GeneralInformation

Hostnames	nti.fund
Domains	nti.fund
Country	Russian Federation
City	Moscow
Organization	Yandex.Cloud LLC
ISP	Yandex.Cloud LLC
ASN	AS200350

WebTechnologies

CMS

Ecommerce

JavaScript libraries

Programming languages

PHP

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

25 80 443 465 873

-599475356 | 2024-05-30T21:33:07.492006

25 / tcp

220 nti.fund ESMTP Postfix (Ubuntu)
250-nti.fund
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250-SMTPUTF8
250 CHUNKING

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            06:c4:74:c0:be:8f:ac:f9:fa:d4:20:a7:ba:72:94:2e:a6:c9:f6:5f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=srv-bitrix-backend.ru-central1.internal
        Validity
            Not Before: Jul 22 13:55:01 2022 GMT
            Not After : Jul 19 13:55:01 2032 GMT
        Subject: CN=srv-bitrix-backend.ru-central1.internal
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a2:55:cf:88:bf:6c:45:ec:96:f8:71:4a:e1:a3:
                    86:dd:9e:46:05:4b:59:50:e3:ad:48:94:9d:60:e4:
                    3d:81:a2:bc:08:b8:ce:a7:ad:f5:59:d5:1f:6d:28:
                    20:ff:63:1d:d2:8f:a4:c3:69:b0:38:86:99:26:dc:
                    dc:5b:20:e8:33:db:fe:3e:d1:97:c8:a1:87:e5:c2:
                    b8:0d:ec:3f:4a:91:4a:68:d4:31:0d:33:af:0f:a5:
                    26:23:4e:8d:2a:fb:b5:05:f9:1e:c5:50:16:db:5e:
                    c5:2a:5d:eb:6f:34:e5:36:7b:cc:ef:3d:39:7d:a4:
                    7f:79:6d:b5:ee:d1:0a:05:a3:d1:bf:64:d5:14:93:
                    6f:f0:cb:99:14:a9:a6:f8:78:01:18:aa:45:3a:da:
                    30:97:35:ce:f8:42:39:42:de:c3:d2:0a:63:26:6f:
                    57:14:9f:cc:90:e2:09:e5:e7:8e:59:92:5c:96:fc:
                    6a:66:5d:87:82:c1:4c:a6:3c:80:86:ba:7d:27:66:
                    89:5c:23:04:af:43:31:e7:72:b3:59:87:f2:57:d0:
                    31:03:bc:41:4d:73:0e:bc:60:f7:ef:69:eb:9c:c2:
                    66:7b:9a:73:de:de:0f:32:d5:3b:00:7c:5f:e4:1f:
                    10:b8:43:5f:1c:10:52:fd:b7:3c:44:66:04:2f:8e:
                    03:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:srv-bitrix-backend.ru-central1.internal
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        86:84:39:92:65:04:7d:8f:69:83:a4:a2:76:7d:39:47:d8:d9:
        0f:9a:1f:8f:81:31:a6:ac:02:2c:61:51:84:2a:e6:d0:3d:be:
        87:f1:9a:fd:dc:24:d5:90:62:c1:e3:8e:e2:92:05:24:d8:b6:
        e3:fe:b9:94:31:4a:e0:d1:5d:4a:63:07:62:b4:68:99:f5:5d:
        1f:6e:08:73:1b:f9:93:c4:e8:6f:82:eb:41:19:d3:8d:3a:b1:
        5a:a1:b0:15:82:a4:1b:3e:b3:08:b6:1b:96:f1:2b:91:3a:b7:
        b0:df:83:fa:aa:aa:c9:26:22:4d:11:9b:f9:75:41:64:9b:63:
        70:47:8c:e2:9e:82:74:1b:c7:30:5c:be:95:7b:6a:41:ac:fe:
        07:9f:50:d8:c0:aa:f6:d0:d6:6e:81:b2:25:f8:c2:d4:09:10:
        a7:7a:e0:d2:d6:a7:65:27:3e:42:f4:41:ea:e8:6e:24:74:b3:
        14:a5:e8:d6:30:23:ca:d2:37:78:9c:39:6e:97:84:29:ba:e1:
        61:74:1c:0c:a8:1d:48:39:9d:7e:0a:56:ac:f5:d3:c2:5a:38:
        c6:24:f6:4a:c1:af:d8:8f:6f:5c:3e:12:37:0d:85:2a:ee:b0:
        b0:a3:f9:90:08:6b:9e:1c:dd:58:58:49:f5:29:f2:5e:d2:73:
        9e:c8:97:b8

