GeneralInformation

Hostnames	webx1023.aruba.it emmetruck.it
Domains	aruba.it emmetruck.it
Country	Italy
City	Arezzo
Organization	Aruba S.p.A. - Shared Hosting
ISP	Aruba S.p.A.
ASN	AS31034

WebTechnologies

Blogs

WordPress

CDN

Google Hosted Libraries

CMS

Databases

JavaScript libraries

Page builders

Programming languages

PHP

WordPress plugins

wpBakery

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-7656	6.1jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.
CVE-2020-11023	6.1In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	6.1In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	6.1jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2012-6708	6.1jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.
CVE-2011-4969	Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.

OpenPorts

80 443 2222

2042296334 | 2024-04-16T11:54:31.622566

80 / tcp

HTTP/1.1 200 OK
Server: aruba-proxy
Date: Tue, 16 Apr 2024 11:54:31 GMT
Content-Type: text/html
Content-Length: 2299
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 19 Aug 2020 16:55:38 GMT
Accept-Ranges: bytes
X-ServerName: ipvsproxy12.ad.aruba.it

-322378047 | 2024-04-19T06:14:57.515860

443 / tcp

HTTP/1.1 200 OK
Server: aruba-proxy
Date: Fri, 19 Apr 2024 06:10:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Link: <https://www.emmetruck.it/wp-json/>; rel="https://api.w.org/", <https://www.emmetruck.it/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://www.emmetruck.it/>; rel=shortlink
X-ServerName: ipvsproxy12.ad.aruba.it

