| Hostnames |
feedblitz.com mail02.feedblitz.com email.rainmakerplatform.com |
| Domains | feedblitz.com rainmakerplatform.com |
| Country | United States |
| City | Kansas City |
| Organization | IONOS Inc. |
| ISP | IONOS SE |
| ASN | AS8560 |
| Operating System | Windows |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2020-23064 | Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element. |
| CVE-2020-11023 | 4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0. |
| CVE-2020-11022 | 4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0. |
| CVE-2019-11358 | 4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype. |
-854054709 | 2024-05-02T20:21:06.88517680 / tcp
HTTP/1.1 302 Moved Content-Type: text/html; charset=UTF-8 Location: https://app.feedblitz.com/f/f.fbz? Server: Microsoft-IIS/10.0 X-fbzip: 74.208.8.75 Set-Cookie: v5="100"; expires=Fri, 02-May-2025 20:21:00 GMT; path=/; SameSite=None; Secure; domain=feedblitz.com Set-Cookie: cookieprefs="~yM3Zihr9HTI="; expires=Fri, 02-May-2025 20:21:00 GMT; path=/; SameSite=None; Secure; HttpOnly; domain=feedblitz.com Set-Cookie: NextPage=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; domain=feedblitz.com Set-Cookie: NextPage=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; Set-Cookie: NextPage=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; domain=app.feedblitz.com Access-Control-Allow-Origin: * X-Content-Type-Options: nosniff X-XSS-Protection: 1 X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Thu, 02 May 2024 20:21:06 GMT Content-Length: 0
-2119291192 | 2024-05-02T19:14:46.672344443 / tcp
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, max-age=0 Content-Type: text/html; charset=UTF-8 Server: Microsoft-IIS/10.0 X-fbzip: 74.208.8.75 Set-Cookie: v5=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; domain=feedblitz.com Set-Cookie: v5=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; Set-Cookie: v5=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; domain=mail.feedblitz.com Access-Control-Allow-Origin: * X-Content-Type-Options: nosniff X-XSS-Protection: 1 X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Thu, 02 May 2024 19:14:45 GMT Content-Length: 248201
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:c0:63:0c:3c:92:51:77:5c:48:72:88:ac:49:ce:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=GeoTrust RSA CA 2018
Validity
Not Before: Jul 27 00:00:00 2023 GMT
Not After : Aug 26 23:59:59 2024 GMT
Subject: C=US, ST=North Carolina, L=Charlotte, O=FeedBlitz, LLC, CN=*.feedblitz.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:bc:a8:33:9d:de:2c:d9:d9:c3:d6:97:71:16:9b:
47:87:b6:9c:ac:a7:8a:c1:cb:52:46:fb:3c:19:e0:
98:b7:bf:2a:4c:97:cb:22:9a:e8:c5:fe:5c:83:63:
bf:72:41:b7:2d:40:0f:01:a9:aa:be:fe:14:97:72:
3e:1c:c1:40:99:cc:ac:02:c1:b2:ac:1b:07:d4:29:
89:a6:f6:50:07:9d:aa:7c:1a:52:63:22:58:c3:27:
af:28:11:02:c5:4a:da:8e:5d:18:cc:f2:40:eb:df:
62:e7:15:4b:36:4e:0d:7c:1b:7d:76:66:c5:6e:b5:
4b:fe:8a:72:59:d7:e3:19:73:da:be:39:90:75:eb:
7b:ce:6c:ae:53:32:42:fe:e2:d1:c1:bf:3b:bf:43:
d3:89:3c:bd:9f:db:62:00:f0:52:96:87:6f:66:75:
90:1d:f4:ad:88:5f:34:96:d3:9c:f5:8e:68:de:7f:
