GeneralInformation

Hostnames	ns1008064.ip-92-204-137.us request.jamanetwork.com www.request.jamanetwork.com
Domains	ip-92-204-137.us jamanetwork.com
Country	United States
City	Washington
Organization	Host Europe GmbH
ISP	GoDaddy.com, LLC
ASN	AS398108

WebTechnologies

CMS

Drupal7

Programming languages

PHP

Tag managers

Google Tag Manager

UI frameworks

ZURB Foundation

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-51767	OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.
CVE-2023-51385	In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.
CVE-2023-51384	In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.
CVE-2023-48795	The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.
CVE-2023-38408	The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.
CVE-2023-31250	The file download facility doesn't sufficiently sanitize file paths in certain situations. This may result in users gaining access to private files that they should not have access to. Some sites may require configuration changes following this security release. Review the release notes for your Drupal version if you have issues accessing private files after updating.
CVE-2022-25275	In some situations, the Image module does not correctly check access to image files not stored in the standard public files directory when generating derivative images using the image styles system. Access to a non-public file is checked only if it is stored in the "private" file system. However, some contributed modules provide additional file systems, or schemes, which may lead to this vulnerability. This vulnerability is mitigated by the fact that it only applies when the site sets (Drupal 9) $config['image.settings']['allow_insecure_derivatives'] or (Drupal 7) $conf['image_allow_insecure_derivatives'] to TRUE. The recommended and default setting is FALSE, and Drupal core does not provide a way to change that in the admin UI. Some sites may require configuration changes following this security release. Review the release notes for your Drupal version if you have issues accessing files or image styles after updating.
CVE-2022-25271	4.3Drupal core's form API has a vulnerability where certain contributed or custom modules' forms may be vulnerable to improper input validation. This could allow an attacker to inject disallowed values or overwrite data. Affected forms are uncommon, but in certain cases an attacker could alter critical or sensitive data.
CVE-2021-41617	4.4sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.
CVE-2021-41184	4.3jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.
CVE-2021-41183	4.3jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `Text` options are now always treated as pure text, not HTML. A workaround is to not accept the value of the `*Text` options from untrusted sources.
CVE-2021-41182	4.3jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altField` option is now treated as a CSS selector. A workaround is to not accept the value of the `altField` option from untrusted sources.
CVE-2021-36368	2.6An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is "this is not an authentication bypass, since nothing is being bypassed.
CVE-2020-36193	5.0Tar.php in Archive_Tar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links, a related issue to CVE-2020-28948.
CVE-2020-28949	6.8Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed.
CVE-2020-28948	6.8Archive_Tar through 1.4.10 allows an unserialization attack because phar: is blocked but PHAR: is not blocked.
CVE-2020-15778	6.8scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."
CVE-2020-14145	4.3The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.
CVE-2020-13672	2.6Cross-site Scripting (XSS) vulnerability in Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. This issue affects: Drupal Core 9.1.x versions prior to 9.1.7; 9.0.x versions prior to 9.0.12; 8.9.x versions prior to 8.9.14; 7.x versions prior to 7.80.
CVE-2020-13671	6.5Drupal core does not properly sanitize certain filenames on uploaded files, which can lead to files being interpreted as the incorrect extension and served as the wrong MIME type or executed as PHP for certain hosting configurations. This issue affects: Drupal Drupal Core 9.0 versions prior to 9.0.8, 8.9 versions prior to 8.9.9, 8.8 versions prior to 8.8.11, and 7 versions prior to 7.74.
CVE-2020-13666	4.3Cross-site scripting vulnerability in Drupal Core. Drupal AJAX API does not disable JSONP by default, allowing for an XSS attack. This issue affects: Drupal Drupal Core 7.x versions prior to 7.73; 8.8.x versions prior to 8.8.10; 8.9.x versions prior to 8.9.6; 9.0.x versions prior to 9.0.6.
CVE-2020-13663	6.8Cross Site Request Forgery vulnerability in Drupal Core Form API does not properly handle certain form input from cross-site requests, which can lead to other vulnerabilities.
CVE-2020-13662	5.8Open Redirect vulnerability in Drupal Core allows a user to be tricked into visiting a specially crafted link which would redirect them to an arbitrary external URL. This issue affects: Drupal Drupal Core 7 version 7.70 and prior versions.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-6341	3.5In Drupal 7 versions prior to 7.65; Drupal 8.6 versions prior to 8.6.13;Drupal 8.5 versions prior to 8.5.14. Under certain circumstances the File module/subsystem allows a malicious user to upload a file that can trigger a cross-site scripting (XSS) vulnerability.
CVE-2019-6339	7.5In Drupal Core versions 7.x prior to 7.62, 8.6.x prior to 8.6.6 and 8.5.x prior to 8.5.9; A remote code execution vulnerability exists in PHP's built-in phar stream wrapper when performing file operations on an untrusted phar:// URI. Some Drupal code (core, contrib, and custom) may be performing file operations on insufficiently validated user input, thereby being exposed to this vulnerability. This vulnerability is mitigated by the fact that such code paths typically require access to an administrative permission or an atypical configuration.
CVE-2019-6338	6.0In Drupal Core versions 7.x prior to 7.62, 8.6.x prior to 8.6.6 and 8.5.x prior to 8.5.9; Drupal core uses the third-party PEAR Archive_Tar library. This library has released a security update which impacts some Drupal configurations. Refer to CVE-2018-1000888 for details
CVE-2019-6111	5.8An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).