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2a:96:3f:1c:7f:56:1e:82:76:a8:65:e1:92:1c:37:0d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=IT, ST=Bergamo, L=Ponte San Pietro, O=Actalis S.p.A., CN=Actalis Domain Validation Server CA G3
        Validity
            Not Before: Nov 14 07:37:21 2023 GMT
            Not After : Dec 14 07:37:20 2024 GMT
        Subject: CN=*.emmetruck.it
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c7:92:a8:97:ae:8a:56:42:ea:02:62:a6:29:9b:
                    7b:d7:aa:cb:5e:a0:4e:7c:50:0f:80:92:ca:c4:b7:
                    5d:73:1f:5c:73:b8:38:df:c5:14:6a:9a:f9:54:cf:
                    48:80:4e:a3:55:43:94:52:36:5e:67:28:8a:e4:85:
                    ce:5e:22:94:e2:ed:d3:21:90:7a:6e:15:7e:65:7e:
                    ed:51:7b:99:98:ef:00:0f:a1:6a:b9:a9:99:e6:69:
                    cb:68:65:09:f4:ce:cf:da:8a:a7:c1:ea:e5:30:56:
                    a2:0c:8c:26:73:a3:70:ff:3e:90:fe:58:c6:0b:e4:
                    4f:0c:c9:df:91:1d:e1:51:0f:6d:bb:e7:59:a3:63:
                    71:37:66:39:b6:ed:ca:c2:b3:61:05:6a:95:f9:57:
                    04:eb:36:9f:80:48:bc:2a:6e:25:28:3a:57:73:df:
                    23:6f:28:db:3c:df:ce:12:7c:0b:b7:19:4a:b8:ab:
                    9c:1d:fc:c5:54:56:e1:58:d6:3e:31:3d:94:08:d2:
                    52:ed:f1:e2:13:08:ae:5e:b0:3b:a7:65:1d:20:cf:
                    b9:ba:8f:27:5d:e8:d8:0b:d5:30:a5:d9:62:66:6f:
                    70:fd:18:b3:d4:de:f5:c3:75:5f:ea:59:9e:76:2f:
                    e9:85:14:3f:3f:57:1a:3a:e2:f1:e2:3e:12:b1:fc:
                    c6:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Authority Key Identifier: 
                42:83:6D:80:7C:09:84:67:FD:80:57:AB:F1:26:F5:77:C8:22:82:71
            Authority Information Access: 
                CA Issuers - URI:http://cacert.actalis.it/certs/actalis-autdvg3
                OCSP - URI:http://ocsp06.actalis.it/VA/AUTHDV-G3
            X509v3 Subject Alternative Name: 
                DNS:*.emmetruck.it, DNS:emmetruck.it
            X509v3 Certificate Policies: 
                Policy: 1.3.159.1.23.1
                  CPS: https://www.actalis.it/area-download
                Policy: 2.23.140.1.2.1
            X509v3 Extended Key Usage: 
                TLS Web Client Authentication, TLS Web Server Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl06.actalis.it/Repository/AUTHDV-G3/getLastCRL
            X509v3 Subject Key Identifier: 
                59:47:84:71:8A:56:A6:59:DA:CE:58:15:F6:5C:7E:E2:E3:1D:A7:63
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Nov 14 07:47:22.186 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CD:5A:66:DB:1D:AB:72:57:89:85:D8:
                                18:3A:97:22:B9:8D:7A:EA:58:03:ED:CC:0E:38:85:A4:
                                85:FE:EF:F8:C4:02:21:00:D6:CC:9B:A1:9B:AB:06:96:
                                B3:91:F9:F0:54:3C:6A:26:8A:E8:F8:88:4B:E6:21:2E:
                                5B:F8:77:D1:1C:9A:75:7A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Nov 14 07:47:22.099 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:4C:03:BD:10:9F:3C:65:64:5B:A3:CF:5B:
                                AC:1F:0F:36:AE:7B:F1:44:5C:E2:50:55:AC:74:BE:D1:
                                8E:0B:F9:44:02:21:00:E1:AA:2C:31:12:ED:9A:0A:99:
                                38:97:86:5E:2D:89:AD:51:F0:AE:56:34:71:6C:1F:E2:
                                0E:8F:E9:BB:36:DC:BC
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Nov 14 07:47:22.145 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:0E:AA:9B:BA:A3:09:A4:5A:58:7A:67:6F:
                                57:4E:ED:1E:28:12:03:EB:B4:F4:4E:DD:A4:CB:3D:FD:
                                C1:00:23:A6:02:21:00:9F:11:67:D9:D5:C0:34:9F:6D:
                                3D:2D:7F:3A:6F:F4:D9:75:65:AC:FB:06:22:69:FD:F1:
                                14:3D:7B:B4:58:DA:6A
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        96:19:70:53:da:bb:19:a1:8b:1d:8e:3a:42:65:da:87:71:81:
        8e:4b:7c:c2:a8:27:0e:43:12:0b:48:ee:76:f8:a2:2b:e6:d8:
        e9:cc:da:85:ac:a3:1e:9f:f7:f0:35:1f:1b:12:e0:dd:b0:b1:
        4a:6b:54:a9:d6:00:3a:fe:f9:04:00:f1:4c:78:02:ce:d0:01:
        3b:4c:51:be:8c:b4:4a:ac:08:e6:04:50:37:9d:c8:92:7f:a4:
        23:ec:52:29:2b:70:b0:d9:7d:5a:6d:b9:49:80:96:8a:1a:2b:
        dd:d5:9f:33:23:9e:da:6b:8d:c9:c4:5a:19:5a:19:1b:b5:0f:
        9e:8c:11:c0:a3:53:c1:1f:50:2f:5d:06:fb:47:c5:fb:02:63:
        51:5d:1e:be:db:da:44:d0:18:38:4f:e7:49:2e:ee:a0:62:c0:
        b5:29:ac:65:53:d2:c8:ce:46:85:44:09:fe:6b:36:f5:93:cc:
        e5:85:a5:aa:ab:a4:9e:59:75:1a:e8:43:f2:08:c5:53:43:e7:
        37:9b:11:aa:44:7e:ae:86:4b:8a:db:dc:1e:fe:24:b9:55:43:
        ce:5d:91:64:00:9e:c5:6d:1b:01:79:43:1e:c4:b9:d5:54:af:
        af:7e:68:6b:dd:09:b9:ec:ff:e9:b4:11:ca:54:45:91:70:bb:
        67:c0:4f:63:2b:fa:f1:d0:29:97:43:c2:a5:e3:36:5d:28:43:
        4e:ca:10:32:4c:99:45:1b:64:c9:48:68:07:2c:a2:fd:35:bb:
        55:00:00:41:e5:0f:79:3f:e1:c8:eb:90:66:3c:5f:e0:c9:3e:
        27:13:95:a5:ad:cb:e2:3f:bc:50:1f:44:6c:d8:fe:ad:96:00:
        ae:06:de:db:7d:4f:89:51:c4:5c:d3:d3:6b:2b:df:e6:ae:7b:
        a4:a8:8c:66:0c:34:ce:5e:74:a2:52:3d:9c:ed:22:b4:90:61:
        ee:7d:c8:26:82:03:1c:05:96:4a:a5:24:3c:3a:f4:db:91:93:
        8e:e9:dd:2d:27:b6:59:9c:53:17:e0:be:2a:02:9c:79:aa:54:
        b2:f0:a7:58:b1:b1:39:6d:dc:f7:9b:4e:b3:38:18:a6:13:ac:
        e0:a8:78:c2:f4:12:e3:c9:03:51:ac:19:b4:71:85:e4:c3:52:
        26:36:99:28:cf:eb:d1:1a:ce:8f:88:3f:ef:8b:ef:14:fd:60:
        7c:4d:48:1f:18:25:56:7c:b3:4d:75:5c:6c:66:91:53:4f:d6:
        6f:9a:34:d8:52:a2:0f:89:e5:5f:49:dc:53:c9:ce:0c:06:be:
        46:70:79:3c:c1:c6:62:04:ba:31:ea:4a:97:c8:b5:2e:a7:c0:
        4e:09:9d:df:de:4c:a7:d0

