GeneralInformation

Hostnames	44.35-2-84.hosting.adatpark.hu www.nestix.eu
Domains	adatpark.hu nestix.eu
Country	Hungary
City	Budapest
Organization	Magyar Telekom plc.
ISP	Magyar Telekom plc.
ASN	AS5483

WebTechnologies

CDN

Google Hosted Libraries

CMS

Font scripts

JavaScript libraries

Marketing automation

Programming languages

PHP

UI frameworks

Bootstrap

Video players

YouTube

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

53 80 443

-494958567 | 2024-05-08T01:00:59.846692

53 / tcp

PowerDNS Authoritative Server 4.2.1
Resolver ID: mw1-front

-494958567 | 2024-05-15T00:19:52.804359

53 / udp

PowerDNS Authoritative Server 4.2.1
Resolver ID: mw1-front

-779822895 | 2024-05-08T11:35:33.816643

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 May 2024 11:35:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.5.9-1ubuntu4.29
Set-Cookie: PHPSESSID=g6lf0onlq9sisgqilqsg0q1pa6; path=/; domain=.cmsnode.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache

1899328045 | 2024-05-11T14:30:39.058825

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 May 2024 14:30:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: must-revalidate, no-cache, private
X-Drupal-Dynamic-Cache: MISS
X-UA-Compatible: IE=edge
Content-language: en
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Permissions-Policy: interest-cohort=()
expires: -1
X-Generator: Drupal 9 (https://www.drupal.org)
X-Drupal-Cache: HIT
pragma: no-cache

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:5d:34:46:3a:8f:0f:54:5c:24:9a:43:e8:83:b2:32:c3:08
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 31 17:06:15 2024 GMT
            Not After : Jun 29 17:06:14 2024 GMT
        Subject: CN=www.nestix.eu
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d0:e7:5d:69:0c:b3:e1:45:e2:35:43:65:82:16:
                    77:02:c6:93:15:da:21:6a:86:ad:56:cc:fb:c9:38:
                    21:49:38:b3:dd:22:c2:b4:9e:9d:1e:0a:de:f6:db:
                    e4:95:c4:13:2c:b8:4c:30:11:bb:86:b3:ce:b1:e5:
                    b5:c7:50:16:a1:96:77:67:ed:f0:65:8b:46:02:8d:
                    41:5c:f9:37:30:d4:ba:d6:97:b1:4f:9b:d1:d5:8b:
                    d3:c2:d7:64:81:d4:ed:09:39:7a:67:80:5b:22:61:
                    56:62:fe:a9:26:9c:cb:77:0e:95:d3:92:3f:8e:5c:
                    56:82:7d:99:7e:37:0f:7f:b4:5f:21:c1:c6:cd:73:
                    c3:3c:c3:78:3a:04:d2:dd:aa:6b:1c:d6:ed:21:68:
                    b8:67:5d:f2:5c:e3:75:be:ea:aa:28:79:1e:f8:a9:
                    e6:a2:96:73:b2:b1:24:bf:11:24:c8:cb:a9:b9:81:
                    c3:b1:7b:19:9a:1a:b6:ef:6a:0d:09:8c:33:45:87:
                    23:df:63:57:00:f2:f1:0b:78:26:9e:82:92:58:35:
                    a4:6f:eb:d3:79:5c:f8:79:1f:93:8f:85:13:9a:a1:
                    8e:1c:11:06:66:a3:06:33:72:61:92:c4:c6:18:9b:
                    9b:af:c5:45:9f:1d:da:7f:a7:5a:70:70:78:49:ce:
                    03:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                D6:83:6C:3A:AB:D5:E5:C3:2F:7B:46:14:1E:A6:E3:5A:DA:64:8A:67
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:www.nestix.eu
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 31 18:06:15.699 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D1:C8:B6:7B:9D:26:47:D9:72:78:EC:
                                D3:A9:97:62:36:68:93:8C:6B:E2:EF:81:A6:3B:BF:B7:
                                EC:0B:32:47:7C:02:20:7C:99:C3:46:0D:5B:8F:99:AC:
                                E8:77:F6:4D:85:0A:A8:E5:A4:5A:D6:F8:03:91:85:45:
                                29:1E:EC:4D:04:7A:5C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 31 18:06:15.757 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B4:9B:B6:B9:EF:B1:C5:99:5B:59:98:
                                F3:39:71:1E:70:2F:14:3D:D9:74:D6:B6:25:96:24:41:
                                7F:88:68:77:CE:02:21:00:AF:79:04:F6:85:3E:46:D1:
                                EC:0E:42:74:C3:33:47:A3:9C:BC:4D:F9:20:BE:7D:75:
                                14:B1:45:D2:34:AC:D8:CC
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b4:fc:f5:51:08:29:6b:d4:54:06:d6:50:1f:e9:03:d7:bb:93:
        a5:13:ff:c3:c9:6c:d9:40:89:5e:82:eb:fb:01:40:86:36:73:
        2f:35:08:b8:9e:a7:54:90:ad:8e:03:0a:3c:ae:ad:ae:84:cf:
        ab:d5:bb:3c:0b:76:59:33:78:2e:96:75:1e:01:50:66:e3:ee:
        60:dc:44:7b:d2:7b:d2:c7:f4:8f:8d:d2:35:56:f0:b8:55:e3:
        b4:59:70:69:9a:f8:03:8c:21:60:88:b2:66:aa:6f:d9:8c:02:
        f7:55:1a:04:4e:e2:a5:8d:ea:11:a6:55:fa:27:f1:e3:35:8a:
        fb:95:71:6f:26:48:d6:fa:57:cb:2e:f5:cf:ee:5c:ca:b1:37:
        09:ce:c2:e8:90:2b:17:e9:64:74:d7:21:2d:42:f1:21:f0:f8:
        0f:a3:ee:a8:a9:ef:04:9a:5c:30:5f:ab:0c:9b:88:e9:db:4b:
        bf:68:61:22:f6:09:3c:7e:1d:ca:af:37:fa:83:10:f5:69:7a:
        35:a4:bf:d1:27:8e:c8:15:c6:17:8a:0b:18:68:d3:57:78:96:
        db:97:fd:ad:0e:c2:da:d7:8b:15:86:2e:25:f1:cb:fb:ec:29:
        1f:26:55:3b:1e:44:16:97:1d:39:1e:4b:bf:43:0a:60:00:e7:
        39:87:4b:76

84.2.35.44

Last Seen: 2024-05-15

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-494958567 | 2024-05-08T01:00:59.846692
53 / tcp

-494958567 | 2024-05-15T00:19:52.804359
53 / udp

-779822895 | 2024-05-08T11:35:33.816643
80 / tcp

nginx1.18.0

1899328045 | 2024-05-11T14:30:39.058825
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

84.2.35.44

Last Seen: 2024-05-15

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-494958567 | 2024-05-08T01:00:59.846692 53 / tcp

-494958567 | 2024-05-15T00:19:52.804359 53 / udp

-779822895 | 2024-05-08T11:35:33.816643 80 / tcp

nginx1.18.0

1899328045 | 2024-05-11T14:30:39.058825 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-494958567 | 2024-05-08T01:00:59.846692
53 / tcp

-494958567 | 2024-05-15T00:19:52.804359
53 / udp

-779822895 | 2024-05-08T11:35:33.816643
80 / tcp

1899328045 | 2024-05-11T14:30:39.058825
443 / tcp