CVE-2019-6110	4.0In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.
CVE-2019-6109	4.0An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.
CVE-2019-11831	7.5The PharStreamWrapper (aka phar-stream-wrapper) package 2.x before 2.1.1 and 3.x before 3.1.1 for TYPO3 does not prevent directory traversal, which allows attackers to bypass a deserialization protection mechanism, as demonstrated by a phar:///path/bad.phar/../good.phar URL.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2018-20685	2.6In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.
CVE-2018-15919	5.0Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'
CVE-2018-15473	5.0OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.
CVE-2017-15906	5.0The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.
CVE-2016-20012	4.3OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product
CVE-2013-0205	6.8Cross-site request forgery (CSRF) vulnerability in the RESTful Web Services (restws) module 7.x-1.x before 7.x-1.2 and 7.x-2.x before 7.x-2.0-alpha4 for Drupal allows remote attackers to hijack the authentication of arbitrary users via unknown vectors.
CVE-2012-2907	2.6Cross-site scripting (XSS) vulnerability in the aberdeen_breadcrumb function in template.php in the Aberdeen theme 6.x-1.x before 6.x-1.11 for Drupal, when set to append the content title to the breadcrumb, allows remote attackers to inject arbitrary web script or HTML via the content title in a breadcrumb.
CVE-2012-2341	6.8Cross-site request forgery (CSRF) vulnerability in the Take Control module 6.x-2.x before 6.x-2.2 for Drupal allows remote attackers to hijack the authentication of unspecified users for Ajax requests that manipulate files.
CVE-2012-2340	3.5The Contact Forms module 7.x-1.x before 7.x-1.2 for Drupal does not specify sufficiently restrictive permissions, which allows remote authenticated users with the "access the site-wide contact form" permission to modify the module settings via unspecified vectors.
CVE-2012-2339	4.3Cross-site scripting (XSS) vulnerability in the Glossary module 6.x-1.x before 6.x-1.8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "taxonomy information."
CVE-2012-2056	6.8Cross-site request forgery (CSRF) vulnerability in the Content Lock module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVE-2012-1060	2.1Multiple cross-site scripting (XSS) vulnerabilities in revisioning_theme.inc in the Taxonomy module in the Revisioning module 6.x-3.13 and other versions before 6.x-3.14 for Drupal allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the (1) tags or (2) term parameters.
CVE-2012-1057	6.0Cross-site request forgery (CSRF) vulnerability in the clickthrough tracking functionality in the Forward module 6.x-1.x before 6.x-1.21 and 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to hijack the authentication of administrators for requests that increase node rankings via the tracking code, possibly related to improper "flood control."
CVE-2012-1056	5.0The Forward module 6.x-1.x before 6.x-1.21 and 7.x-1.x before 7.x-1.3 for Drupal does not properly enforce permissions for (1) Recent forwards, (2) Most forwarded, or (3) Dynamic blocks, which allows remote attackers to obtain node titles via unspecified vectors.
CVE-2012-0914	4.3Cross-site scripting (XSS) vulnerability in display_renderers/panels_renderer_editor.class.php in the admin view in the Panels module 6.x-2.x before 6.x-3.10 and 7.x-3.x before 7.x-3.0 for Drupal allows remote authenticated users with certain privileges to inject arbitrary web script or HTML via the Region title.
CVE-2011-5030	3.5Cross-site scripting (XSS) vulnerability in the Meta tags quick module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors, probably related to "names of entity bundles."
CVE-2011-4560	3.5Cross-site scripting (XSS) vulnerability in the Petition Node module 6.x-1.x before 6.x-1.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors related to signing a petition.
CVE-2011-4113	7.5SQL injection vulnerability in the Views module before 6.x-2.13 for Drupal allows remote attackers to execute arbitrary SQL commands via vectors related to "filters/arguments on certain types of views with specific configurations of arguments."
CVE-2011-1664	6.8Cross-site request forgery (CSRF) vulnerability in the Translation Management module 6.x before 6.x-1.21 for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVE-2011-1663	7.5SQL injection vulnerability in the Translation Management module 6.x before 6.x-1.21 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
CVE-2011-1662	4.3Cross-site scripting (XSS) vulnerability in Translation Management module 6.x before 6.x-1.21 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2011-1661	5.0The Node Quick Find module 6.x-1.1 for Drupal does not use db_rewrite_sql when presenting node titles, which allows remote attackers to bypass intended access restrictions and read potentially sensitive node titles via the autocomplete feature.
CVE-2011-1066	2.6Cross-site scripting (XSS) vulnerability in the Messaging module 6.x-2.x before 6.x-2.4 and 6.x-4.x before 6.x-4.0-beta8 for Drupal allows remote attackers with administer messaging permissions to inject arbitrary web script or HTML via unspecified vectors.
CVE-2011-0899	5.0The AES encryption module 7.x-1.4 for Drupal leaves certain debugging code enabled in release, which records the plaintext password of the last logged-in user and allows remote attackers to gain privileges as that user.
CVE-2010-5312	4.3Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title option.
CVE-2010-4813	3.5Cross-site scripting (XSS) vulnerability in the Category Tokens module 6.x before 6.x-1.1 for Drupal allows remote authenticated users with administer taxonomy permissions to inject arbitrary web script or HTML by editing or creating vocabulary names, which are not properly handled in token help.
