016-5770	7.5Integer overflow in the SplFileObject::fread function in spl_directory.c in the SPL extension in PHP before 5.5.37 and 5.6.x before 5.6.23 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large integer argument, a related issue to CVE-2016-5096.
CVE-2016-5769	7.5Multiple integer overflows in mcrypt.c in the mcrypt extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 allow remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted length value, related to the (1) mcrypt_generic and (2) mdecrypt_generic functions.
CVE-2016-5768	7.5Double free vulnerability in the _php_mb_regex_ereg_replace_exec function in php_mbregex.c in the mbstring extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by leveraging a callback exception.
CVE-2016-5767	6.8Integer overflow in the gdImageCreate function in gd.c in the GD Graphics Library (aka libgd) before 2.0.34RC1, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted image dimensions.
CVE-2016-5766	6.8Integer overflow in the _gd2GetHeader function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via crafted chunk dimensions in an image.
CVE-2016-5399	6.8The bzread function in ext/bz2/bz2.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted bz2 archive.
CVE-2016-5387	6.8The Apache HTTP Server through 2.4.23 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an "httpoxy" issue. NOTE: the vendor states "This mitigation has been assigned the identifier CVE-2016-5387"; in other words, this is not a CVE ID for a vulnerability.
CVE-2016-5114	6.4sapi/fpm/fpm/fpm_log.c in PHP before 5.5.31, 5.6.x before 5.6.17, and 7.x before 7.0.2 misinterprets the semantics of the snprintf return value, which allows attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read and buffer overflow) via a long string, as demonstrated by a long URI in a configuration with custom REQUEST_URI logging.
CVE-2016-5096	7.5Integer overflow in the fread function in ext/standard/file.c in PHP before 5.5.36 and 5.6.x before 5.6.22 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large integer in the second argument.
CVE-2016-5095	7.5Integer overflow in the php_escape_html_entities_ex function in ext/standard/html.c in PHP before 5.5.36 and 5.6.x before 5.6.22 allows remote attackers to cause a denial of service or possibly have unspecified other impact by triggering a large output string from a FILTER_SANITIZE_FULL_SPECIAL_CHARS filter_var call. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-5094.
CVE-2016-5094	7.5Integer overflow in the php_html_entities function in ext/standard/html.c in PHP before 5.5.36 and 5.6.x before 5.6.22 allows remote attackers to cause a denial of service or possibly have unspecified other impact by triggering a large output string from the htmlspecialchars function.
CVE-2016-5093	7.5The get_icu_value_internal function in ext/intl/locale/locale_methods.c in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7 does not ensure the presence of a '\0' character, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted locale_get_primary_language call.
CVE-2016-4975	4.3Possible CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache HTTP Server 2.4.25 (Affected 2.4.1-2.4.23). Fixed in Apache HTTP Server 2.2.32 (Affected 2.2.0-2.2.31).
CVE-2016-4543	7.5The exif_process_IFD_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate IFD sizes, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted header data.
CVE-2016-4542	7.5The exif_process_IFD_TAG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not properly construct spprintf arguments, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via crafted header data.
CVE-2016-4541	7.5The grapheme_strpos function in ext/intl/grapheme/grapheme_string.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a negative offset.
CVE-2016-4540	7.5The grapheme_stripos function in ext/intl/grapheme/grapheme_string.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a negative offset.
CVE-2016-4539	7.5The xml_parse_into_struct function in ext/xml/xml.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 allows remote attackers to cause a denial of service (buffer under-read and segmentation fault) or possibly have unspecified other impact via crafted XML data in the second argument, leading to a parser level of zero.
CVE-2016-4538	7.5The bcpowmod function in ext/bcmath/bcmath.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 modifies certain data structures without considering whether they are copies of the _zero_, _one_, or _two_ global variable, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted call.
CVE-2016-4537	7.5The bcpowmod function in ext/bcmath/bcmath.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 accepts a negative integer for the scale argument, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted call.
CVE-2016-4343	6.8The phar_make_dirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0.3 mishandles zero-size ././@LongLink files, which allows remote attackers to cause a denial of service (uninitialized pointer dereference) or possibly have unspecified other impact via a crafted TAR archive.
CVE-2016-4342	8.3ext/phar/phar_object.c in PHP before 5.5.32, 5.6.x before 5.6.18, and 7.x before 7.0.3 mishandles zero-length uncompressed data, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted (1) TAR, (2) ZIP, or (3) PHAR archive.
CVE-2016-4070	5.0Integer overflow in the php_raw_url_encode function in ext/standard/url.c in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allows remote attackers to cause a denial of service (application crash) via a long string to the rawurlencode function. NOTE: the vendor says "Not sure if this qualifies as security issue (probably not).
CVE-2016-3185	6.4The make_http_soap_request function in ext/soap/php_http.c in PHP before 5.4.44, 5.5.x before 5.5.28, 5.6.x before 5.6.12, and 7.x before 7.0.4 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (type confusion and application crash) via crafted serialized _cookies data, related to the SoapClient::__call method in ext/soap/soap.c.
CVE-2016-3171	6.8Drupal 6.x before 6.38, when used with PHP before 5.4.45, 5.5.x before 5.5.29, or 5.6.x before 5.6.13, might allow remote attackers to execute arbitrary code via vectors related to session data truncation.
CVE-2016-3142	6.4The phar_parse_zipfile function in zip.c in the PHAR extension in PHP before 5.5.33 and 5.6.x before 5.6.19 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read and application crash) by placing a PK\x05\x06 signature at an invalid location.
CVE-2016-3141	7.5Use-after-free vulnerability in wddx.c in the WDDX extension in PHP before 5.5.33 and 5.6.x before 5.6.19 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact by triggering a wddx_deserialize call on XML data containing a crafted var element.
CVE-2016-2554	10.0Stack-based buffer overflow in ext/phar/tar.c in PHP before 5.5.32, 5.6.x before 5.6.18, and 7.x before 7.0.3 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted TAR archive.
CVE-2016-2161	5.0In Apache HTTP Server versions 2.4.0 to 2.4.23, malicious input to mod_auth_digest can cause the server to crash, and each instance continues to crash even for subsequently valid requests.
CVE-2016-1903	6.4The gdImageRotateInterpolated function in ext/gd/libgd/gd_interpolation.c in PHP before 5.5.31, 5.6.x before 5.6.17, and 7.x before 7.0.2 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a large bgd_color argument to the imagerotate function.
CVE-2016-10712	5.0In PHP before 5.5.32, 5.6.x before 5.6.18, and 7.x before 7.0.3, all of the return values of stream_get_meta_data can be controlled if the input can be controlled (e.g., during file uploads). For example, a "$uri = stream_get_meta_data(fopen($file, "r"))['uri']" call mishandles the case where $file is data:text/plain;uri=eviluri, -- in other words, metadata can be set by an attacker.
CVE-2016-10397	5.0In PHP before 5.6.28 and 7.x before 7.0.13, incorrect handling of various URI components in the URL parser could be used by attackers to bypass hostname-specific URL checks, as demonstrated by evil.example.com:80#@good.example.com/ and evil.example.com:80?@good.example.com/ inputs to the parse_url function (implemented in the php_url_parse_ex function in ext/standard/url.c).
CVE-2016-10161	5.0The object_common1 function in ext/standard/var_unserializer.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (buffer over-read and application crash) via crafted serialized data that is mishandled in a finish_nested_data call.
CVE-2016-10159	5.0Integer overflow in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service (memory consumption or application crash) via a truncated manifest entry in a PHAR archive.
CVE-2016-10158	5.0The exif_convert_any_to_int function in ext/exif/exif.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (application crash) via crafted EXIF data that triggers an attempt to divide the minimum representable negative integer by -1.
CVE-2016-0736	5.0In Apache HTTP Server versions 2.4.0 to 2.4.23, mod_session_crypto was encrypting its data/cookie using the configured ciphers with possibly either CBC or ECB modes of operation (AES256-CBC by default), hence no selectable or builtin authenticated encryption. This made it vulnerable to padding oracle attacks, particularly with CBC.
CVE-2015-9253	6.8An issue was discovered in PHP 7.3.x before 7.3.0alpha3, 7.2.x before 7.2.8, and before 7.1.20. The php-fpm master process restarts a child process in an endless loop when using program execution functions (e.g., passthru, exec, shell_exec, or system) with a non-blocking STDIN stream, causing this master process to consume 100% of the CPU, and consume disk space with a large volume of error logs, as demonstrated by an attack by a customer of a shared-hosting facility.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2015-8994	6.8An issue was discovered in PHP 5.x and 7.x, when the configuration uses apache2handler/mod_php or php-fpm with OpCache enabled. With 5.x after 5.6.28 or 7.x after 7.0.13, the issue is resolved in a non-default configuration with the opcache.validate_permission=1 setting. The vulnerability details are as follows. In PHP SAPIs where PHP interpreters share a common parent process, Zend OpCache creates a shared memory object owned by the common parent during initialization. Child PHP processes inherit the SHM descriptor, using it to cache and retrieve compiled script bytecode ("opcode" in PHP jargon). Cache keys vary depending on configuration, but filename is a central key component, and compiled opcode can generally be run if a script's filename is known or can be guessed. Many common shared-hosting configurations change EUID in child processes to enforce privilege separation among hosted users (for example using mod_ruid2 for the Apache HTTP Server, or php-fpm user settings). In these scenarios, the default Zend OpCache behavior defeats script file permissions by sharing a single SHM cache among all child PHP processes. PHP scripts often contain sensitive information: Think of CMS configurations where reading or running another user's script usually means gaining privileges to the CMS database.
CVE-2015-8935	4.3The sapi_header_op function in main/SAPI.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 supports deprecated line folding without considering browser compatibility, which allows remote attackers to conduct cross-site scripting (XSS) attacks against Internet Explorer by leveraging (1) %0A%20 or (2) %0D%0A%20 mishandling in the header function.
CVE-2015-8879	5.0The odbc_bindcols function in ext/odbc/php_odbc.c in PHP before 5.6.12 mishandles driver behavior for SQL_WVARCHAR columns, which allows remote attackers to cause a denial of service (application crash) in opportunistic circumstances by leveraging use of the odbc_fetch_array function to access a certain type of Microsoft SQL Server table.
CVE-2015-8877	5.0The gdImageScaleTwoPass function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.2.0, as used in PHP before 5.6.12, uses inconsistent allocate and free approaches, which allows remote attackers to cause a denial of service (memory consumption) via a crafted call, as demonstrated by a call to the PHP imagescale function.
CVE-2015-8876	7.5Zend/zend_exceptions.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 does not validate certain Exception objects, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or trigger unintended method execution via crafted serialized data.
CVE-2015-8874	5.0Stack consumption vulnerability in GD in PHP before 5.6.12 allows remote attackers to cause a denial of service via a crafted imagefilltoborder call.
CVE-2015-8873	5.0Stack consumption vulnerability in Zend/zend_exceptions.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to cause a denial of service (segmentation fault) via recursive method calls.
CVE-2015-8867	5.0The openssl_random_pseudo_bytes function in ext/openssl/openssl.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 incorrectly relies on the deprecated RAND_pseudo_bytes function, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors.
CVE-2015-8865	7.5The file_check_mem function in funcs.c in file before 5.23, as used in the Fileinfo component in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5, mishandles continuation-level jumps, which allows context-dependent attackers to cause a denial of service (buffer overflow and application crash) or possibly execute arbitrary code via a crafted magic file.
CVE-2015-8838	4.3ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152.
CVE-2015-8835	7.5The make_http_soap_request function in ext/soap/php_http.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 does not properly retrieve keys, which allows remote attackers to cause a denial of service (NULL pointer dereference, type confusion, and application crash) or possibly execute arbitrary code via crafted serialized data representing a numerically indexed _cookies array, related to the SoapClient::__call method in ext/soap/soap.c.
CVE-2015-7804	6.8Off-by-one error in the phar_parse_zipfile function in ext/phar/zip.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (uninitialized pointer dereference and application crash) by including the / filename in a .zip PHAR archive.
CVE-2015-7803	6.8The phar_get_entry_data function in ext/phar/util.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a .phar file with a crafted TAR archive entry in which the Link indicator references a file that does not exist.
CVE-2015-6838	5.0The xsl_ext_function_php function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility of a NULL valuePop return value before proceeding with a free operation after the principal argument loop, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted XML document, a different vulnerability than CVE-2015-6837.
CVE-2015-6837	5.0The xsl_ext_function_php function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility of a NULL valuePop return value before proceeding with a free operation during initial error checking, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted XML document, a different vulnerability than CVE-2015-6838.
CVE-2015-6836	7.5The SoapClient __call method in ext/soap/soap.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 does not properly manage headers, which allows remote attackers to execute arbitrary code via crafted serialized data that triggers a "type confusion" in the serialize_function_call function.
CVE-2015-6835	7.5The session deserializer in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 mishandles multiple php_var_unserialize calls, which allow remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via crafted session content.
CVE-2015-6834	7.5Multiple use-after-free vulnerabilities in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 allow remote attackers to execute arbitrary code via vectors related to (1) the Serializable interface, (2) the SplObjectStorage class, and (3) the SplDoublyLinkedList class, which are mishandled during unserialization.
CVE-2015-6833	5.0Directory traversal vulnerability in the PharData class in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to write to arbitrary files via a .. (dot dot) in a ZIP archive entry that is mishandled during an extractTo call.
CVE-2015-6832	7.5Use-after-free vulnerability in the SPL unserialize implementation in ext/spl/spl_array.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to execute arbitrary code via crafted serialized data that triggers misuse of an array field.
CVE-2015-6831	7.5Multiple use-after-free vulnerabilities in SPL in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allow remote attackers to execute arbitrary code via vectors involving (1) ArrayObject, (2) SplObjectStorage, and (3) SplDoublyLinkedList, which are mishandled during unserialization.
CVE-2015-6497	6.5The create function in app/code/core/Mage/Catalog/Model/Product/Api/V2.php in Magento Community Edition (CE) before 1.9.2.1 and Enterprise Edition (EE) before 1.14.2.1, when used with PHP before 5.4.24 or 5.5.8, allows remote authenticated users to execute arbitrary PHP code via the productData parameter to index.php/api/v2_soap.
CVE-2015-5590	7.5Stack-based buffer overflow in the phar_fix_filepath function in ext/phar/phar.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large length value, as demonstrated by mishandling of an e-mail attachment by the imap PHP extension.
CVE-2015-5589	10.0The phar_convert_to_other function in ext/phar/phar_object.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 does not validate a file pointer before a close operation, which allows remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted TAR archive that is mishandled in a Phar::convertToData call.
CVE-2015-4644	5.0The php_pgsql_meta_data function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 does not validate token extraction for table names, which might allow remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted name. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1352.
CVE-2015-4643	7.5Integer overflow in the ftp_genlist function in ext/ftp/ftp.c in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 allows remote FTP servers to execute arbitrary code via a long reply to a LIST command, leading to a heap-based buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-4022.
CVE-2015-4642	10.0The escapeshellarg function in ext/standard/exec.c in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 on Windows allows remote attackers to execute arbitrary OS commands via a crafted string to an application that accepts command-line arguments for a call to the PHP system function.
CVE-2015-4605	5.0The mcopy function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly restrict a certain offset value, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string that is mishandled by a "Python script text executable" rule.
CVE-2015-4604	5.0The mget function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly maintain a certain pointer relationship, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string that is mishandled by a "Python script text executable" rule.
CVE-2015-4603	10.0The exception::getTraceAsString function in Zend/zend_exceptions.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to execute arbitrary code via an unexpected data type, related to a "type confusion" issue.
CVE-2015-4602	10.0The __PHP_Incomplete_Class function in ext/standard/incomplete_class.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an unexpected data type, related to a "type confusion" issue.
CVE-2015-4601	10.0PHP before 5.6.7 might allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an unexpected data type, related to "type confusion" issues in (1) ext/soap/php_encoding.c, (2) ext/soap/php_http.c, and (3) ext/soap/soap.c, a different issue than CVE-2015-4600.
CVE-2015-4600	10.0The SoapClient implementation in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an unexpected data type, related to "type confusion" issues in the (1) SoapClient::__getLastRequest, (2) SoapClient::__getLastResponse, (3) SoapClient::__getLastRequestHeaders, (4) SoapClient::__getLastResponseHeaders, (5) SoapClient::__getCookies, and (6) SoapClient::__setCookie methods.
CVE-2015-4599	10.0The SoapFault::__toString method in ext/soap/soap.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to obtain sensitive information, cause a denial of service (application crash), or possibly execute arbitrary code via an unexpected data type, related to a "type confusion" issue.
CVE-2015-4598	7.5PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read or write to arbitrary files via crafted input to an application that calls (1) a DOMDocument save method or (2) the GD imagepsloadfont function, as demonstrated by a filename\0.html attack that bypasses an intended configuration in which client users may write to only .html files.
CVE-2015-4148	5.0The do_soap_call function in ext/soap/soap.c in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 does not verify that the uri property is a string, which allows remote attackers to obtain sensitive information by providing crafted serialized data with an int data type, related to a "type confusion" issue.
CVE-2015-4147	7.5The SoapClient::__call method in ext/soap/soap.c in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 does not verify that __default_headers is an array, which allows remote attackers to execute arbitrary code by providing crafted serialized data with an unexpected data type, related to a "type confusion" issue.
CVE-2015-4116	7.5Use-after-free vulnerability in the spl_ptr_heap_insert function in ext/spl/spl_heap.c in PHP before 5.5.27 and 5.6.x before 5.6.11 allows remote attackers to execute arbitrary code by triggering a failed SplMinHeap::compare operation.
CVE-2015-4026	7.5The pcntl_exec implementation in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 truncates a pathname upon encountering a \x00 character, which might allow remote attackers to bypass intended extension restrictions and execute files with unexpected names via a crafted first argument. NOTE: this vulnerability exists because of an incomplete fix for CVE-2006-7243.
CVE-2015-4025	7.5PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 truncates a pathname upon encountering a \x00 character in certain situations, which allows remote attackers to bypass intended extension restrictions and access files or directories with unexpected names via a crafted argument to (1) set_include_path, (2) tempnam, (3) rmdir, or (4) readlink. NOTE: this vulnerability exists because of an incomplete fix for CVE-2006-7243.
CVE-2015-4024	5.0Algorithmic complexity vulnerability in the multipart_buffer_headers function in main/rfc1867.c in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 allows remote attackers to cause a denial of service (CPU consumption) via crafted form data that triggers an improper order-of-growth outcome.
CVE-2015-4022	7.5Integer overflow in the ftp_genlist function in ext/ftp/ftp.c in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 allows remote FTP servers to execute arbitrary code via a long reply to a LIST command, leading to a heap-based buffer overflow.
CVE-2015-4021	5.0The phar_parse_tarfile function in ext/phar/tar.c in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 does not verify that the first character of a filename is different from the \0 character, which allows remote attackers to cause a denial of service (integer underflow and memory corruption) via a crafted entry in a tar archive.
CVE-2015-3416	7.5The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions, which allows context-dependent attackers to cause a denial of service (integer overflow and stack-based buffer overflow) or possibly have unspecified other impact via large integers in a crafted printf function call in a SELECT statement.
CVE-2015-3415	7.5The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement comparison operators, which allows context-dependent attackers to cause a denial of service (invalid free operation) or possibly have unspecified other impact via a crafted CHECK clause, as demonstrated by CHECK(0&O>O) in a CREATE TABLE statement.
CVE-2015-3414	7.5SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names, which allows context-dependent attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via a crafted COLLATE clause, as demonstrated by COLLATE"""""""" at the end of a SELECT statement.
CVE-2015-3412	5.0PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read arbitrary files via crafted input to an application that calls the stream_resolve_include_path function in ext/standard/streamsfuncs.c, as demonstrated by a filename\0.extension attack that bypasses an intended configuration in which client users may read files with only one specific extension.
CVE-2015-3411	6.4PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read or write to arbitrary files via crafted input to an application that calls (1) a DOMDocument load method, (2) the xmlwriter_open_uri function, (3) the finfo_file function, or (4) the hash_hmac_file function, as demonstrated by a filename\0.xml attack that bypasses an intended configuration in which client users may read only .xml files.
CVE-2015-3330	6.8The php_handler function in sapi/apache2handler/sapi_apache2.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, when the Apache HTTP Server 2.4.x is used, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via pipelined HTTP requests that result in a "deconfigured interpreter."
CVE-2015-3329	7.5Multiple stack-based buffer overflows in the phar_set_inode function in phar_internal.h in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allow remote attackers to execute arbitrary code via a crafted length value in a (1) tar, (2) phar, or (3) ZIP archive.
CVE-2015-3307	7.5The phar_parse_metadata function in ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service (heap metadata corruption) or possibly have unspecified other impact via a crafted tar archive.
CVE-2015-3200	5.0mod_auth in lighttpd before 1.4.36 allows remote attackers to inject arbitrary log entries via a basic HTTP authentication string without a colon character, as demonstrated by a string containing a NULL and new line character.
CVE-2015-3185	4.3The ap_some_auth_required function in server/request.c in the Apache HTTP Server 2.4.x before 2.4.14 does not consider that a Require directive may be associated with an authorization setting rather than an authentication setting, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging the presence of a module that relies on the 2.2 API behavior.
CVE-2015-3184	5.0mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache httpd 2.4.x, does not properly restrict anonymous access, which allows remote anonymous users to read hidden files via the path name.
CVE-2015-3183	5.0The chunked transfer coding implementation in the Apache HTTP Server before 2.4.14 does not properly parse chunk headers, which allows remote attackers to conduct HTTP request smuggling attacks via a crafted request, related to mishandling of large chunk-size values and invalid chunk-extension characters in modules/http/http_filters.c.
CVE-2015-3152	4.3Oracle MySQL before 5.7.3, Oracle MySQL Connector/C (aka libmysqlclient) before 6.1.3, and MariaDB before 5.5.44 use the --ssl option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, aka a "BACKRONYM" attack.
CVE-2015-2787	7.5Use-after-free vulnerability in the process_nested_data function in ext/standard/var_unserializer.re in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages use of the unset function within an __wakeup function, a related issue to CVE-2015-0231.
CVE-2015-2783	5.8ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read and application crash) via a crafted length value in conjunction with crafted serialized data in a phar archive, related to the phar_parse_metadata and phar_parse_pharfile functions.
CVE-2015-2348	5.0The move_uploaded_file implementation in ext/standard/basic_functions.c in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 truncates a pathname upon encountering a \x00 character, which allows remote attackers to bypass intended extension restrictions and create files with unexpected names via a crafted second argument. NOTE: this vulnerability exists because of an incomplete fix for CVE-2006-7243.
CVE-2015-2331	7.5Integer overflow in the _zip_cdir_new function in zip_dirent.c in libzip 0.11.2 and earlier, as used in the ZIP extension in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a ZIP archive that contains many entries, leading to a heap-based buffer overflow.
CVE-2015-2326	4.3The pcre_compile2 function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code and cause a denial of service (out-of-bounds read) via regular expression with a group containing both a forward referencing subroutine call and a recursive back reference, as demonstrated by "((?+1)(\1))/".
CVE-2015-2325	6.8The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forward reference repeated a large number of times within a repeated outer group that has a zero minimum quantifier.
CVE-2015-2305	6.8Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.
CVE-2015-2301	7.5Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP before 5.5.22 and 5.6.x before 5.6.6 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted renaming of a Phar archive to the name of an existing file.
CVE-2015-1352	5.0The build_tablename function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP through 5.6.7 does not validate token extraction for table names, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted name.
CVE-2015-1351	7.5Use-after-free vulnerability in the _zend_shared_memdup function in zend_shared_alloc.c in the OPcache extension in PHP through 5.6.7 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
CVE-2015-0273	7.5Multiple use-after-free vulnerabilities in ext/date/php_date.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allow remote attackers to execute arbitrary code via crafted serialized input containing a (1) R or (2) r type specifier in (a) DateTimeZone data handled by the php_date_timezone_initialize_from_hash function or (b) DateTime data handled by the php_date_initialize_from_hash function.
CVE-2015-0235	10.0Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."
CVE-2015-0232	6.8The exif_process_unicode function in ext/exif/exif.c in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (uninitialized pointer free and application crash) via crafted EXIF data in a JPEG image.
CVE-2015-0231	7.5Use-after-free vulnerability in the process_nested_data function in ext/standard/var_unserializer.re in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages improper handling of duplicate numerical keys within the serialized properties of an object. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-8142.
CVE-2015-0228	5.0The lua_websocket_read function in lua_request.c in the mod_lua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service (child-process crash) by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade function.
CVE-2014-9912	7.5The get_icu_disp_value_src_php function in ext/intl/locale/locale_methods.c in PHP before 5.3.29, 5.4.x before 5.4.30, and 5.5.x before 5.5.14 does not properly restrict calls to the ICU uresbund.cpp component, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a locale_get_display_name call with a long first argument.
CVE-2014-9767	4.3Directory traversal vulnerability in the ZipArchive::extractTo function in ext/zip/php_zip.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 and ext/zip/ext_zip.cpp in HHVM before 3.12.1 allows remote attackers to create arbitrary empty directories via a crafted ZIP archive.
CVE-2014-9709	5.0The GetCode_ function in gd_gif_in.c in GD 2.1.1 and earlier, as used in PHP before 5.5.21 and 5.6.x before 5.6.5, allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted GIF image that is improperly handled by the gdImageCreateFromGif function.
CVE-2014-9705	7.5Heap-based buffer overflow in the enchant_broker_request_dict function in ext/enchant/enchant.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allows remote attackers to execute arbitrary code via vectors that trigger creation of multiple dictionaries.
CVE-2014-9653	7.5readelf.c in file before 5.22, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5, does not consider that pread calls sometimes read only a subset of the available data, which allows remote attackers to cause a denial of service (uninitialized memory access) or possibly have unspecified other impact via a crafted ELF file.
CVE-2014-9652	5.0The mconvert function in softmagic.c in file before 5.21, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5, does not properly handle a certain string-length field during a copy of a truncated version of a Pascal string, which might allow remote attackers to cause a denial of service (out-of-bounds memory access and application crash) via a crafted file.
CVE-2014-9427	7.5sapi/cgi/cgi_main.c in the CGI component in PHP through 5.4.36, 5.5.x through 5.5.20, and 5.6.x through 5.6.4, when mmap is used to read a .php file, does not properly consider the mapping's length during processing of an invalid file that begins with a # character and lacks a newline character, which causes an out-of-bounds read and might (1) allow remote attackers to obtain sensitive information from php-cgi process memory by leveraging the ability to upload a .php file or (2) trigger unexpected code execution if a valid PHP script is present in memory locations adjacent to the mapping.
CVE-2014-9426	7.5The apprentice_load function in libmagic/apprentice.c in the Fileinfo component in PHP through 5.6.4 attempts to perform a free operation on a stack-based character array, which allows remote attackers to cause a denial of service (memory corruption or application crash) or possibly have unspecified other impact via unknown vectors. NOTE: this is disputed by the vendor because the standard erealloc behavior makes the free operation unreachable
CVE-2014-9425	7.5Double free vulnerability in the zend_ts_hash_graceful_destroy function in zend_ts_hash.c in the Zend Engine in PHP through 5.5.20 and 5.6.x through 5.6.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
CVE-2014-8142	7.5Use-after-free vulnerability in the process_nested_data function in ext/standard/var_unserializer.re in PHP before 5.4.36, 5.5.x before 5.5.20, and 5.6.x before 5.6.4 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages improper handling of duplicate keys within the serialized properties of an object, a different vulnerability than CVE-2004-1019.
CVE-2014-8109	4.3mod_lua.c in the mod_lua module in the Apache HTTP Server 2.3.x and 2.4.x through 2.4.10 does not support an httpd configuration in which the same Lua authorization provider is used with different arguments within different contexts, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging multiple Require directives, as demonstrated by a configuration that specifies authorization for one group to access a certain directory, and authorization for a second group to access a second directory.
CVE-2014-5459	3.6The PEAR_REST class in REST.php in PEAR in PHP through 5.6.0 allows local users to write to arbitrary files via a symlink attack on a (1) rest.cachefile or (2) rest.cacheid file in /tmp/pear/cache/, related to the retrieveCacheFirst and useLocalCache functions.
CVE-2014-5120	6.4gd_ctx.c in the GD component in PHP 5.4.x before 5.4.32 and 5.5.x before 5.5.16 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to overwrite arbitrary files via crafted input to an application that calls the (1) imagegd, (2) imagegd2, (3) imagegif, (4) imagejpeg, (5) imagepng, (6) imagewbmp, or (7) imagewebp function.
CVE-2014-4721	2.6The phpinfo implementation in ext/standard/info.c in PHP before 5.4.30 and 5.5.x before 5.5.14 does not ensure use of the string data type for the PHP_AUTH_PW, PHP_AUTH_TYPE, PHP_AUTH_USER, and PHP_SELF variables, which might allow context-dependent attackers to obtain sensitive information from process memory by using the integer data type with crafted values, related to a "type confusion" vulnerability, as demonstrated by reading a private SSL key in an Apache HTTP Server web-hosting environment with mod_ssl and a PHP 5.3.x mod_php.
CVE-2014-4698	4.6Use-after-free vulnerability in ext/spl/spl_array.c in the SPL component in PHP through 5.5.14 allows context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted ArrayIterator usage within applications in certain web-hosting environments.
CVE-2014-4670	4.6Use-after-free vulnerability in ext/spl/spl_dllist.c in the SPL component in PHP through 5.5.14 allows context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted iterator usage within applications in certain web-hosting environments.
CVE-2014-4049	5.1Heap-based buffer overflow in the php_parserr function in ext/standard/dns.c in PHP 5.6.0beta4 and earlier allows remote servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DNS TXT record, related to the dns_get_record function.
CVE-2014-3981	3.3acinclude.m4, as used in the configure script in PHP 5.5.13 and earlier, allows local users to overwrite arbitrary files via a symlink attack on the /tmp/phpglibccheck file.
CVE-2014-3710	5.0The donote function in readelf.c in file through 5.20, as used in the Fileinfo component in PHP 5.4.34, does not ensure that sufficient note headers are present, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted ELF file.
CVE-2014-3670	6.8The exif_ifd_make_value function in exif.c in the EXIF extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 operates on floating-point arrays incorrectly, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a crafted JPEG image with TIFF thumbnail data that is improperly handled by the exif_thumbnail function.
CVE-2014-3669	7.5Integer overflow in the object_custom function in ext/standard/var_unserializer.c in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an argument to the unserialize function that triggers calculation of a large length value.
CVE-2014-3668	5.0Buffer overflow in the date_from_ISO8601 function in the mkgmtime implementation in libxmlrpc/xmlrpc.c in the XMLRPC extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of service (application crash) via (1) a crafted first argument to the xmlrpc_set_type function or (2) a crafted argument to the xmlrpc_decode function, related to an out-of-bounds read operation.
CVE-2014-3597	6.8Multiple buffer overflows in the php_parserr function in ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow remote DNS servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted DNS record, related to the dns_get_record function and the dn_expand function. NOTE: this issue exists because of an incomplete fix for CVE-2014-4049.
CVE-2014-3587	4.3Integer overflow in the cdf_read_property_info function in cdf.c in file through 5.19, as used in the Fileinfo component in PHP before 5.4.32 and 5.5.x before 5.5.16, allows remote attackers to cause a denial of service (application crash) via a crafted CDF file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-1571.
CVE-2014-3581	5.0The cache_merge_headers_out function in modules/cache/cache_util.c in the mod_cache module in the Apache HTTP Server before 2.4.11 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty HTTP Content-Type header.
CVE-2014-3538	5.0file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service (CPU consumption) via a crafted file that triggers backtracking during processing of an awk rule. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7345.
CVE-2014-3523	5.0Memory leak in the winnt_accept function in server/mpm/winnt/child.c in the WinNT MPM in the Apache HTTP Server 2.4.x before 2.4.10 on Windows, when the default AcceptFilter is enabled, allows remote attackers to cause a denial of service (memory consumption) via crafted requests.
CVE-2014-3515	7.5The SPL component in PHP before 5.4.30 and 5.5.x before 5.5.14 incorrectly anticipates that certain data structures will have the array data type after unserialization, which allows remote attackers to execute arbitrary code via a crafted string that triggers use of a Hashtable destructor, related to "type confusion" issues in (1) ArrayObject and (2) SPLObjectStorage.
CVE-2014-3487	4.3The cdf_read_property_info function in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, does not properly validate a stream offset, which allows remote attackers to cause a denial of service (application crash) via a crafted CDF file.
CVE-2014-3480	4.3The cdf_count_chain function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, does not properly validate sector-count data, which allows remote attackers to cause a denial of service (application crash) via a crafted CDF file.
CVE-2014-3479	4.3The cdf_check_stream_offset function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, relies on incorrect sector-size data, which allows remote attackers to cause a denial of service (application crash) via a crafted stream offset in a CDF file.
CVE-2014-3478	5.0Buffer overflow in the mconvert function in softmagic.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, allows remote attackers to cause a denial of service (application crash) via a crafted Pascal string in a FILE_PSTRING conversion.
CVE-2014-2497	4.3The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP 5.4.26 and earlier, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted color table in an XPM file.
CVE-2014-2324	5.0Multiple directory traversal vulnerabilities in (1) mod_evhost and (2) mod_simple_vhost in lighttpd before 1.4.35 allow remote attackers to read arbitrary files via a .. (dot dot) in the host name, related to request_check_hostname.
CVE-2014-2323	7.5SQL injection vulnerability in mod_mysql_vhost.c in lighttpd before 1.4.35 allows remote attackers to execute arbitrary SQL commands via the host name, related to request_check_hostname.
CVE-2014-2270	4.3softmagic.c in file before 5.17 and libmagic allows context-dependent attackers to cause a denial of service (out-of-bounds memory access and crash) via crafted offsets in the softmagic of a PE executable.
CVE-2014-2020	5.0ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check data types, which might allow remote attackers to obtain sensitive information by using a (1) string or (2) array data type in place of a numeric data type, as demonstrated by an imagecrop function call with a string for the x dimension value, a different vulnerability than CVE-2013-7226.
CVE-2014-1943	5.0Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted indirect offset value in the magic of a file.
CVE-2014-0238	5.0The cdf_read_property_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service (infinite loop or out-of-bounds memory access) via a vector that (1) has zero length or (2) is too long.
CVE-2014-0237	5.0The cdf_unpack_summary_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service (performance degradation) by triggering many file_printf calls.
CVE-2014-0236	5.0file before 5.18, as used in the Fileinfo component in PHP before 5.6.0, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a zero root_storage value in a CDF file, related to cdf.c and readcdf.c.
CVE-2014-0231	5.0The mod_cgid module in the Apache HTTP Server before 2.4.10 does not have a timeout mechanism, which allows remote attackers to cause a denial of service (process hang) via a request to a CGI script that does not read from its stdin file descriptor.
CVE-2014-0226	6.8Race condition in the mod_status module in the Apache HTTP Server before 2.4.10 allows remote attackers to cause a denial of service (heap-based buffer overflow), or possibly obtain sensitive credential information or execute arbitrary code, via a crafted request that triggers improper scoreboard handling within the status_handler function in modules/generators/mod_status.c and the lua_ap_scoreboard_worker function in modules/lua/lua_request.c.
CVE-2014-0207	4.3The cdf_read_short_sector function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted CDF file.
CVE-2014-0185	7.2sapi/fpm/fpm/fpm_unix.c in the FastCGI Process Manager (FPM) in PHP before 5.4.28 and 5.5.x before 5.5.12 uses 0666 permissions for the UNIX socket, which allows local users to gain privileges via a crafted FastCGI client.
CVE-2014-0118	4.3The deflate_in_filter function in mod_deflate.c in the mod_deflate module in the Apache HTTP Server before 2.4.10, when request body decompression is enabled, allows remote attackers to cause a denial of service (resource consumption) via crafted request data that decompresses to a much larger size.
CVE-2014-0117	4.3The mod_proxy module in the Apache HTTP Server 2.4.x before 2.4.10, when a reverse proxy is enabled, allows remote attackers to cause a denial of service (child-process crash) via a crafted HTTP Connection header.
CVE-2014-0098	5.0The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server before 2.4.8 allows remote attackers to cause a denial of service (segmentation fault and daemon crash) via a crafted cookie that is not properly handled during truncation.
CVE-2013-7456	6.8gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.1.1, as used in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7, allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted image that is mishandled by the imagescale function.
CVE-2013-7345	5.0The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters.
CVE-2013-7327	6.8The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check return values, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via invalid imagecrop arguments that lead to use of a NULL pointer as a return value, a different vulnerability than CVE-2013-7226.
CVE-2013-6712	5.0The scan function in ext/date/lib/parse_iso_intervals.c in PHP through 5.5.6 does not properly restrict creation of DateInterval objects, which might allow remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted interval specification.
CVE-2013-6501	4.6The default soap.wsdl_cache_dir setting in (1) php.ini-production and (2) php.ini-development in PHP through 5.6.7 specifies the /tmp directory, which makes it easier for local users to conduct WSDL injection attacks by creating a file under /tmp with a predictable filename that is used by the get_sdl function in ext/soap/php_sdl.c.
CVE-2013-6438	5.0The dav_xml_get_cdata function in main/util.c in the mod_dav module in the Apache HTTP Server before 2.4.8 does not properly remove whitespace characters from CDATA sections, which allows remote attackers to cause a denial of service (daemon crash) via a crafted DAV WRITE request.
CVE-2013-6420	7.5The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted certificate that is not properly handled by the openssl_x509_parse function.
CVE-2013-5704	5.0The mod_headers module in the Apache HTTP Server 2.2.22 allows remote attackers to bypass "RequestHeader unset" directives by placing a header in the trailer portion of data sent with chunked transfer coding. NOTE: the vendor states "this is not a security issue in httpd as such."
CVE-2013-4560	5.0Use-after-free vulnerability in lighttpd before 1.4.33 allows remote attackers to cause a denial of service (segmentation fault and crash) via unspecified vectors that trigger FAMMonitorDirectory failures.
CVE-2013-4559	7.6lighttpd before 1.4.33 does not check the return value of the (1) setuid, (2) setgid, or (3) setgroups functions, which might cause lighttpd to run as root if it is restarted and allows remote attackers to gain privileges, as demonstrated by multiple calls to the clone function that cause setuid to fail when the user process limit is reached.
CVE-2013-4508	4.3lighttpd before 1.4.34, when SNI is enabled, configures weak SSL ciphers, which makes it easier for remote attackers to hijack sessions by inserting packets into the client-server data stream or obtain sensitive information by sniffing the network.
CVE-2013-4365	7.5Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.9 for the Apache HTTP Server allows remote attackers to have an unspecified impact via unknown vectors.
CVE-2013-4352	4.3The cache_invalidate function in modules/cache/cache_storage.c in the mod_cache module in the Apache HTTP Server 2.4.6, when a caching forward proxy is enabled, allows remote HTTP servers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger a missing hostname value.
CVE-2013-4248	4.3The openssl_x509_parse function in openssl.c in the OpenSSL module in PHP before 5.4.18 and 5.5.x before 5.5.2 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
CVE-2013-4113	6.8ext/xml/xml.c in PHP before 5.3.27 does not properly consider parsing depth, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted document that is processed by the xml_parse_into_struct function.
CVE-2013-3735	5.0The Zend Engine in PHP before 5.4.16 RC1, and 5.5.0 before RC2, does not properly determine whether a parser error occurred, which allows context-dependent attackers to cause a denial of service (memory consumption and application crash) via a crafted function definition, as demonstrated by an attack within a shared web-hosting environment. NOTE: the vendor's http://php.net/security-note.php page says "for critical security situations you should be using OS-level security by running multiple web servers each as their own user id.
CVE-2013-2765	5.0The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a denial of service (NULL pointer dereference, process crash, and disk consumption) via a POST request with a large body and a crafted Content-Type header.
CVE-2013-2220	7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
CVE-2013-0942	4.3Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Agent 7.1 before 7.1.1 for Web for Internet Information Services, and 7.1 before 7.1.1 for Web for Apache, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2013-0941	2.1EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, RSA PAM Agent before 7.0, and RSA Agent before 6.1.4 for Microsoft Windows use an improper encryption algorithm and a weak key for maintaining the stored data of the node secret for the SecurID Authentication API, which allows local users to obtain sensitive information via cryptographic attacks on this data.
CVE-2012-6708	4.3jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.
CVE-2012-5533	5.0The http_request_split_value function in request.c in lighttpd before 1.4.32 allows remote attackers to cause a denial of service (infinite loop) via a request with a header containing an empty token, as demonstrated using the "Connection: TE,,Keep-Alive" header.
CVE-2012-4360	4.3Cross-site scripting (XSS) vulnerability in the mod_pagespeed module 0.10.19.1 through 0.10.22.4 for the Apache HTTP Server allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2012-4001	5.0The mod_pagespeed module before 0.10.22.6 for the Apache HTTP Server does not properly verify its host name, which allows remote attackers to trigger HTTP requests to arbitrary hosts via unspecified vectors, as demonstrated by requests to intranet servers.
CVE-2012-3526	5.0The reverse proxy add forward module (mod_rpaf) 0.5 and 0.6 for the Apache HTTP Server allows remote attackers to cause a denial of service (server or application crash) via multiple X-Forwarded-For headers in a request.
CVE-2012-1171	5.0The libxml RSHUTDOWN function in PHP 5.x allows remote attackers to bypass the open_basedir protection mechanism and read arbitrary files via vectors involving a stream_close method call during use of a custom stream wrapper.
CVE-2011-4969	4.3Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.
CVE-2011-4718	6.8Session fixation vulnerability in the Sessions subsystem in PHP before 5.5.2 allows remote attackers to hijack web sessions by specifying a session ID.
CVE-2011-2688	7.5SQL injection vulnerability in mysql/mysql-auth.pl in the mod_authnz_external module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field.
CVE-2011-1176	4.3The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, which might allow remote attackers to gain privileges by leveraging the root uid and root gid of an mpm-itk process.
CVE-2009-3767	4.3libraries/libldap/tls_o.c in OpenLDAP 2.2 and 2.4, and possibly other versions, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
CVE-2009-3766	6.8mutt_ssl.c in mutt 1.5.16 and other versions before 1.5.19, when OpenSSL is used, does not verify the domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
CVE-2009-3765	6.8mutt_ssl.c in mutt 1.5.19 and 1.5.20, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
CVE-2009-2299	5.0The Artofdefence Hyperguard Web Application Firewall (WAF) module before 2.5.5-11635, 3.0 before 3.0.3-11636, and 3.1 before 3.1.1-11637, a module for the Apache HTTP Server, allows remote attackers to cause a denial of service (memory consumption) via an HTTP request with a large Content-Length value but no POST data.
CVE-2009-1390	6.8Mutt 1.5.19, when linked against (1) OpenSSL (mutt_ssl.c) or (2) GnuTLS (mutt_ssl_gnutls.c), allows connections when only one TLS certificate in the chain is accepted instead of verifying the entire chain, which allows remote attackers to spoof trusted servers via a man-in-the-middle attack.
CVE-2009-0796	2.6Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apache2::Status in mod_perl1 and mod_perl2 for the Apache HTTP Server, when /perl-status is accessible, allows remote attackers to inject arbitrary web script or HTML via the URI.
CVE-2007-4723	7.5Directory traversal vulnerability in Ragnarok Online Control Panel 4.3.4a, when the Apache HTTP Server is used, allows remote attackers to bypass authentication via directory traversal sequences in a URI that ends with the name of a publicly available page, as demonstrated by a "/...../" sequence and an account_manage.php/login.php final component for reaching the protected account_manage.php page.
CVE-2007-3205	5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.
CVE-2006-20001	A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.