1642337268 | 2024-04-16T00:00:06.565844

2222 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDAR7iWXya5YlvcCyc2CPLjSA0WYGaKG54AB9z6QB8bsbAX
PPcrjUxoo47kunZy9qnINh65kuxXQCgx/ongO3ZCYhxxqoQQySXGUST3UodWZ7AQYwqGt6AsqE8G
bKozoVIr/W2oqVjjXon2J71pjv//gHWnDrF9b2O2rZQxvQwlmxy06aNLl38L6lKCCu/ajSMZvpMd
loi/FWLayhl51E8KNCTOw68bFnSKvQztpDGWKM4nJtowlhIl3EW5613GXIiXmUlHwyIQWDrMpodP
/CSbjdyflGGbWiE72IHX7aqsxLgbDp5UQQPXPZ0RvfQ8K2imM+GOqkzWalIojhhUxtUP+2W9lL8F
F7kujbxlfbrduCJlI6PavlyhHuIX+C4/UnMOHkN74bMEXwL0hSl69d6p8oX0VF+6CuUdUnBEqSpI
Tv2U0sig+IxkvuCaG/eL3d6BBNT+6uibH04uGHzV5M2nNVWyw2Y9vB9LYIobX6cSYR2OYQZbg0nC
4GLS6lhyk4c=
Fingerprint: 9b:5b:1b:42:d2:54:e0:04:ab:91:e9:79:5d:a6:33:83

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	ecdsa-sha2-nistp256
	ssh-ed25519
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

89.46.104.33

Last Seen: 2024-04-19

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2042296334 | 2024-04-16T11:54:31.622566
80 / tcp

-322378047 | 2024-04-19T06:14:57.515860
443 / tcp

1642337268 | 2024-04-16T00:00:06.565844
2222 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

Products

Pricing

Contact Us

89.46.104.33

Last Seen: 2024-04-19

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2042296334 | 2024-04-16T11:54:31.622566 80 / tcp

-322378047 | 2024-04-19T06:14:57.515860 443 / tcp

1642337268 | 2024-04-16T00:00:06.565844 2222 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

Products

Pricing

Contact Us

2042296334 | 2024-04-16T11:54:31.622566
80 / tcp

-322378047 | 2024-04-19T06:14:57.515860
443 / tcp

1642337268 | 2024-04-16T00:00:06.565844
2222 / tcp