Hostnames |
feedblitz.com mail02.feedblitz.com email.rainmakerplatform.com |
Domains | feedblitz.com rainmakerplatform.com |
Country | United States |
City | Kansas City |
Organization | IONOS Inc. |
ISP | IONOS SE |
ASN | AS8560 |
Operating System | Windows |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2020-23064 | Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element. |
CVE-2020-11023 | 4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0. |
CVE-2020-11022 | 4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0. |
CVE-2019-11358 | 4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype. |
-854054709 | 2024-05-02T20:21:06.88517680 / tcp
HTTP/1.1 302 Moved Content-Type: text/html; charset=UTF-8 Location: https://app.feedblitz.com/f/f.fbz? Server: Microsoft-IIS/10.0 X-fbzip: 74.208.8.75 Set-Cookie: v5="100"; expires=Fri, 02-May-2025 20:21:00 GMT; path=/; SameSite=None; Secure; domain=feedblitz.com Set-Cookie: cookieprefs="~yM3Zihr9HTI="; expires=Fri, 02-May-2025 20:21:00 GMT; path=/; SameSite=None; Secure; HttpOnly; domain=feedblitz.com Set-Cookie: NextPage=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; domain=feedblitz.com Set-Cookie: NextPage=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; Set-Cookie: NextPage=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; domain=app.feedblitz.com Access-Control-Allow-Origin: * X-Content-Type-Options: nosniff X-XSS-Protection: 1 X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Thu, 02 May 2024 20:21:06 GMT Content-Length: 0
-2119291192 | 2024-05-02T19:14:46.672344443 / tcp
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, max-age=0 Content-Type: text/html; charset=UTF-8 Server: Microsoft-IIS/10.0 X-fbzip: 74.208.8.75 Set-Cookie: v5=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; domain=feedblitz.com Set-Cookie: v5=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; Set-Cookie: v5=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; domain=mail.feedblitz.com Access-Control-Allow-Origin: * X-Content-Type-Options: nosniff X-XSS-Protection: 1 X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Thu, 02 May 2024 19:14:45 GMT Content-Length: 248201
Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c0:63:0c:3c:92:51:77:5c:48:72:88:ac:49:ce:01 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=GeoTrust RSA CA 2018 Validity Not Before: Jul 27 00:00:00 2023 GMT Not After : Aug 26 23:59:59 2024 GMT Subject: C=US, ST=North Carolina, L=Charlotte, O=FeedBlitz, LLC, CN=*.feedblitz.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bc:a8:33:9d:de:2c:d9:d9:c3:d6:97:71:16:9b: 47:87:b6:9c:ac:a7:8a:c1:cb:52:46:fb:3c:19:e0: 98:b7:bf:2a:4c:97:cb:22:9a:e8:c5:fe:5c:83:63: bf:72:41:b7:2d:40:0f:01:a9:aa:be:fe:14:97:72: 3e:1c:c1:40:99:cc:ac:02:c1:b2:ac:1b:07:d4:29: 89:a6:f6:50:07:9d:aa:7c:1a:52:63:22:58:c3:27: af:28:11:02:c5:4a:da:8e:5d:18:cc:f2:40:eb:df: 62:e7:15:4b:36:4e:0d:7c:1b:7d:76:66:c5:6e:b5: 4b:fe:8a:72:59:d7:e3:19:73:da:be:39:90:75:eb: 7b:ce:6c:ae:53:32:42:fe:e2:d1:c1:bf:3b:bf:43: d3:89:3c:bd:9f:db:62:00:f0:52:96:87:6f:66:75: 90:1d:f4:ad:88:5f:34:96:d3:9c:f5:8e:68:de:7f: 