CVE-2010-4775	5.0The Relevant Content module 5.x before 5.x-1.4 and 6.x before 6.x-1.5 for Drupal does not properly implement node access logic, which allows remote attackers to discover restricted node titles and relationships.
CVE-2010-4521	4.3Cross-site scripting (XSS) vulnerability in the Views module 6.x before 6.x-2.12 for Drupal allows remote attackers to inject arbitrary web script or HTML via a page path.
CVE-2010-4520	4.3Multiple cross-site scripting (XSS) vulnerabilities in the Views module 6.x before 6.x-2.11 for Drupal allow remote attackers to inject arbitrary web script or HTML via (1) a URL or (2) an aggregator feed title.
CVE-2010-4519	6.8Multiple cross-site request forgery (CSRF) vulnerabilities in the Views UI implementation in the Views module 5.x before 5.x-1.8 and 6.x before 6.x-2.11 for Drupal allow remote attackers to hijack the authentication of administrators for requests that (1) enable all Views or (2) disable all Views.
CVE-2010-3423	7.5SQL injection vulnerability in the Yr Weatherdata module for Drupal 6.x before 6.x-1.6 allows remote attackers to execute arbitrary SQL commands via the sorting method.
CVE-2010-2724	2.1Cross-site scripting (XSS) vulnerability in the Hierarchical Select module 5.x before 5.x-3.2 and 6.x before 6.x-3.2 for Drupal allows remote authenticated users, with administer taxonomy permissions, to inject arbitrary web script or HTML via unspecified vectors in the hierarchical_select form.
CVE-2010-2353	5.0The Node Reference module in Content Construction Kit (CCK) module 6.x before 6.x-2.7 for Drupal does not perform access checks for the source field in the backend URL for the autocomplete widget, which allows remote attackers to discover titles and IDs of controlled nodes.
CVE-2010-2352	5.0The Node Reference module in Content Construction Kit (CCK) module 5.x before 5.x-1.11 and 6.x before 6.x-2.7 for Drupal does not perform access checks before displaying referenced nodes, which allows remote attackers to read controlled nodes.
CVE-2010-2158	2.1Multiple cross-site scripting (XSS) vulnerabilities in the Storm module 5.x and 6.x before 6.x-1.33 for Drupal allow remote authenticated users, with certain module privileges, to inject arbitrary web script or HTML via the (1) fullname, (2) phone, or (3) im parameter in a stormperson action to index.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2010-2125	2.1Multiple cross-site scripting (XSS) vulnerabilities in the Rotor Banner module 5.x before 5.x-1.8 and 6.x before 6.x-2.5 for Drupal allow remote authenticated users, with "create rotor item" or "edit any rotor item" privileges, to inject arbitrary web script or HTML via the (1) srs, (2) title, or (3) alt image attribute.
CVE-2010-2123	2.1Multiple cross-site scripting (XSS) vulnerabilities in the Storm module 5.x and 6.x before 6.x-1.33 for Drupal allow remote authenticated users, with certain module privileges, to inject arbitrary web script or HTML via the (1) fullname, (2) address, (3) city, (4) provstate (aka state), (5) phone, or (6) taxid parameter in a stormorganization action to index.php; the (7) name parameter in a stormperson action to index.php; the (8) stepno (aka Step no.) or (9) title parameter in a stormtask action to index.php; the (10) title (aka Project) parameter in a stormticket action to index.php; or (11) unspecified parameters in a stormproject action to index.php. NOTE: some of these details are obtained from third party information.
CVE-2010-2048	3.5Multiple cross-site scripting (XSS) vulnerabilities in the Heartbeat module 6.x before 6.x-4.9 for Drupal allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVE-2010-2030	4.3Cross-site scripting (XSS) vulnerability in the External Link Page module 5.x before 5.x-1.0 and 6.x before 6.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via vectors related to the administration and redirect pages.
CVE-2010-2002	2.1Cross-site scripting (XSS) vulnerability in the Wordfilter module 5.x before 5.x-1.1 and 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with "administer words filtered" privileges, to inject arbitrary web script or HTML via the word list.
CVE-2010-2001	2.6Cross-site scripting (XSS) vulnerability in the CiviRegister module before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the URI.
CVE-2010-2000	2.1Cross-site scripting (XSS) vulnerability in the Bibliography (Biblio) module 5.x through 5.x-1.17 and 6.x through 6.x-1.9 for Drupal allows remote authenticated users, with "administer biblio" privileges, to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2010-1358.
CVE-2010-1998	2.1Cross-site scripting (XSS) vulnerability in the CCK TableField module 6.x before 6.x-1.2 for Drupal allows remote authenticated users, with certain node creation or editing privileges, to inject arbitrary web script or HTML via table headers.
CVE-2010-1984	2.1Cross-site scripting (XSS) vulnerability in the Taxonomy Breadcrumb module 5.x before 5.x-1.5 and 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with administer taxonomy permissions, to inject arbitrary web script or HTML via the taxonomy term name in a Breadcrumb display.
CVE-2010-1976	2.1Cross-site scripting (XSS) vulnerability in the Taxonomy Breadcrumb module 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with administer taxonomy permissions, to inject arbitrary web script or HTML via the node title in a Breadcrumb display.