OpenPorts

11 13 15 17 19 20 21 22 23 25 26 37 43 49 53 70 79 80 81 82 83 84 88 96 99 102 104 110 111 113 119 143 161 175 179 195 199 221 264 311 389 427 443 444 449 450 465 502 503 515 548 554 587 631 636 666 771 789 873 888 902 992 993 995 1023 1024 1050 1063 1099 1153 1200 1234 1311 1337 1400 1433 1471 1521 1599 1604 1723 1741 1883 1911 1925 1926 1935 1962 2000 2001 2002 2008 2012 2022 2030 2049 2056 2062 2064 2067 2081 2082 2083 2086 2087 2096 2121 2154 2181 2211 2221 2222 2290 2323 2332 2345 2375 2376 2379 2404 2443 2455 2550 2553 2560 2566 2568 2626 2628 2761 2762 3000 3001 3050 3054 3057 3061 3066 3067 3068 3081 3097 3105 3113 3115 3211 3260 3268 3269 3299 3301 3306 3310 3352 3388 3389 3401 3403 3523 3541 3542 3551 3556 3560 3561 3689 3749 3780 3790 4000 4022 4040 4063 4064 4100 4190 4242 4282 4321 4369 4433 4443 4450 4451 4500 4506 4567 4643 4664 4700 4782 4786 4840 4848 4899 4911 4949 5000 5001 5005 5006 5007 5009 5010 5025 5070 5172 5201 5222 5269 5357 5432 5435 5443 5542 5560 5567 5601 5605 5673 5801 5858 5900 5901 5938 5984 5985 5986 6000 6001 6002 6008 6036 6080 6379 6443 6633 6653 6664 6666 6667 6668 6697 7001 7071 7171 7218 7401 7434 7443 7474 7547 7548 7634 7654 7657 7777 7779 7989 8000 8001 8003 8006 8008 8009 8010 8017 8021 8035 8039 8054 8057 8060 8069 8071 8080 8081 8082 8085 8086 8087 8088 8089 8090 8098 8099 8100 8108 8112 8123 8126 8139 8140 8181 8184 8190 8200 8241 8291 8333 8334 8402 8403 8404 8405 8415 8420 8443 8447 8500 8545 8554 8575 8649 8700 8728 8800 8806 8814 8824 8832 8834 8840 8855 8866 8868 8874 8877 8878 8880 8888 8889 8969 8990 9000 9001 9002 9009 9013 9014 9022 9023 9032 9041 9042 9043 9044 9045 9051 9080 9082 9090 9091 9092 9093 9095 9100 9103 9109 9110 9151 9160 9191 9200 9202 9206 9209 9213 9215 9295 9306 9389 9418 9443 9530 9595 9600 9761 9800 9869 9876 9943 9944 9981 9998 9999 10000 10001 10243 10250 10443 10554 10909 10911 11000 11112 11210 11211 11300 11371 11434 12000 12345 13579 14147 14265 16010 16030 16992 17000 18081 18245 18553 19000 19071 20000 20256 20547 21025 21379 23023 23424 25001 25105 25565 27015 27017 28015 28017 28080 30002 30003 31337 32400 32764 33060 35000 37215 37777 41800 44158 44818 47990 49152 49153 50000 50050 50070 50100 51106 51235 52869 53413 54138 55000 55442 55443 55553 55554 60001 60010 60030 61613 61616 62078

-2031469209 | 2024-05-28T21:16:39.191956

11 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T01:28:00.292667

13 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T02:22:37.535710

15 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:37:28.132403

17 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T14:14:24.245809

19 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-02T09:43:34.832226

20 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

753355859 | 2024-05-29T05:19:33.912636

21 / tcp

220 Network-Camera FTP server (Version 6.4/OpenBSD/Linux-ftpd-0.17) ready.
230 Login successful.
250 command successful.
211-Extensions supported
 AUTH TLS
 PBSZ
 PROT
211 END

1491004816 | 2024-05-28T20:48:36.499782

22 / tcp

SSH-2.0-OpenSSH_9.1p1 Ubuntu-2ubuntu2.8-f148d967
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQCtPi2LxGUGgl2YKEZnwKlRIpNlBJsRbQUggTMMXUZ+fcnc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Fingerprint: d3:17:92:07:8b:f9:89:bc:89:51:9e:f5:42:bd:1c:a3

Kex Algorithms:
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group16-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1
	diffie-hellman-group1-sha1

Server Host Key Algorithms:
	ssh-rsa

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-cbc
	aes192-cbc
	aes256-cbc
	blowfish-cbc
	3des-cbc

MAC Algorithms:
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1
	hmac-md5
	hmac-sha1-96
	hmac-md5-96

Compression Algorithms:
	none

-288277274 | 2024-05-29T04:56:32.336907

23 / tcp

6718-W1 xDSL Router

786525225 | 2024-05-28T20:21:15.608709

25 / tcp

220 mail.freemail.org ESMTP Service ready
250-mail.freemail.org
250-PIPELINING
250-SIZE 10240000
250-8BITMIME
250-AUTH=LOGIN
250-AUTH LOGIN CRAM-MD5 DIGEST-MD5 PLAIN
250 STARTTLS

1155039737 | 2024-05-28T20:24:00.207171

26 / tcp

Router CLI
User Access Verification
Login:

-98713449 | 2024-05-29T05:09:22.209848

37 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T19:17:05.911715

43 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-28T23:03:36.926547

49 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T05:28:38.610705

53 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-28T22:26:32.675009

70 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T03:12:29.330399

79 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1699731995 | 2024-05-28T20:11:21.066013

80 / tcp

HTTP/1.0 401 Unauthorized
Date: Sat, 03 Jan 1970 23:19:35 GMT
Server: Boa/0.94.13
Connection: close
Content-Type: text/html; charset=gb2312
Set-Cookie: BOASESSIONID=boasid372f0a7e;path=/;