1694918552 | 2024-05-30T04:50:57.456701

80 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 30 May 2024 04:50:57 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 36075
Connection: keep-alive
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (cb7f6714d5c5f6884fa9ce348607225f)
Set-Cookie: PHPSESSID=VVeRa66u2IjEtPMKzG7QAdPN897rMh7e; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Vary: Accept-Encoding

1280993341 | 2024-05-08T17:11:46.820691

443 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 May 2024 17:11:46 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 35328
Connection: keep-alive
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (cb7f6714d5c5f6884fa9ce348607225f)
Set-Cookie: PHPSESSID=GZSqLZP7OJ5SvIlUVoKRHkzYjOHw55ds; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3f:42:b9:cd:68:89:2e:a5:7f:cb:ab:e9
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign RSA OV SSL CA 2018
        Validity
            Not Before: Oct 24 14:51:04 2023 GMT
            Not After : Nov 24 14:51:03 2024 GMT
        Subject: C=RU, ST=Moscow, L=Moscow, O=FOND NTI, CN=*.nti.fund
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b0:19:46:85:10:f2:4f:37:8d:f1:ce:92:32:d1:
                    c2:7a:85:2c:dd:be:bb:1e:ce:e4:0a:25:87:43:cb:
                    06:75:de:a3:fa:54:ac:6a:2f:7a:eb:01:ea:a0:87:
                    45:cf:1d:3e:f1:26:32:ba:01:07:36:8e:fa:57:92:
                    2f:19:c8:98:47:f0:4c:d6:e8:66:00:c3:53:2e:f8:
                    b8:8e:b3:59:75:e6:2b:04:47:ba:c0:a6:2a:2b:d6:
                    de:cc:25:40:ed:0a:12:d9:0c:a8:19:03:7f:4f:62:
                    24:d3:19:55:6a:14:9f:62:d1:a9:57:cd:a0:fa:3d:
                    0c:62:24:78:18:ff:d0:bf:61:58:6a:12:e7:6c:c0:
                    83:15:af:43:16:08:64:cc:a1:c4:14:01:2a:0b:d7:
                    b5:20:c6:67:6b:25:31:c5:6e:3e:63:7b:80:3d:7d:
                    92:9b:75:c5:24:a5:88:d4:96:3c:90:15:2f:ad:25:
                    54:a5:9e:64:4d:a1:ad:c5:cb:3a:88:d8:dd:d1:1a:
                    5b:e6:24:e6:d1:53:66:8d:43:7d:c0:ef:c6:9b:c1:
                    07:f4:0d:16:af:79:d9:36:4b:13:d5:16:90:20:b6:
                    2f:24:65:7b:95:8c:49:ec:0c:01:e7:12:03:64:a3:
                    b6:0c:e7:a9:6f:20:b3:11:a0:9d:23:04:0d:61:74:
                    b1:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
                OCSP - URI:http://ocsp.globalsign.com/gsrsaovsslca2018
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.20
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsrsaovsslca2018.crl
            X509v3 Subject Alternative Name: 
                DNS:*.nti.fund, DNS:nti.fund
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                F8:EF:7F:F2:CD:78:67:A8:DE:6F:8F:24:8D:88:F1:87:03:02:B3:EB
            X509v3 Subject Key Identifier: 
                3E:FD:51:86:F0:6A:0B:24:C8:02:F6:36:20:56:B5:95:52:24:F1:5D
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 24 14:51:07.564 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:0D:4A:0F:F8:08:2F:9F:25:13:C1:07:96:
                                31:CD:3F:6A:EB:45:99:1E:13:62:D6:FE:C3:47:AB:D0:
                                C2:BA:00:38:02:21:00:BC:FF:0F:B6:5B:2F:0F:9B:89:
                                01:C9:CA:29:8F:26:C6:7B:5D:FD:AD:AA:CA:96:30:1F:
                                9A:0E:DA:BB:4C:01:E5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Oct 24 14:51:07.228 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A7:42:13:31:8D:21:C6:D8:63:77:C3:
                                F5:26:ED:08:24:9D:CE:40:39:02:39:24:D2:77:CF:EE:
                                90:05:FD:36:FD:02:21:00:97:97:74:4D:D6:78:BC:25:
                                A7:73:B2:C8:18:40:DD:77:03:A3:D3:2F:35:C3:7B:7E:
                                83:01:4C:87:D4:72:76:24
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 24 14:51:07.567 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C7:BB:0C:19:10:3F:EC:7A:D1:C0:04:
                                1B:7C:8A:E7:19:D2:F4:D6:D1:13:32:84:2E:E5:E1:91:
                                A9:A3:0A:71:52:02:21:00:95:BB:18:EB:7D:81:92:36:
                                EC:8E:76:C1:0C:A9:32:63:3A:AF:A4:81:C3:85:3E:E7:
                                5D:88:76:18:46:EC:D3:BB
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4b:89:a2:5b:bc:4d:db:1d:3e:7b:a2:bf:c9:7b:75:94:ba:b9:
        d6:4e:a5:95:19:fc:f1:32:76:29:e2:bb:00:d7:c2:23:03:8a:
        99:9b:b6:0c:19:c2:1b:a3:4b:13:f3:b9:b1:b2:75:9e:4e:bd:
        1c:7e:84:39:10:d0:4b:0e:3d:56:b9:df:32:3e:de:08:bc:92:
        19:05:b5:66:d9:61:a0:bb:66:c2:74:cc:b0:3b:f9:34:ac:6a:
        75:4c:dd:fd:2c:d8:57:ad:95:cf:6f:6a:7d:aa:fb:50:de:f0:
        c6:bf:cc:50:7b:b7:f8:2a:b1:e6:a1:2d:b9:1e:ae:38:8f:f4:
        de:12:f0:aa:2b:2c:e6:63:7b:ee:26:24:b7:a2:4a:14:f1:3b:
        d6:2f:a2:40:6d:f4:0d:83:cf:eb:93:bb:4e:44:f9:57:c4:2c:
        66:ef:2e:cb:f9:bb:97:d8:26:47:b6:22:21:ef:0e:ea:58:9e:
        72:26:88:ed:27:c5:29:df:c5:a8:ca:95:18:f3:0f:b9:e5:e4:
        6f:19:6f:d9:fa:c0:11:38:1f:7f:d8:3a:34:bb:fd:65:87:df:
        e5:73:9d:09:51:0b:86:4a:6c:0c:8e:7d:8d:8f:cd:95:76:77:
        58:4c:da:b5:15:90:f0:ed:2b:4c:b4:23:7d:6a:df:94:74:45:
        7e:f4:ea:11