43:9e:a5:6e:46:34:d6:64:f6:bc:51:a4:f1:ec:0d:
58:67:c6:b9:fc:7e:22:fc:c3:d9:b9:6f:ca:3a:09:
d7:c2:9f:db:8d:81:64:ab:78:e6:18:f0:63:bd:45:
d3:84:8e:44:31:59:02:42:63:89:10:e6:6b:05:84:
c9:cf:4b:8c:23:5c:33:50:7a:b3:25:b2:58:4b:d5:
a2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
90:58:FF:B0:9C:75:A8:51:54:77:B1:ED:F2:A3:43:16:38:9E:6C:C5
X509v3 Subject Key Identifier:
29:7E:43:EB:9E:DD:E7:7D:15:2C:F6:E5:65:D8:E6:FD:F1:F5:B2:E1
X509v3 Subject Alternative Name:
DNS:*.feedblitz.com, DNS:feedblitz.com
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 CRL Distribution Points:
Full Name:
URI:http://cdp.geotrust.com/GeoTrustRSACA2018.crl
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.2
CPS: http://www.digicert.com/CPS
Authority Information Access:
OCSP - URI:http://status.geotrust.com
CA Issuers - URI:http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
X509v3 Basic Constraints:
CA:FALSE
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
Timestamp : Jul 27 19:38:41.695 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:8B:05:10:81:E9:6A:64:F7:45:43:30:
DC:C3:E4:39:CD:1F:76:9B:56:9B:DB:3D:7F:B3:FC:D0:
F6:AD:E3:78:E9:02:21:00:82:98:2C:44:6B:30:3D:60:
A6:3C:C1:E7:9F:86:FF:61:70:2D:66:A9:B5:B9:E5:B0:
DB:F1:9F:17:E6:C4:1C:E5
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Jul 27 19:38:41.682 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:1E:48:A3:66:04:B6:50:A4:17:79:D4:AC:
B1:98:B4:63:3F:7C:37:64:A3:F1:6D:56:E5:EC:28:28:
BF:22:63:FA:02:20:78:28:2F:9B:A8:13:8C:65:78:3D:
DA:CD:4E:25:BC:AD:BE:6E:2F:F7:A7:3B:95:53:20:9A:
FF:56:44:5D:27:98
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Jul 27 19:38:41.654 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:28:57:04:A4:E8:5A:CF:2F:C0:46:BB:AB:
FD:DB:B5:0A:7E:74:3F:33:ED:D9:BB:83:45:66:03:CF:
95:4A:7C:2E:02:20:04:AC:F3:9E:0B:04:15:35:5E:F7:
DC:20:D8:B4:A5:CB:04:52:9F:47:72:3E:20:71:83:F7:
49:FD:8E:1E:2B:A7
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
85:3a:d0:0b:d5:96:00:9d:98:f8:20:04:93:eb:30:47:61:12:
de:97:9d:90:27:4f:88:87:b7:b9:46:cf:21:5b:b5:43:03:7f:
fd:2f:f7:4a:cb:ee:2a:cc:58:16:b9:d5:a3:6d:48:78:74:b3:
de:28:71:48:50:d3:84:f3:9e:06:b6:e9:33:60:36:7e:76:7e:
d6:db:94:af:7d:fe:23:57:d8:32:b8:a3:fe:33:99:db:5d:9e:
37:02:3f:d2:dc:3e:27:9c:89:73:2e:f3:da:8f:13:34:9c:05:
bf:aa:5a:17:ff:bc:1f:35:b2:c3:e6:4e:60:f8:bd:f3:bd:43:
31:57:85:da:f1:ab:8c:30:98:37:18:44:85:29:b1:e4:5a:93:
08:b0:ce:e7:5d:20:f2:bf:a8:97:12:fd:61:73:1a:73:52:56:
2a:58:58:82:ba:54:00:40:6c:58:ea:f8:3c:19:49:ec:1b:73:
ae:4c:89:40:d7:2c:21:87:00:d0:45:e7:b8:7e:63:f3:86:75:
fa:40:52:33:b2:dd:f7:51:1e:fb:98:bd:bb:be:cc:65:48:46:
2a:42:14:04:3a:82:13:97:6a:f7:a5:80:a5:43:1d:d1:21:35:
be:6c:35:33:86:94:1b:b5:e4:fe:77:6c:34:2b:f2:7f:08:15:
4d:e1:7c:cc
-908338044 | 2024-04-29T00:56:24.4518438443 / tcp