CVE-2010-1958	2.1Cross-site scripting (XSS) vulnerability in the FileField module 5.x before 5.x-2.5 and 6.x before 6.x-3.4 for Drupal allows remote authenticated users, with create or edit permissions and 'Path to File' or 'URL to File' display enabled, to inject arbitrary web script or HTML via the file name (filepath parameter).
CVE-2010-1584	2.1Cross-site scripting (XSS) vulnerability in the Context module before 6.x-2.0-rc4 for Drupal allows remote authenticated users, with Administer Blocks privileges, to inject arbitrary web script or HTML via a block description.
CVE-2010-1543	4.3Cross-site scripting (XSS) vulnerability in the eTracker module before 6.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML by appending a crafted string to an arbitrary URL associated with the Drupal site.
CVE-2010-1539	2.1Cross-site scripting (XSS) vulnerability in the Workflow module 5.x-2.x before 5.x-2.6 and 6.x-1.x before 6.x-1.4 for Drupal, when used with the Token module, might allow remote authenticated users to inject arbitrary web script or HTML via a certain Comment field.
CVE-2010-1536	2.1Cross-site scripting (XSS) vulnerability in the AddThis Button module 5.x before 5.x-2.2 and 6.x before 6.x-2.9 for Drupal allows remote authenticated users, with administer addthis privileges, to inject arbitrary web script or HTML via unspecified vectors.
CVE-2010-1530	2.1Multiple cross-site scripting (XSS) vulnerabilities in the Internationalization module 6.x before 6.x-1.4 for Drupal allow remote authenticated users, with translate interface or administer blocks privileges, to inject arbitrary web script or HTML via (1) strings used in block translation or (2) the untranslated input.
CVE-2010-1362	2.1Cross-site scripting (XSS) vulnerability in the Own Term module 6.x-1.0 for Drupal allows remote authenticated users, with "create additional terms" privileges, to inject arbitrary web script or HTML via the term description field in a term listing page.
CVE-2010-1358	2.1Cross-site scripting (XSS) vulnerability in the Bibliography (Biblio) module 5.x through 5.x-1.17 and 6.x through 6.x-1.9 for Drupal allows remote authenticated users, with "administer biblio" privileges, to inject arbitrary web script or HTML via unspecified vectors.
CVE-2010-1303	2.1Multiple cross-site scripting (XSS) vulnerabilities in the Taxonomy Filter module 6.x before 6.x-1.1 for Drupal allow remote authenticated users, with administer taxonomy permissions or create node permissions when free tagging is enabled, to inject arbitrary web script or HTML via vocabulary (1) names, (2) terms, and (3) filter menus.
CVE-2010-1108	3.5Cross-site scripting (XSS) vulnerability in the Control Panel module 5.x through 5.x-1.5 and 6.x through 6.x-1.2 for Drupal allows remote authenticated users, with "administer blocks" privileges, to inject arbitrary web script or HTML via unspecified vectors.
CVE-2010-1107	3.5Cross-site scripting (XSS) vulnerability in the Recent Comments module 5.x through 5.x-1.2 and 6.x through 6.x-1.0 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a "custom block title interface."
CVE-2010-1074	4.3Cross-site scripting (XSS) vulnerability in the Currency Exchange module before 6.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to watchdog logging.
CVE-2010-0752	5.0The week_post_page function in the Weekly Archive by Node Type module 6.x before 6.x-2.7 for Drupal does not properly implement node access restrictions when constructing SQL queries, which allows remote attackers to read restricted node listings via unspecified vectors.
CVE-2010-0697	3.5Cross-site scripting (XSS) vulnerability in the iTweak Upload module 6.x-1.x before 6.x-1.2 and 6.x-2.x before 6.x-2.3 for Drupal allows remote authenticated users, with create content and upload file permissions, to inject arbitrary web script or HTML via the file name of an uploaded file.
CVE-2010-0370	3.5Cross-site scripting (XSS) vulnerability in the Node Blocks module 5.x-1.1 and earlier, and 6.x-1.3 and earlier, a module for Drupal, allows remote authenticated users, with permissions to create or edit content and administer blocks, to inject arbitrary web script or HTML via the edit-title parameter (aka block title).
CVE-2009-5096	4.3Cross-site scripting (XSS) vulnerability in the Flag Content module 5.x-2.x before 5.x-2.10 for Drupal allows remote attackers to inject arbitrary web script or HTML via the Reason parameter.
CVE-2009-4990	4.3Cross-site scripting (XSS) vulnerability in the Webform report module 5.x and 6.x for Drupal allows remote attackers to inject arbitrary web script or HTML via a submission.
CVE-2009-4829	2.1Cross-site scripting (XSS) vulnerability in the Automated Logout module 6.x-1.x before 6.x-1.7 and 6.x-2.x before 6.x-2.3 for Drupal allows remote authenticated users with administer autologout privileges to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-4773	6.8Cross-site request forgery (CSRF) vulnerability in the order-management functionality in the Ubercart module 5.x before 5.x-1.9 and 6.x before 6.x-2.1 for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVE-2009-4772	4.3Unspecified vulnerability in the PayPal Website Payments Standard functionality in the Ubercart module 5.x before 5.x-1.9 and 6.x before 6.x-2.1 for Drupal, when a custom checkout completion message is enabled, allows attackers to obtain sensitive information via unknown vectors.
CVE-2009-4771	5.0The PayPal Website Payments Standard functionality in the Ubercart module 5.x before 5.x-1.9 and 6.x before 6.x-2.1 for Drupal does not properly validate orders, which allows remote attackers to trigger unspecified "duplicate actions" via unknown vectors.