43:9e:a5:6e:46:34:d6:64:f6:bc:51:a4:f1:ec:0d: 58:67:c6:b9:fc:7e:22:fc:c3:d9:b9:6f:ca:3a:09: d7:c2:9f:db:8d:81:64:ab:78:e6:18:f0:63:bd:45: d3:84:8e:44:31:59:02:42:63:89:10:e6:6b:05:84: c9:cf:4b:8c:23:5c:33:50:7a:b3:25:b2:58:4b:d5: a2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 90:58:FF:B0:9C:75:A8:51:54:77:B1:ED:F2:A3:43:16:38:9E:6C:C5 X509v3 Subject Key Identifier: 29:7E:43:EB:9E:DD:E7:7D:15:2C:F6:E5:65:D8:E6:FD:F1:F5:B2:E1 X509v3 Subject Alternative Name: DNS:*.feedblitz.com, DNS:feedblitz.com X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 CRL Distribution Points: Full Name: URI:http://cdp.geotrust.com/GeoTrustRSACA2018.crl X509v3 Certificate Policies: Policy: 2.23.140.1.2.2 CPS: http://www.digicert.com/CPS Authority Information Access: OCSP - URI:http://status.geotrust.com CA Issuers - URI:http://cacerts.geotrust.com/GeoTrustRSACA2018.crt X509v3 Basic Constraints: CA:FALSE CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Jul 27 19:38:41.695 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:8B:05:10:81:E9:6A:64:F7:45:43:30: DC:C3:E4:39:CD:1F:76:9B:56:9B:DB:3D:7F:B3:FC:D0: F6:AD:E3:78:E9:02:21:00:82:98:2C:44:6B:30:3D:60: A6:3C:C1:E7:9F:86:FF:61:70:2D:66:A9:B5:B9:E5:B0: DB:F1:9F:17:E6:C4:1C:E5 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Jul 27 19:38:41.682 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:1E:48:A3:66:04:B6:50:A4:17:79:D4:AC: B1:98:B4:63:3F:7C:37:64:A3:F1:6D:56:E5:EC:28:28: BF:22:63:FA:02:20:78:28:2F:9B:A8:13:8C:65:78:3D: DA:CD:4E:25:BC:AD:BE:6E:2F:F7:A7:3B:95:53:20:9A: FF:56:44:5D:27:98 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Jul 27 19:38:41.654 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:28:57:04:A4:E8:5A:CF:2F:C0:46:BB:AB: FD:DB:B5:0A:7E:74:3F:33:ED:D9:BB:83:45:66:03:CF: 95:4A:7C:2E:02:20:04:AC:F3:9E:0B:04:15:35:5E:F7: DC:20:D8:B4:A5:CB:04:52:9F:47:72:3E:20:71:83:F7: 49:FD:8E:1E:2B:A7 Signature Algorithm: sha256WithRSAEncryption Signature Value: 85:3a:d0:0b:d5:96:00:9d:98:f8:20:04:93:eb:30:47:61:12: de:97:9d:90:27:4f:88:87:b7:b9:46:cf:21:5b:b5:43:03:7f: fd:2f:f7:4a:cb:ee:2a:cc:58:16:b9:d5:a3:6d:48:78:74:b3: de:28:71:48:50:d3:84:f3:9e:06:b6:e9:33:60:36:7e:76:7e: d6:db:94:af:7d:fe:23:57:d8:32:b8:a3:fe:33:99:db:5d:9e: 37:02:3f:d2:dc:3e:27:9c:89:73:2e:f3:da:8f:13:34:9c:05: bf:aa:5a:17:ff:bc:1f:35:b2:c3:e6:4e:60:f8:bd:f3:bd:43: 31:57:85:da:f1:ab:8c:30:98:37:18:44:85:29:b1:e4:5a:93: 08:b0:ce:e7:5d:20:f2:bf:a8:97:12:fd:61:73:1a:73:52:56: 2a:58:58:82:ba:54:00:40:6c:58:ea:f8:3c:19:49:ec:1b:73: ae:4c:89:40:d7:2c:21:87:00:d0:45:e7:b8:7e:63:f3:86:75: fa:40:52:33:b2:dd:f7:51:1e:fb:98:bd:bb:be:cc:65:48:46: 2a:42:14:04:3a:82:13:97:6a:f7:a5:80:a5:43:1d:d1:21:35: be:6c:35:33:86:94:1b:b5:e4:fe:77:6c:34:2b:f2:7f:08:15: 4d:e1:7c:cc
-908338044 | 2024-04-29T00:56:24.4518438443 / tcp
HTTP/1.1 302 Moved Content-Type: text/html; charset=UTF-8 Location: https://www.feedblitz.com/fake Server: Microsoft-IIS/10.0 X-fbzip: 74.208.8.75 Set-Cookie: v5="100"; expires=Tue, 29-Apr-2025 00:56:00 GMT; path=/; SameSite=None; Secure; Set-Cookie: cookieprefs="~yM3Zihr9HTI="; expires=Tue, 29-Apr-2025 00:56:00 GMT; path=/; SameSite=None; Secure; HttpOnly; Set-Cookie: NextPage=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; Access-Control-Allow-Origin: * X-Content-Type-Options: nosniff X-XSS-Protection: 1 X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Mon, 29 Apr 2024 00:56:24 GMT Content-Length: 0