777756849 | 2024-05-29T05:01:52.978334

81 / tcp

HTTP/1.1 200 OK
Date: Wed, 29 May 2024 05:01:51 GMT
Server: Servlet 2.5; JBoss-5.0/JBossWeb-2.1
Content-Type: text/html; charset=UTF-8
Content-Length: 18847

1954120640 | 2024-05-29T05:57:33.003454

82 / tcp

HTTP/1.1 200 OK
server: Apache
content-type: text/html
Content-Encoding: 
date: Wed, 29 May 2024 05:57:32 GMT
content-length: 10670

777756849 | 2024-05-29T04:48:56.041963

83 / tcp

HTTP/1.1 200 OK
Date: Wed, 29 May 2024 04:48:55 GMT
Server: Servlet 2.5; JBoss-5.0/JBossWeb-2.1
Content-Type: text/html; charset=UTF-8
Content-Length: 18847

633775022 | 2024-05-28T21:08:17.263866

84 / tcp

HTTP/1.1 200 OK
Server: 
Content-Type: text/html
Content-Encoding: 
Accept-Ranges: bytes
Connection: close
Content-Length: 9575

1798240661 | 2024-05-28T23:59:36.716820

88 / tcp

HTTP/1.1 200 OK
Date: Tue, 28 May 2024 23:59:36 GMT
Server: Servlet 2.5; JBoss-5.0/JBossWeb-2.1
Content-Type: text/html; charset=UTF-8
Content-Length: 28793

-98713449 | 2024-05-23T14:29:08.782534

96 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-22T14:43:43.421609

99 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-623041173 | 2024-05-29T00:31:16.421086

102 / tcp

socket closed

-2031469209 | 2024-05-29T03:01:07.327581

104 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-776469200 | 2024-05-29T05:27:08.323907

110 / tcp

+OK Welcome to MailEnable POP3 Server
+OK

-2031469209 | 2024-05-28T14:38:55.747734

111 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:54:30.460879

113 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T02:28:28.815452

119 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1687578356 | 2024-05-28T14:54:50.903715

143 / tcp

* OK IMAP4rev1 server ready\r\n

-289893565 | 2024-05-29T00:18:19.887707

161 / udp

0l\x02\x01\x00\x04\x06public\xa2_\x02\x04(\x00\xb3\x9b\x02\x01\x00\x02\x01\x000Q0=\x06\x08+\x06\x01\x02\x01\x01\x01\x00\x041SonicWALL NSa 3650 (SonicOS Enhanced 6.5.4.4-44n)0\x10\x06\x08

-98713449 | 2024-05-28T22:58:37.082456

175 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T20:36:36.338957

179 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-27T20:25:55.378342

195 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-09T02:07:14.584744

199 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-29T04:52:43.017789

221 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T23:07:31.182657

264 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-29T00:29:21.621994

311 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-29T01:34:24.692913

389 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1453395553 | 2024-05-28T17:28:11.078528

427 / tcp

\xef:\xd9/

-488469797 | 2024-05-16T08:40:03.956515

443 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
ETag: "1880585746"
Last-Modified: Sat, 07 Feb 2015 07:04:07 GMT
Content-Encoding: 
Content-Length: 17625
Connection: close
Date: Thu, 16 May 2024 08:40:03 GMT
Server: lighttpd/1.4.31

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 41391 (0xa1af)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=PortSwigger., CN=*.myfoscam.org, ST=Califomia, L=Sunnyvale, OU=PortSwigger CA
        Validity
            Not Before: Sep 19 14:00:00 2015 GMT
            Not After : Sep 19 14:00:00 2025 GMT
        Subject: C=US, O=PortSwigger., CN=*.myfoscam.org, ST=Califomia, L=Sunnyvale, OU=PortSwigger CA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:c3:fe:ff:e3:6a:84:4f:f8:72:c5:02:20:93:55:
                    16:ce:c0:e5:d7:66:1e:38:ef:32:70:83:d4:4d:3b:
                    23:af:9b:24:02:da:cd:83:58:33:aa:2d:fa:d7:8d:
                    99:6e:6e:3e:36:2d:9e:4d:8e:fc:08:47:ab:eb:39:
                    f9:f4:c1:f5:07:c7:35:be:2a:55:ce:27:e4:1e:41:
                    7a:fe:cf:ce:28:b5:12:fe:4e:ea:5d:e8:c5:65:37:
                    4f:ca:50:67:a6:02:12:51:84:c1:e4:be:de:40:de:
                    da:19:0a:d7:88:70:d2:54:af:0d:6d:8a:75:3b:d1:
                    7c:8c:46:03:62:1b:51:4b:30:2c:0e:91:7e:f8:a8:
                    44:6d:17:28:10:0d:ae:48:e1:c1:44:80:53:8c:9f:
                    2d:e6:ac:d9:05:fb:5d:84:55:d3:50:ca:35:a3:77:
                    35:5c:0d:35:8c:1a:93:4b:e0:21:b3:69:2d:f0:25:
                    92:92:ef:df:48:95:ea:0e:9c:a2:cc:8d:14:40:be:
                    6c:e7:22:0c:39:e1:7e:63:89:b5:6a:0c:73:6a:bf:
                    b8:d8:b5:32:c3:14:31:29:a6:2b:93:d0:05:7c:3c:
                    4e:98:36:07:b9:1f:50:60:70:aa:bf:44:08:e0:21:
                    99:b4:f7:6e:f4:1b:52:cb:e5:09:a1:bb:33:1d:73:
                    fc:77:33:e5:90:0f:d1:62:6a:b2:fa:9c:cb:87:de:
                    81:dc:83:36:61:1e:43:39:f9:31:cb:e2:d0:82:e4:
                    1d:e0:08:d0:02:19:42:f5:a7:ef:59:a9:a1:e0:ea:
                    a2:06:86:d4:af:84:9e:5f:97:28:8e:0f:94:01:89:
                    29:48:51:af:f2:86:be:61:54:1e:e4:78:4b:6e:eb:
                    d0:b5:a8:a5:cd:51:45:c8:30:f3:d6:7b:3c:0d:5b:
                    e3:df:e9:46:5e:1b:18:aa:57:3f:f9:c0:7f:c6:5d:
                    42:82:ff:08:02:f7:56:4f:97:70:42:c8:e8:9d:5b:
                    50:dc:11:f6:65:cf:62:3d:d9:af:8c:3c:60:e1:fa:
                    d7:2c:ef:34:cb:77:e8:63:e9:51:c4:8d:06:42:b3:
                    47:e6:18:f2:5f:8d:0e:08:17:4a:80:a2:8b:78:30:
                    2c:11:60:ad:58:7e:a3:92:42:73:0c:8b:54:5c:5d:
                    c3:6f:ad:5a:7e:1a:7b:47:b9:2e:97:90:e4:b3:bb:
                    ba:df:c7:5a:67:94:1d:25:53:e9:d0:da:17:14:25:
                    bb:d2:d4:e4:dd:20:fc:f0:d7:2e:6b:7b:49:cd:be:
                    5e:76:06:01:73:c7:41:04:43:2c:53:e4:37:09:2f:
                    f7:37:c5:49:14:2f:8c:29:20:7b:85:c7:3e:7b:a3:
                    cd:b8:df
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        66:95:53:d1:e2:34:d5:6e:79:18:d0:de:20:18:29:0b:aa:a8:
        b6:3c:fa:ec:ad:48:37:90:15:f4:af:82:20:55:db:9f:f4:76:
        b0:9f:32:30:7c:99:a5:96:d7:40:17:4a:86:8e:89:3c:33:6e:
        29:4a:57:cf:ec:fd:8b:92:29:51:24:f5:4f:e3:d7:f0:fe:0a:
        7a:27:53:c4:00:15:23:9e:75:36:0b:70:0c:0f:ae:c1:6a:29:
        d2:63:1a:19:21:f5:09:31:fb:3a:f2:a9:ba:64:f6:4b:1b:e7:
        6a:06:e0:b1:32:a6:51:53:fd:b1:c4:09:e7:cc:7d:29:ed:bf:
        07:50:52:2b:fe:fc:b2:bb:80:bd:31:c5:cf:63:8a:0a:d2:9d:
        51:e4:0e:04:8a:cd:a3:c9:e2:70:b9:50:4a:73:ee:2a:b8:8d:
        21:5d:e3:38:86:8f:13:2a:29:9a:7d:95:c9:89:22:04:07:ec:
        ed:d7:e4:a3:b3:ab:46:17:23:9a:77:fa:19:aa:5e:59:3d:e4:
        39:75:c2:49:81:3e:26:b6:5f:d3:c2:53:af:0e:40:4f:e2:d6:
        f4:89:0b:e8:e9:df:1f:ab:53:4e:03:05:c8:1e:d3:de:c3:c4:
        31:80:5d:97:ff:36:3e:ec:54:70:75:09:b0:26:6e:df:b7:b1:
        f6:c6:c4:c1:23:b6:13:e2:5b:50:31:64:07:97:5c:4c:bf:17:
        d7:f0:4c:59:4c:9f:77:58:25:7a:af:0c:05:78:bb:ba:b1:22:
        f2:8e:7b:8f:56:56:07:be:a6:a7:04:c3:ca:c8:59:2f:3c:1f:
        2b:d4:e1:a5:67:86:de:37:73:81:e4:2b:7e:b0:a6:e8:64:87:
        b0:06:d4:c1:d6:5f:6d:fc:fc:04:b4:d8:82:a8:92:ed:31:ca:
        2f:56:bf:3b:34:ee:60:f5:b8:5b:17:91:52:40:17:7a:d2:e3:
        14:67:c3:bf:32:fc:b0:b2:a1:d2:86:3d:5f:82:f2:6d:f9:93:
        72:6e:72:7e:bc:7e:97:94:61:eb:64:a5:d9:20:3c:ef:34:1a:
        e5:c1:08:af:3e:83:81:89:fd:c3:d7:75:40:3b:dd:95:9c:91:
        5d:22:9d:0f:df:d0:f7:df:7d:2b:a2:ea:7e:e9:02:52:b6:7e:
        d1:f1:9a:ab:44:af:b5:31:14:76:e5:d3:6b:da:9c:81:31:30:
        c3:73:e1:59:03:eb:8b:1e:07:4e:17:dc:58:21:32:e6:38:87:
        95:21:0b:e2:ae:f3:b3:43:19:d5:a8:54:92:52:2d:c4:75:5e:
        f2:c1:70:e9:cd:a6:a4:9a:31:d9:5c:90:db:a5:dd:ad:d2:9f:
        64:50:3b:23:9e:64:b1:df

-1454941180 | 2024-05-29T00:38:14.995665

444 / tcp

HTTP/1.1 200 Ok
Date: Wed, 29 May 2024 00:38:14 GMT
Server: xxxxxxxx-xxxxx
Connection: close
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Length: 131

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 41391 (0xa1af)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Fortinet Systems, Inc., CN=localhost.localdomain, ST=Califomia, L=Seattle, OU=MyOrg
        Validity
            Not Before: Sep 19 14:00:00 2015 GMT
            Not After : Sep 19 14:00:00 2025 GMT
        Subject: C=US, O=Fortinet Systems, Inc., CN=localhost.localdomain, ST=Califomia, L=Seattle, OU=MyOrg
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:c4:b2:e2:6f:de:a1:5a:27:e8:22:1b:4c:60:f8:
                    ee:c5:c0:6e:25:f5:a8:f2:7a:05:80:df:e5:21:8a:
                    c3:01:75:60:36:1a:11:82:c9:92:3a:39:f8:22:8a:
                    b9:3a:7b:80:6f:bd:6e:03:ff:ce:1a:77:51:b2:ae:
                    6f:d6:77:66:2b:6d:c3:57:62:2a:9e:1d:c9:3f:4c:
                    f6:0c:26:ca:88:a2:b9:3e:2f:09:44:c8:1b:6c:f3:
                    08:13:b4:ec:95:1e:72:92:fd:5f:dc:6f:4d:2d:fb:
                    f8:0d:2a:ce:5e:60:a7:fd:88:40:be:ff:eb:23:9e:
                    92:67:5b:50:98:2b:0d:b6:37:f4:4d:89:c0:bc:00:
                    98:8e:78:b3:bf:f2:6c:0e:a5:97:e2:b9:51:c6:8b:
                    af:25:d9:e6:9c:aa:c3:1d:d3:6b:1d:af:b0:b4:34:
                    b0:28:16:9b:f7:da:8e:e0:2a:fd:6b:f5:b4:18:99:
                    8b:15:31:27:2f:6a:4e:19:8e:da:7f:fe:65:b3:e3:
                    d4:e6:eb:c1:b6:48:a9:2e:c2:5b:c9:91:57:4a:89:
                    bd:d5:55:de:69:39:d8:fc:d7:37:65:e4:e6:46:52:
                    23:1d:77:90:e2:39:a6:14:cf:26:af:4f:c4:68:ad:
                    73:47:e1:82:d7:3b:96:a3:4f:91:a2:92:31:1c:d5:
                    d8:07:9a:0d:ea:1b:de:01:e8:bd:2e:d2:9f:09:63:
                    08:19:fa:61:b9:4e:a1:2e:7d:95:bf:c2:9c:e5:be:
                    f3:54:ae:ee:38:93:d6:ed:85:0d:71:6d:bf:c4:70:
                    2d:18:7e:10:55:52:09:8c:83:4f:f7:92:a1:3f:22:
                    27:20:e1:03:c4:65:76:46:81:8c:93:65:01:ab:08:
                    0e:8e:d8:34:7b:2e:6c:f5:e8:b4:36:22:ec:5f:c3:
                    d0:d8:0c:3c:04:5d:98:34:5c:fc:81:73:ac:57:6b:
                    42:f6:0d:3b:47:db:b1:c0:eb:3b:81:0b:33:7a:ae:
                    0c:a6:ad:7b:52:3f:bb:e8:7a:93:cd:86:b0:31:2b:
                    c9:2c:37:f6:c5:7d:18:77:0d:a1:66:fb:d0:92:49:
                    57:eb:f4:52:d9:bb:8f:c4:74:2e:12:9b:66:75:f5:
                    6f:c9:3c:64:84:31:76:c8:3e:e6:31:33:5e:51:89:
                    ca:cf:3b:ab:45:1f:d1:cb:72:87:31:d9:33:68:59:
                    02:f2:dc:ee:04:bf:9e:6e:2c:61:26:e7:e0:9d:76:
                    58:57:d6:7f:a8:12:5a:17:a3:d5:21:79:91:f1:d5:
                    56:59:2f:e7:2d:fc:01:56:6f:19:ea:0b:48:db:88:
                    21:16:56:05:d3:06:97:6d:60:9a:c2:e3:3b:e4:48:
                    f4:3c:81
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        8b:bc:3e:99:79:87:f7:4c:9f:ef:c9:6b:31:6c:ef:d2:08:34:
        a3:33:11:2b:c4:0b:28:16:49:2f:4a:24:d7:86:93:e3:ff:d5:
        f4:d8:8d:4a:3a:55:28:cf:5e:b0:66:56:dd:a4:35:40:4a:b7:
        2c:26:08:2e:56:1a:c8:3e:f2:e5:ef:a6:83:1e:e8:1a:88:e9:
        a7:85:41:70:de:cb:50:a2:64:63:ef:a0:e9:16:c5:5d:ce:dd:
        2d:a9:7b:d2:a8:0e:9f:11:12:82:db:f5:e2:a3:9f:e2:59:88:
        24:2b:d0:45:f6:f8:6f:1c:59:2c:d4:8b:b1:21:28:5f:17:33:
        48:e6:37:c5:07:93:75:ba:aa:80:42:71:32:41:60:b0:68:03:
        4e:e2:e8:50:0b:7e:48:cb:3c:cb:6a:f6:88:1f:b5:67:d8:79:
        1c:40:8e:20:f5:37:d9:21:98:b1:83:bd:34:b6:6c:1f:fe:51:
        53:1f:65:9f:5f:2c:3a:12:9e:a6:1f:b7:92:a3:d3:46:ac:c5:
        47:d8:1c:bf:1f:09:5a:85:89:90:71:bf:e5:86:1f:a4:e0:f5:
        33:29:6c:e8:c6:64:d3:3e:ba:1d:6d:7b:c1:5d:82:94:4b:2f:
        3b:6b:88:ad:20:df:63:da:ec:80:4f:b1:2f:94:31:ab:82:67:
        c5:c2:c2:12:fe:bf:0e:93:61:fc:58:19:03:9c:f8:91:e9:df:
        ab:14:01:b6:c4:98:fc:c1:1f:11:f8:26:ac:b7:21:3d:e8:80:
        7b:e9:4e:44:73:74:be:3b:7d:ea:fa:ad:8b:f6:04:f4:f0:a2:
        77:1d:ae:77:6d:36:0f:ea:bf:bf:ee:d9:23:8c:51:0c:a3:78:
        f9:fd:f3:e1:e0:72:6b:02:0c:2e:7a:4a:28:1c:ca:fc:fc:24:
        ca:26:9e:e7:84:73:65:b2:93:eb:65:01:77:8c:1b:8b:ab:1e:
        bf:ab:bf:b7:d6:59:79:23:cc:bc:ec:05:d1:c7:f5:75:59:1c:
        e9:e1:23:01:92:bc:bb:31:83:86:6d:cd:94:69:70:fe:83:00:
        6a:e9:7d:4a:d8:bc:5d:c7:34:67:ba:dd:7a:2f:e7:ae:69:5a:
        54:4a:c1:84:a5:cc:5e:5d:70:e7:3f:5d:b8:d9:b6:3c:80:b5:
        59:53:00:44:92:55:b4:44:34:79:7d:20:e0:4d:f4:df:bf:9e:
        1a:e3:bf:eb:35:2a:87:c3:cf:58:95:a6:b2:5f:20:0e:52:29:
        54:5e:f4:cc:50:8a:31:5b:0d:a0:e2:7b:19:02:2d:a5:85:a9:
        54:49:db:d3:48:18:a3:2b:d3:3e:57:1e:0f:e2:62:82:d6:98:
        94:9b:c9:3d:15:f9:56:91

-2031469209 | 2024-05-07T10:21:49.842927

449 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T00:31:18.389418

450 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T05:33:24.195199

465 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-236382233 | 2024-05-29T04:59:25.341519

502 / tcp

Unit ID: 0
-- Slave ID Data: Slave Device Failure (Error)
-- Device Identification: Slave Device Failure (Error)

Unit ID: 1
-- Slave ID Data: Slave Device Failure (Error)
-- Device Identification: Slave Device Failure (Error)

Unit ID: 255
-- Slave ID Data: Slave Device Failure (Error)
-- Device Identification: Slave Device Failure (Error)

-2031469209 | 2024-05-29T04:32:15.123311

503 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T19:02:03.572890

515 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T18:06:36.984771

548 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T00:08:12.821169

554 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T06:40:04.300479

587 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

998037014 | 2024-05-29T01:45:42.642880

631 / tcp

HTTP/1.1 200 OK
Date: Wed, 29 May 2024 01:45:42 GMT
Server: Intel(R) Active Management Technology 9.0.2
Content-Type: text/html; charset=UTF-8
Content-Length: 706

998037014 | 2024-05-29T00:38:17.135757

636 / tcp

HTTP/1.1 200 OK
Date: Wed, 29 May 2024 00:38:17 GMT
Server: Intel(R) Active Management Technology 9.0.2
Content-Type: text/html; charset=UTF-8
Content-Length: 706

-2031469209 | 2024-05-29T05:57:57.977800

666 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T20:39:02.189466

771 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T00:05:05.770809

789 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T02:13:52.171032

873 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-02T00:07:13.536821

888 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T03:57:53.974316

902 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:20:28.868506

992 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T05:42:13.630048

993 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T21:13:34.098960

995 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

149317826 | 2024-05-28T23:43:22.363655

1023 / tcp

BCM96328 xDSL Router
Login:

-2031469209 | 2024-05-28T22:37:01.997835

1024 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-03T16:21:19.679449

1050 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-23T21:08:44.670682

1063 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

294536952 | 2024-05-28T20:00:39.466048

1099 / tcp

Java RMI
N\x00\x0e224.216.123.114\x00\x00\xe8T

-98713449 | 2024-05-28T23:06:46.541570

1153 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T22:26:00.862940

1200 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1198227559 | 2024-05-28T13:52:00.080842

1234 / tcp

HTTP/1.0 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T19:31:16.206923

1311 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1279472786 | 2024-05-28T13:19:49.514189

1337 / tcp

HTTP/1.1 200 OK
Date: Tue, 28 May 2024 13:19:49 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Type: text/html
Content-Encoding: 
Content-Length: 3279

<!DOCTYPE html>
<html lang="en">
  <head>
    <meta charset="UTF-8" />
    <title>Neo4j Browser</title>
    <style>
      * {
        padding: 0;
        margin: 0;
      }
      html,
      body {
        width: 100%;
        height: 100%;
      }
    </style>
    <link
      rel="apple-touch-icon"
      sizes="57x57"
      href="assets/images/device-icons/apple-touch-icon-57x57.png"
    />
    <link
      rel="apple-touch-icon"
      sizes="60x60"
      href="assets/images/device-icons/apple-touch-icon-60x60.png"
    />
    <link
      rel="apple-touch-icon"
      sizes="72x72"
      href="assets/images/device-icons/apple-touch-icon-72x72.png"
    />
    <link
      rel="apple-touch-icon"
      sizes="76x76"
      href="assets/images/device-icons/apple-touch-icon-76x76.png"
    />
    <link
      rel="apple-touch-icon"
      sizes="114x114"
      href="assets/images/device-icons/apple-touch-icon-114x114.png"
    />
    <link
      rel="apple-touch-icon"
      sizes="120x120"
      href="assets/images/device-icons/apple-touch-icon-120x120.png"
    />
    <link
      rel="apple-touch-icon"
      sizes="144x144"
      href="assets/images/device-icons/apple-touch-icon-144x144.png"
    />
    <link
      rel="apple-touch-icon"
      sizes="152x152"
      href="assets/images/device-icons/apple-touch-icon-152x152.png"
    />
    <link
      rel="apple-touch-icon"
      sizes="180x180"
      href="assets/images/device-icons/apple-touch-icon-180x180.png"
    />
    <link
      rel="icon"
      type="image/png"
      href="assets/images/device-icons/favicon-32x32.png"
      sizes="32x32"
    />
    <link
      rel="icon"
      type="image/png"
      href="assets/images/device-icons/android-chrome-192x192.png"
      sizes="192x192"
    />
    <link
      rel="icon"
      type="image/png"
      href="assets/images/device-icons/favicon-96x96.png"
      sizes="96x96"
    />
    <link
      rel="icon"
      type="image/png"
      href="assets/images/device-icons/favicon-16x16.png"
      sizes="16x16"
    />
    <link rel="manifest" href="assets/images/device-icons/manifest.json" />
    <link rel="shortcut icon" href="assets/images/device-icons/favicon.ico" />
    <noscript>
      <style>
        .noscript-error {
          margin: 0;
          padding: 0;
          background-color: #d2d5da;
          text-align: center;
          height: 100vh;
        }

        .noscript-message {
          margin: 300px auto;
          border: 1px solid #e6e9ee;
          padding: 30px;
          display: inline-block;
          background-color: white;
        }
      </style>
      <div class="noscript-error">
        <div class="noscript-message">
          Neo4j Browser <strong>requires</strong> JavaScript to work properly.
          Please enable it and reload.
        </div>
      </div>
    </noscript>
  </head>

  <body>
    <div id="mount"></div>
  <script type="text/javascript" src="neo4j-driver.chunkhash.bundle.js"></script><script type="text/javascript" src="ui.chunkhash.bundle.js"></script><script type="text/javascript" src="cypher-codemirror.chunkhash.bundle.js"></script><script type="text/javascript" src="worker.chunkhash.bundle.js"></script><script type="text/javascript" src="app-93643064413366ec583f.js"></script></body>
</html>

-2031469209 | 2024-05-28T08:53:07.954577

1400 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1339473574 | 2024-05-28T23:56:30.379411

1433 / tcp

\x04\x01\x00%\x00\x00\x01\x00\x00\x00\x15\x00\x06\x01\x00\x1b\x00\x01\x02\x00\x1c\x00\x01\x03\x00\x1d\x00\x00\xff\x0c\x00\x07\xd0\x00\x00\x00\x00

-2031469209 | 2024-05-29T03:04:03.213789

1471 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T03:47:51.551121

1521 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T03:55:08.621958

1599 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-28T22:49:11.197215

1604 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T19:31:02.226958

1723 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:07:25.903389

1741 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T04:52:47.773403

1883 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T01:21:01.710901

1911 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T21:15:41.805050

1925 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-28T14:56:19.545713

1926 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-28T21:40:03.047102

1935 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T03:29:37.794172

1962 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:16:55.418088

2000 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-10T18:43:25.685023

2001 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T23:41:13.346457

2002 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-05T12:52:32.320141

2008 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-07T01:21:22.978937

2012 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-511626740 | 2024-05-17T20:47:52.117106

