| Hostnames |
lti.c4elink.org www.lti.c4elink.org |
| Domains | c4elink.org |
| Country | United States |
| City | Tysons Corner |
| Organization | Connect for Education, Inc. |
| ISP | Atlantic Metro Communications II, Inc. |
| ASN | AS29838 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2020-23064 | Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element. |
| CVE-2020-11023 | 4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0. |
| CVE-2020-11022 | 4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0. |
| CVE-2019-11358 | 4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype. |
1646324991 | 2024-04-10T15:45:33.12967780 / tcp
HTTP/1.1 303 See Other Date: Wed, 10 Apr 2024 15:45:31 GMT Server: Apache Location: https://lti.c4elink.org Content-Language: en Content-Security-Policy: default-src * 'self' data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * 'self' data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * 'self' data: blob: 'unsafe-inline'; img-src * data:; frame-src 'self' data: blob: *.c4edu.com c4edu.com connect4education.com *.c4edu.org c4elink.org *.c4elink.org *.c4eis.com *.c4eis.org *.c4ebridge.com *.c4ecompanion.com *.connect4education.com *.connect4education.org *.mobi *.intensivets.com *.learnsimunition.com *.onmusiccompanion.com *.onmusicportal.com *.onmusic.org *.workingdogpractitioner.com *.c4eacclaim.com *.amazonaws.com *.cloudfront.net *.youtube.com *.spotify.com *.respondus2.com *.pardot.com *.vimeo.com *.risingsoftware.com *.instructure.com *.musition.cloud *.azure.com *.sibelius.com *.avid.com *.sibl.pub sibl.pub *.auralia.cloud *.youtube-nocookie.com *.vulture.com *.npr.org *.eartrainer.io *.chemeketa.edu chemeketa.edu pointloma.edu *.pointloma.edu nsuok.edu *.nsuok.edu carlalbert.edu *.carlalbert.edu desire2learn.com *.desire2learn.com ship.edu *.ship.edu delta.edu *.delta.edu gvsu.edu *.gvsu.edu minnstate.edu *.minnstate.edu uri.edu *.uri.edu okta.com *.okta.com umo.edu *.umo.edu brunswickcc.edu *.brunswickcc.edu iu.edu *.iu.edu illinoisstate.edu *.illinoisstate.edu ncat.edu *.ncat.edu; frame-ancestors 'self' data: blob: c4edu.com connect4education.com *.c4edu.com *.c4edu.org c4elink.org *.c4elink.org *.c4eis.com *.c4eis.org *.c4ebridge.com *.c4ecompanion.com *.connect4education.com *.connect4education.org *.mobi *.intensivets.com *.learnsimunition.com *.onmusiccompanion.com *.onmusicportal.com *.onmusic.org *.workingdogpractitioner.com *.c4eacclaim.com *.amazonaws.com *.cloudfront.net *.youtube.com *.spotify.com *.respondus2.com *.pardot.com *.vimeo.com *.risingsoftware.com *.musition.cloud *.azure.com *.hamline.edu *.vccs.edu *.atu.edu *.bhc.edu *.blackboard.com *.brightspace.com *.citruscollege.edu *.govst.edu *.grcc.edu *.instructure.com *.lindsey.edu *.lonestar.edu *.maine.edu *.nvcc.edu *.ohlone.edu *.saddleback.edu *.sdbor.edu *.se.edu *.seattlecentral.edu *.smccd.edu *.sonoma.edu *.stevenson.edu *.stlcc.edu *.suny.edu *.svsu.edu *.tamiu.edu *.trcc.edu *.uhd.edu *.utrgv.edu *.vinu.edu *.wichita.edu *.cccs.edu *.seattlecolleges.edu *.eartrainer.io *.chemeketa.edu chemeketa.edu nsuok.edu *.nsuok.edu carlalbert.edu *.carlalbert.edu desire2learn.com *.desire2learn.com ship.edu *.ship.edu delta.edu *.delta.edu pointloma.edu *.pointloma.edu gvsu.edu *.gvsu.edu minnstate.edu *.minnstate.edu uri.edu *.uri.edu okta.com *.okta.com umo.edu *.umo.edu brunswickcc.edu *.brunswickcc.edu iu.edu *.iu.edu illinoisstate.edu *.illinoisstate.edu ncat.edu *.ncat.edu; style-src * 'self' data: blob: 'unsafe-inline'; font-src * 'self' data: blob: 'unsafe-inline'; object-src 'self' data: blob: c4edu.com connect4education.com *.c4edu.com *.c4edu.org c4elink.org *.c4elink.org *.c4eis.com *.c4eis.org *.c4ebridge.com *.c4ecompanion.com *.connect4education.com *.connect4education.org *.mobi *.intensivets.com *.learnsimunition.com *.onmusiccompanion.com *.onmusicportal.com *.onmusic.org *.workingdogpractitioner.com *.c4eacclaim.com *.amazonaws.com *.cloudfront.net *.youtube.com *.spotify.com *.respondus2.com *.pardot.com *.vimeo.com *.risingsoftware.com *.instructure.com *.musition.cloud *.azure.com *.chemeketa.edu chemeketa.edu illinoisstate.edu *.illinoisstate.edu ncat.edu *.ncat.edu; Content-Length: 421 Connection: close Content-Type: text/html; charset=UTF-8
1543546266 | 2024-04-20T06:56:04.094124443 / tcp
HTTP/1.1 200 OK Date: Sat, 20 Apr 2024 06:51:20 GMT Server: Apache Expires: Cache-Control: private, pre-check=0, post-check=0, max-age=0, no-transform Pragma: no-cache Set-Cookie: MoodleSession=51bdd96b1ebc0ff6486751fdc6624e49; path=/; secure; SameSite=None Content-Language: en Content-Script-Type: text/javascript Content-Style-Type: text/css X-UA-Compatible: IE=edge Accept-Ranges: none Content-Security-Policy: default-src * 'self' data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; script-src * 'self' data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * 'self' data: blob: 'unsafe-inline'; img-src * data:; frame-src 'self' data: blob: *.c4edu.com c4edu.com connect4education.com *.c4edu.org c4elink.org *.c4elink.org *.c4eis.com *.c4eis.org *.c4ebridge.com *.c4ecompanion.com *.connect4education.com *.connect4education.org *.mobi *.intensivets.com *.learnsimunition.com *.onmusiccompanion.com *.onmusicportal.com *.onmusic.org *.workingdogpractitioner.com *.c4eacclaim.com *.amazonaws.com *.cloudfront.net *.youtube.com *.spotify.com *.respondus2.com *.pardot.com *.vimeo.com *.risingsoftware.com *.instructure.com *.musition.cloud *.azure.com *.sibelius.com *.avid.com *.sibl.pub sibl.pub *.auralia.cloud *.youtube-nocookie.com *.vulture.com *.npr.org *.eartrainer.io *.chemeketa.edu chemeketa.edu pointloma.edu *.pointloma.edu nsuok.edu *.nsuok.edu carlalbert.edu *.carlalbert.edu desire2learn.com *.desire2learn.com ship.edu *.ship.edu delta.edu *.delta.edu gvsu.edu *.gvsu.edu minnstate.edu *.minnstate.edu uri.edu *.uri.edu okta.com *.okta.com umo.edu *.umo.edu brunswickcc.edu *.brunswickcc.edu iu.edu *.iu.edu illinoisstate.edu *.illinoisstate.edu ncat.edu *.ncat.edu *.cod.edu; frame-ancestors 'self' data: blob: c4edu.com connect4education.com *.c4edu.com *.c4edu.org c4elink.org *.c4elink.org *.c4eis.com *.c4eis.org *.c4ebridge.com *.c4ecompanion.com *.connect4education.com *.connect4education.org *.mobi *.intensivets.com *.learnsimunition.com *.onmusiccompanion.com *.onmusicportal.com *.onmusic.org *.workingdogpractitioner.com *.c4eacclaim.com *.amazonaws.com *.cloudfront.net *.youtube.com *.spotify.com *.respondus2.com *.pardot.com *.vimeo.com *.risingsoftware.com *.musition.cloud *.azure.com *.hamline.edu *.vccs.edu *.atu.edu *.bhc.edu *.blackboard.com *.brightspace.com *.citruscollege.edu *.govst.edu *.grcc.edu *.instructure.com *.lindsey.edu *.lonestar.edu *.maine.edu *.nvcc.edu *.ohlone.edu *.saddleback.edu *.sdbor.edu *.se.edu *.seattlecentral.edu *.smccd.edu *.sonoma.edu *.stevenson.edu *.stlcc.edu *.suny.edu *.svsu.edu *.tamiu.edu *.trcc.edu *.uhd.edu *.utrgv.edu *.vinu.edu *.wichita.edu *.cccs.edu *.seattlecolleges.edu *.eartrainer.io *.chemeketa.edu chemeketa.edu nsuok.edu *.nsuok.edu carlalbert.edu *.carlalbert.edu desire2learn.com *.desire2learn.com ship.edu *.ship.edu delta.edu *.delta.edu pointloma.edu *.pointloma.edu gvsu.edu *.gvsu.edu minnstate.edu *.minnstate.edu uri.edu *.uri.edu okta.com *.okta.com umo.edu *.umo.edu brunswickcc.edu *.brunswickcc.edu iu.edu *.iu.edu illinoisstate.edu *.illinoisstate.edu ncat.edu *.ncat.edu *.cod.edu; style-src * 'self' data: blob: 'unsafe-inline'; font-src * 'self' data: blob: 'unsafe-inline'; object-src 'self' data: blob: c4edu.com connect4education.com *.c4edu.com *.c4edu.org c4elink.org *.c4elink.org *.c4eis.com *.c4eis.org *.c4ebridge.com *.c4ecompanion.com *.connect4education.com *.connect4education.org *.mobi *.intensivets.com *.learnsimunition.com *.onmusiccompanion.com *.onmusicportal.com *.onmusic.org *.workingdogpractitioner.com *.c4eacclaim.com *.amazonaws.com *.cloudfront.net *.youtube.com *.spotify.com *.respondus2.com *.pardot.com *.vimeo.com *.risingsoftware.com *.instructure.com *.musition.cloud *.azure.com *.chemeketa.edu chemeketa.edu illinoisstate.edu *.illinoisstate.edu ncat.edu *.ncat.edu; Connection: close Transfer-Encoding: chunked Content-Type: text/html; charset=utf-8
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
84:bc:21:01:80:b9:ea:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http:\/\/certs.godaddy.com\/repository\/, CN=Go Daddy Secure Certificate Authority - G2
Validity
Not Before: Jun 12 16:52:35 2023 GMT
Not After : Jul 13 16:52:35 2024 GMT
Subject: CN=lti.c4elink.org
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:9d:4a:0d:69:4f:1e:b2:88:04:de:1f:d5:1e:8e:
f5:d1:1a:73:9c:bf:af:1f:e8:78:93:01:fc:2b:ec:
e0:9d:cd:d8:4a:e8:36:d6:4b:8a:12:a5:96:4b:6b:
73:99:2b:cf:49:57:27:da:32:36:d9:6e:8c:13:c2:
99:5a:21:1d:43:65:c6:8a:ed:ed:ce:de:90:9e:0a:
0a:1c:50:ac:0f:a6:66:7a:b9:8b:ef:31:c0:bb:6f:
