GeneralInformation

Hostnames	ws.facil-iti.com www.ws.facil-iti.com
Domains	facil-iti.com
Country	France
City	Lille
Organization	OVH SAS
ISP	OVH SAS
ASN	AS16276

WebTechnologies

JavaScript libraries

Security

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-23064	6.1Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	6.1In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	6.1In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

OpenPorts

80 443

-1154832235 | 2024-04-16T08:44:55.696025

80 / tcp

HTTP/1.1 302 Found
content-length: 0
location: https://91.134.157.162/
cache-control: no-cache

-907897540 | 2024-04-16T08:44:58.880439

443 / tcp

HTTP/1.1 200 OK
date: Tue, 16 Apr 2024 08:44:58 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
set-cookie: PHPSESSID=283otpl5ocvbop14urqvi6bqsj; path=/; secure; HttpOnly; SameSite=Lax
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
link: </files/design/css/style.css?20220729>; rel=preload; as=style
link: </files/design/js/load-google-fonts.js>; rel=preload; as=script
link: </files/design/js/jquery-3.4.1.min.js>; rel=preload; as=script
link: </files/design/js/select2.min.js>; rel=preload; as=script
link: </files/design/js/bootstrap.min.js>; rel=preload; as=script
link: </files/design/js/jquery.validate.js>; rel=preload; as=script
link: </files/design/js/jquery-validate.bootstrap-tooltip.js>; rel=preload; as=script
link: </files/design/js/faciliti-filterstore.min.js?20220729>; rel=preload; as=script
link: </files/design/js/faciliti-interface.min.js?20220729>; rel=preload; as=script
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=63072000; includeSubDomains
content-security-policy: default-src 'none'; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com; connect-src 'self'; img-src 'self'; script-src 'self' 'nonce-R9G4x5zj4lr3g4ebn9d8h4RghGZP8RMM'; style-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com; style-src-attr 'self'; upgrade-insecure-requests;