CVE-2009-4602	4.3Cross-site scripting (XSS) vulnerability in the Randomizer module 5.x through 5.x-1.0 and 6.x through 6.x-1.0, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-4559	3.5Cross-site scripting (XSS) vulnerability in the Submitted By module 6.x before 6.x-1.3 for Drupal allows remote authenticated users, with "administer content types" privileges, to inject arbitrary web script or HTML via an input string for "submitted by" text.
CVE-2009-4558	5.0The Image Assist module 5.x-1.x before 5.x-1.8, 5.x-2.x before 2.0-alpha4, 6.x-1.x before 6.x-1.1, 6.x-2.x before 2.0-alpha4, and 6.x-3.x-dev before 2009-07-15, a module for Drupal, does not properly enforce privilege requirements for unspecified pages, which allows remote attackers to read the (1) title or (2) body of an arbitrary node via unknown vectors.
CVE-2009-4557	2.1Cross-site scripting (XSS) vulnerability in the Image Assist module 5.x-1.x before 5.x-1.8, 5.x-2.x before 2.0-alpha4, 6.x-1.x before 6.x-1.1, 6.x-2.x before 2.0-alpha4, and 6.x-3.x-dev before 2009-07-15, a module for Drupal, allows remote authenticated users, with image-node creation privileges, to inject arbitrary web script or HTML via a node title.
CVE-2009-4534	4.3Open redirect vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
CVE-2009-4533	5.0The Webform module 5.x before 5.x-2.8 and 6.x before 6.x-2.8, a module for Drupal, does not prevent caching of a page that contains token placeholders for a default value, which allows remote attackers to read session variables via unspecified vectors.
CVE-2009-4532	3.5Cross-site scripting (XSS) vulnerability in the Webform module 5.x before 5.x-2.8 and 6.x before 6.x-2.8, a module for Drupal, allows remote authenticated users, with webform creation privileges, to inject arbitrary web script or HTML via a field label.
CVE-2009-4528	6.5The Organic Groups (OG) Vocabulary module 6.x before 6.x-1.0 for Drupal allows remote authenticated group members to bypass intended access restrictions, and create, modify, or read a vocabulary, via unspecified vectors.
CVE-2009-4527	4.6The Shibboleth authentication module 5.x before 5.x-3.4 and 6.x before 6.x-3.2, a module for Drupal, does not properly remove statically granted privileges after a logout or other session change, which allows physically proximate attackers to gain privileges by using an unattended web browser.
CVE-2009-4526	5.0The Send by e-mail sub-module in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.9 and 6.x before 6.x-1.9, a module for Drupal, does not properly enforce privilege requirements, which allows remote attackers to read page titles by requesting a "Send to friend" form.
CVE-2009-4525	4.3Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.9 and 6.x before 6.x-1.9, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via crafted data in a list of links.
CVE-2009-4524	4.3Cross-site scripting (XSS) vulnerability in the RealName module 6.x-1.x before 6.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via a realname (aka real name) element.
CVE-2009-4520	5.0The CCK Comment Reference module 5.x before 5.x-1.2 and 6.x before 6.x-1.3, a module for Drupal, allows remote attackers to bypass intended access restrictions and read comments by using the autocomplete path.
CVE-2009-4518	4.3Cross-site scripting (XSS) vulnerability in the Insert Node module 5.x before 5.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via an inserted node.
CVE-2009-4517	6.8Cross-site request forgery (CSRF) vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to hijack the authentication of arbitrary users for requests that access unpublished content.
CVE-2009-4516	4.3Cross-site scripting (XSS) vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-4515	5.0The Storm module 6.x before 6.x-1.25 for Drupal does not enforce privilege requirements for storminvoiceitem nodes, which allows remote attackers to read node titles via unspecified vectors.
CVE-2009-4514	3.5Cross-site scripting (XSS) vulnerability in the OpenSocial Shindig-Integrator module 5.x and 6.x before 6.x-2.1, a module for Drupal, allows remote authenticated users, with "create application" privileges, to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-4513	3.5Multiple cross-site scripting (XSS) vulnerabilities in the Workflow module 5.x before 5.x-2.4 and 6.x before 6.x-1.2, a module for Drupal, allow remote authenticated users, with "administer workflow" privileges, to inject arbitrary web script or HTML via the name of a (1) workflow or (2) workflow state.
CVE-2009-4429	3.5Cross-site scripting (XSS) vulnerability in the Sections module 5.x before 5.x-1.3 and 6.x before 6.x-1.3 for Drupal allows remote authenticated users with "administer sections" privileges to inject arbitrary web script or HTML via a section name (aka the Name field).
CVE-2009-4296	7.5SQL injection vulnerability in the Taxonomy Timer module 5.x-1.8 and earlier and 6.x-alpha1 and earlier for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
CVE-2009-4207	4.3Cross-site scripting (XSS) vulnerability in the Webform module 5.x before 5.x-2.7 and 6.x before 6.x-2.7, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via a submission.
CVE-2009-4119	4.3Cross-site scripting (XSS) vulnerability in Feed Element Mapper module 5.x before 5.x-1.3, 6.x before 6.x-1.3, and 6.x-2.0-alpha before 6.x-2.0-alpha4 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-4066	6.8Multiple cross-site request forgery (CSRF) vulnerabilities in the "My Account" feature in PHPList Integration module 5 before 5.x-1.2 and 6 before 6.x-1.1 for Drupal allow remote attackers to hijack the authentication of arbitrary users via vectors related to (1) subscribing or (2) unsubscribing to mailing lists.