2022 / tcp

SSH-2.0-OpenSSH_9.1p1 Ubuntu-2ubuntu2.8-c3fd9f14
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQDj2B+q7KFC0UKrPaFqEbJqgHNDyBnMuMaYvuqbSMISXYxy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Fingerprint: 12:9c:1e:43:0c:1e:73:ed:b8:29:5e:2c:10:0d:5a:2a

Kex Algorithms:
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group16-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1
	diffie-hellman-group1-sha1

Server Host Key Algorithms:
	ssh-rsa

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-cbc
	aes192-cbc
	aes256-cbc
	blowfish-cbc
	3des-cbc

MAC Algorithms:
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1
	hmac-md5
	hmac-sha1-96
	hmac-md5-96

Compression Algorithms:
	none

-98713449 | 2024-05-06T15:17:07.668410

2030 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

1500500966 | 2024-05-07T08:48:15.458221

2049 / tcp

HTTP/1.1 200 OK
Server: OrientDB Server v.2.2.22 (build fb2b7d321ea8a5a5b18a82237049804aace9e3de)
Date: Tue, 07 May 2024 08:48:15 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 2812
Cache-Control: must-revalidate

-98713449 | 2024-05-07T19:34:10.658041

2056 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-25T19:51:55.167313

2062 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-03T02:02:56.518488

2064 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T23:17:17.201719

2067 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T23:18:12.127421

2081 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T14:24:46.748625

2082 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-28T23:17:47.404968

2083 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-1475755397 | 2024-05-28T20:28:48.466034

2086 / tcp

HTTP/1.1 401 Access Denied
Connection: close
Content-Type: text/html; charset=UTF-8
Date: Tue, 28 May 2024 20:28:47 GMT
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache
Set-Cookie: whostmgrrelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086
Set-Cookie: whostmgrsession=R2emhH6zS1CEdlLQ66d23c090df3dff5db6c455674bdfe20; HttpOnly; path=/; port=2086
Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086
Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=47.108.60.108; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086
Set-Cookie: Horde=expired; HttpOnly; domain=.47.108.60.108; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086
Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.47.108.60.108; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086
Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086
Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/horde; port=2086
Set-Cookie: PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086
Set-Cookie: imp_key=expired; HttpOnly; domain=47.108.60.108; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086
Content-Encoding: 
Content-Length: 35275

-1475755397 | 2024-05-29T03:04:00.330030

2087 / tcp

HTTP/1.1 401 Access Denied
Connection: close
Content-Type: text/html; charset=UTF-8
Date: Wed, 29 May 2024 03:03:59 GMT
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache
Set-Cookie: whostmgrrelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087
Set-Cookie: whostmgrsession=R2emhH6zS1CEdlLQ66d23c090df3dff5db6c455674bdfe20; HttpOnly; path=/; port=2087
Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087
Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=47.108.60.108; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087
Set-Cookie: Horde=expired; HttpOnly; domain=.47.108.60.108; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087
Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.47.108.60.108; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087
Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087
Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/horde; port=2087
Set-Cookie: PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087
Set-Cookie: imp_key=expired; HttpOnly; domain=47.108.60.108; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087
Content-Encoding: 
Content-Length: 35275

-98713449 | 2024-05-07T01:10:54.884868

2096 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T18:57:37.018468

2121 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T21:39:30.259837

2154 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T03:45:38.549747

2181 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-04-30T13:01:17.848855

2211 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-01T08:55:49.609234

2221 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1059638217 | 2024-05-29T05:05:24.935355

2222 / tcp

SSH-2.0-OpenSSH_9.1p1 Ubuntu-2ubuntu2.8-e9c59264
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQCtPi2LxGUGgl2YKEZnwKlRIpNlBJsRbQUggTMMXUZ+fcnc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Fingerprint: d3:17:92:07:8b:f9:89:bc:89:51:9e:f5:42:bd:1c:a3

Kex Algorithms:
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group16-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1
	diffie-hellman-group1-sha1

Server Host Key Algorithms:
	ssh-rsa

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-cbc
	aes192-cbc
	aes256-cbc
	blowfish-cbc
	3des-cbc

MAC Algorithms:
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1
	hmac-md5
	hmac-sha1-96
	hmac-md5-96

Compression Algorithms:
	none

-98713449 | 2024-05-16T12:17:49.867669

2290 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

1106264932 | 2024-05-28T21:51:35.117097

2323 / tcp

User Access Verification
Login:

-2031469209 | 2024-05-28T21:43:48.091889

2332 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-29T04:22:37.205085

2345 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T02:51:27.585667

2375 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-29T00:09:05.079858

2376 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-29T04:18:54.455457

2379 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1863726365 | 2024-05-29T05:30:17.304679

2404 / tcp

Data Received: 680401001a00
ASDU Address: -1

-98713449 | 2024-05-08T05:57:54.057545

2443 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T01:50:37.337292

2455 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-21T02:26:13.729066

2550 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-12T16:40:39.621439

2553 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-01T11:25:35.327926

2560 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-06T00:52:19.244709

2566 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-04T22:59:50.188836

2568 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-03T22:32:50.857224

2626 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-08T21:41:11.615823

2628 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T01:31:45.992008

2761 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T00:32:49.313104

2762 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-291974457 | 2024-05-29T03:53:16.287817

3000 / tcp

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Type: text/html; charset=UTF-8
Content-Encoding: 
content-length: 70811

-2031469209 | 2024-05-29T05:33:37.962282

3001 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T19:00:43.014911

3050 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-17T18:20:22.823447

3054 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-03T22:38:15.486861

3057 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-04T19:12:54.239790

3061 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-04T18:34:17.283488

3066 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-04T11:21:28.324366

3067 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-18T06:23:16.821594

3068 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-25T03:35:39.565716

3081 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T19:49:01.273359

3097 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-12T16:19:28.979572

3105 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-04-30T23:57:53.747155

3113 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-19T03:34:52.747885

3115 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-05T07:52:41.424602

3211 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T03:26:11.451279

3260 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T03:19:02.096243

3268 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T05:16:48.487062

3269 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T23:51:58.012179

3299 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T20:19:06.619937

3301 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-740155298 | 2024-05-28T19:14:08.538403

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 8.0.32
  Capabilities: 65535
  Server Language: 255
  Server Status: 2
  Extended Server Capabilities: 57343
  Authentication Plugin: mysql_native_password

-2031469209 | 2024-05-29T04:59:53.928351

3310 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-15T22:48:06.013827

3352 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T09:28:59.239210

3388 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

981973376 | 2024-05-28T22:59:27.384569

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x00\x00\x00\x02\x00\x08\x00\x01\x00\x00\x00

Administrator
kK)
(A

-98713449 | 2024-05-16T11:04:22.421125

3401 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-02T07:11:57.217308

3403 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-02T08:11:28.527852

3523 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T05:52:13.951249

3541 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T08:19:56.231358

3542 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T00:06:02.957814

3551 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-26T14:19:03.864284

3556 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-16T05:03:45.841308

3560 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-27T17:35:12.307993

3561 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T21:09:37.514050

3689 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T04:07:00.671230

3749 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-29T01:54:39.758206

3780 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

1094048410 | 2024-05-28T07:16:55.278860

3790 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-29T05:34:43.788822

4000 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1198227559 | 2024-05-29T01:18:35.815382

4022 / tcp

HTTP/1.0 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T00:49:33.165631

4040 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T20:40:22.080891

4063 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T04:23:12.391314

4064 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-21T20:15:51.206857

4100 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-27T21:48:55.276992

4190 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1613220665 | 2024-05-29T04:49:48.500370

4242 / tcp

HTTP/1.1 200 OK
Date: Wed, 29 May 2024 04:49:48 GMT
Server: Jetty(7.1.6.v20100715)
Content-Type: text/html; charset=UTF-8
Content-Encoding: 
Content-Length: 642


<!DOCTYPE html><html><head><meta http-equiv=content-type content="text/html;charset=utf-8"><title>Page Not Found</title>
    <style><!--
    body{font-family:arial,sans-serif;margin-left:2em}A.l:link{color:#6f6f6f}A.u:link{color:green}.fwf{font-family:monospace;white-space:pre-wrap}//--></style></head>
    <body text=#000000 bgcolor=#ffffff><table border=0 cellpadding=2 cellspacing=0 width=100%><tr></td></tr></table><blockquote><h1>Page Not Found</h1>The requested URL was not found on this server.</blockquote><table width=100% cellpadding=0 cellspacing=0><tr><td class=subg><img alt="" width=1 height=6></td></tr></table></body></html>

-2031469209 | 2024-05-20T20:59:07.722534

4282 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-28T21:06:27.810157

4321 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T01:01:40.278662

4369 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

864306896 | 2024-05-29T01:34:45.511566

4433 / tcp

HTTP/1.1 401 F5 Authorization Required
Server: Apache
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400; includeSubDomains
WWW-Authenticate: Basic realm="Enterprise Manager"
Content-Type: text/html; charset=iso-8859-1
Date: Wed, 29 May 2024 01:34:45 GMT
Content-Length: 381

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 240931 (0x3ad23)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=MyCompany., CN=localhost.localdomain, ST=Califomia, L=Seattle, OU=MyOrg
        Validity
            Not Before: Sep 19 14:00:00 2013 GMT
            Not After : Sep 19 14:00:00 2033 GMT
        Subject: C=US, O=MyCompany., CN=localhost.localdomain, ST=Califomia, L=Seattle, OU=MyOrg
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:b8:b2:af:dc:a7:d1:18:f4:c2:01:0d:30:c3:bc:
                    59:02:8f:f8:2e:92:36:e3:0b:99:29:c8:99:a9:bf:
                    92:54:b4:f0:88:ec:95:43:4a:8e:ba:39:0f:48:80:
                    e8:38:94:15:0c:3d:a5:8e:fe:d5:6b:77:28:30:14:
                    58:21:d5:67:36:3e:bf:bf:b9:19:6f:41:8b:00:fc:
                    af:2c:96:55:52:29:f0:a6:35:c0:b8:85:78:85:08:
                    da:65:6a:be:40:44:1e:9a:0d:53:13:f8:04:83:85:
                    68:4b:0d:1d:92:a0:8a:ed:1c:54:15:96:07:70:a0:
                    22:8b:bc:af:77:aa:7e:8f:21:8e:07:da:aa:59:ec:
                    fa:5e:0f:d6:20:d8:46:15:1e:59:94:43:01:96:b8:
                    a0:66:bc:95:9f:f3:06:f6:15:d7:0d:97:2b:60:8e:
                    e6:2f:d3:34:b1:7f:8e:00:6b:1d:17:59:0d:4e:e4:
                    67:f8:15:38:77:79:13:d8:01:21:e4:4f:33:61:7b:
                    38:b0:94:ea:ae:1f:03:d1:2a:77:44:f7:fb:9e:26:
                    67:71:37:1e:86:5d:a6:fb:da:4c:64:8e:67:09:77:
                    0b:7d:18:40:2b:fb:aa:7f:a0:5e:35:77:3a:98:a7:
                    df:15:9a:3a:e1:88:c1:53:f1:f0:82:ff:07:c9:a5:
                    47:e6:ce:06:ae:44:76:ce:07:56:7e:88:86:a8:73:
                    fb:a4:b0:ab:dc:4e:61:00:ae:48:50:7f:91:e1:39:
                    cd:3a:1b:76:36:2d:b1:1c:5a:0a:0f:3b:4c:13:90:
                    99:02:95:87:93:21:b8:c8:6f:a6:24:6d:6e:1f:5f:
                    17:b1:a3:bc:31:23:36:c7:6b:c8:3b:3f:ad:57:d7:
                    ea:5c:c6:ab:21:f0:31:28:9b:5b:96:85:25:c6:28:
                    f8:4e:1d:e0:b0:61:98:70:6f:16:66:35:94:48:48:
                    66:78:19:df:e8:06:e8:8a:e4:54:65:56:9b:d5:bd:
                    0c:e3:ce:98:69:a0:c9:89:be:6d:ec:dc:41:d8:59:
                    12:18:a1:91:be:24:3a:c5:af:4a:0a:ba:e0:97:b3:
                    16:f4:62:a8:47:84:6f:20:e2:74:86:3f:66:3f:65:
                    d1:6a:ca:3d:f9:6b:a3:39:25:75:89:b6:31:74:4b:
                    b4:10:54:b3:25:2f:68:f4:6c:6d:8d:5b:e3:1b:9e:
                    d3:84:ca:ca:22:b2:f9:d7:9b:ea:32:c9:9c:d9:a5:
                    a5:95:82:44:34:74:ae:a9:e2:1c:68:09:4d:92:c8:
                    f4:85:0b:0a:43:9c:01:0b:d6:b5:69:99:60:36:a4:
                    58:3e:b0:e2:9d:03:c8:9c:22:f5:e4:21:2f:2a:98:
                    eb:0f:47
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        77:fb:87:52:a5:92:be:b3:fb:4b:e1:91:d4:38:9a:10:4d:8a:
        5a:4b:43:eb:83:51:b7:c3:21:af:e9:cd:8d:b9:56:5f:7e:19:
        c5:20:23:45:57:f5:10:f9:1d:10:2c:e5:a2:99:80:12:a4:56:
        9b:c7:7a:28:29:d3:f9:ba:64:68:3f:5a:f3:af:24:97:e6:85:
        00:73:e2:8b:67:5b:fa:ea:12:ed:06:7b:0d:0d:e8:07:9d:fd:
        0b:91:41:33:e6:c5:3d:a0:50:f9:1c:6d:29:9e:5c:fa:01:75:
        49:2f:8a:d5:10:6a:4a:18:1d:a3:cb:0c:04:84:aa:fe:7c:e8:
        ff:d1:f2:9d:a8:4e:8d:4c:b7:6e:6e:7c:64:c9:68:13:4c:21:
        25:ab:8d:dd:76:73:8b:55:ff:c7:dd:ce:e0:58:0e:5f:13:37:
        44:a5:a7:1a:5c:22:f8:96:fc:c5:a3:81:13:72:d6:c6:3f:50:
        ad:64:d3:85:5f:8a:ae:18:e5:04:c0:f7:65:00:12:a8:36:87:
        eb:71:23:12:32:73:8d:d3:c0:d7:44:6c:be:1a:07:ca:c1:be:
        a6:be:46:c9:f2:3d:3a:d2:a9:4c:b4:9f:1f:44:8b:6d:ed:2c:
        72:fa:35:d9:1a:60:e0:60:64:1f:ac:c3:48:f9:fd:1b:27:20:
        b2:cf:99:5e:3b:99:78:77:36:25:65:56:9a:22:68:11:b6:6e:
        b7:c2:ab:9e:a2:53:b5:0c:bf:d5:40:0e:e6:ea:23:c4:64:09:
        91:5c:5b:9b:f2:a1:63:29:ec:71:8a:14:9e:e2:95:ac:be:37:
        81:71:4f:af:78:57:5d:17:45:d2:ca:2e:64:ee:30:e6:e7:a4:
        62:be:29:2f:cb:71:64:de:f3:b8:aa:d0:57:97:05:f8:23:23:
        f3:f4:6a:1b:40:45:e8:87:ae:0b:69:94:e2:69:96:39:b9:4f:
        f9:1c:54:d7:88:f1:86:29:56:d7:a5:0f:f1:f9:3d:3f:b8:a0:
        90:a6:76:60:25:50:21:88:54:54:29:06:66:42:39:01:fe:ba:
        76:54:08:f3:e0:0a:a0:21:c4:c9:15:4a:1e:16:83:c3:63:5c:
        e9:4a:a1:42:02:83:d1:10:e5:56:d9:c7:3b:c9:76:b7:2b:58:
        07:5e:46:57:25:c0:9e:c6:14:22:f4:73:b4:82:a6:f7:b0:2c:
        4d:8c:ce:3b:6b:ae:9a:ae:e1:35:b6:8c:0c:bc:66:10:b1:48:
        39:08:90:ba:6a:66:3f:3f:4c:25:e1:4e:85:c1:b2:ba:d8:f6:
        60:08:6d:93:c6:00:2e:9a:9d:18:18:bb:26:24:32:90:62:3f:
        f9:06:25:e0:f4:48:3d:77

1059152961 | 2024-05-28T14:10:52.085741

4443 / tcp

HTTP/1.1 200 OK
Date: Tue, 28 May 2024 14:10:51 GMT
Last-Modified: Thu, 23 Sep 2021 15:51:02 GMT
content-type: text/html
Content-Encoding: 
content-length: 10172
Connection: close

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 63013 (0xf625)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, CN=atp100_BCCF4F5F9753
        Validity
            Not Before: Jan 26 13:00:00 2021 GMT
            Not After : Jan 24 13:00:00 2031 GMT
        Subject: C=US, CN=atp100_BCCF4F5F9753
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:e5:eb:bd:9e:29:0b:30:44:09:16:62:65:45:63:
                    4e:70:f6:07:75:1d:63:78:ce:71:71:df:bb:c1:f1:
                    f4:41:f9:b4:a7:9d:6c:ed:e6:f9:2e:47:74:2e:0c:
                    4e:46:fd:51:99:e3:a2:10:78:20:ba:9d:67:59:cb:
                    0b:5b:71:33:30:3a:27:1b:5a:47:ec:19:1f:e1:e0:
                    fb:47:2a:1c:6a:3c:be:1a:cc:d9:8c:bd:66:ab:ca:
                    3a:96:1a:7f:ed:0c:1b:8b:05:73:20:1d:c4:04:1e:
                    c5:de:b1:3e:f8:d3:ba:8e:75:4d:cb:3c:fa:23:8f:
                    c6:20:4a:d5:ec:6a:7b:4d:a7:89:7b:5e:33:d5:31:
                    45:86:b1:59:26:21:3d:c8:3a:95:e0:ac:0e:33:39:
                    e8:3b:3b:bb:14:f2:16:f3:b2:61:e4:51:84:67:c3:
                    1f:0f:1d:f8:93:4a:b4:38:b8:2e:3a:1f:0c:3f:f2:
                    c6:4e:54:71:e7:20:82:14:86:61:42:d8:66:2a:ca:
                    44:b5:1a:9a:be:66:5e:5a:31:af:31:73:13:fe:86:
                    e6:39:1a:d4:1a:2c:45:9e:bb:6e:17:d4:7c:ad:4e:
                    90:01:2d:79:f5:b0:9e:a9:2a:f3:1d:7b:92:02:2c:
                    09:72:7e:f7:3e:54:03:6a:dd:6b:e8:bb:00:f9:cf:
                    c5:89:92:cb:df:7f:99:c3:7a:64:52:91:90:3c:e0:
                    44:16:61:6b:71:ca:88:f1:c3:b9:dd:15:3f:79:77:
                    f3:de:05:e3:c5:e6:b6:e3:d7:cf:bd:c7:78:72:e5:
                    86:7e:7b:6f:5a:42:c8:75:f3:c7:d1:eb:20:f3:78:
                    32:9f:dd:6e:2f:15:e9:fd:3f:97:21:75:8c:02:6c:
                    ee:83:4e:15:08:17:c8:4b:3e:41:94:25:f7:9f:f0:
                    f2:36:b8:b7:28:db:88:32:e6:7e:07:da:47:35:4d:
                    4b:72:9d:0d:3f:d7:2a:a6:1f:28:6d:c7:f2:32:e9:
                    4e:e6:cd:24:3e:ab:35:2a:29:76:9c:69:88:71:77:
                    f0:76:74:8c:ee:d3:5b:60:27:66:fe:7f:47:22:01:
                    3b:ac:d9:cd:9f:0a:2b:11:c4:04:0a:cb:ff:78:2a:
                    53:40:38:4d:a4:d9:ed:a6:d5:c0:e8:cd:32:87:08:
                    04:ab:32:62:88:46:75:b2:01:b0:e8:5e:80:af:d3:
                    43:28:1a:76:1a:59:8c:f4:10:80:3c:95:a9:d1:88:
                    e9:02:f3:cc:77:6b:11:a5:b3:88:46:79:ff:1d:0d:
                    49:ea:f2:57:72:66:37:7c:30:e4:31:8a:7d:c8:86:
                    ac:c8:e8:d1:d4:84:31:73:4c:7f:5b:d7:7a:ae:2a:
                    9e:d1:c1
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        50:05:75:83:90:b5:97:b4:ab:8d:a8:8d:79:d7:9a:2f:c9:81:
        e8:ad:c6:d7:0d:2c:d1:22:dc:3d:9a:af:dc:58:17:3c:db:04:
        d9:06:1d:ef:4e:a2:df:17:9d:40:3a:48:67:4b:5d:02:0e:ab:
        f8:8e:da:25:bc:41:da:a2:1d:5b:60:58:13:08:d3:24:47:75:
        6b:42:dc:ac:14:5d:53:b4:c1:5b:d2:b5:23:28:0b:70:80:82:
        02:c8:d5:d5:4c:a5:f7:9d:8b:45:60:44:ff:cf:a4:b5:b3:a7:
        4f:b4:0d:11:72:78:32:dc:8f:6c:c7:db:2f:14:78:25:9c:29:
        c6:04:19:d3:64:55:f7:3f:f7:1f:86:06:a9:76:7f:9c:72:a3:
        f8:e4:06:de:3c:a6:4a:80:3c:b1:c6:ec:65:78:f0:89:58:37:
        1b:09:6e:9d:6d:e6:3b:81:24:82:2e:5e:43:36:98:26:8b:23:
        91:d6:9b:57:c9:07:6a:f6:7d:00:86:6b:96:87:4b:d1:09:ff:
        d3:36:16:4c:fe:a0:56:c3:0d:9d:96:a1:71:19:b9:e6:84:e5:
        c9:3b:2b:a1:49:fa:76:55:24:6e:bf:3a:e2:9e:2a:cf:86:a2:
        73:57:0d:bd:dc:98:51:b8:c3:6f:2c:1f:01:e5:76:34:d3:f4:
        fe:98:2f:5d:a7:96:ee:0d:73:2d:e4:c0:21:35:6e:7b:ca:45:
        85:9c:d1:50:98:38:3d:a9:62:2f:b5:53:aa:69:71:47:34:e9:
        44:0d:8e:29:46:e5:bd:45:1a:f4:17:92:fc:d9:c1:15:f8:0e:
        3b:fb:30:5b:22:15:5d:ce:f8:ae:f6:a3:58:8b:bf:3e:96:7b:
        87:02:aa:c1:24:c9:aa:02:e8:45:37:26:f4:6a:2a:5e:98:18:
        20:5d:5b:82:f6:dd:8f:28:79:7f:53:b0:f9:23:f0:e0:df:e2:
        4d:1b:33:c8:c0:5f:85:9b:26:f7:c6:13:1f:e6:9a:71:a8:59:
        5c:a1:21:4f:37:1c:b7:aa:0c:8f:ea:e2:2c:5c:d0:3f:15:25:
        ae:f9:bb:58:e0:48:69:9d:b5:1d:3f:88:5e:93:3d:b4:05:98:
        d5:a1:1b:7b:b2:46:8f:59:1b:cd:5f:c3:5f:e4:06:88:df:39:
        57:0b:32:93:7f:f8:0d:88:16:d9:e5:a7:9b:cf:da:2c:56:c5:
        f8:1e:21:b7:70:ba:9f:db:87:a0:75:37:a9:79:d9:f5:23:02:
        de:14:40:67:3a:04:a8:c6:f3:8a:dd:89:58:fc:1e:2a:ee:d1:
        10:52:fe:85:a3:d7:58:39:d2:6f:d8:2e:7c:bc:7e:8b:2b:ae:
        9d:87:8f:cb:81:9e:c2:56

MAC Addresses

BC:CF:4F:5F:97:53
    OUI: BC:CF:4F
    Organization: Zyxel Communications Corporation
    Assignment: MA-L
    Registration Date: 2018-11-16

-98713449 | 2024-05-16T13:03:18.456136

4450 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-16T10:43:52.262350

4451 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T19:58:38.686480

4500 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-29T02:38:46.232306

4506 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T00:51:11.132512

4567 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-15T20:01:34.356420

4643 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T00:32:36.395481

4664 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-04-30T22:25:13.659023

4700 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T04:59:00.982876

4782 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1478571435 | 2024-05-28T22:46:05.501055

4786 / tcp

Cisco Smart Install Client active

-2031469209 | 2024-05-29T02:25:09.647529

4840 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T15:25:46.922495

4848 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T20:06:27.971032

4899 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T20:33:56.101500

4911 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T21:57:36.540025

4949 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1514911176 | 2024-05-29T00:17:48.526204

