GeneralInformation

Hostnames	ec2-54-95-36-87.ap-northeast-1.compute.amazonaws.com urban-htl.com www.urban-htl.com
Domains	amazonaws.com urban-htl.com
Cloud Provider	Amazon
Cloud Region	ap-northeast-1
Cloud Service	EC2
Country	Japan
City	Tokyo
Organization	Amazon Data Services Japan
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

CDN

Google Hosted Libraries

JavaScript frameworks

React

JavaScript libraries

jQuery1.11.1

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 82 443 444

-572190068 | 2024-04-28T03:26:57.026044

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 28 Apr 2024 03:26:56 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: a5720fb9-0322-4135-a90c-da8b9f3647b6
X-Runtime: 0.004430

-1566736514 | 2024-04-19T08:58:25.334717

82 / tcp

HTTP/1.1 503 Service Temporarily Unavailable
Server: nginx
Date: Fri, 19 Apr 2024 08:58:25 GMT
Content-Type: text/html
Content-Length: 818
Connection: keep-alive
ETag: "5c8fe8b1-332"

1013553170 | 2024-04-28T05:57:09.044316

443 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 28 Apr 2024 05:57:03 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Link: <https://cdn.r-corona.jp/prd.jln.r-corona.jp/assets/react_ujs-1e8d13fce11eec3e502355effc1ba5757690ae514b7d956e96e58ab8c3125cac.js>; rel=preload; as=script; nopush
ETag: W/"2300833db6b2e3c1277cdc25df9d3714"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 296ec522-e6af-4675-973b-b80ec306462f
X-Runtime: 0.015220