CVE-2009-4065	4.3Cross-site scripting (XSS) vulnerability in the settings page in the Strongarm module 6.x before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the value field when viewing overridden variables.
CVE-2009-4064	4.3Cross-site scripting (XSS) vulnerability in the Gallery Assist module 6.x before 6.x-1.7 for Drupal allows remote attackers to inject arbitrary web script or HTML via node titles.
CVE-2009-4063	4.3Cross-site scripting (XSS) vulnerability in the Subgroups for Organic Groups (OG) module 5.x before 5.x-4.0 and 5.x before 5.x-3.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified node titles.
CVE-2009-4062	4.3Multiple cross-site scripting (XSS) vulnerabilities in the Printfriendly module 6.x before 6.x-1.6 for Drupal allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-4061	4.3Multiple cross-site scripting (XSS) vulnerabilities in the Agreement module 6.x before 6.x-1.2 for Drupal allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-4044	7.5The Web Services module 6.x for Drupal does not perform the expected access control, which allows remote attackers to make unspecified use of an API via unknown vectors.
CVE-2009-4043	4.3Cross-site scripting (XSS) vulnerability in the AddToAny module 5.x before 5.x-2.4 and 6.x before 6.x-2.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via a node title.
CVE-2009-4042	4.3Cross-site scripting (XSS) vulnerability in the RootCandy theme 6.x before 6.x-1.5 for Drupal allows remote attackers to inject arbitrary web script or HTML via the URI.
CVE-2009-3922	6.8Multiple cross-site request forgery (CSRF) vulnerabilities in the User Protect module 5.x before 5.x-1.4 and 6.x before 6.x-1.3, a module for Drupal, allow remote attackers to hijack the authentication of administrators for requests that (1) delete the editing protection of a user or (2) delete a certain type of administrative-bypass rule.
CVE-2009-3921	4.0The Smartqueue_og module 5.x before 5.x-1.3 and 6.x before 6.x-1.0-rc3, a module for Drupal, does not verify group-node privileges in certain circumstances involving subqueue creation, which allows remote authenticated users to discover arbitrary organic group names by reading confirmation messages.
CVE-2009-3920	5.0An administration page in the NGP COO/CWP Integration (crmngp) module 6.x before 6.x-1.12 for Drupal does not perform the expected access control, which allows remote attackers to read log information via unspecified vectors.
CVE-2009-3919	4.3Cross-site scripting (XSS) vulnerability in the NGP COO/CWP Integration (crmngp) module 6.x before 6.x-1.12 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified "user-supplied information."
CVE-2009-3918	4.3Cross-site scripting (XSS) vulnerability in the Zoomify module 5.x before 5.x-2.2 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via the node title.
CVE-2009-3917	4.3Cross-site scripting (XSS) vulnerability in the S5 Presentation Player module 6.x-1.x before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via an unspecified field that is copied to the HTML HEAD element.
CVE-2009-3916	4.3Cross-site scripting (XSS) vulnerability in the Node Hierarchy module 5.x before 5.x-1.3 and 6.x before 6.x-1.3, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via a child node title.
CVE-2009-3915	4.3Cross-site scripting (XSS) vulnerability in the "Separate title and URL" formatter in the Link module 5.x before 5.x-2.6 and 6.x before 6.x-2.7, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via the link title field.
CVE-2009-3914	4.3Cross-site scripting (XSS) vulnerability in the Temporary Invitation module 5.x before 5.x-2.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via the Name field in an invitation.
CVE-2009-3786	4.3Cross-site scripting (XSS) vulnerability in Organic Groups (OG) Vocabulary 5.x before 5.x-1.1 and 6.x before 6.x-1.1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via the group title.
CVE-2009-3785	6.8Multiple cross-site request forgery (CSRF) vulnerabilities in Simplenews Statistics 6.x before 6.x-2.0, a module for Drupal, allow remote attackers to hijack the authentication of arbitrary users via unknown vectors.
CVE-2009-3784	6.8Open redirect vulnerability in Simplenews Statistics 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
CVE-2009-3783	4.3Cross-site scripting (XSS) vulnerability in Simplenews Statistics 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vector.
CVE-2009-3782	3.5Unspecified vulnerability in Userpoints 6.x before 6.x-1.1, a module for Drupal, allows remote authenticated users with "View own userpoints" permissions to read the userpoint data of arbitrary users via unknown attack vectors.
CVE-2009-3780	4.3Cross-site scripting (XSS) vulnerability in Abuse 5.x before 5.x-2.1 and 6.x before 6.x-1.1-alpha1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-3779	4.3Cross-site scripting (XSS) vulnerability in vCard 5.x before 5.x-1.4 and 6.x before 6.x-1.3, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to the addition of the theme_vcard function to a theme and the use of default content.
CVE-2009-3778	7.5SQL injection vulnerability in Moodle Course List 6.x before 6.x-1.2, a module for Drupal, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
CVE-2009-3657	5.8Session fixation vulnerability in Shared Sign-On 5.x and 6.x, a module for Drupal, allows remote attackers to hijack web sessions via unspecified vectors.