5000 / tcp

HTTP/1.0 200 OK
Server: nginx
Date: Wed, 29 May 2024 00:17:48 GMT
Connection: close
Content-Type: text/html
Content-Encoding: 
Pragma: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Length: 8764

-1514911176 | 2024-05-28T18:46:37.605130

5001 / tcp

HTTP/1.0 200 OK
Server: nginx
Date: Tue, 28 May 2024 18:46:37 GMT
Connection: close
Content-Type: text/html
Content-Encoding: 
Pragma: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Length: 8764

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9361 (0x2491)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=TW, O=Synology Inc, CN=Synology Inc. CA, ST=Taiwan, L=Taipei, OU=FTP Team/emailAddress=product@synology.com
        Validity
            Not Before: Mar 19 13:00:00 2015 GMT
            Not After : Mar 19 13:00:00 2025 GMT
        Subject: C=TW, O=Synology Inc, CN=Synology Inc. CA, ST=Taiwan, L=Taipei, OU=FTP Team/emailAddress=product@synology.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:e8:99:3d:94:31:3d:09:ab:41:78:fd:6e:17:9a:
                    6a:d5:b4:69:de:da:71:da:73:6d:62:9e:a2:31:4e:
                    4c:a3:e1:c1:80:31:ae:d6:d0:12:a8:07:bd:5f:9b:
                    97:5f:c7:09:b5:f0:a7:05:a8:15:2e:52:34:da:7c:
                    e8:2f:bf:83:e2:13:54:be:64:dc:c0:3a:cc:df:46:
                    bd:0b:2d:3a:4d:40:b4:eb:52:e1:d4:9e:2f:d0:6c:
                    68:d3:a3:c1:59:c8:42:4b:f9:9a:8a:48:0b:f1:94:
                    5b:ba:f8:fc:e4:dc:27:31:f6:11:97:ad:35:46:fe:
                    e4:2f:6a:06:91:93:a7:e4:30:94:3f:6d:74:a3:df:
                    b4:ce:1d:3e:37:1d:0c:ba:ba:92:c3:47:17:2c:62:
                    ce:31:9b:b1:69:0b:fe:2a:69:d3:5e:e6:b5:4e:76:
                    01:91:b9:16:d6:64:58:34:b8:37:e9:29:c2:c6:0a:
                    85:1b:85:2c:55:bb:1a:ed:37:60:75:1b:4a:16:db:
                    11:7b:20:36:c6:d5:ca:4f:39:5d:c5:9d:33:5f:7b:
                    bc:1b:93:ff:db:39:c6:63:5c:8d:d8:85:b6:ed:8d:
                    f2:10:ef:6d:cf:c3:61:de:6d:b1:16:f7:9d:df:e4:
                    b3:9b:2a:5e:bc:5b:6c:98:91:09:dc:aa:32:ed:8c:
                    af:39:8b:0c:e8:11:f7:20:e0:f0:f9:18:17:d0:ba:
                    6c:93:43:40:7b:6f:6f:ab:d8:0b:58:d2:a0:18:94:
                    b5:21:9d:48:d5:dd:00:2a:e2:be:27:9b:7f:26:5c:
                    a1:ac:d0:1a:af:01:76:af:86:1c:bb:8d:a4:28:b5:
                    43:10:1b:bc:a4:dc:4c:12:ad:27:d1:1c:da:65:ae:
                    82:3c:b3:85:db:34:66:c9:b8:2f:b3:74:61:74:f6:
                    2f:41:0a:38:39:3a:db:9e:52:64:ad:b2:c7:9b:ff:
                    cc:13:a2:1f:c0:dd:3e:db:ad:d1:47:3e:64:22:b3:
                    42:9f:1d:51:cd:1b:72:33:72:37:55:91:c3:31:19:
                    56:b8:cf:42:ca:52:38:de:1a:71:c5:0a:db:6a:21:
                    68:10:90:32:02:75:3b:22:66:a5:0b:40:7d:2b:79:
                    5f:33:a9:6a:1c:ea:06:06:89:62:e4:bb:f3:0f:bf:
                    94:1c:7a:48:5b:09:24:ea:1b:c8:d4:ba:0b:3b:fd:
                    e2:bc:01:cc:0c:3f:21:ee:e0:02:12:2a:f3:90:ac:
                    b5:1c:eb:8c:e5:5e:bd:f0:31:39:da:c1:b1:53:08:
                    07:c6:bf:f6:16:d0:90:94:f1:4b:c7:12:43:11:56:
                    65:73:fc:e6:3b:a0:a8:13:58:e7:a2:77:4d:c1:77:
                    dc:97:43
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7c:4f:0a:ff:c4:82:a8:e5:c3:55:45:31:e6:cd:2c:26:4c:73:
        98:cd:86:c2:4f:ab:4f:71:d8:42:3e:e2:66:2b:41:2d:a9:62:
        36:13:50:e3:56:e4:06:f6:95:dd:00:3b:62:fc:42:ad:59:7c:
        5e:24:5c:f0:63:96:9a:ce:88:7c:f8:d8:d0:3f:7d:4d:6c:31:
        1e:2f:25:ee:da:d8:94:d4:9b:05:9c:db:b1:b8:5f:0e:72:8a:
        b4:d0:b6:3e:41:60:be:18:38:29:9c:90:10:df:9d:4a:c3:58:
        cc:ae:e9:73:7e:03:f4:db:a9:11:36:97:73:83:92:d1:63:0b:
        e9:71:03:d7:29:70:ef:c0:e2:8a:d5:3c:9d:6e:1a:71:ec:26:
        b5:71:9e:88:a9:88:f7:79:35:09:92:42:ce:60:b1:c3:92:4b:
        c7:f1:fb:84:dd:fb:55:4a:83:95:a6:83:a1:60:e1:39:e0:aa:
        34:12:73:ef:be:47:c3:8d:3d:80:18:44:28:89:a3:07:b1:2e:
        3a:43:54:7c:b9:02:a0:fb:c9:fb:d2:6e:37:2d:10:2d:e7:5b:
        d8:4a:0c:d3:e4:c4:0a:8f:1f:c5:a2:c5:c7:df:3c:cc:8f:a0:
        69:28:d7:7d:18:20:8a:26:1a:ca:c2:71:ff:31:39:8c:a8:16:
        7f:48:54:0f:74:be:a5:9d:e6:73:c1:bd:8e:ec:35:02:8e:3f:
        c3:43:42:f5:63:24:62:79:61:bd:6b:da:d1:e4:f3:56:0d:e7:
        db:ef:28:0f:be:19:2b:53:6e:39:37:1e:7c:23:ed:8a:b7:65:
        e5:ef:d5:ee:34:29:2e:9b:48:fd:39:bf:4a:16:fd:f6:a4:f5:
        c0:b7:60:fb:cf:1f:ae:46:73:86:2c:ef:94:82:7c:af:41:41:
        96:31:4e:af:fb:69:14:84:2d:00:d4:7f:ae:bf:88:30:ef:98:
        4f:1c:3f:c6:3f:46:a0:d4:d2:63:f6:53:98:8f:64:0e:e6:b2:
        32:53:8b:ce:64:98:3e:14:3a:3d:ee:d3:73:a7:5d:14:c3:b8:
        48:a7:a5:19:3d:44:e1:d6:27:22:39:8f:0a:7e:55:a7:78:3b:
        f1:9c:53:98:bd:9c:1a:c5:52:c5:8b:d1:ef:3c:d1:aa:d7:be:
        0e:58:1f:c6:1c:bc:59:49:51:5e:39:4d:20:db:fd:5d:25:53:
        3d:f6:f1:3b:88:10:df:e9:67:f6:c7:04:b5:1c:ba:e4:ea:98:
        cc:a0:81:54:94:2e:f4:f0:33:68:f9:53:09:2a:57:93:b5:63:
        c9:7f:f7:80:3c:86:70:d0:71:80:6e:46:83:1d:da:15:c6:4d:
        a2:1e:a3:2a:e9:9c:0c:68

-2031469209 | 2024-05-28T22:27:54.747355

5005 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-28T23:03:21.622209

5006 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-28T23:53:32.871861

5007 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-27T20:05:40.313436

5009 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T04:18:01.418747

5010 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T05:29:59.416272

5025 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-21T00:41:04.366992

5070 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-28T23:46:34.538767

5172 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-29T00:45:03.593602

5201 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-28T18:59:30.756462

5222 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T05:19:57.525406

5269 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T00:45:44.238231

5357 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-726790289 | 2024-05-28T20:20:26.589537

5432 / tcp

PostgreSQL
fe_sendauth: no password supplied

-2031469209 | 2024-05-29T03:58:03.775972

5435 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-18T10:11:12.564509

5443 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-01T17:24:46.873709

5542 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T19:54:50.749536

5560 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-06T01:03:20.311876

5567 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

997310454 | 2024-05-28T18:52:36.452036

5601 / tcp

HTTP/1.1 200 OK
kbn-name: kibana
Cache-Control: max-age=2592000
content-type: text/html; charset=utf-8
Date: Tue, 28 May 2024 18:52:35 GMT
Content-Encoding:

-98713449 | 2024-05-26T08:47:23.339290

5605 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-07T07:03:18.649141

5673 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T01:37:27.418582

5801 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T05:27:01.472320

5858 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

497968563 | 2024-05-28T23:01:25.669851

5900 / tcp

RFB 003.008

VNC:
  Protocol Version: 3.8

-2031469209 | 2024-05-29T05:33:15.026304

5901 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T01:00:31.897410

5938 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-453886593 | 2024-05-29T00:47:59.816252

5984 / tcp

CouchDB:
  Version: 1.6.1
  Vendor: Ubuntu
  Databases:
    _replicator
    _users
    god
    shops
    test
  UUID: e920626a6a2024d035730873c7fcf8ab

-427937664 | 2024-05-29T00:50:30.482749

5985 / tcp

HTTP/1.1 200 OK
Server: CouchDB/1.6.1 (Erlang OTP/18)
Date: Wed, 29 May 2024 00:50:30 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 127
Cache-Control: must-revalidate

1154514972 | 2024-05-28T15:09:06.277668

5986 / tcp

HTTP/1.1 200 OK
Server: CouchDB/1.6.1 (Erlang OTP/18)
Date: Tue, 28 May 2024 15:09:06 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 127
Cache-Control: must-revalidate

{"couchdb":"Welcome","uuid":"e920626a6a2024d035730873c7fcf8ab","version":"1.6.1","vendor":{"name":"Ubuntu","version":"16.04"}}

-98713449 | 2024-05-28T22:03:20.956778

6000 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T22:10:40.354080

6001 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:14:36.380320

6002 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-16T06:45:10.645797

6008 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-21T18:42:12.242368

6036 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T20:36:19.059332

6080 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1963419546 | 2024-05-28T22:25:53.978981

6379 / tcp

# Server
redis_version:2.8.3
redis_git_sha1:00000000
redis_git_dirty:0
redis_build_id:f5d3ac54abffe461
redis_mode:standalone
os:Linux 2.6.32-642.6.2.el6.x86_64 x86_64
arch_bits:64
multiplexing_api:epoll
gcc_version:4.4.7
process_id:29969
run_id:185ec1f650d22d3113c32038c828f4a8d60f5bbf
tcp_port:6379
uptime_in_seconds:1058067
uptime_in_days:12
hz:10
lru_clock:896632
config_file:/root/redis-2.8.3/redis.conf

# Clients
connected_clients:135
client_longest_output_list:0
client_biggest_input_buf:156
blocked_clients:0

# Memory
used_memory:3612856
used_memory_human:3.45M
used_memory_rss:12828672
used_memory_peak:6557128
used_memory_peak_human:6.25M
used_memory_lua:33792
mem_fragmentation_ratio:3.55
mem_allocator:jemalloc-3.2.0

# Persistence
loading:0
rdb_changes_since_last_save:0
rdb_bgsave_in_progress:0
rdb_last_save_time:1497943587
rdb_last_bgsave_status:ok
rdb_last_bgsave_time_sec:0
rdb_current_bgsave_time_sec:-1
aof_enabled:0
aof_rewrite_in_progress:0
aof_rewrite_scheduled:0
aof_last_rewrite_time_sec:-1
aof_current_rewrite_time_sec:-1
aof_last_bgrewrite_status:ok

# Stats
total_connections_received:7195
total_commands_processed:22727
instantaneous_ops_per_sec:0
rejected_connections:0
sync_full:0
sync_partial_ok:0
sync_partial_err:0
expired_keys:0
evicted_keys:0
keyspace_hits:8745
keyspace_misses:165
pubsub_channels:0
pubsub_patterns:0
latest_fork_usec:965

# Replication
role:master
connected_slaves:0
master_repl_offset:0
repl_backlog_active:0
repl_backlog_size:1048576
repl_backlog_first_byte_offset:0
repl_backlog_histlen:0

# CPU
used_cpu_sys:125.16
used_cpu_user:303.80
used_cpu_sys_children:0.27
used_cpu_user_children:0.06

# Keyspace
db0:keys=4,expires=0,avg_ttl=0

# Keys

# Connected Clients
OK

1094048410 | 2024-05-29T02:20:16.644460

6443 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-29T00:53:27.644299

6633 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T04:22:37.004514

6653 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T05:36:22.443304

6664 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T21:51:42.221836

6666 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:42:10.046783

6667 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T20:18:34.511720

6668 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T20:21:13.765875

6697 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1514911176 | 2024-05-29T05:05:34.306178

7001 / tcp

HTTP/1.0 200 OK
Server: nginx
Date: Wed, 29 May 2024 05:05:34 GMT
Connection: close
Content-Type: text/html
Content-Encoding: 
Pragma: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Length: 8764

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9361 (0x2491)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=TW, O=Synology Inc, CN=Synology Inc. CA, ST=Taiwan, L=Taipei, OU=FTP Team/emailAddress=product@synology.com
        Validity
            Not Before: Mar 19 13:00:00 2015 GMT
            Not After : Mar 19 13:00:00 2025 GMT
        Subject: C=TW, O=Synology Inc, CN=Synology Inc. CA, ST=Taiwan, L=Taipei, OU=FTP Team/emailAddress=product@synology.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:ad:aa:44:47:58:57:ec:cc:4f:71:5f:90:ac:ce:
                    f1:b2:9d:22:c2:51:76:ad:7d:e8:ce:98:69:4f:26:
                    ff:57:73:d6:af:8a:f7:6e:68:c5:8f:0f:95:4a:7e:
                    bd:f6:3c:ab:a0:d4:87:3f:de:d4:39:47:fc:50:b1:
                    d6:90:51:d0:e7:3b:a3:c1:a1:2f:e2:4c:b9:bb:35:
                    00:e2:4b:d1:85:7e:70:83:3a:5a:bb:c6:9a:aa:dd:
                    8c:8a:d0:ca:99:eb:80:c8:3c:77:1b:12:e7:5b:5e:
                    60:0c:ec:00:11:b2:0c:11:b0:7f:15:c0:ab:ca:f1:
                    55:91:85:d9:b3:da:06:1e:63:9a:39:51:94:df:33:
                    00:a5:19:b9:7f:df:53:60:02:61:5f:05:15:33:8b:
                    63:cf:38:70:0b:0f:7c:bc:6f:39:18:90:8c:d6:b5:
                    3f:59:de:4d:d3:7f:f2:d7:ff:e6:e8:d9:e9:3c:cc:
                    60:3f:3d:e5:39:b3:fa:48:90:4d:86:58:7c:39:3d:
                    ef:1e:55:7f:b0:f9:e5:7e:06:a5:98:4e:c1:d2:12:
                    59:e1:c3:31:04:6c:29:2b:bb:3f:92:0f:08:88:44:
                    77:4c:c8:6a:51:57:0e:5e:3f:9f:f2:fe:f5:8f:95:
                    11:20:f5:b4:90:24:4d:8c:44:93:2c:bf:1d:88:86:
                    2d:18:b4:00:29:51:2f:8b:ab:60:e5:43:07:8c:c6:
                    86:03:c7:32:c5:fa:7b:ef:88:3e:96:fa:31:f5:bd:
                    85:88:c8:b6:1e:9a:8b:d6:78:f5:a5:7a:4e:d2:79:
                    0d:eb:98:81:2c:28:4b:8d:0e:4e:6d:8f:e7:d3:6d:
                    8d:75:b7:6b:37:b1:43:ca:dd:24:10:75:6a:93:6d:
                    6b:eb:d5:13:fd:c6:2c:24:fb:b2:0b:a7:09:a8:50:
                    19:71:f7:40:5b:51:96:6c:a7:54:08:99:81:f5:7b:
                    9d:e2:aa:5b:8e:68:dc:39:c3:51:44:08:f6:6d:76:
                    f5:31:1b:eb:f2:a5:e0:6c:6b:b0:25:95:1b:87:d4:
                    3d:16:f3:df:6e:1a:cf:0f:d5:47:1b:75:60:be:bb:
                    f2:e1:77:e4:b0:f6:3f:6d:4c:5f:98:e7:fe:c3:8b:
                    2c:f6:91:d8:3d:ba:14:a8:69:15:ee:91:4e:cf:d5:
                    af:34:54:f6:b0:c4:33:89:74:47:0e:18:1d:3a:46:
                    1c:92:34:8d:59:cb:83:c5:bd:b4:9a:08:4f:d0:eb:
                    e5:d7:b2:bb:0b:4e:7d:2f:c0:61:cd:07:2f:e3:f4:
                    f3:72:42:53:87:de:c7:cd:77:ed:52:9f:cb:77:03:
                    34:b6:d3:07:2d:5f:28:fd:f8:37:16:4e:34:d6:8a:
                    c1:c4:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        04:34:a0:cb:c9:72:a3:d0:d9:e3:d8:6d:04:78:fd:3d:d1:cb:
        1e:71:f2:0a:bf:44:8c:3d:f9:b0:59:50:0c:db:a0:cf:93:22:
        3b:91:ac:b2:25:e5:7b:06:e6:d4:0b:3a:4c:5b:0e:50:31:c7:
        c4:41:2e:eb:2f:f4:98:24:12:d0:d6:b2:3f:c8:65:85:bc:9d:
        bf:45:b7:24:36:cb:6a:57:5e:6a:a8:20:6a:7c:ae:e4:31:6d:
        ff:2b:7d:d6:b7:ec:d9:c2:cc:5b:86:2d:f3:69:97:15:c9:37:
        4c:cf:6d:a2:0c:37:c8:66:5e:99:23:b9:74:76:7f:61:af:60:
        56:1a:c1:a6:45:63:04:3d:e4:db:45:6b:b6:1f:fe:5e:e5:4f:
        13:04:8a:94:f5:b0:fd:dc:8e:ba:2d:1a:17:40:11:b2:2c:ae:
        7e:15:ca:8f:0c:0c:16:79:63:c6:55:8b:52:11:d5:d1:a6:52:
        19:18:98:46:8b:f3:ca:6e:1d:72:43:d9:d4:c8:aa:5a:c8:99:
        e0:ba:31:3c:aa:7f:d9:35:d7:fe:f4:9a:9e:f6:aa:08:da:88:
        d5:8b:ed:7e:ba:90:7b:98:c2:d0:91:5a:67:f6:56:f5:84:a8:
        ea:da:64:2e:18:c5:56:a9:e0:c5:b0:47:80:d9:55:4a:ef:93:
        04:d3:9c:51:c5:68:74:21:d7:c6:d3:f1:67:2a:71:68:18:8c:
        42:a9:c4:48:e7:1e:07:9b:4f:24:04:18:33:b3:3c:e7:e2:d9:
        27:9a:54:77:d7:18:06:b2:23:2d:03:18:3c:3b:e3:a9:f0:c2:
        ba:e1:ee:cd:e2:5f:89:84:64:ed:4d:cc:f8:26:1b:3c:58:a3:
        4b:ee:bc:b3:99:8e:93:ad:02:d0:74:0a:fb:f7:9a:dd:34:37:
        b0:ef:b6:aa:26:4a:d0:06:1a:05:d5:8c:fd:c5:f2:82:ca:36:
        dd:7a:1b:0c:17:51:e0:1b:70:fb:02:58:53:a7:84:d3:05:ff:
        72:c5:f0:28:1b:9d:5e:11:8e:00:22:0a:a8:92:85:dd:ca:4e:
        cf:dc:05:4e:f0:2f:41:6b:25:8f:4a:0a:88:8d:95:0f:7d:a6:
        e5:75:87:84:90:46:0b:4e:fd:b6:17:0a:a0:e0:c6:5a:1c:6e:
        bc:34:0f:fc:dd:f4:34:60:16:d3:0e:e2:4d:4b:32:61:dc:c5:
        f7:52:98:f6:29:55:4d:39:4f:cb:eb:4f:5b:63:24:8d:d6:2e:
        1b:24:c2:3c:f2:27:71:88:ff:c7:ea:69:05:02:1e:e5:fd:94:
        ad:f4:76:6f:45:87:1e:85:71:00:fa:e5:f4:8e:bf:2e:96:04:
        a0:8e:9e:a2:3f:4e:9f:48

1094048410 | 2024-05-29T05:18:40.081428

7071 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-28T23:42:19.271870

7171 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T23:16:06.831358

7218 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-21T05:53:45.327970

7401 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

411540654 | 2024-05-13T07:21:15.172521

7434 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

<html><head><title>Document Error: Unauthorized</title></head>
<body><h2>Access Error: Unauthorized</h2>
<p>Access to this document requires a User ID</p></body></html>

1094048410 | 2024-05-29T01:34:42.943503

7443 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

2105495716 | 2024-05-29T04:49:11.787897

7474 / tcp

HTTP/1.1 200 OK
Date: Wed, 29 May 2024 04:49:11 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Type: text/html
Content-Encoding: 
Content-Length: 3279

430537855 | 2024-05-29T05:00:34.663449

7547 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/html
Server: RomPager/4.07 UPnP/1.0
EXT:
Content-Length: 220

1094048410 | 2024-05-28T23:08:32.952161

7548 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-98713449 | 2024-05-28T23:31:22.532639

7634 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-08T14:00:03.091356

7654 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T14:57:50.873237

7657 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T01:34:01.579553

7777 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-28T22:52:37.955389

7779 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T22:49:22.743074

7989 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

633775022 | 2024-05-29T03:50:15.795689

8000 / tcp

HTTP/1.1 200 OK
Server: 
Content-Type: text/html
Content-Encoding: 
Accept-Ranges: bytes
Connection: close
Content-Length: 9575

-1536440993 | 2024-05-28T23:26:02.667817

8001 / tcp

HTTP/1.1 200 OK
server: http server 1.0
Content-Encoding: 
content-type: text/html
date: Tue, 28 May 2024 23:26:02 GMT
content-length: 7272

1638073473 | 2024-05-08T00:49:50.764032

8003 / tcp

HTTP/1.1 200 OK
Date: Wed, 08 May 2024 00:49:50 GMT
Server: Mini web server 1.0 ZTE corp 2005.
Content-Type: text/html; charset=UTF-8
Content-Length: 23599

-864955752 | 2024-05-19T12:48:05.227224

8006 / tcp

HTTP/1.1 200 OK
Date: Sun, 19 May 2024 12:48:03 GMT
Server: Servlet 2.5; JBoss-5.0/JBossWeb-2.1
Content-Type: text/html; charset=UTF-8
Content-Length: 20382

777756849 | 2024-05-29T05:13:50.135488

8008 / tcp

HTTP/1.1 200 OK
Date: Wed, 29 May 2024 05:13:49 GMT
Server: Servlet 2.5; JBoss-5.0/JBossWeb-2.1
Content-Type: text/html; charset=UTF-8
Content-Length: 18847

1798240661 | 2024-05-28T21:41:33.893871

8009 / tcp

HTTP/1.1 200 OK
Date: Tue, 28 May 2024 21:41:33 GMT
Server: Servlet 2.5; JBoss-5.0/JBossWeb-2.1
Content-Type: text/html; charset=UTF-8
Content-Length: 28793

1798240661 | 2024-05-28T19:10:26.023329

8010 / tcp

HTTP/1.1 200 OK
Date: Tue, 28 May 2024 19:10:25 GMT
Server: Servlet 2.5; JBoss-5.0/JBossWeb-2.1
Content-Type: text/html; charset=UTF-8
Content-Length: 28793

-2031469209 | 2024-05-15T23:14:38.466688

8017 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-05T01:30:24.997712

8021 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-23T19:00:01.183296

8035 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-03T17:20:06.922720

8039 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-02T20:03:33.694896

8054 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-05T08:24:46.485248

8057 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T23:40:22.121407

8060 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T01:59:30.632212

8069 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-02T18:00:29.109536

8071 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-1805871619 | 2024-05-28T18:21:50.577811

8080 / tcp

HTTP/1.1 200 OK
Server:Cross Web Server
Content-Encoding: 
Content-length: 3129
Content-Type: text/html