827142438 | 2024-06-02T08:56:22.628635

465 / tcp

220 nti.fund ESMTP Postfix (Ubuntu)\r\n

-935238935 | 2024-05-13T09:58:02.141588

873 / tcp

@RSYNCD: 31.0\ndata           	files
@RSYNCD: EXIT

51.250.54.243

Last Seen: 2024-06-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-599475356 | 2024-05-30T21:33:07.492006
25 / tcp

Postfix smtpd

1694918552 | 2024-05-30T04:50:57.456701
80 / tcp

nginx

1280993341 | 2024-05-08T17:11:46.820691
443 / tcp

nginx

827142438 | 2024-06-02T08:56:22.628635
465 / tcp

Postfix smtpd

-935238935 | 2024-05-13T09:58:02.141588
873 / tcp

rsyncd31.0

Products

Pricing

Contact Us

51.250.54.243

Last Seen: 2024-06-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-599475356 | 2024-05-30T21:33:07.492006 25 / tcp

Postfix smtpd

1694918552 | 2024-05-30T04:50:57.456701 80 / tcp

nginx

1280993341 | 2024-05-08T17:11:46.820691 443 / tcp

nginx

827142438 | 2024-06-02T08:56:22.628635 465 / tcp

Postfix smtpd

-935238935 | 2024-05-13T09:58:02.141588 873 / tcp

rsyncd31.0

Products

Pricing

Contact Us

-599475356 | 2024-05-30T21:33:07.492006
25 / tcp

1694918552 | 2024-05-30T04:50:57.456701
80 / tcp

1280993341 | 2024-05-08T17:11:46.820691
443 / tcp

827142438 | 2024-06-02T08:56:22.628635
465 / tcp

-935238935 | 2024-05-13T09:58:02.141588
873 / tcp