CVE-2009-3656	6.8Cross-site request forgery (CSRF) vulnerability in Shared Sign-On 5.x and 6.x, a module for Drupal, allows remote attackers to hijack the authentication of arbitrary users via unknown vectors.
CVE-2009-3654	6.4Unspecified vulnerability in Boost before 6.x-1.03, a module for Drupal, allows remote attackers to create new webroot directories via unknown attack vectors.
CVE-2009-3653	3.5Cross-site scripting (XSS) vulnerability in the additional links interface in XML Sitemap 5.x-1.6, a module for Drupal, allows remote authenticated users, with "administer site configuration" permission, to inject arbitrary web script or HTML via unspecified vectors, related to link path output.
CVE-2009-3652	3.5Cross-site scripting (XSS) vulnerability in Organic Groups (OG) 5.x-7.x before 5.x-7.4, 5.x-8.x before 5.x-8.1, and 6.x-1.x before 6.x-1.4, a module for Drupal, allows remote authenticated users, with create or edit group nodes permissions, to inject arbitrary web script or HTML via the User-Agent HTTP header, a different issue than CVE-2008-3095.
CVE-2009-3651	4.3Cross-site scripting (XSS) vulnerability in the "Monitor browsers' feature in Browscap before 5.x-1.1 and 6.x-1.1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via the User-Agent HTTP header.
CVE-2009-3650	4.3Cross-site scripting (XSS) vulnerability in Dex 5.x-1.0 and earlier and 6.x-1.0-rc1 and earlier, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-3648	3.5Cross-site scripting (XSS) vulnerability in Service Links 6.x-1.0, a module for Drupal, allows remote authenticated users, with 'administer content types' permissions, to inject arbitrary web script or HTML via unspecified vectors when displaying content type names.
CVE-2009-3568	5.0Comment RSS 5.x before 5.x-2.2 and 6.x before 6.x-2.2, a module for Drupal, does not properly enforce permissions when a link is added to the RSS feed, which allows remote attackers to obtain the node title and possibly other sensitive content by reading the feed.
CVE-2009-3488	2.1Cross-site scripting (XSS) vulnerability in the Bibliography (aka Biblio) module 6.x-1.6 for Drupal allows remote authenticated users, with certain content-creation privileges, to inject arbitrary web script or HTML via the Title field, probably a different vulnerability than CVE-2009-3479.
CVE-2009-3479	4.3Cross-site scripting (XSS) vulnerability in Bibliography (Biblio) 5.x before 5.x-1.17 and 6.x before 6.x-1.6, a module for Drupal, allows remote attackers, with "create content displayed by the Bibliography module" permissions, to inject arbitrary web script or HTML via a title.
CVE-2009-3442	5.0The Meta tags (aka Nodewords) module before 6.x-1.1 for Drupal does not properly follow permissions during assignment of node meta tags, which allows remote attackers to obtain sensitive information via unspecified vectors.
CVE-2009-3437	4.3Cross-site scripting (XSS) vulnerability in the live preview feature in the Markdown Preview module 6.x for Drupal allows remote attackers to inject arbitrary web script or HTML via "Markdown input."
CVE-2009-3435	4.3Cross-site scripting (XSS) vulnerability in the variable editor in the Devel module 5.x before 5.x-1.2 and 6.x before 6.x-1.18, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via a variable name.
CVE-2009-3363	4.3Cross-site scripting (XSS) vulnerability in the BUEditor module 5.x before 5.x-1.2 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via input to the "plain textarea editor."
CVE-2009-3354	10.0Multiple unspecified vulnerabilities in the Rest API module for Drupal have unknown impact and attack vectors.
CVE-2009-3353	10.0Multiple unspecified vulnerabilities in the Node2Node module for Drupal have unknown impact and attack vectors.
CVE-2009-3351	10.0Multiple unspecified vulnerabilities in the Node Browser module for Drupal have unknown impact and attack vectors.
CVE-2009-3350	10.0Multiple unspecified vulnerabilities in the Subdomain Manager module for Drupal have unknown impact and attack vectors.
CVE-2009-3210	3.5Multiple cross-site scripting (XSS) vulnerabilities in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.8 and 6.x before 6.x-1.8, a module for Drupal, allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-3207	6.8The ImageCache module 5.x before 5.x-2.5 and 6.x before 6.x-2.0-beta10, a module for Drupal, when the private file system is used, does not properly perform access control for derivative images, which allows remote attackers to view arbitrary images via a request that specifies an image's filename.
CVE-2009-3206	3.5Multiple cross-site scripting (XSS) vulnerabilities in the ImageCache module 5.x before 5.x-2.5 and 6.x before 6.x-2.0-beta10, a module for Drupal, allow remote authenticated users, with "administer imagecache" permissions, to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-3157	3.5Cross-site scripting (XSS) vulnerability in the Calendar module 6.x before 6.x-2.2 for Drupal allows remote authenticated users, with "create new content types" privileges, to inject arbitrary web script or HTML via the title of a content type.
CVE-2009-3156	2.1Cross-site scripting (XSS) vulnerability in the Date Tools sub-module in the Date module 6.x before 6.x-2.3 for Drupal allows remote authenticated users, with "use date tools" or "administer content types" privileges, to inject arbitrary web script or HTML via a "Content type label" field.
CVE-2009-3122	6.4The Ajax Table module 5.x for Drupal does not perform access control, which allows remote attackers to delete arbitrary users and nodes via unspecified vectors.