239351822 | 2024-05-29T02:04:18.597312

8081 / tcp

HTTP/1.0 200 OK
Server: Router Webserver
WWW-Authenticate: Basic realm="TP-LINK AC1750 Wireless Dual Band Gigabit Router Archer C8"
content-type: text/html
Content-Encoding: 
date: Wed, 29 May 2024 02:04:18 GMT
content-length: 4193

<!DOCTYPE html>
<html>

<head>
  <meta charset="utf-8">
  <!-- OEMTAG -->
  <title>tenda</title>
  <meta name="description" content="login">
  <meta http-equiv="pragma" content="no-cache">
  <meta name="author" content="">
  <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">

  <!-- Le styles -->
  <link href="css/reasy-ui.css?77656dd9fd0668fb9dfdbb54701afc39" rel="stylesheet">
  <link rel="icon" href="favicon.ico?77656dd9fd0668fb9dfdbb54701afc39" type="image/x-icon" />
  <link rel="shortcut icon" href="favicon.ico?77656dd9fd0668fb9dfdbb54701afc39" type="image/x-icon" />
  <style>
    .help-inline {
      margin-top: 10px;
      display: block;
      margin-left: 170px;
      text-align: left;
      vertical-align: middle;
      *margin-left: 190px;
    }

  </style>
  <script>
    // add by xc 2019.09.29 跨域iframe刷新问题
    if (window !== top) {
      // 子iframe通知父窗体
      parent.postMessage("corssOrigin", "*");
    }
  </script>
  <script src="js/macro_config.js?77656dd9fd0668fb9dfdbb54701afc39"></script>
  <script src="lang/b28n_async.js?77656dd9fd0668fb9dfdbb54701afc39"></script>
  <script>
    B.setTextDomain(["translate"]);
  </script>

</head>

<body class="login-body">
  <noscript>
    <div style="color:firebrick">
      <h4>Error! The browser does not support JavaScript.  Please enable JavaScript or try another browser compatible with JavaScript to experience more features of the device. </h4>
    </div>
  </noscript>
  <!-- <div>
      <div class="container head-inner">
        <a class="brand" href="#" title="Tenda"></a>
        <div class="easy-logo"></div>
      </div>
    </div> -->
  <div class="container">
    <div class="login-main">
      <form class="form-login wrap">
        <input type="hidden" id="username" value="admin">
        <input type="hidden" id="password" value="admin">
        <div class="login">
          <!-- <input id="login-password" type="password" class="validatebox" maxlength="32"> -->
          <img src="img/main-logo.png?77656dd9fd0668fb9dfdbb54701afc39" width="159" height="35">
          <div class="input-group mastbody">
            <div class="control-group password-box">
              <label class="control-label pass" for="wrlPassword"></label>
              <div class="controls">
                <input id="login-password" type="password" class="input-text validatebox" maxlength="32" style="width: 256px">
              </div>
            </div>
            <input type="submit" id="subBtn" class="btn login-btn " value="Login" style="width: 315px">
          </div>

        </div>
      </form>

      <div class="forget-tip">
        <p class="forget-handle" id="forgetBtn">Forgot password?<b class="caret"></b>
          &nbsp;&nbsp;
          <span id="login-message" class="text-error">&nbsp;</span>
        </p>
        <p class="forget-more none" id="forgetMore">&gt;<span>
            If you forget your password, you can reset the router to restore the default login password.</span><br>&gt;<span>Method: Hold down the Reset button for about 8 seconds. (That will restore the factory settings of the router.)</span>
        </p>
      </div>


    </div>
  </div>

  <script src="js/libs/j.js?77656dd9fd0668fb9dfdbb54701afc39"></script>
  <script src="js/libs/reasy-ui-1.0.3.js?77656dd9fd0668fb9dfdbb54701afc39"></script>
  <script src="js/libs/md5.js?77656dd9fd0668fb9dfdbb54701afc39"></script>
  <script src="js/login.js?77656dd9fd0668fb9dfdbb54701afc39"></script>

  <!--[if IE 6 ]>

  <div style="position: absolute; top: 0; left: 0; width: 100%; height: 100%; filter: alpha(opacity=10); z-index:100001;"></div>

    <div style="position: absolute; top: 30%; left: 50%; margin-left: -250px; padding: 50px 0; text-align: center; width:500px;  color: red; background: #333;  filter: alpha(opacity=80);">
      <h1 style="font-size: 24px; padding-bottom:10px;">Please update your browser!</h1>
      <p>The router's web manager may not run properly on an earlier browser like ie 6.</p>
    </div>


<script>
    setTimeout(function() {$("#login-password, #login-password_").blur();}, 200);
    $("select").addClass("none")
</script>
<![endif]-->
</body>

</html>

1023643010 | 2024-05-05T03:24:50.188953

8082 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Cache-Control: no-cache
Content-Length: 937

649071271 | 2024-05-25T04:43:04.972938

8085 / tcp

HTTP/1.0 200 OK
Server: Router Webserver
WWW-Authenticate: Basic realm="TP-LINK AC1750 Wireless Dual Band Gigabit Router Archer C8"
content-type: text/html
Content-Encoding: 
date: Sat, 25 May 2024 04:43:04 GMT
content-length: 4193

<!DOCTYPE html>
<html>

<head>
  <meta charset="utf-8">
  <!-- OEMTAG -->
  <title>tenda</title>
  <meta name="description" content="login">
  <meta http-equiv="pragma" content="no-cache">
  <meta name="author" content="">
  <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">

  <!-- Le styles -->
  <link href="css/reasy-ui.css?77656dd9fd0668fb9dfdbb54701afc39" rel="stylesheet">
  <link rel="icon" href="favicon.ico?77656dd9fd0668fb9dfdbb54701afc39" type="image/x-icon" />
  <link rel="shortcut icon" href="favicon.ico?77656dd9fd0668fb9dfdbb54701afc39" type="image/x-icon" />
  <style>
    .help-inline {
      margin-top: 10px;
      display: block;
      margin-left: 170px;
      text-align: left;
      vertical-align: middle;
      *margin-left: 190px;
    }

  </style>
  <script>
    // add by xc 2019.09.29 跨域iframe刷新问题
    if (window !== top) {
      // 子iframe通知父窗体
      parent.postMessage("corssOrigin", "*");
    }
  </script>
  <script src="js/macro_config.js?77656dd9fd0668fb9dfdbb54701afc39"></script>
  <script src="lang/b28n_async.js?77656dd9fd0668fb9dfdbb54701afc39"></script>
  <script>
    B.setTextDomain(["translate"]);
  </script>

</head>

<body class="login-body">
  <noscript>
    <div style="color:firebrick">
      <h4>Error! The browser does not support JavaScript.  Please enable JavaScript or try another browser compatible with JavaScript to experience more features of the device. </h4>
    </div>
  </noscript>
  <!-- <div>
      <div class="container head-inner">
        <a class="brand" href="#" title="Tenda"></a>
        <div class="easy-logo"></div>
      </div>
    </div> -->
  <div class="container">
    <div class="login-main">
      <form class="form-login wrap">
        <input type="hidden" id="username" value="admin">
        <input type="hidden" id="password" value="admin">
        <div class="login">
          <!-- <input id="login-password" type="password" class="validatebox" maxlength="32"> -->
          <img src="img/main-logo.png?77656dd9fd0668fb9dfdbb54701afc39" width="159" height="35">
          <div class="input-group mastbody">
            <div class="control-group password-box">
              <label class="control-label pass" for="wrlPassword"></label>
              <div class="controls">
                <input id="login-password" type="password" class="input-text validatebox" maxlength="32" style="width: 256px">
              </div>
            </div>
            <input type="submit" id="subBtn" class="btn login-btn " value="Login" style="width: 315px">
          </div>

        </div>
      </form>

      <div class="forget-tip">
        <p class="forget-handle" id="forgetBtn">Forgot password?<b class="caret"></b>
          &nbsp;&nbsp;
          <span id="login-message" class="text-error">&nbsp;</span>
        </p>
        <p class="forget-more none" id="forgetMore">&gt;<span>
            If you forget your password, you can reset the router to restore the default login password.</span><br>&gt;<span>Method: Hold down the Reset button for about 8 seconds. (That will restore the factory settings of the router.)</span>
        </p>
      </div>


    </div>
  </div>

  <script src="js/libs/j.js?77656dd9fd0668fb9dfdbb54701afc39"></script>
  <script src="js/libs/reasy-ui-1.0.3.js?77656dd9fd0668fb9dfdbb54701afc39"></script>
  <script src="js/libs/md5.js?77656dd9fd0668fb9dfdbb54701afc39"></script>
  <script src="js/login.js?77656dd9fd0668fb9dfdbb54701afc39"></script>

  <!--[if IE 6 ]>

  <div style="position: absolute; top: 0; left: 0; width: 100%; height: 100%; filter: alpha(opacity=10); z-index:100001;"></div>

    <div style="position: absolute; top: 30%; left: 50%; margin-left: -250px; padding: 50px 0; text-align: center; width:500px;  color: red; background: #333;  filter: alpha(opacity=80);">
      <h1 style="font-size: 24px; padding-bottom:10px;">Please update your browser!</h1>
      <p>The router's web manager may not run properly on an earlier browser like ie 6.</p>
    </div>


<script>
    setTimeout(function() {$("#login-password, #login-password_").blur();}, 200);
    $("select").addClass("none")
</script>
<![endif]-->
</body>

</html>

1798240661 | 2024-05-28T22:41:23.889769

8086 / tcp

HTTP/1.1 200 OK
Date: Tue, 28 May 2024 22:41:23 GMT
Server: Servlet 2.5; JBoss-5.0/JBossWeb-2.1
Content-Type: text/html; charset=UTF-8
Content-Length: 28793

1676912939 | 2024-05-23T22:02:56.927765

8088 / tcp

HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Thu, 23 May 2024 22:02:51 GMT
Server: Jetty(6.1.26)
Content-Type: text/html; charset=UTF-8
Content-Encoding: 
Content-Length: 5736793

1536240230 | 2024-05-29T02:50:08.989167

8089 / tcp

HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Wed, 29 May 2024 02:50:08 GMT
Server: Jetty(6.1.26)
Content-Type: text/html; charset=UTF-8
Content-Encoding: 
Content-Length: 5736793

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
  <meta http-equiv="X-UA-Compatible" content="IE=8">
  <meta http-equiv="Content-type" content="text/html; charset=UTF-8">
  <style type="text/css">
    #apps_paginate span {font-weight:normal}
    #apps .progress {width:8em}
    #apps_processing {top:-1.5em; font-size:1em;
      color:#000; background:#fefefe}
    #apps .queue {width:6em}
    #apps .ui {width:8em}
  </style>
  <title>
    All Applications
  </title>
  <link rel="stylesheet" href="/static/yarn.css">
  <style type="text/css">
    #layout { height: 100%; }
    #layout thead td { height: 3em; }
    #layout #navcell { width: 11em; padding: 0 1em; }
    #layout td.content { padding-top: 0 }
    #layout tbody { vertical-align: top; }
    #layout tfoot td { height: 4em; }
  </style>
  <link rel="stylesheet" href="/static/jquery/themes-1.9.1/base/jquery-ui.css">
  <link rel="stylesheet" href="/static/dt-1.9.4/css/jui-dt.css">
  <script type="text/javascript" src="/static/jquery/jquery-1.8.2.min.js">
  </script>
  <script type="text/javascript" src="/static/jquery/jquery-ui-1.9.1.custom.min.js">
  </script>
  <script type="text/javascript" src="/static/dt-1.9.4/js/jquery.dataTables.min.js">
  </script>
  <script type="text/javascript" src="/static/yarn.dt.plugins.js">
  </script>
  <script type="text/javascript" src="/static/dt-sorting/natural.js">
  </script>
  <style type="text/css">
    #jsnotice { padding: 0.2em; text-align: center; }
    .ui-progressbar { height: 1em; min-width: 5em }
  </style>
  <script type="text/javascript">
    $(function() {
      $('#nav').accordion({autoHeight:false, active:0});
    appsDataTable =  $('#apps').dataTable({bStateSave : true, "fnStateSave": function (oSettings, oData) {  data = oData.aoSearchCols;for(i =0 ; i < data.length; i ++) {data[i].sSearch = ""} sessionStorage.setItem( oSettings.sTableId, JSON.stringify(oData) ); }, "fnStateLoad": function (oSettings) { return JSON.parse( sessionStorage.getItem(oSettings.sTableId) );}, bJQueryUI:true, sPaginationType: 'full_numbers', iDisplayLength:20, aLengthMenu:[20, 40, 60, 80, 100], 'aaData': appsTableData, bDeferRender: true, bProcessing: true
, aoColumnDefs: [
{'sType':'natural', 'aTargets': [0], 'mRender': parseHadoopID }
, {'sType':'numeric', 'aTargets': [6, 7], 'mRender': renderHadoopDate }
, {'sType':'numeric', bSearchable:false, 'aTargets':[17], 'mRender': parseHadoopProgress }], aaSorting: [[0, 'desc']]}).fnSetFilteringDelay(188);
    });
  </script>
  <div id="jsnotice" class="ui-state-error">
    This page will not function without javascript enabled. Please enable javascript on your browser.
  </div>
  <script type="text/javascript">
    $('#jsnotice').hide();
  </script>
  <table id="layout" class="ui-widget-content">
    <thead>
      <tr>
        <td colspan="2">
          <div id="header" class="ui-widget">
            <div id="user">
              Logged in as: dr.who
            </div>
            <div id="logo">
              <img src="/static/hadoop-st.png">
            </div>
            <h1>
              All Applications
            </h1>
          </div>
        </td>
      </tr>
    </thead>
    <tfoot>
      <tr>
        <td colspan="2">
          <div id="footer" class="ui-widget">
          </div>
        </td>
      </tr>
    </tfoot>
    <tbody>
      <tr>
        <td id="navcell">
          <div id="nav">
            <h3>
              Cluster
            </h3>
            <ul>
              <li>
                <a href="/cluster/cluster">About</a>
              <li>
                <a href="/cluster/nodes">Nodes</a>
              <li>
                <a href="/cluster/nodelabels">Node Labels</a>
              <li>
                <a href="/cluster/apps">Applications</a>
                <ul>
                  <li>
                  <li>
                    <a href="/cluster/apps/NEW">NEW</a>
                  <li>
                    <a href="/cluster/apps/NEW_SAVING">NEW_SAVING</a>
                  <li>
                    <a href="/cluster/apps/SUBMITTED">SUBMITTED</a>
                  <li>
                    <a href="/cluster/apps/ACCEPTED">ACCEPTED</a>
                  <li>
                    <a href="/cluster/apps/RUNNING">RUNNING</a>
                  <li>
                    <a href="/cluster/apps/FINISHED">FINISHED</a>
                  <li>
                    <a href="/cluster/apps/FAILED">FAILED</a>
                  <li>
                    <a href="/cluster/apps/KILLED">KILLED</a>
                </ul>
              <li>
                <a href="/cluster/scheduler">Scheduler</a>
            </ul>
            <h3>
              Tools
            </h3>
            <ul>
              <li>
                <a href="/conf">Configuration</a>
              <li>
                <a href="/logs">Local logs</a>
              <li>
                <a href="/stacks"

1685468267 | 2024-05-28T15:18:56.384221

8090 / tcp

HTTP/1.1 200 
Date: Tue, 28 May 2024 15:18:55 GMT
Server: Apache/2.4.29 (Ubuntu)
Cache-Control: no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Confluence-Request-Time: 1716909535970
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-Accel-Buffering: no
Vary: User-Agent
Content-Type: text/html;charset=UTF-8
Connection: close
Content-Length: 29571

-2031469209 | 2024-05-29T00:05:44.356948

8098 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1341916997 | 2024-05-28T22:55:47.003883

8099 / tcp

HTTP/1.1 302 Found
Server: nginx
Date: Tue, 28 May 2024 22:55:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 106
Connection: close
Cache-Control: no-cache
Location: https://47.108.60.108:8099/users/sign_in
Set-Cookie: experimentation_subject_id=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqVXlNbVkyTkRjMkxXWmhZMkV0TkRjNU9DMWlZV1E1TFRnMk5UazFNamM0T0dWaE15ST0iLCJleHAiOm51bGwsInB1ciI6ImNvb2tpZS5leHBlcmltZW50YXRpb25fc3ViamVjdF9pZCJ9fQ%3D%3D--a357dcf80e78682c29a66ef07291a8aa44194dbf; path=/; expires=Tue, 28 May 2044 22:55:45 GMT; HttpOnly
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: DENY
X-Gitlab-Feature-Category: projects
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01FQAZPV0GHMT4EW70PC55F8FC
X-Runtime: 0.031441
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Referrer-Policy: strict-origin-when-cross-origin

-2031469209 | 2024-05-19T21:52:13.440960

8100 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-19T07:17:24.133839

8108 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T21:27:42.246721

8112 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:13:46.456984

8123 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T04:23:25.586177

8126 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

411540654 | 2024-05-29T01:41:17.227440

8139 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

<html><head><title>Document Error: Unauthorized</title></head>
<body><h2>Access Error: Unauthorized</h2>
<p>Access to this document requires a User ID</p></body></html>

1094048410 | 2024-05-28T21:34:22.332321

8140 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-839968989 | 2024-05-29T03:11:08.507192

8181 / tcp

HTTP/1.1 200 Ok
Server: lighttpd/1.4.35
Date: Wed, 29 May 2024 03:11:08 GMT
Content-Type: text/html
Content-Encoding: 
Last-Modified: Mon, 11 Jan 2021 09:30:38 GMT
Strict-Transport-Security: max-age=60
Connection: close
Content-Length: 387

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="refresh" content="0; URL=/cgi-bin/luci" />
</head>
<body>
<a style="color: white; text-decoration: none" href="/cgi-bin/luci">LuCI - Lua Configuration Interface</a>
</body>
</html>

-2031469209 | 2024-05-27T17:34:03.925741

8184 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-05T19:31:32.498768

8190 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T00:35:41.444206

8200 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T04:33:17.354521

8241 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1191162421 | 2024-05-28T23:09:08.851887

8291 / tcp

MikroTik Winbox:
  index:
    advtool.dll: 6.32.4
    dhcp.dll: 6.32.4
    hotspot.dll: 6.32.4
    mpls.dll: 6.32.4
    ppp.dll: 6.32.4
    roteros.dll: 6.32.4
    roting4.dll: 6.32.4
    secure.dll: 6.32.4
    system.dll: 6.32.4
    wlan5.dll: 6.32.4

-2031469209 | 2024-05-29T01:36:19.673079

8333 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:27:49.425564

8334 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-25T23:07:01.494580

8402 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-12T04:15:13.165082

8403 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-03T22:26:05.302933

8404 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-03T21:54:53.543283

8405 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-23T19:53:14.989472

8415 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-08T23:14:40.668827

8420 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

1558992965 | 2024-05-16T09:13:02.281904

8443 / tcp

HTTP/1.1 200 OK
Date: Thu, 16 May 2024 09:13:02 GMT
Server: IPOffice/
Etag: 2001-10-03T03:11:48:000
Last-Modified: Wed, 03 Oct 2001 03:11:48 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Type: text/html; charset=utf-8
Content-Encoding: 
Content-Length: 7697

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 551613 (0x86abd)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Avaya Inc, CN=ci6310.g-trend.com.tw, ST=New Jersey, L=Basking Ridge, OU=GCS
        Validity
            Not Before: Feb 12 14:00:00 2018 GMT
            Not After : Feb 12 14:00:00 2025 GMT
        Subject: C=US, O=Avaya Inc, CN=ci6310.g-trend.com.tw, ST=New Jersey, L=Basking Ridge, OU=GCS
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:c2:d3:32:92:b7:de:e4:46:5e:99:e5:0f:3d:a1:
                    4f:c2:7d:41:87:4a:91:4a:31:a3:e0:24:10:26:2f:
                    1b:7e:19:e4:cd:5a:a3:34:5d:cf:dd:b3:36:e4:a6:
                    dd:54:d9:96:79:3c:97:ea:17:28:5f:74:0c:b7:a8:
                    17:15:9f:a1:29:c5:29:ed:50:fe:2f:bb:0d:6a:d7:
                    76:65:ca:c0:4e:ed:c7:36:ca:4b:f6:45:93:4a:61:
                    9d:a2:f6:e4:26:d1:1e:9d:9d:9d:13:93:48:2a:b3:
                    84:64:35:2f:fe:45:a0:c8:3e:0c:96:8a:b2:d6:6a:
                    d2:10:d6:48:da:d4:ba:8e:ff:bd:21:c4:6f:b8:11:
                    3a:fa:77:e9:fc:5b:82:7b:f9:ea:1d:71:37:04:bd:
                    42:4b:0b:aa:01:30:96:98:bd:34:c1:9e:56:7d:f8:
                    ac:39:da:29:1b:a5:ef:81:b2:e7:b4:7b:ea:6d:f7:
                    08:2a:29:74:f6:b4:88:2b:59:a9:bb:d7:f3:2d:a1:
                    85:7e:8b:9f:30:cc:68:d0:f5:4c:95:b5:37:49:e7:
                    04:b0:61:6c:44:94:be:2e:cc:32:26:21:6b:4c:97:
                    63:10:67:0f:5c:f9:bc:38:71:d9:ee:00:b1:4d:46:
                    29:2c:ba:2e:47:77:99:3f:49:45:00:c3:98:2f:1b:
                    74:6e:97:a8:a6:c8:c3:55:51:67:8f:27:c4:01:8a:
                    21:e7:7c:7e:b5:e3:ec:9c:ed:78:db:bd:10:57:d6:
                    19:cd:05:36:52:aa:38:ce:20:0b:d7:6a:90:c2:9f:
                    cd:58:13:5e:96:bc:22:6b:23:ee:0f:b5:d4:4b:25:
                    6f:ed:9f:c7:68:14:fb:6d:58:82:9d:f0:c6:32:4c:
                    28:5b:06:86:9f:2d:b9:24:5b:70:fa:1e:05:4c:b6:
                    93:c9:2c:4c:5b:3d:ab:61:fa:a7:a4:3f:10:da:bd:
                    c2:c2:dd:46:16:71:a2:a9:49:05:8a:fe:6b:00:2a:
                    a6:31:e8:c1:c4:3d:56:54:03:59:77:e9:eb:02:e5:
                    c3:7e:58:ae:89:6e:b0:b9:36:66:06:11:65:b4:37:
                    5c:4d:8d:72:e4:2a:2f:d8:c8:a7:e8:83:f6:68:f0:
                    a4:f2:33:8a:19:fc:98:94:e5:48:8e:ea:07:ec:05:
                    46:46:d1:79:8a:61:d9:3e:13:97:58:ab:9e:23:b4:
                    58:83:1e:ef:fb:b4:1f:1a:3a:84:07:0a:1d:59:5c:
                    ad:32:03:33:6a:3c:50:95:9a:93:81:64:87:9a:8f:
                    c7:16:2d:eb:93:7c:15:ca:6e:d3:03:68:80:b7:b0:
                    4a:21:b1:25:91:55:95:87:bb:e7:69:01:9f:83:25:
                    cd:cb:9d
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        68:68:7b:2e:5b:da:8b:e7:02:bf:2f:58:58:9b:ac:83:6c:73:
        4a:81:ca:b6:be:e4:fc:3e:dc:fc:b8:1a:d8:31:c5:c1:4b:3e:
        11:93:61:13:9a:cc:97:04:97:2d:59:bf:9a:c9:fa:75:d5:fc:
        44:51:7b:2b:bf:3d:6a:e1:4f:d7:13:4e:30:73:d2:d4:f0:94:
        6a:1d:a3:16:9a:62:4d:c7:cf:29:e4:a0:85:63:c2:7c:9b:b9:
        17:7c:3b:c0:c2:e3:fb:d6:7a:6c:81:1c:cb:d2:1d:53:02:a5:
        52:cc:39:9e:9b:be:a0:39:8f:26:fa:60:40:fd:3f:ac:19:4d:
        5f:d4:af:99:37:dd:56:d7:86:17:fc:2c:f1:f7:06:8e:b5:7a:
        0b:74:f2:30:77:1c:d5:c0:13:80:8d:c9:c7:8b:7a:ae:95:f9:
        a0:8d:bd:ae:aa:53:16:68:16:8c:b3:66:e1:72:62:2f:fb:8f:
        08:2b:b6:c0:d5:bc:51:37:29:9b:59:62:e5:01:2a:71:34:f9:
        05:23:1b:1c:79:57:8f:1e:cd:13:78:60:eb:f7:bd:69:7f:a7:
        94:7c:e9:41:5a:71:bc:48:91:ef:14:38:7c:5e:fa:7b:3b:a8:
        cf:89:30:fd:2e:6b:ef:f6:76:ab:39:dd:d7:74:46:1d:5d:88:
        71:37:40:92:06:78:80:cd:a8:a0:46:a3:b0:03:10:49:28:7e:
        d8:21:51:4b:2b:ed:29:82:55:c3:2c:07:a9:13:6f:14:32:aa:
        a1:14:fc:2d:7f:89:22:f8:c2:25:0b:ad:4b:59:85:6b:24:50:
        4a:7e:6f:82:da:cc:27:4c:dd:c6:d8:f6:5d:2d:da:d5:52:b2:
        89:61:f9:8a:cf:b8:75:da:df:4c:f3:6f:7c:ab:c1:68:c7:12:
        0a:45:6c:d1:e9:3b:dd:3f:cc:c7:42:38:19:5a:55:d3:c4:2a:
        00:6a:ab:97:d8:2b:4c:f1:e7:36:33:76:21:2b:0e:c7:fa:7a:
        79:c6:b9:5b:17:3b:dd:71:ff:d2:1c:ca:1a:a7:7f:29:81:a7:
        2b:a3:56:be:11:51:82:be:d6:88:50:8f:4a:5b:87:e1:32:aa:
        ae:71:c6:cc:18:cb:1c:f2:68:04:d0:2c:7f:5b:7d:73:78:9d:
        97:90:b0:f9:9b:35:67:8f:0c:87:5b:c7:3b:1f:b7:32:7a:f7:
        32:4f:63:b4:e0:d1:f6:85:38:bb:aa:02:4e:8a:99:1d:e2:c7:
        98:4d:a4:d3:bb:ab:dc:a4:6a:7e:a9:54:94:a9:37:1e:5d:7e:
        be:bb:6a:ea:35:d8:77:de:4c:61:cb:96:f3:81:08:b0:e2:f5:
        28:62:76:26:8e:2f:1e:e6