54:bd:e0:cd:93:82:78:60:34:b5:30:eb:db:91:a5:
2a:bf:5a:14:78:96:0b:2d:da:42:74:15:6d:9e:2a:
1a:b6:ef:d8:ef:9c:bd:96:3b:a3:53:c5:02:4a:41:
3a:6e:3c:af:16:e4:de:4a:93:7d:c5:cc:ee:5f:c1:
9b:18:86:81:e4:50:74:0c:d9:4f:cd:10:e5:20:24:
69:ad:7b:0c:b7:fe:b6:56:95:71:4f:30:2c:5c:5e:
7a:64:da:fd:76:2f:d0:e8:58:62:bd:b9:f7:01:06:
1d:86:d1:d1:32:e9:3c:60:9b:18:67:e5:e6:9e:ff:
a9:03:26:46:95:19:f7:22:1c:9b:2e:d2:7a:12:e6:
79:34:f0:27:a8:01:0a:63:7c:06:ce:bc:83:10:00:
85:16:95:8a:5a:4d:c4:d1:2d:89:c0:89:27:fd:b8:
db:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.godaddy.com/gdig2s1-6207.crl
X509v3 Certificate Policies:
Policy: 2.16.840.1.114413.1.7.23.1
CPS: http://certificates.godaddy.com/repository/
Policy: 2.23.140.1.2.1
Authority Information Access:
OCSP - URI:http://ocsp.godaddy.com/
CA Issuers - URI:http://certificates.godaddy.com/repository/gdig2.crt
X509v3 Authority Key Identifier:
40:C2:BD:27:8E:CC:34:83:30:A2:33:D7:FB:6C:B3:F0:B4:2C:80:CE
X509v3 Subject Alternative Name:
DNS:lti.c4elink.org, DNS:www.lti.c4elink.org
X509v3 Subject Key Identifier:
41:EC:DE:00:E1:42:E1:0F:BA:1A:6B:83:9E:34:5B:DD:F0:29:EA:7A
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Jun 12 16:52:36.243 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:70:4C:A8:D0:B3:9A:7E:D5:E6:4F:FD:43:
CB:A4:DB:E4:9B:DF:1D:35:BB:7C:66:6C:A9:72:68:3A:
C0:7E:94:D8:02:20:1F:4E:BA:71:51:41:E8:90:C9:E1:
06:AE:17:F7:74:86:2F:57:5E:1C:D7:6C:C1:A0:6D:02:
6F:9B:68:B7:E7:05
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Jun 12 16:52:36.533 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:63:7D:15:AB:36:BC:67:4B:89:3C:AD:F1:
96:EB:CC:88:BC:BA:60:F6:2C:8D:29:7A:D4:FA:94:C0:
12:D8:65:6B:02:21:00:B1:00:37:D5:CC:5F:67:DF:9B:
83:E8:7A:B4:DF:A1:85:5D:38:66:B0:7B:8B:E1:6D:61:
BA:C7:6D:D0:55:12:36
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Jun 12 16:52:36.634 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:DB:E3:0F:18:3F:F6:6E:BD:DF:5C:49:
34:74:0A:F9:36:CF:0F:4F:84:14:34:EA:33:8B:A7:BF:
6E:F0:10:ED:4F:02:21:00:B4:33:57:F7:59:9F:EB:71:
29:94:71:A8:EE:06:9A:C4:2A:85:A1:1D:E4:19:0C:CE:
34:B7:FB:A6:EA:55:45:6A
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
46:46:c2:16:f4:b4:05:b6:af:13:19:e8:28:3f:db:08:34:9b:
ae:3d:a1:49:d1:6f:c8:49:91:93:d1:a9:d2:e9:f5:3f:1e:1a:
54:88:b6:21:be:df:d1:fb:ca:0e:50:89:e5:6d:bd:04:83:bc:
fb:f5:26:7a:d7:ed:73:8e:5c:48:c9:c0:80:63:8d:ef:f9:29:
86:c5:8b:70:d9:e8:c2:5a:e7:b3:47:da:40:86:99:c8:29:19:
0d:68:b2:3d:2d:b6:0b:a3:75:2e:c5:80:95:dc:42:d1:9c:c6:
ed:dd:73:3c:93:8a:d0:be:50:5e:49:71:86:26:40:88:ef:a6:
8a:c6:19:03:d6:15:cd:ab:54:c7:52:b8:0f:2e:93:8f:8b:21:
98:65:41:45:4c:9f:44:d6:2c:68:bb:0f:33:97:5e:36:90:7a:
be:4b:64:3c:c2:23:19:4e:c8:ea:fc:c5:a8:fd:3f:75:54:7d:
80:3f:ee:44:54:15:63:c6:14:3d:75:ed:1d:9e:25:59:a2:fe:
5e:3b:9b:43:5e:9b:e0:95:06:69:74:8c:0a:20:cd:52:b7:4e:
fc:01:b5:1c:60:0b:55:d8:78:f3:b9:1b:e0:13:f0:6c:fa:82:
fd:90:c8:80:05:f0:26:a1:3b:8d:8d:d7:be:73:85:f5:72:9e:
e9:67:f0:b8