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            40:b6:52:2a:6e:ba:67:8c:ec:ca:04:5d:40:fb:09:dd
        Signature Algorithm: sha384WithRSAEncryption
        Issuer: C=FR, O=Gandi, CN=Gandi RSA Domain Validation Secure Server CA 3
        Validity
            Not Before: Apr  9 00:00:00 2024 GMT
            Not After : Apr  8 23:59:59 2025 GMT
        Subject: CN=ws.facil-iti.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b6:53:35:ec:c7:6e:88:3a:20:45:31:ea:3f:a0:
                    50:60:b9:9d:ef:c3:f8:de:79:32:26:65:3b:f5:23:
                    39:4f:64:5e:e2:f6:21:a5:68:d9:43:7b:ae:01:fe:
                    fc:76:6e:c5:48:fb:6b:0c:f1:a7:d9:69:7d:bf:31:
                    8e:38:3a:ee:0a:99:02:87:a6:ef:65:71:79:84:54:
                    f4:be:91:28:f7:9d:cd:13:78:05:5c:14:43:1c:1d:
                    23:8b:24:2c:80:68:cc:20:b2:b1:1a:00:c3:c9:ed:
                    74:e9:30:ba:f8:be:24:ee:5b:af:a3:59:e8:ac:e5:
                    dd:48:ce:ba:18:99:4e:17:b6:56:c3:ee:63:64:8c:
                    7c:65:d4:20:3d:76:fe:81:f2:a5:68:27:d3:0a:f4:
                    d2:d1:e7:01:df:69:84:04:99:20:0e:51:f6:2b:b0:
                    eb:95:cf:da:7b:f7:11:eb:75:6f:e7:0d:2e:05:f0:
                    40:75:40:4a:ab:b7:77:40:08:d5:2b:29:43:ef:b4:
                    6e:d5:c1:08:42:ac:a4:aa:e8:f8:20:f8:d5:c3:12:
                    f7:9d:1e:5a:f7:82:cd:42:9f:1a:ae:9e:8b:46:79:
                    1b:1f:4d:e3:66:3c:d2:31:37:be:11:82:b6:96:31:
                    d9:38:17:03:f1:a9:25:38:76:93:a4:88:2d:22:bf:
                    9c:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                81:11:92:DE:66:32:A5:B0:5B:33:3D:65:43:85:FC:D4:04:2D:F1:AE
            X509v3 Subject Key Identifier: 
                25:32:CA:D3:77:0C:01:C1:5C:39:97:8E:C7:51:13:84:C7:B3:D2:E7
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.26
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/GandiRSADomainValidationSecureServerCA3.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:ws.facil-iti.com, DNS:www.ws.facil-iti.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Apr  9 07:33:16.251 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:62:3A:15:AA:EB:B0:9D:AE:54:75:DE:62:
                                8A:61:FB:67:5D:FA:84:FC:01:86:20:04:49:84:54:8F:
                                04:4B:C3:66:02:20:52:8D:7A:04:90:FE:A9:16:C5:93:
                                07:E6:B5:2B:67:E9:39:F9:CD:B8:26:0B:1E:BD:9D:7F:
                                91:CC:28:DB:4A:10
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Apr  9 07:33:16.223 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:32:4A:D3:96:6F:7E:4F:AD:08:74:5A:CB:
                                12:53:60:56:29:92:A2:FB:FD:94:1C:17:10:A6:11:92:
                                42:98:DE:F5:02:21:00:C1:12:FB:15:82:EC:4D:99:BD:
                                51:6E:50:41:4E:55:FD:2A:8E:40:65:ED:E0:E8:4F:7B:
                                C7:5F:C6:2B:A8:23:44
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Apr  9 07:33:16.163 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A7:50:79:18:5C:B3:6B:1F:BB:4A:16:
                                64:2E:E4:72:8C:BF:1C:69:75:7F:6A:FB:B3:00:FB:48:
                                29:33:19:12:A4:02:20:2F:69:02:2A:C4:05:64:E3:D5:
                                D3:66:C4:1E:76:C5:3F:5F:4B:C0:83:7A:62:5B:B3:5F:
                                75:E2:FB:34:77:E5:16
    Signature Algorithm: sha384WithRSAEncryption
    Signature Value:
        18:a5:37:7a:82:6c:67:c5:a9:55:1e:66:9d:95:b9:dc:8b:9b:
        04:2e:e5:dc:ab:f0:fb:aa:52:3a:a9:ce:8a:dc:fa:4f:c6:fc:
        2b:3f:dd:87:36:ce:bf:33:63:ab:06:60:69:c4:d1:ca:9b:53:
        43:6c:07:88:20:ef:64:b3:7b:9c:62:92:2f:a9:78:dc:d3:e2:
        8c:5c:50:ff:3a:53:4e:ad:eb:0a:b0:66:01:e5:f7:8b:cf:51:
        21:13:61:ff:d5:64:6b:95:ee:c4:8a:5d:a0:84:ac:84:67:d6:
        c8:6e:33:50:39:ce:a8:a8:18:cb:a3:b8:96:86:a2:68:71:1f:
        45:bb:26:91:68:52:c2:8f:1c:32:96:2e:d9:2e:11:1b:5e:6d:
        fd:52:62:1c:3b:73:4f:44:34:dc:b0:75:8e:e8:ac:d9:c4:38:
        84:a1:9b:95:2f:d3:bb:77:e4:5e:a3:90:bd:38:3e:bf:d6:f9:
        8d:1b:7c:8e:db:e3:6e:3e:5b:1f:eb:7b:01:7b:e6:2d:36:de:
        9a:07:d6:23:82:39:0b:64:e2:12:da:29:59:4b:52:35:ec:14:
        f1:61:a1:80:ce:24:36:8d:30:34:38:e0:24:d4:81:88:4e:65:
        8a:a3:25:4f:77:ee:db:a6:4d:c6:68:89:f6:ac:7a:1a:ec:54:
        0f:b1:df:6a:6e:43:84:72:ce:fe:b1:39:f2:2c:1c:2e:56:12:
        dc:c9:de:68:01:0b:46:bb:ab:41:a7:d0:66:b0:b1:f7:a3:7b:
        eb:0e:cf:ba:10:a8:04:f7:b0:34:d0:69:c2:c6:e0:8a:79:81:
        26:60:57:6d:1f:ea:5f:79:97:81:84:b1:15:3b:60:d5:cb:2a:
        63:92:a0:c0:64:31:cd:d5:17:a0:4e:c0:21:73:49:95:30:cf:
        d1:f1:a5:71:b6:de:11:4a:95:01:f0:c3:0c:e1:eb:fe:f9:96:
        3b:79:2b:07:d6:49:3f:d8:01:2a:a4:e1:7c:c0:8c:b2:1a:96:
        1f:a6:8a:c5:61:00

91.134.157.162

Last Seen: 2024-04-16

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1154832235 | 2024-04-16T08:44:55.696025
80 / tcp

-907897540 | 2024-04-16T08:44:58.880439
443 / tcp

Products

Pricing

Contact Us

91.134.157.162

Last Seen: 2024-04-16

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1154832235 | 2024-04-16T08:44:55.696025 80 / tcp

-907897540 | 2024-04-16T08:44:58.880439 443 / tcp

Products

Pricing

Contact Us

-1154832235 | 2024-04-16T08:44:55.696025
80 / tcp

-907897540 | 2024-04-16T08:44:58.880439
443 / tcp