-98713449 | 2024-05-14T09:09:41.841076

8447 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

1094048410 | 2024-05-28T19:41:48.823971

8500 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-1341732464 | 2024-05-29T05:15:57.600455

8545 / tcp

Ethereum RPC:
  Client: eth
  Version: v1.2.0
  Platform: Linux
  Accounts:
    0xd8712b31b07b8a9ce112b170a9094122eb3d3579

-2031469209 | 2024-05-29T04:59:41.582282

8554 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T05:55:45.163485

8575 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:53:26.124068

8649 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-10T19:06:01.618418

8700 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T05:56:47.213765

8800 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-22T00:47:34.897262

8806 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-23T12:02:05.674948

8814 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-08T10:04:33.689134

8824 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-18T19:42:41.360860

8832 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-29T00:34:22.736513

8834 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-07T22:14:38.659193

8840 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-17T23:08:22.429466

8855 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-24T04:27:15.737597

8866 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-20T11:40:16.895249

8868 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-12T01:10:35.972739

8874 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-21T14:17:06.243247

8877 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-13T20:12:34.906276

8878 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

1094048410 | 2024-05-28T21:46:38.104832

8880 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-983114765 | 2024-05-28T06:59:36.851129

8888 / tcp

HTTP/1.1 302 Found
Server: nginx
Date: Tue, 28 May 2024 06:59:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 106
Connection: close
Cache-Control: no-cache
Location: https://47.108.60.108:8888/users/sign_in
Set-Cookie: experimentation_subject_id=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqVXlNbVkyTkRjMkxXWmhZMkV0TkRjNU9DMWlZV1E1TFRnMk5UazFNamM0T0dWaE15ST0iLCJleHAiOm51bGwsInB1ciI6ImNvb2tpZS5leHBlcmltZW50YXRpb25fc3ViamVjdF9pZCJ9fQ%3D%3D--a357dcf80e78682c29a66ef07291a8aa44194dbf; path=/; expires=Tue, 28 May 2044 06:59:36 GMT; HttpOnly
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: DENY
X-Gitlab-Feature-Category: projects
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 01FQAZPV0GHMT4EW70PC55F8FC
X-Runtime: 0.031441
X-Ua-Compatible: IE=edge
X-Xss-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Referrer-Policy: strict-origin-when-cross-origin

1094048410 | 2024-05-29T05:47:12.375252

8889 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-98713449 | 2024-05-11T07:46:14.742971

8969 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-15T20:21:12.898780

8990 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

1347224596 | 2024-05-29T04:50:38.155823

9000 / tcp

HTTP/1.1 200 OK
Content-Length: 23
Content-Type: text/html; charset=UTF-8
Connection: close

{"rtn":108545,"msg":""}

1634741987 | 2024-05-29T04:30:26.878112

9001 / tcp

1094048410 | 2024-05-28T13:48:48.854144

9002 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-29T00:12:59.908488

9009 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-13T22:54:12.262698

9013 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-01T17:15:28.940929

9014 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-07T09:17:16.065767

9022 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-01T14:51:53.847365

9023 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-01T20:24:32.948767

9032 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-24T19:01:09.086290

9041 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-29T00:07:19.246866

9042 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-23T09:35:49.835934

9043 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-17T17:05:43.322205

9044 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-23T19:05:16.700804

9045 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-29T00:30:48.585047

9051 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2113003112 | 2024-05-29T00:52:30.675389

9080 / tcp

HTTP/1.1 200 OK
server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Set-Cookie: nagiosxi=utlj4drem7t1ss4tu12r5e29s5; expires=Mon
content-type: text/html
Content-Encoding: 
date: Wed, 29 May 2024 00:52:30 GMT
content-length: 3086

-2031469209 | 2024-05-01T14:02:14.335017

9082 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

2005929508 | 2024-05-29T04:26:09.921467

9090 / tcp

HTTP/1.0 200 OK
Date: Wed, 29 May 2024 04:26:09 GMT
Content-Type: None; charset=UTF-8
Location: http://47.108.60.108:9090/login.jsp?url=%2Findex.jsp
Content-Encoding: 
Content-Length: 4113
X-Cache: MISS from Hello
X-Cache-Lookup: MISS from Hello:8080
X-Cache: MISS from Hello
X-Cache-Lookup: MISS from Hello:8080
Via: 1.0 Hello (squid/3.1.23)
Connection: keep-alive

1094048410 | 2024-05-28T17:20:43.821796

9091 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-27T20:21:09.242005

9092 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-22T18:26:40.635193

9093 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-17T12:17:51.442962

9095 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-28T11:54:27.306190

9100 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-20T07:57:05.777379

9103 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-08T07:33:53.894357

9109 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-03T19:16:46.609106

9110 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T22:21:13.947007

9151 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T21:15:32.776960

9160 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

521951111 | 2024-05-28T19:32:58.394737

9191 / tcp

HTTP/1.1 200 OK
Date: Tue, 28 May 2024 19:32:58 GMT
Server: 
Content-Type: text/html; charset=utf-8
Content-Encoding: 
Content-Length: 12180

1701962934 | 2024-05-29T03:41:44.295579

9200 / tcp

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8

-2031469209 | 2024-05-26T14:33:42.461025

9202 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-24T11:48:15.775641

9206 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-02T10:06:50.067820

9209 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-16T11:01:56.096064

9213 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-15T12:14:26.551491

9215 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-28T19:09:44.455795

9295 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

1094048410 | 2024-05-29T04:50:08.847132

9306 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-98713449 | 2024-05-03T02:58:39.186642

9389 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-29T00:46:15.544396

9418 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-1454941180 | 2024-05-28T19:06:50.926479

9443 / tcp

HTTP/1.1 200 Ok
Date: Tue, 28 May 2024 19:06:50 GMT
Server: xxxxxxxx-xxxxx
Connection: close
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Length: 131

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 41391 (0xa1af)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Fortinet Systems, Inc., CN=localhost.localdomain, ST=Califomia, L=Seattle, OU=MyOrg
        Validity
            Not Before: Sep 19 14:00:00 2015 GMT
            Not After : Sep 19 14:00:00 2025 GMT
        Subject: C=US, O=Fortinet Systems, Inc., CN=localhost.localdomain, ST=Califomia, L=Seattle, OU=MyOrg
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:c4:b2:e2:6f:de:a1:5a:27:e8:22:1b:4c:60:f8:
                    ee:c5:c0:6e:25:f5:a8:f2:7a:05:80:df:e5:21:8a:
                    c3:01:75:60:36:1a:11:82:c9:92:3a:39:f8:22:8a:
                    b9:3a:7b:80:6f:bd:6e:03:ff:ce:1a:77:51:b2:ae:
                    6f:d6:77:66:2b:6d:c3:57:62:2a:9e:1d:c9:3f:4c:
                    f6:0c:26:ca:88:a2:b9:3e:2f:09:44:c8:1b:6c:f3:
                    08:13:b4:ec:95:1e:72:92:fd:5f:dc:6f:4d:2d:fb:
                    f8:0d:2a:ce:5e:60:a7:fd:88:40:be:ff:eb:23:9e:
                    92:67:5b:50:98:2b:0d:b6:37:f4:4d:89:c0:bc:00:
                    98:8e:78:b3:bf:f2:6c:0e:a5:97:e2:b9:51:c6:8b:
                    af:25:d9:e6:9c:aa:c3:1d:d3:6b:1d:af:b0:b4:34:
                    b0:28:16:9b:f7:da:8e:e0:2a:fd:6b:f5:b4:18:99:
                    8b:15:31:27:2f:6a:4e:19:8e:da:7f:fe:65:b3:e3:
                    d4:e6:eb:c1:b6:48:a9:2e:c2:5b:c9:91:57:4a:89:
                    bd:d5:55:de:69:39:d8:fc:d7:37:65:e4:e6:46:52:
                    23:1d:77:90:e2:39:a6:14:cf:26:af:4f:c4:68:ad:
                    73:47:e1:82:d7:3b:96:a3:4f:91:a2:92:31:1c:d5:
                    d8:07:9a:0d:ea:1b:de:01:e8:bd:2e:d2:9f:09:63:
                    08:19:fa:61:b9:4e:a1:2e:7d:95:bf:c2:9c:e5:be:
                    f3:54:ae:ee:38:93:d6:ed:85:0d:71:6d:bf:c4:70:
                    2d:18:7e:10:55:52:09:8c:83:4f:f7:92:a1:3f:22:
                    27:20:e1:03:c4:65:76:46:81:8c:93:65:01:ab:08:
                    0e:8e:d8:34:7b:2e:6c:f5:e8:b4:36:22:ec:5f:c3:
                    d0:d8:0c:3c:04:5d:98:34:5c:fc:81:73:ac:57:6b:
                    42:f6:0d:3b:47:db:b1:c0:eb:3b:81:0b:33:7a:ae:
                    0c:a6:ad:7b:52:3f:bb:e8:7a:93:cd:86:b0:31:2b:
                    c9:2c:37:f6:c5:7d:18:77:0d:a1:66:fb:d0:92:49:
                    57:eb:f4:52:d9:bb:8f:c4:74:2e:12:9b:66:75:f5:
                    6f:c9:3c:64:84:31:76:c8:3e:e6:31:33:5e:51:89:
                    ca:cf:3b:ab:45:1f:d1:cb:72:87:31:d9:33:68:59:
                    02:f2:dc:ee:04:bf:9e:6e:2c:61:26:e7:e0:9d:76:
                    58:57:d6:7f:a8:12:5a:17:a3:d5:21:79:91:f1:d5:
                    56:59:2f:e7:2d:fc:01:56:6f:19:ea:0b:48:db:88:
                    21:16:56:05:d3:06:97:6d:60:9a:c2:e3:3b:e4:48:
                    f4:3c:81
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        8b:bc:3e:99:79:87:f7:4c:9f:ef:c9:6b:31:6c:ef:d2:08:34:
        a3:33:11:2b:c4:0b:28:16:49:2f:4a:24:d7:86:93:e3:ff:d5:
        f4:d8:8d:4a:3a:55:28:cf:5e:b0:66:56:dd:a4:35:40:4a:b7:
        2c:26:08:2e:56:1a:c8:3e:f2:e5:ef:a6:83:1e:e8:1a:88:e9:
        a7:85:41:70:de:cb:50:a2:64:63:ef:a0:e9:16:c5:5d:ce:dd:
        2d:a9:7b:d2:a8:0e:9f:11:12:82:db:f5:e2:a3:9f:e2:59:88:
        24:2b:d0:45:f6:f8:6f:1c:59:2c:d4:8b:b1:21:28:5f:17:33:
        48:e6:37:c5:07:93:75:ba:aa:80:42:71:32:41:60:b0:68:03:
        4e:e2:e8:50:0b:7e:48:cb:3c:cb:6a:f6:88:1f:b5:67:d8:79:
        1c:40:8e:20:f5:37:d9:21:98:b1:83:bd:34:b6:6c:1f:fe:51:
        53:1f:65:9f:5f:2c:3a:12:9e:a6:1f:b7:92:a3:d3:46:ac:c5:
        47:d8:1c:bf:1f:09:5a:85:89:90:71:bf:e5:86:1f:a4:e0:f5:
        33:29:6c:e8:c6:64:d3:3e:ba:1d:6d:7b:c1:5d:82:94:4b:2f:
        3b:6b:88:ad:20:df:63:da:ec:80:4f:b1:2f:94:31:ab:82:67:
        c5:c2:c2:12:fe:bf:0e:93:61:fc:58:19:03:9c:f8:91:e9:df:
        ab:14:01:b6:c4:98:fc:c1:1f:11:f8:26:ac:b7:21:3d:e8:80:
        7b:e9:4e:44:73:74:be:3b:7d:ea:fa:ad:8b:f6:04:f4:f0:a2:
        77:1d:ae:77:6d:36:0f:ea:bf:bf:ee:d9:23:8c:51:0c:a3:78:
        f9:fd:f3:e1:e0:72:6b:02:0c:2e:7a:4a:28:1c:ca:fc:fc:24:
        ca:26:9e:e7:84:73:65:b2:93:eb:65:01:77:8c:1b:8b:ab:1e:
        bf:ab:bf:b7:d6:59:79:23:cc:bc:ec:05:d1:c7:f5:75:59:1c:
        e9:e1:23:01:92:bc:bb:31:83:86:6d:cd:94:69:70:fe:83:00:
        6a:e9:7d:4a:d8:bc:5d:c7:34:67:ba:dd:7a:2f:e7:ae:69:5a:
        54:4a:c1:84:a5:cc:5e:5d:70:e7:3f:5d:b8:d9:b6:3c:80:b5:
        59:53:00:44:92:55:b4:44:34:79:7d:20:e0:4d:f4:df:bf:9e:
        1a:e3:bf:eb:35:2a:87:c3:cf:58:95:a6:b2:5f:20:0e:52:29:
        54:5e:f4:cc:50:8a:31:5b:0d:a0:e2:7b:19:02:2d:a5:85:a9:
        54:49:db:d3:48:18:a3:2b:d3:3e:57:1e:0f:e2:62:82:d6:98:
        94:9b:c9:3d:15:f9:56:91

-2031469209 | 2024-05-28T18:47:11.399234

9530 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-28T19:43:41.535263

9595 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T05:38:01.699890

9600 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T14:06:19.398821

9761 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T00:01:01.085142

9800 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T01:01:57.368489

9869 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-04T16:57:20.060945

9876 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

411540654 | 2024-05-28T21:45:36.072354

9943 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

<html><head><title>Document Error: Unauthorized</title></head>
<body><h2>Access Error: Unauthorized</h2>
<p>Access to this document requires a User ID</p></body></html>

-2031469209 | 2024-05-28T11:46:32.456415

9944 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T01:39:48.314362

9981 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-29T01:13:38.784632

9998 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

523246302 | 2024-05-29T02:43:59.006620

9999 / tcp

HTTP/1.1 200 OK
Date: Wed, 29 May 2024 02:43:58 GMT
ontent-Type: text/html; charset=utf-8
Content-Encoding: 
Content-Length: 1709
Connection: close

-426268318 | 2024-05-28T19:14:23.813288

10000 / tcp

HTTP/1.0 200 Document follows
Date: Tue, 28 May 2024 19:14:23 GMT
Server: MiniServ/1.890
Connection: close
Auth-type: auth-required=1
Set-Cookie: redirect=1; path=/
Set-Cookie: testing=1; path=/; secure
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; frame-src 'self'; child-src 'self'
Content-Type: text/html; charset=UTF-8
Content-Encoding: 
Content-Length: 3727

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 578 (0x242)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=AU, O=Webmin, ST=Some-State
        Validity
            Not Before: Mar 19 14:00:00 2020 GMT
            Not After : Mar 19 14:00:00 2030 GMT
        Subject: C=AU, O=Webmin, ST=Some-State
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:de:cf:0f:06:d1:b0:13:ba:59:59:d9:f3:ae:19:
                    40:43:53:60:66:6c:7c:8a:10:7d:c0:d3:3c:d9:00:
                    52:22:10:29:65:b0:77:92:a5:82:a5:59:c2:70:01:
                    17:6e:93:a9:64:4e:84:70:5b:bc:b9:32:ac:32:f5:
                    48:99:07:cc:2b:1f:5a:0f:c4:35:19:07:9d:7c:d7:
                    52:b5:c6:91:b8:b4:d5:99:26:ac:76:2d:58:74:ed:
                    75:1b:dd:cd:85:2a:b0:d1:52:b3:0a:4e:7d:8c:b0:
                    65:b5:d2:ef:5b:32:fa:54:6b:24:28:f1:ef:e6:8d:
                    d8:8b:07:2c:ea:26:2d:05:18:d1:92:6a:5b:36:f7:
                    e4:29:ec:e8:8a:0c:63:07:04:34:55:f4:80:19:1e:
                    32:f4:0c:a1:81:e2:d1:05:c8:91:dc:58:a9:ef:68:
                    c1:5a:82:4c:5c:e2:ef:3b:5a:a0:ee:e5:b4:0f:a7:
                    f5:c1:5b:2a:09:c0:c0:e7:cb:9c:3b:f5:c6:18:90:
                    2c:a9:27:7c:8d:bb:50:2f:f1:a8:50:af:25:4e:49:
                    f4:12:2b:d6:fd:44:3a:d0:e4:7b:cc:7e:f7:60:a3:
                    65:71:ac:9e:a4:a5:d1:94:a5:df:5e:bd:07:03:f5:
                    8c:36:07:37:b2:40:d2:2f:04:4b:32:6d:aa:7c:38:
                    7a:bf:80:66:52:bc:6e:79:15:5b:11:a6:0e:b5:ed:
                    a4:b3:8b:7c:36:3d:6b:fd:b7:7e:eb:0e:66:28:5b:
                    e7:44:a0:eb:b9:8b:e3:b2:8c:b7:10:e6:51:94:f3:
                    e8:9d:1b:7d:e1:01:12:50:e8:6a:52:c9:55:5a:1d:
                    87:43:34:b1:d3:c0:f6:94:ce:a1:f1:85:fd:7e:23:
                    a2:95:79:c6:8c:69:d0:19:0a:10:45:ba:02:d8:d2:
                    bc:24:7f:99:a6:e0:af:23:0a:ad:24:e0:a9:77:bb:
                    f2:56:81:07:ce:69:ca:e5:ac:d8:dc:24:db:19:6a:
                    86:5a:f5:9f:1d:43:7e:8a:0e:92:cb:24:72:70:bf:
                    9b:c1:2f:a2:af:bc:03:b2:2a:04:84:bb:df:72:73:
                    a9:ef:4c:c9:2c:82:f2:1a:90:99:a7:e9:de:af:4d:
                    c5:af:19:dd:5d:39:47:03:0e:8e:8f:f7:d1:01:53:
                    be:4d:eb:87:79:46:0f:71:10:3e:2f:ce:00:f8:36:
                    e4:72:45:91:6f:48:91:05:c4:23:f3:d9:58:3d:1a:
                    06:43:d3:f9:33:59:47:fa:10:5a:5e:aa:96:c0:5d:
                    89:cf:8f:ce:41:78:40:94:c9:9c:31:b1:f1:ed:b6:
                    27:5a:24:94:91:e6:d6:63:ca:98:45:b6:7b:a2:7b:
                    94:86:83
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        25:7d:b7:37:24:df:87:45:30:78:4a:da:f8:78:f0:24:ca:a0:
        00:a9:cb:d3:fc:47:a2:af:a2:93:7c:23:16:d0:02:66:a7:e1:
        4d:44:2c:3b:c2:42:64:82:67:b2:af:78:e7:93:7f:c1:0d:80:
        a4:85:af:04:cf:2a:a3:30:73:c7:9b:b0:8d:d5:d2:5d:bd:ad:
        0b:89:b8:61:22:27:48:c6:4f:66:96:7e:4a:02:4d:e6:28:a9:
        8e:0b:81:a2:d6:f2:00:e8:15:2b:27:23:ab:95:27:bd:64:b9:
        a8:07:87:6a:a0:72:0d:13:a8:74:90:b0:a8:62:c1:06:22:c5:
        51:f2:2c:3e:9e:e2:2b:9a:0f:b5:00:4f:c1:1b:bc:e3:8c:df:
        23:f5:12:af:c8:59:21:5c:4a:f5:db:9a:4c:7e:2b:48:79:93:
        05:d4:d0:e7:db:ba:9c:fd:77:f9:24:cf:89:99:32:6c:92:f6:
        82:fe:3f:0b:2c:5f:d3:95:12:24:45:87:16:f8:ba:56:6e:6e:
        bf:70:de:41:16:e6:40:3d:7b:04:78:7d:05:36:c7:4a:e5:ab:
        4c:a6:eb:20:ba:fe:ca:50:50:c7:c7:91:eb:03:a2:55:a8:3c:
        81:5b:87:d6:5e:e7:50:95:c4:e4:b9:04:3b:1f:31:5e:55:5d:
        81:7d:4c:ef:3b:e8:96:79:7f:ed:c3:f8:90:68:76:eb:a0:16:
        5c:7d:a3:9d:95:40:ee:0b:cc:81:e9:34:2c:fa:7b:3d:5c:b8:
        e2:cb:c7:1c:80:bf:d3:18:a3:92:12:34:48:6a:34:fc:31:90:
        4a:b4:79:bf:72:a4:2a:97:d7:9e:28:25:32:d6:e1:68:55:fb:
        d1:58:be:b3:d9:57:b1:ec:75:f1:85:8c:b5:6d:0f:8c:50:94:
        f0:6a:f6:76:a3:33:d6:7d:04:61:22:83:85:9b:6f:60:ac:97:
        0f:86:de:9b:ec:09:f8:b5:5f:a8:cc:28:b2:64:03:3a:a6:42:
        24:af:4a:e7:aa:b4:3a:10:e7:62:ba:4d:89:66:0a:7c:94:43:
        c8:38:2a:59:f5:81:57:46:6d:98:c9:af:18:ee:cf:70:b1:58:
        72:78:0e:7b:8f:52:09:39:4c:bc:24:98:48:57:d3:06:f9:f2:
        7c:f1:3b:fc:b3:4c:f3:62:7e:d0:43:3d:0a:cc:81:80:ae:83:
        1a:74:e4:94:50:7e:9b:37:c1:c2:97:de:37:b3:a5:62:6d:fe:
        99:a3:2b:80:3a:0c:32:43:4b:88:c6:2d:07:54:af:d2:9a:39:
        83:d3:c0:33:19:b2:0f:22:f8:63:52:bc:6a:b1:3b:73:4a:00:
        34:8f:4c:a0:0d:6e:60:ec

-2031469209 | 2024-05-28T23:41:56.047995

10001 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T01:35:10.948860

10243 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-28T19:08:43.427006

10250 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-1454941180 | 2024-05-29T04:37:45.608333

10443 / tcp

HTTP/1.1 200 Ok
Date: Wed, 29 May 2024 04:37:45 GMT
Server: xxxxxxxx-xxxxx
Connection: close
Content-Type: text/html
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Length: 131

