GeneralInformation

Hostnames	liquiditaetscheck.sparkasse.at
Domains	sparkasse.at
Country	Austria
City	Vienna
Organization	dvo Software Entwicklungs- und Vertriebs- GmbH
ISP	dvo Software Entwicklungs- und Vertriebs- GmbH
ASN	AS203717
Operating System	Windows

WebTechnologies

JavaScript libraries

jQuery2.2.3

Modernizr

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443

-1445023611 | 2024-05-18T22:38:59.457194

80 / tcp

HTTP/1.1 503 Service Unavailable
Content-Length: 62
Connection: close
Cache-Control: no-cache,no-store
Pragma: no-cache

-1355634917 | 2024-05-20T15:35:47.749273

443 / tcp

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server:web3
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Mon, 20 May 2024 15:35:43 GMT
Content-Length: 38197
Strict-Transport-Security: max-age=157680000

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0e:67:73:3e:cc:64:f4:70:b4:d0:c9:ba:e3:a7:2e:79
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, CN=DigiCert Global CA G2
        Validity
            Not Before: Apr 25 00:00:00 2024 GMT
            Not After : May 26 23:59:59 2025 GMT
        Subject: C=AT, ST=Vienna, L=Vienna, O=Erste Digital GmbH, CN=liquiditaetscheck.sparkasse.at
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:8d:1f:a2:5b:f4:89:9f:59:15:6a:c2:46:2d:67:
                    cc:8d:1f:e4:86:77:f7:be:d1:53:ba:23:40:89:43:
                    32:bf:fe:1d:fe:aa:72:b2:02:3a:8a:6b:13:aa:39:
                    6d:04:c3:0f:f6:17:e0:f9:65:f2:1d:74:13:9f:83:
                    52:41:01:f4:db:8f:ad:26:4c:50:70:09:e9:da:1f:
                    8d:67:79:f8:e1:3f:43:c2:31:95:a6:ac:15:e6:06:
                    93:5b:e9:95:36:1c:7b:49:2f:0a:29:fb:ef:3b:bf:
                    4f:ee:3a:83:e6:7b:9f:5d:f5:bd:5b:79:f3:0e:03:
                    53:17:5c:97:b6:f8:46:97:bf:7d:54:d3:1e:3a:ef:
                    b5:55:f6:42:2c:87:ce:7d:bd:92:22:64:ee:42:2b:
                    bf:ad:0d:64:34:78:fc:da:2f:7b:b0:e5:28:6e:87:
                    52:14:47:55:92:8e:7c:8b:f1:c5:ae:db:fd:da:5e:
                    d5:48:41:44:a8:80:fc:6c:cd:87:a9:c5:6e:76:d1:
                    f3:dc:24:cd:1c:2e:ea:05:78:7c:02:6b:c9:a0:19:
                    13:c9:21:4c:41:e2:b4:77:82:a5:5a:94:14:89:fa:
                    cc:70:7c:88:e5:52:27:73:83:46:5b:54:a9:a7:cd:
                    e7:97:b6:05:a6:b9:ec:0f:e8:64:8a:47:b7:0e:9a:
                    a4:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                24:6E:2B:2D:D0:6A:92:51:51:25:69:01:AA:9A:47:A6:89:E7:40:20
            X509v3 Subject Key Identifier: 
                EF:61:91:57:54:D1:BC:D5:6F:EF:26:CE:6C:08:92:25:4B:2C:D2:C3
            X509v3 Subject Alternative Name: 
                DNS:liquiditaetscheck.sparkasse.at
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.2
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl3.digicert.com/DigiCertGlobalCAG2.crl
                Full Name:
                  URI:http://crl4.digicert.com/DigiCertGlobalCAG2.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalCAG2.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Apr 25 07:05:28.325 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:7A:52:43:4E:2F:E9:6D:FC:FE:91:22:F0:
                                23:33:68:C5:C0:37:4C:F4:E1:D9:C8:24:2D:5D:E2:74:
                                53:FA:E2:74:02:21:00:E7:C7:E7:6B:CC:F8:4B:CF:B5:
                                AA:21:13:4A:1B:B3:33:67:ED:C0:B5:33:03:16:B9:9F:
                                F8:CA:26:DD:95:34:83
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Apr 25 07:05:28.176 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B1:4C:5B:7B:6D:4B:C1:54:D4:C2:3B:
                                16:15:49:4B:DC:5F:C1:12:38:30:EB:95:FB:7C:4B:40:
                                2A:44:42:C8:61:02:21:00:C4:93:CB:52:15:BC:06:22:
                                69:7B:45:F2:86:E6:CF:84:31:E4:82:E8:6C:C3:96:1B:
                                64:3A:1B:B5:05:53:4F:86
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Apr 25 07:05:28.192 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:07:69:FB:A9:0C:50:BD:A5:42:72:32:08:
                                10:C6:97:69:F5:2F:73:72:24:43:12:D5:15:E7:8C:FA:
                                39:DD:9F:38:02:21:00:F8:95:14:F4:54:2C:E9:1C:B3:
                                57:99:77:E5:7B:82:72:4E:33:23:0E:F0:A0:24:92:C8:
                                DA:A8:54:79:3F:AF:30
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4b:30:f4:d6:04:a7:93:6e:47:83:8b:dc:58:d3:f8:18:17:31:
        07:40:24:0f:a1:c3:50:69:d4:dc:4d:d0:00:4f:a8:74:6c:52:
        b0:31:ae:b3:1b:07:38:fe:66:70:2f:17:e1:70:9b:7e:d1:42:
        82:b7:f8:ea:43:00:b6:5d:98:f7:d4:d1:ec:0e:b8:aa:38:31:
        6e:24:3c:b6:c3:95:a3:7d:93:c7:ac:bc:93:d7:c4:41:c4:ab:
        77:ba:ee:96:da:f6:2c:c7:71:2c:e8:ac:6d:4a:8b:48:1a:2e:
        44:c1:02:d4:1a:02:31:81:60:a4:4e:76:a3:ff:97:c4:4d:88:
        04:bb:b1:ef:25:9c:27:1e:4c:9b:22:8d:e6:e4:99:cf:a4:3b:
        85:e4:0c:f5:42:68:46:96:fd:72:11:78:9d:b3:79:ef:3c:07:
        7f:b9:37:20:6a:5b:38:8f:64:8f:de:88:30:35:1a:f4:93:f7:
        7d:9a:41:3c:32:6a:76:4a:38:fb:54:bf:ab:ed:ed:cd:54:01:
        08:67:6d:67:61:5c:37:2a:a2:f6:d7:25:ae:71:25:55:89:ba:
        4a:1a:f0:ba:84:4b:00:5f:ff:8b:d5:0d:c7:38:02:8b:47:e7:
        e4:97:c7:94:ce:0d:cb:6a:f8:d4:7b:1c:97:aa:b1:0d:a8:a4:
        3c:c5:65:13

91.212.187.56

Last Seen: 2024-05-20

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1445023611 | 2024-05-18T22:38:59.457194
80 / tcp

-1355634917 | 2024-05-20T15:35:47.749273
443 / tcp

Microsoft IIS httpd

Products

Pricing

Contact Us

91.212.187.56

Last Seen: 2024-05-20

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1445023611 | 2024-05-18T22:38:59.457194 80 / tcp

-1355634917 | 2024-05-20T15:35:47.749273 443 / tcp

Microsoft IIS httpd

Products

Pricing

Contact Us

-1445023611 | 2024-05-18T22:38:59.457194
80 / tcp

-1355634917 | 2024-05-20T15:35:47.749273
443 / tcp