Certificate: Data: Version: 3 (0x2) Serial Number: 03:3b:c1:35:8b:cc:fa:cf:5f:e2:12:cf:30:3e:7d:7b:05:21 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Apr 22 10:11:22 2024 GMT Not After : Jul 21 10:11:21 2024 GMT Subject: CN=email.rainmakerplatform.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:a1:7c:74:31:26:ee:e8:28:2a:66:e2:b8:52:57: 50:59:75:bb:55:31:eb:a8:4d:25:af:c7:c0:68:da: a7:f3:09:d5:a3:00:90:c3:35:ed:97:71:3d:ac:e4: 67:e7:df:a4:78:a4:03:a0:b3:e2:90:68:53:a8:a2: 17:f9:11:3a:66:24:cf:3f:c7:45:8e:19:29:92:ab: 17:3c:9b:80:da:ab:3e:74:06:3e:62:07:62:2f:ff: 4b:c7:dd:3e:87:e7:17:27:85:96:a4:e6:17:c5:dc: 90:49:54:96:93:fc:d4:a8:7e:fd:de:e3:56:dd:9d: 39:3e:b1:a9:f1:1a:06:eb:17:2a:f4:34:e8:96:fa: 9a:22:71:61:6d:b6:2b:fe:53:f7:0a:6f:e0:9b:09: 1a:6d:50:1b:61:de:9a:50:45:f6:73:22:48:78:b2: 4d:83:d0:5f:74:64:f0:50:59:b0:13:cd:5d:dc:7a: 7b:e9:36:c6:2d:1e:16:7e:c9:23:33:53:00:76:ac: 8e:ac:03:aa:d4:95:f3:40:84:59:0a:6a:75:42:33: a4:c6:3f:09:06:78:19:f2:a2:8b:42:56:a8:c3:bb: 84:49:11:71:fd:2b:3e:33:d2:01:8b:c1:f4:28:88: 9f:59:26:76:a8:0e:c2:cd:78:a4:28:0f:b5:a5:6b: 9c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: FA:C8:1E:01:57:5E:1F:94:9F:EF:98:6C:C4:DB:9B:7A:B9:B3:40:26 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:email.rainmakerplatform.com X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Apr 22 11:11:22.845 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:53:E9:68:B9:FD:4D:BF:F0:90:A4:EC:34: 92:7F:F7:40:5B:E2:C2:20:70:CD:D9:1E:06:68:6C:9F: C6:67:3E:91:02:20:33:78:64:69:65:55:73:0A:81:05: FD:66:16:BB:59:CB:A1:EB:01:33:F0:7F:C5:AF:AD:33: A5:4D:63:0A:91:F9 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32: 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C Timestamp : Apr 22 11:11:23.041 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:99:17:1C:57:2C:C0:55:09:37:30:C4: 3D:B6:05:7B:72:24:26:80:D3:ED:FE:72:4F:C9:A2:24: A3:61:3D:C2:11:02:21:00:92:5F:E1:A8:04:97:96:BF: 2C:D5:58:4D:3D:56:48:72:19:12:C7:4F:CB:1D:A2:35: 35:27:FA:A8:46:E0:78:58 Signature Algorithm: sha256WithRSAEncryption Signature Value: 1f:47:b9:bc:e7:0f:f1:9b:cb:c3:f4:27:32:aa:cb:a3:84:7c: 9f:a5:3c:21:95:93:c5:7b:c5:62:20:c6:b6:55:e5:27:c6:6e: ae:ee:67:9f:61:ef:b8:7c:62:9e:cb:f8:2c:cb:f5:23:42:06: c5:3f:11:9f:a7:17:75:21:e2:d6:23:58:68:be:da:7e:d8:23: 2a:ad:73:a2:40:fb:89:b7:df:b8:06:cf:28:ea:6a:10:b8:08: 08:72:3b:e1:9c:40:7e:49:2b:cd:e9:07:11:27:7a:f0:7f:e6: 74:2b:f2:6a:77:1f:7e:ea:5a:26:ce:3b:fb:f1:76:0d:cb:61: 48:3e:d3:10:f4:5c:f6:33:8b:da:63:21:1a:ed:cd:1c:76:f2: 22:d9:85:b7:03:c4:1d:e8:66:a4:9f:ae:c4:15:ff:70:4f:92: 8c:a7:02:e8:47:3b:0c:7c:41:a8:a8:65:e2:57:ec:03:b1:cc: 9e:b6:42:ad:53:71:33:6a:ba:76:ec:4e:aa:7f:36:37:22:76: 0d:da:0f:79:9b:ad:eb:b8:ce:05:f0:4d:2c:8e:86:56:91:e5: f8:c3:ee:8c:e5:b1:06:33:91:fa:32:fc:16:80:33:6d:9c:e8: b7:32:c1:11:8b:b5:24:71:58:63:bb:ac:b3:f3:9c:8a:49:c6: 0e:70:fe:7d