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 41391 (0xa1af)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Fortinet Systems, Inc., CN=localhost.localdomain, ST=Califomia, L=Seattle, OU=MyOrg
        Validity
            Not Before: Sep 19 14:00:00 2015 GMT
            Not After : Sep 19 14:00:00 2025 GMT
        Subject: C=US, O=Fortinet Systems, Inc., CN=localhost.localdomain, ST=Califomia, L=Seattle, OU=MyOrg
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:d5:11:1f:ef:94:a6:e2:b8:ce:8a:96:76:6d:4e:
                    ef:b6:01:af:4c:79:a6:d4:0a:5e:4d:43:9d:0d:1a:
                    6c:bb:58:f9:7d:4b:a8:b6:4d:88:3a:52:fd:d6:11:
                    a0:70:64:56:14:89:c0:5b:80:6e:39:e8:af:2e:a8:
                    6f:3a:7e:3e:34:4b:08:a7:94:13:02:25:41:c7:f5:
                    ae:16:da:e4:88:29:ba:87:6e:98:13:92:cb:87:91:
                    20:53:5c:ae:82:f5:66:b1:1f:a3:8e:92:ea:a2:04:
                    bc:3e:e8:3e:a4:76:74:28:d1:65:7f:37:ec:4b:62:
                    31:a1:0c:f1:19:b6:e0:a9:e7:08:5f:58:29:d9:98:
                    46:90:b7:e2:ad:70:f7:94:f2:01:52:e3:8b:d0:72:
                    2e:b4:08:92:92:6b:32:6d:50:56:94:a1:cd:2f:19:
                    b1:1c:af:b0:bf:a1:4e:86:fa:15:ed:96:13:d3:87:
                    b8:f3:70:8e:fb:6b:6d:08:e7:e0:96:af:4b:ab:9a:
                    bd:3d:e6:1f:27:bb:e1:c7:8b:e4:57:d7:ca:d5:d9:
                    2b:7d:77:29:8c:9c:92:7d:82:73:72:06:17:52:d7:
                    c6:ac:87:f1:02:b8:61:a1:32:1f:18:ca:70:be:39:
                    4f:4b:10:d8:c2:89:e0:69:2b:c4:d6:51:cf:9b:5a:
                    2b:eb:37:38:3d:54:72:42:e4:32:fb:f8:08:79:c5:
                    0c:5f:9a:78:98:16:c0:48:62:77:72:f9:66:9e:c7:
                    1a:37:54:49:be:91:0e:38:fa:31:80:b1:1c:66:c7:
                    c5:60:dd:b2:c4:b1:a4:c2:ea:01:d5:67:4d:ff:87:
                    ed:cc:61:b2:31:8f:5b:09:e1:fc:2a:8c:67:cd:61:
                    d4:df:34:ba:4f:58:41:68:4a:90:75:ac:94:ba:78:
                    a6:76:5d:ed:e7:63:e7:6e:f6:c3:6b:64:f4:58:51:
                    d2:9e:8c:7c:fb:15:c7:e1:b8:22:bc:a6:54:64:35:
                    ac:26:dd:f6:d4:4d:ed:a4:79:16:a2:4b:e3:f2:1c:
                    32:9f:3f:b2:37:e1:d0:08:04:9f:35:a0:58:52:56:
                    17:dd:df:82:26:5f:09:3f:fa:fa:dd:6d:c5:2e:4b:
                    45:67:a7:1b:e9:35:a9:db:0a:98:56:9d:72:ea:7b:
                    a6:3f:fb:0c:7b:0f:fe:ed:c5:4e:1d:cb:de:70:8b:
                    1b:bd:80:b5:2f:6a:11:fd:5c:3c:ed:50:15:cd:ce:
                    38:81:f7:63:60:cc:40:ee:d7:c2:b0:a8:64:c4:5e:
                    62:b8:f6:14:48:89:61:0f:f1:a5:b9:76:ee:5a:e6:
                    fe:c6:87:1d:8a:22:bb:46:6c:8d:92:41:4f:f5:d5:
                    a7:43:d1
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4b:8f:a0:a7:bd:4f:6c:03:af:da:74:65:3b:71:82:6a:64:bb:
        45:3a:37:3a:67:a7:9d:74:d4:19:bb:37:86:51:b8:ef:49:ff:
        af:db:d5:4d:b2:a6:0b:f4:5b:bb:5e:1d:54:ac:53:75:8b:af:
        e4:3b:26:29:f1:6c:e1:38:b4:25:d7:a1:93:37:1b:4c:fd:7a:
        a6:85:c9:9a:36:59:f4:d4:6f:85:6b:4e:49:b1:b9:38:a8:c0:
        13:d6:c2:54:b3:66:03:66:0d:88:22:91:53:d9:22:4b:a2:ee:
        cb:71:bf:5a:62:70:d9:e2:27:ab:6e:66:83:13:d2:1c:8d:e9:
        d8:6e:98:11:a3:06:7e:25:4c:ab:a5:8a:14:d8:63:56:8b:3e:
        ff:6d:d5:6a:61:75:65:59:c8:d6:7f:fb:9c:f1:fc:80:a7:9e:
        a0:19:6d:df:7e:00:94:dc:d4:07:1a:2c:2f:47:0d:47:92:3d:
        08:8f:11:09:64:99:db:76:cb:cf:24:d0:c8:cd:87:26:2d:f8:
        48:50:87:be:94:43:86:54:9d:ca:d0:f5:0c:de:37:cc:8f:1b:
        c5:94:9a:eb:1d:99:ca:13:c4:41:51:18:eb:89:34:08:17:ce:
        8b:f8:9e:18:e8:48:2a:25:30:c1:49:60:1e:e2:b2:b2:83:94:
        f6:c6:2a:8a:94:1e:60:9b:f8:b6:66:f5:21:d3:9b:53:98:0d:
        42:05:58:c0:15:21:a4:f2:da:44:96:4a:8c:02:1b:3c:2c:a9:
        1b:7f:1c:ed:58:82:44:33:3d:7d:35:34:ac:37:1d:be:55:e6:
        eb:25:d5:24:96:ff:bb:53:2a:be:9e:f7:de:9b:2d:c6:79:68:
        da:0e:82:74:34:56:59:de:fa:f2:be:23:9e:37:fb:c3:5e:10:
        2a:f1:a9:2a:86:37:81:d8:cc:4c:db:8c:da:de:b6:1e:0d:dd:
        79:aa:8d:3e:27:d4:71:cb:a1:74:6c:1c:2a:a6:8a:81:2d:9c:
        20:3a:91:28:9a:46:28:18:1e:6d:88:f7:54:4e:a6:79:ae:3b:
        c5:fd:f8:3a:e0:33:61:cb:97:23:26:b4:11:99:2f:d0:35:b9:
        ee:36:26:db:e1:ac:05:fc:ef:c0:10:18:40:67:bd:aa:26:64:
        77:ae:8c:09:8d:66:2c:8d:21:0c:76:35:96:7a:80:74:17:0b:
        a3:79:05:2d:75:33:aa:7c:f6:5a:0b:80:d9:86:bd:48:ca:aa:
        75:53:3d:a0:79:7f:de:1e:b6:11:9e:8d:3c:19:cb:f2:b8:ea:
        e6:d8:23:81:a9:7c:c6:00:88:06:6d:01:53:b5:fe:e8:34:df:
        1b:f3:63:38:2c:e7:a3:40

-2031469209 | 2024-05-28T11:50:20.268484

10554 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-02T15:00:22.572898

10909 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-19T21:27:07.819183

10911 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-28T20:42:25.328534

11000 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T04:40:34.900500

11112 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:11:29.152477

11210 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

2034197593 | 2024-05-28T21:15:26.019035

11211 / tcp

stats
STAT pid 1296
STAT uptime 4119406
STAT time 1502202008
STAT version 1.4.22
STAT libevent 2.0.21-stable
STAT pointer_size 64
STAT rusage_user 90.704000
STAT rusage_system 142.976000
STAT curr_connections 5
STAT total_connections 458196
STAT connection_structures 25
STAT reserved_fds 20
STAT cmd_get 458100
STAT cmd_set 458109
STAT cmd_flush 0
STAT cmd_touch 0
STAT get_hits 430915
STAT get_misses 27185
STAT delete_misses 0
STAT delete_hits 0
STAT incr_misses 0
STAT incr_hits 0
STAT decr_misses 0
STAT decr_hits 0
STAT cas_misses 0
STAT cas_hits 0
STAT cas_badval 0
STAT touch_hits 0
STAT touch_misses 0
STAT auth_cmds 0
STAT auth_errors 0
STAT bytes_read 95465867
STAT bytes_written 70039601
STAT limit_maxbytes 4294967296
STAT accepting_conns 1
STAT listen_disabled_num 0
STAT threads 4
STAT conn_yields 0
STAT hash_power_level 16
STAT hash_bytes 524288
STAT hash_is_expanding 0
STAT malloc_fails 0
STAT bytes 1715130
STAT curr_items 4631
STAT total_items 458109
STAT expired_unfetched 18622
STAT evicted_unfetched 0
STAT evictions 0
STAT reclaimed 18624
STAT crawler_reclaimed 0
STAT lrutail_reflocked 0
END
stats settings
STAT maxbytes 4294967296
STAT maxconns 1024
STAT tcpport 11211
STAT udpport 11211
STAT inter 10.2.2.118
STAT verbosity 0
STAT oldest 0
STAT evictions on
STAT domain_socket NULL
STAT umask 700
STAT growth_factor 1.25
STAT chunk_size 48
STAT num_threads 4
STAT num_threads_per_udp 4
STAT stat_key_prefix :
STAT detail_enabled no
STAT reqs_per_event 20
STAT cas_enabled yes
STAT tcp_backlog 1024
STAT binding_protocol auto-negotiate
STAT auth_enabled_sasl no
STAT item_size_max 1048576
STAT maxconns_fast no
STAT hashpower_init 0
STAT slab_reassign no
STAT slab_automove 0
STAT lru_crawler no
STAT lru_crawler_sleep 100
STAT lru_crawler_tocrawl 0
STAT tail_repair_time 0
STAT flush_enabled yes
STAT hash_algorithm jenkins
END

-2031469209 | 2024-05-29T01:29:29.344373

11300 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T19:48:11.771875

11371 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-08T17:14:44.668247

11434 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T22:07:22.714848

12000 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T00:55:56.149879

13579 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T02:45:24.538397

14147 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T23:23:55.049661

14265 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-98713449 | 2024-05-23T14:12:12.445359

16010 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-98713449 | 2024-05-11T16:04:06.648277

16030 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

998037014 | 2024-05-29T01:43:32.654921

16992 / tcp

HTTP/1.1 200 OK
Date: Wed, 29 May 2024 01:43:32 GMT
Server: Intel(R) Active Management Technology 9.0.2
Content-Type: text/html; charset=UTF-8
Content-Length: 706

-2031469209 | 2024-05-28T22:13:36.486866

17000 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1859111832 | 2024-05-29T05:55:48.713682

18081 / tcp

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Type: text/html; charset=UTF-8
content-length: 3306

-2031469209 | 2024-05-28T20:09:51.027272

18245 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

411540654 | 2024-05-01T21:04:11.972008

18553 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

<html><head><title>Document Error: Unauthorized</title></head>
<body><h2>Access Error: Unauthorized</h2>
<p>Access to this document requires a User ID</p></body></html>

-2031469209 | 2024-05-28T22:39:52.415459

19000 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T01:24:43.959271

19071 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T03:43:53.387447

20000 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T23:45:08.927504

20256 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T11:58:56.585435

20547 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T18:13:02.708422

21025 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:27:02.275763

21379 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T01:30:04.279309

23023 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T03:59:58.045087

23424 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T09:12:01.619073

25001 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T02:52:59.962939

25105 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T23:35:33.354214

25565 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T20:46:14.178212

27015 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

448794242 | 2024-05-07T08:32:36.991158

27017 / tcp

$U4/ HT

-2031469209 | 2024-05-28T22:58:10.803779

28015 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T17:52:20.142501

28017 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-23T22:10:47.897573

28080 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-29T03:43:58.465928

30002 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T08:59:41.576430

30003 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-28T23:47:19.560198

31337 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-98713449 | 2024-05-28T18:16:19.542008

32400 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-28T19:06:29.153277

32764 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T04:27:00.872207

33060 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T20:54:12.267239

35000 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T22:12:17.791380

37777 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T05:19:02.208846

41800 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T00:39:34.198772

44158 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-22T17:18:37.738846

47990 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-2031469209 | 2024-05-28T23:12:33.836709

49152 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

448794242 | 2024-05-16T23:12:43.816603

49153 / tcp

$U4/ HT

1094048410 | 2024-05-28T23:20:08.191902

50000 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-98713449 | 2024-05-28T23:54:14.346653

50050 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

1676912939 | 2024-05-29T02:21:04.863286

50070 / tcp

HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Wed, 29 May 2024 02:21:01 GMT
Server: Jetty(6.1.26)
Content-Type: text/html; charset=UTF-8
Content-Encoding: 
Content-Length: 5736793

-2031469209 | 2024-05-28T20:15:49.407104

50100 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T04:33:45.145627

51106 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T20:22:46.981506

51235 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T05:05:24.010934

52869 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-1959516545 | 2024-05-28T23:11:16.311884

53413 / udp

ХLogin:

-2031469209 | 2024-05-29T01:35:34.967010

54138 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T20:35:25.607724

55000 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T21:07:36.420560

55442 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

1094048410 | 2024-05-29T01:33:05.918475

55443 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

1094048410 | 2024-05-29T01:14:42.837314

55553 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

<html>
<head>
<title>Object Not Found</title></head><body>
<h1>Object Not Found</h1>The requested URL '/' was not found on the RomPager server.<p>Return to <A HREF="">last page</A><p>
</body></html>

-98713449 | 2024-05-28T22:57:31.065066

55554 / tcp

HTTP/1.1 401 Unauthorized
Server: GoAhead-Webs
Date: Thu Aug 17 01:46:14 2017
WWW-Authenticate: Digest realm="GoAhead", domain=":81",qop="auth", nonce="0226f7e42caa61d16d835f1717f7a475", opaque="5ccc069c403ebaf9f0171e9517f40e41",algorithm="MD5", stale="FALSE"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html

-2031469209 | 2024-05-29T05:12:03.569825

60001 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-23T02:04:15.740913

60010 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-23T23:31:01.191802

60030 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T19:41:40.106752

61613 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-28T06:47:48.104267

61616 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

-2031469209 | 2024-05-29T00:53:35.327483

62078 / tcp

HTTP/1.1 200 OK
Content-Type:text/html; charset=UTF-8
Content-Length:202
Ext:
Server: RomPager/4.07 UPnP/1.0

47.108.60.108

Last Seen: 2024-05-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-2031469209 | 2024-05-28T21:16:39.191956 11 / tcp

-2031469209 | 2024-05-29T01:28:00.292667 13 / tcp

-2031469209 | 2024-05-29T02:22:37.535710 15 / tcp

-2031469209 | 2024-05-28T22:37:28.132403 17 / tcp

-2031469209 | 2024-05-28T14:14:24.245809 19 / tcp

-2031469209 | 2024-05-02T09:43:34.832226 20 / tcp

753355859 | 2024-05-29T05:19:33.912636 21 / tcp

1491004816 | 2024-05-28T20:48:36.499782 22 / tcp

-288277274 | 2024-05-29T04:56:32.336907 23 / tcp

786525225 | 2024-05-28T20:21:15.608709 25 / tcp

1155039737 | 2024-05-28T20:24:00.207171 26 / tcp

-98713449 | 2024-05-29T05:09:22.209848 37 / tcp

-2031469209 | 2024-05-28T19:17:05.911715 43 / tcp

-98713449 | 2024-05-28T23:03:36.926547 49 / tcp

-2031469209 | 2024-05-29T05:28:38.610705 53 / tcp

-98713449 | 2024-05-28T22:26:32.675009 70 / tcp

-2031469209 | 2024-05-29T03:12:29.330399 79 / tcp

1699731995 | 2024-05-28T20:11:21.066013 80 / tcp

777756849 | 2024-05-29T05:01:52.978334 81 / tcp

1954120640 | 2024-05-29T05:57:33.003454 82 / tcp

777756849 | 2024-05-29T04:48:56.041963 83 / tcp

633775022 | 2024-05-28T21:08:17.263866 84 / tcp

1798240661 | 2024-05-28T23:59:36.716820 88 / tcp

-98713449 | 2024-05-23T14:29:08.782534 96 / tcp

-98713449 | 2024-05-22T14:43:43.421609 99 / tcp

-623041173 | 2024-05-29T00:31:16.421086 102 / tcp

-2031469209 | 2024-05-29T03:01:07.327581 104 / tcp

-776469200 | 2024-05-29T05:27:08.323907 110 / tcp

-2031469209 | 2024-05-28T14:38:55.747734 111 / tcp

-2031469209 | 2024-05-28T22:54:30.460879 113 / tcp

-2031469209 | 2024-05-29T02:28:28.815452 119 / tcp

-1687578356 | 2024-05-28T14:54:50.903715 143 / tcp

-289893565 | 2024-05-29T00:18:19.887707 161 / udp

-98713449 | 2024-05-28T22:58:37.082456 175 / tcp

-2031469209 | 2024-05-28T20:36:36.338957 179 / tcp

-2031469209 | 2024-05-27T20:25:55.378342 195 / tcp

-2031469209 | 2024-05-09T02:07:14.584744 199 / tcp

-98713449 | 2024-05-29T04:52:43.017789 221 / tcp

-2031469209 | 2024-05-28T23:07:31.182657 264 / tcp

1094048410 | 2024-05-29T00:29:21.621994 311 / tcp

-2031469209 | 2024-05-29T01:34:24.692913 389 / tcp

-1453395553 | 2024-05-28T17:28:11.078528 427 / tcp

-488469797 | 2024-05-16T08:40:03.956515 443 / tcp

-1454941180 | 2024-05-29T00:38:14.995665 444 / tcp

-2031469209 | 2024-05-07T10:21:49.842927 449 / tcp

-2031469209 | 2024-05-29T00:31:18.389418 450 / tcp

-2031469209 | 2024-05-29T05:33:24.195199 465 / tcp

-236382233 | 2024-05-29T04:59:25.341519 502 / tcp

-2031469209 | 2024-05-29T04:32:15.123311 503 / tcp

-2031469209 | 2024-05-28T19:02:03.572890 515 / tcp

-2031469209 | 2024-05-28T18:06:36.984771 548 / tcp

-2031469209 | 2024-05-29T00:08:12.821169 554 / tcp

-2031469209 | 2024-05-28T06:40:04.300479 587 / tcp

998037014 | 2024-05-29T01:45:42.642880 631 / tcp

998037014 | 2024-05-29T00:38:17.135757 636 / tcp

-2031469209 | 2024-05-29T05:57:57.977800 666 / tcp

-2031469209 | 2024-05-28T20:39:02.189466 771 / tcp

-2031469209 | 2024-05-29T00:05:05.770809 789 / tcp

-2031469209 | 2024-05-29T02:13:52.171032 873 / tcp

-98713449 | 2024-05-02T00:07:13.536821 888 / tcp

-2031469209 | 2024-05-29T03:57:53.974316 902 / tcp

-2031469209 | 2024-05-28T22:20:28.868506 992 / tcp

-2031469209 | 2024-05-29T05:42:13.630048 993 / tcp

-2031469209 | 2024-05-28T21:13:34.098960 995 / tcp

149317826 | 2024-05-28T23:43:22.363655 1023 / tcp

-2031469209 | 2024-05-28T22:37:01.997835 1024 / tcp

-98713449 | 2024-05-03T16:21:19.679449 1050 / tcp

-2031469209 | 2024-05-23T21:08:44.670682 1063 / tcp

294536952 | 2024-05-28T20:00:39.466048 1099 / tcp

-98713449 | 2024-05-28T23:06:46.541570 1153 / tcp

-2031469209 | 2024-05-28T22:26:00.862940 1200 / tcp

-1198227559 | 2024-05-28T13:52:00.080842 1234 / tcp

-2031469209 | 2024-05-28T19:31:16.206923 1311 / tcp

-2031469209 | 2024-05-28T21:16:39.191956
11 / tcp

-2031469209 | 2024-05-29T01:28:00.292667
13 / tcp

-2031469209 | 2024-05-29T02:22:37.535710
15 / tcp

-2031469209 | 2024-05-28T22:37:28.132403
17 / tcp

-2031469209 | 2024-05-28T14:14:24.245809
19 / tcp

-2031469209 | 2024-05-02T09:43:34.832226
20 / tcp

753355859 | 2024-05-29T05:19:33.912636
21 / tcp

1491004816 | 2024-05-28T20:48:36.499782
22 / tcp

-288277274 | 2024-05-29T04:56:32.336907
23 / tcp

786525225 | 2024-05-28T20:21:15.608709
25 / tcp

1155039737 | 2024-05-28T20:24:00.207171
26 / tcp

-98713449 | 2024-05-29T05:09:22.209848
37 / tcp

-2031469209 | 2024-05-28T19:17:05.911715
43 / tcp

-98713449 | 2024-05-28T23:03:36.926547
49 / tcp

-2031469209 | 2024-05-29T05:28:38.610705
53 / tcp

-98713449 | 2024-05-28T22:26:32.675009
70 / tcp

-2031469209 | 2024-05-29T03:12:29.330399
79 / tcp

1699731995 | 2024-05-28T20:11:21.066013
80 / tcp

777756849 | 2024-05-29T05:01:52.978334
81 / tcp

1954120640 | 2024-05-29T05:57:33.003454
82 / tcp

777756849 | 2024-05-29T04:48:56.041963
83 / tcp

633775022 | 2024-05-28T21:08:17.263866
84 / tcp

1798240661 | 2024-05-28T23:59:36.716820
88 / tcp

-98713449 | 2024-05-23T14:29:08.782534
96 / tcp

-98713449 | 2024-05-22T14:43:43.421609
99 / tcp

-623041173 | 2024-05-29T00:31:16.421086
102 / tcp

-2031469209 | 2024-05-29T03:01:07.327581
104 / tcp

-776469200 | 2024-05-29T05:27:08.323907
110 / tcp

-2031469209 | 2024-05-28T14:38:55.747734
111 / tcp

-2031469209 | 2024-05-28T22:54:30.460879
113 / tcp

-2031469209 | 2024-05-29T02:28:28.815452
119 / tcp

-1687578356 | 2024-05-28T14:54:50.903715
143 / tcp

-289893565 | 2024-05-29T00:18:19.887707
161 / udp

-98713449 | 2024-05-28T22:58:37.082456
175 / tcp

-2031469209 | 2024-05-28T20:36:36.338957
179 / tcp

-2031469209 | 2024-05-27T20:25:55.378342
195 / tcp

-2031469209 | 2024-05-09T02:07:14.584744
199 / tcp

-98713449 | 2024-05-29T04:52:43.017789
221 / tcp

-2031469209 | 2024-05-28T23:07:31.182657
264 / tcp

1094048410 | 2024-05-29T00:29:21.621994
311 / tcp

-2031469209 | 2024-05-29T01:34:24.692913
389 / tcp

-1453395553 | 2024-05-28T17:28:11.078528
427 / tcp

-488469797 | 2024-05-16T08:40:03.956515
443 / tcp

-1454941180 | 2024-05-29T00:38:14.995665
444 / tcp

-2031469209 | 2024-05-07T10:21:49.842927
449 / tcp

-2031469209 | 2024-05-29T00:31:18.389418
450 / tcp

-2031469209 | 2024-05-29T05:33:24.195199
465 / tcp

-236382233 | 2024-05-29T04:59:25.341519
502 / tcp

-2031469209 | 2024-05-29T04:32:15.123311
503 / tcp

-2031469209 | 2024-05-28T19:02:03.572890
515 / tcp

-2031469209 | 2024-05-28T18:06:36.984771
548 / tcp

-2031469209 | 2024-05-29T00:08:12.821169
554 / tcp

-2031469209 | 2024-05-28T06:40:04.300479
587 / tcp

998037014 | 2024-05-29T01:45:42.642880
631 / tcp

998037014 | 2024-05-29T00:38:17.135757
636 / tcp

-2031469209 | 2024-05-29T05:57:57.977800
666 / tcp

-2031469209 | 2024-05-28T20:39:02.189466
771 / tcp

-2031469209 | 2024-05-29T00:05:05.770809
789 / tcp

-2031469209 | 2024-05-29T02:13:52.171032
873 / tcp

-98713449 | 2024-05-02T00:07:13.536821
888 / tcp

-2031469209 | 2024-05-29T03:57:53.974316
902 / tcp

-2031469209 | 2024-05-28T22:20:28.868506
992 / tcp

-2031469209 | 2024-05-29T05:42:13.630048
993 / tcp

-2031469209 | 2024-05-28T21:13:34.098960
995 / tcp

149317826 | 2024-05-28T23:43:22.363655
1023 / tcp

-2031469209 | 2024-05-28T22:37:01.997835
1024 / tcp

-98713449 | 2024-05-03T16:21:19.679449
1050 / tcp

-2031469209 | 2024-05-23T21:08:44.670682
1063 / tcp

294536952 | 2024-05-28T20:00:39.466048
1099 / tcp

-98713449 | 2024-05-28T23:06:46.541570
1153 / tcp

-2031469209 | 2024-05-28T22:26:00.862940
1200 / tcp

-1198227559 | 2024-05-28T13:52:00.080842
1234 / tcp

-2031469209 | 2024-05-28T19:31:16.206923
1311 / tcp

1279472786 | 2024-05-28T13:19:49.514189
1337 / tcp

-2031469209 | 2024-05-28T08:53:07.954577
1400 / tcp

1339473574 | 2024-05-28T23:56:30.379411
1433 / tcp

-2031469209 | 2024-05-29T03:04:03.213789
1471 / tcp

-2031469209 | 2024-05-29T03:47:51.551121
1521 / tcp

-2031469209 | 2024-05-29T03:55:08.621958
1599 / tcp

-98713449 | 2024-05-28T22:49:11.197215
1604 / tcp