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            66:65:cc:72:7a:da:47:1d:14:d5:9c:55:79:77:9a:bf
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4
        Validity
            Not Before: Jan 15 08:11:33 2024 GMT
            Not After : Jan 31 14:59:59 2025 GMT
        Subject: CN=www.urban-htl.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c9:23:55:b1:78:eb:f0:33:ef:22:99:1b:b6:1f:
                    83:57:fa:00:9b:14:8e:86:74:8a:49:42:f1:d2:17:
                    27:eb:84:4d:27:2d:67:a0:95:43:10:e3:53:20:3c:
                    f0:23:fd:30:6e:97:f9:e4:95:23:12:73:1d:3e:c7:
                    c0:ff:70:87:69:a0:1c:44:ba:4a:bd:d7:2b:b7:57:
                    31:24:7d:f6:ae:8d:10:fe:73:de:e9:57:83:76:b9:
                    89:2f:21:a8:b6:5f:95:9a:12:61:08:1f:24:0b:cf:
                    3e:61:fa:b1:30:0e:1a:e7:26:80:a0:79:2f:ca:b5:
                    5e:cb:00:d5:05:27:7d:56:b7:ca:5c:d1:e1:41:99:
                    65:13:bd:61:9a:79:ec:eb:46:56:44:37:a5:85:51:
                    66:41:57:3b:de:bd:98:8f:18:10:a6:53:c6:85:a5:
                    01:35:f0:fb:14:e6:7f:fc:b4:29:13:da:29:dc:cb:
                    c7:15:d4:8f:f9:d8:a7:b0:68:9b:ed:48:13:89:97:
                    68:20:4a:a0:55:da:b5:82:ba:83:76:62:df:a2:84:
                    f8:40:d9:74:4a:21:1a:91:ba:ca:d0:23:17:2d:4e:
                    f7:bd:d4:dc:4a:ac:1f:10:3a:48:dc:a1:b5:fc:63:
                    1d:26:74:cd:d3:62:32:51:7d:02:b8:01:5a:0e:81:
                    be:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                7C:24:CE:0D:A4:38:2D:C7:B3:63:5E:A7:78:7A:8D:1D:4C:2E:C7:15
            Authority Information Access: 
                CA Issuers - URI:http://repo.pubcert.jprs.jp/sppca/jprs/dvca_g4/JPRS_DVCA_G4_DER.cer
                OCSP - URI:http://dv.g4.ocsp.pubcert.jprs.jp
            X509v3 Subject Alternative Name: 
                DNS:www.urban-htl.com, DNS:urban-htl.com
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.53827.1.1.4
                  CPS: http://jprs.jp/pubcert/info/repository/
                Policy: 2.23.140.1.2.1
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://repo.pubcert.jprs.jp/sppca/jprs/dvca_g4/fullcrl.crl
            X509v3 Subject Key Identifier: 
                74:97:B9:35:9B:92:AA:28:23:9B:58:EF:0C:B9:2D:0D:E6:79:CF:BC
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Jan 15 08:21:34.115 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A1:AE:F9:29:82:1C:E4:DA:A3:B8:56:
                                F6:9E:FD:4A:F1:8B:37:D4:C2:ED:B3:0B:86:69:1B:4F:
                                43:F7:69:66:FA:02:20:49:2A:F7:DE:96:CC:6E:1A:D3:
                                EE:CA:59:A8:44:1C:D0:E9:E3:69:43:1E:46:D3:73:26:
                                10:AD:31:89:EB:42:1C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Jan 15 08:21:35.746 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:BE:48:50:84:AD:26:58:32:CA:F2:E3:
                                C7:28:B4:1E:98:A7:C2:04:0E:E8:63:B4:1D:40:62:8D:
                                BE:DB:75:1E:33:02:21:00:A3:D8:B3:34:AF:66:48:96:
                                27:0D:A0:F4:15:04:50:B8:1F:C5:9E:52:57:BF:82:A2:
                                18:0B:56:4D:01:AC:FD:DE
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Jan 15 08:21:36.701 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:10:BB:1B:BD:3D:CF:90:1B:A2:55:2A:9D:
                                7D:D6:03:CD:5F:B7:2C:16:B9:C4:07:24:DD:F8:E9:5B:
                                DD:3F:1C:0D:02:20:0E:95:4D:BC:D4:6B:FD:4D:79:6A:
                                26:0D:BF:8D:BF:76:D9:47:7B:C1:FD:96:E6:C3:81:EB:
                                EC:DA:C4:6F:F0:C3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Jan 15 08:21:37.155 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C4:31:C4:EF:45:C2:73:B9:C0:6F:F2:
                                48:76:F9:93:7B:E1:7D:EF:7C:A7:DD:61:E2:5C:F5:AA:
                                0D:E2:F0:EE:60:02:21:00:94:9B:EC:7A:96:FD:B1:F6:
                                AE:98:89:6F:D2:55:88:86:7C:35:0F:2E:A6:BF:94:45:
                                55:D2:2C:96:D1:99:F8:F6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        8f:89:78:7a:00:09:00:88:cc:3e:cc:93:f7:c4:ae:be:87:cb:
        94:1a:b6:e2:f0:a4:6d:fb:86:47:32:f2:22:fb:d7:ef:5a:65:
        51:d0:07:76:d9:79:43:e3:f7:d1:67:a3:87:75:7c:96:f7:63:
        15:52:c2:3e:0c:13:57:4b:a7:c2:b0:0a:87:c2:14:ba:11:99:
        14:a6:d7:cf:00:8b:d4:92:cd:ee:b7:99:59:d9:ed:16:4e:e7:
        da:28:fa:6d:89:8d:10:ac:b8:05:d6:10:c5:57:58:53:ff:6b:
        7f:ed:ad:f5:d1:49:f6:c2:2f:d5:71:f9:83:bb:81:d6:95:39:
        d9:fc:e7:5f:cf:17:e8:d4:2a:33:08:2a:d0:27:76:ea:25:64:
        ac:99:a2:a3:e9:da:11:04:8b:4a:15:50:9f:68:b5:96:e3:8c:
        19:40:1e:32:ef:30:7e:c7:20:29:cf:26:49:31:ae:0c:d5:9a:
        70:32:fc:92:1f:55:b9:e8:55:03:5d:6d:bd:78:38:dc:19:31:
        d7:97:57:48:a8:26:85:33:7e:e9:dc:f5:2f:84:84:5f:14:d1:
        bb:c0:08:c1:e1:5b:45:b8:87:70:d9:4f:d7:5f:7a:8d:64:95:
        43:7e:c7:3c:4d:49:bd:8f:cb:c0:03:4e:4a:93:59:74:a8:09:
        72:9b:02:f2

1660984997 | 2024-04-24T04:00:22.107476

444 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Date: Wed, 24 Apr 2024 04:00:22 GMT
Content-Type: text/html
Content-Length: 166
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body bgcolor="white">
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

54.95.36.87

Last Seen: 2024-04-28

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-572190068 | 2024-04-28T03:26:57.026044
80 / tcp

nginx

-1566736514 | 2024-04-19T08:58:25.334717
82 / tcp

nginx

1013553170 | 2024-04-28T05:57:09.044316
443 / tcp

nginx

1660984997 | 2024-04-24T04:00:22.107476
444 / tcp

nginx

Products

Pricing

Contact Us

54.95.36.87

Last Seen: 2024-04-28

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-572190068 | 2024-04-28T03:26:57.026044 80 / tcp

nginx

-1566736514 | 2024-04-19T08:58:25.334717 82 / tcp

nginx

1013553170 | 2024-04-28T05:57:09.044316 443 / tcp

nginx

1660984997 | 2024-04-24T04:00:22.107476 444 / tcp

nginx

Products

Pricing

Contact Us

-572190068 | 2024-04-28T03:26:57.026044
80 / tcp

-1566736514 | 2024-04-19T08:58:25.334717
82 / tcp

1013553170 | 2024-04-28T05:57:09.044316
443 / tcp

1660984997 | 2024-04-24T04:00:22.107476
444 / tcp