HTTP/1.1 302 Moved Content-Type: text/html; charset=UTF-8 Location: https://www.feedblitz.com/fake Server: Microsoft-IIS/10.0 X-fbzip: 74.208.8.75 Set-Cookie: v5="100"; expires=Tue, 29-Apr-2025 00:56:00 GMT; path=/; SameSite=None; Secure; Set-Cookie: cookieprefs="~yM3Zihr9HTI="; expires=Tue, 29-Apr-2025 00:56:00 GMT; path=/; SameSite=None; Secure; HttpOnly; Set-Cookie: NextPage=; expires=Fri, 20-May-2005 12:00:00 GMT; Max-Age=-1; path=/; Access-Control-Allow-Origin: * X-Content-Type-Options: nosniff X-XSS-Protection: 1 X-Frame-Options: sameorigin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Date: Mon, 29 Apr 2024 00:56:24 GMT Content-Length: 0
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:3b:c1:35:8b:cc:fa:cf:5f:e2:12:cf:30:3e:7d:7b:05:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 22 10:11:22 2024 GMT
Not After : Jul 21 10:11:21 2024 GMT
Subject: CN=email.rainmakerplatform.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a1:7c:74:31:26:ee:e8:28:2a:66:e2:b8:52:57:
50:59:75:bb:55:31:eb:a8:4d:25:af:c7:c0:68:da:
a7:f3:09:d5:a3:00:90:c3:35:ed:97:71:3d:ac:e4:
67:e7:df:a4:78:a4:03:a0:b3:e2:90:68:53:a8:a2:
17:f9:11:3a:66:24:cf:3f:c7:45:8e:19:29:92:ab:
17:3c:9b:80:da:ab:3e:74:06:3e:62:07:62:2f:ff:
4b:c7:dd:3e:87:e7:17:27:85:96:a4:e6:17:c5:dc:
90:49:54:96:93:fc:d4:a8:7e:fd:de:e3:56:dd:9d:
39:3e:b1:a9:f1:1a:06:eb:17:2a:f4:34:e8:96:fa:
9a:22:71:61:6d:b6:2b:fe:53:f7:0a:6f:e0:9b:09:
1a:6d:50:1b:61:de:9a:50:45:f6:73:22:48:78:b2:
4d:83:d0:5f:74:64:f0:50:59:b0:13:cd:5d:dc:7a:
7b:e9:36:c6:2d:1e:16:7e:c9:23:33:53:00:76:ac:
8e:ac:03:aa:d4:95:f3:40:84:59:0a:6a:75:42:33:
a4:c6:3f:09:06:78:19:f2:a2:8b:42:56:a8:c3:bb:
84:49:11:71:fd:2b:3e:33:d2:01:8b:c1:f4:28:88:
9f:59:26:76:a8:0e:c2:cd:78:a4:28:0f:b5:a5:6b:
9c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
FA:C8:1E:01:57:5E:1F:94:9F:EF:98:6C:C4:DB:9B:7A:B9:B3:40:26
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:email.rainmakerplatform.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Apr 22 11:11:22.845 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:53:E9:68:B9:FD:4D:BF:F0:90:A4:EC:34:
92:7F:F7:40:5B:E2:C2:20:70:CD:D9:1E:06:68:6C:9F:
C6:67:3E:91:02:20:33:78:64:69:65:55:73:0A:81:05:
FD:66:16:BB:59:CB:A1:EB:01:33:F0:7F:C5:AF:AD:33:
A5:4D:63:0A:91:F9
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
Timestamp : Apr 22 11:11:23.041 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:99:17:1C:57:2C:C0:55:09:37:30:C4:
3D:B6:05:7B:72:24:26:80:D3:ED:FE:72:4F:C9:A2:24:
A3:61:3D:C2:11:02:21:00:92:5F:E1:A8:04:97:96:BF:
2C:D5:58:4D:3D:56:48:72:19:12:C7:4F:CB:1D:A2:35:
35:27:FA:A8:46:E0:78:58
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
1f:47:b9:bc:e7:0f:f1:9b:cb:c3:f4:27:32:aa:cb:a3:84:7c:
9f:a5:3c:21:95:93:c5:7b:c5:62:20:c6:b6:55:e5:27:c6:6e:
ae:ee:67:9f:61:ef:b8:7c:62:9e:cb:f8:2c:cb:f5:23:42:06:
c5:3f:11:9f:a7:17:75:21:e2:d6:23:58:68:be:da:7e:d8:23:
2a:ad:73:a2:40:fb:89:b7:df:b8:06:cf:28:ea:6a:10:b8:08:
08:72:3b:e1:9c:40:7e:49:2b:cd:e9:07:11:27:7a:f0:7f:e6:
74:2b:f2:6a:77:1f:7e:ea:5a:26:ce:3b:fb:f1:76:0d:cb:61:
48:3e:d3:10:f4:5c:f6:33:8b:da:63:21:1a:ed:cd:1c:76:f2:
22:d9:85:b7:03:c4:1d:e8:66:a4:9f:ae:c4:15:ff:70:4f:92:
8c:a7:02:e8:47:3b:0c:7c:41:a8:a8:65:e2:57:ec:03:b1:cc:
9e:b6:42:ad:53:71:33:6a:ba:76:ec:4e:aa:7f:36:37:22:76:
0d:da:0f:79:9b:ad:eb:b8:ce:05:f0:4d:2c:8e:86:56:91:e5:
f8:c3:ee:8c:e5:b1:06:33:91:fa:32:fc:16:80:33:6d:9c:e8:
b7:32:c1:11:8b:b5:24:71:58:63:bb:ac:b3:f3:9c:8a:49:c6:
0e:70:fe:7d