CVE-2009-3121	4.3Cross-site scripting (XSS) vulnerability in the Ajax Table module 5.x for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-2610	3.5Cross-site scripting (XSS) vulnerability in the Links Related module in the Links Package 5.x before 5.x-1.13 and 6.x before 6.x-1.2, a module for Drupal, allows remote authenticated users to inject arbitrary web script or HTML via the title field.
CVE-2009-2572	6.8Cross-site request forgery (CSRF) vulnerability in the Fivestar module 5.x-1.x before 5.x-1.14 and 6.x-1.x before 6.x-1.14, a module for Drupal, allows remote attackers to hijack the authentication of arbitrary users for requests that cast votes.
CVE-2009-2371	6.5Advanced Forum 6.x before 6.x-1.1, a module for Drupal, does not prevent users from modifying user signatures after the associated comment format has been changed to an administrator-controlled input format, which allows remote authenticated users to inject arbitrary web script, HTML, and possibly PHP code via a crafted user signature.
CVE-2009-2370	4.3Cross-site scripting (XSS) vulnerability in Advanced Forum 5.x before 5.x-1.1 and 6.x before 6.x-1.1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-2291	6.8Unspecified vulnerability in LoginToboggan 6.x-1.x before 6.x-1.5, a module for Drupal, when "Allow users to login using their e-mail address" is enabled, allows remote blocked users to bypass intended access restrictions via unspecified vectors.
CVE-2009-2237	7.5Unspecified vulnerability in Views Bulk Operations 5.x-1.x before 5.x-1.4 and 6.x-1.x before 6.x-1.7, a module for Drupal, allows remote attackers to bypass intended access restrictions and modify "nodes or classes of nodes" via unknown vectors, probably related to registered procedures (aka actions).
CVE-2009-2083	3.5Cross-site scripting (XSS) vulnerability in the term data detail page in Taxonomy manager 5.x before 5.x-1.2, a module for Drupal, allows remote authenticated users, with administer taxonomy privileges or the ability to use free tagging to add taxonomy terms, to inject arbitrary web script or HTML via "Parent and related terms."
CVE-2009-2079	3.5Cross-site scripting (XSS) vulnerability in the administrative page interface in Taxonomy manager 5.x before 5.x-1.2 and 6.x before 6.x-1.1, a module for Drupal, allows remote authenticated users, with administer taxonomy privileges or the ability to use free tagging to add taxonomy terms, to inject arbitrary web script or HTML via (1) vocabulary names, (2) synonyms, and (3) term names.
CVE-2009-2078	4.3Multiple cross-site scripting (XSS) vulnerabilities in Booktree 5.x before 5.x-7.3 and 6.x before 6.x-1.1, a module for Drupal, allow remote attackers to inject arbitrary web script or HTML via the (1) node title and (2) node body in a tree root page.
CVE-2009-2077	4.0Drupal 6.x before 6.x-2.6, a module for Drupal, allows remote authenticated users to bypass access restrictions and (1) read unpublished content from anonymous users when a view is already configured to display the content, and (2) read private content in generated queries.
CVE-2009-2076	3.5Cross-site scripting (XSS) vulnerability in Views 6.x before 6.x-2.6, a module for Drupal, allows remote authenticated users to inject arbitrary web script or HTML via (1) exposed filters in the Views UI administrative interface and in the (2) view name parameter in the define custom views feature. NOTE: vector 2 is only exploitable by users with administer views permissions.
CVE-2009-2075	7.5Nodequeue 5.x before 5.x-2.7 and 6.x before 6.x-2.2, a module for Drupal, does not properly restrict access when displaying node titles, which has unknown impact and attack vectors.
CVE-2009-2074	3.5Cross-site scripting (XSS) vulnerability in Nodequeue 5.x before 5.x-2.7 and 6.x before 6.x-2.2, a module for Drupal, allows remote authenticated users with administer taxonomy permissions to inject arbitrary web script or HTML via vocabulary names.
CVE-2009-1823	2.6Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.7 and 6.x before 6.x-1.7, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML by modifying a document head, before the Content-Type META element, to contain crafted UTF-8 byte sequences that are treated as UTF-7 by Internet Explorer 6 and 7, a related issue to CVE-2009-1575.
CVE-2009-1507	7.5The Node Access User Reference module 5.x before 5.x-2.0-beta4 and 6.x before 6.x-2.0-beta6, a module for Drupal, interprets an empty CCK user reference as a reference to the anonymous user, which might allow remote attackers to bypass intended access restrictions to read or modify a node.
CVE-2009-1505	6.5SQL injection vulnerability in the News Page module 5.x before 5.x-1.2 for Drupal allows remote authenticated users, with News Page nodes create and edit privileges, to execute arbitrary SQL commands via the Include Words (aka keywords) field.
CVE-2009-1501	4.3Cross-site scripting (XSS) vulnerability in the Exif module 5.x-1.x before 5.x-1.2 and 6.x-1.x-dev before April 13, 2009, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via EXIF tags in an image.
CVE-2009-1344	4.3Cross-site scripting (XSS) vulnerability in the Localization client module 5.x before 5.x-1.2 and 6.x before 6.x-1.7, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via input to the translation functionality.
CVE-2009-1343	4.3Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.5 and 6.x before 6.x-1.5, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via content titles.
CVE-2009-1342	4.3Cross-site scripting (XSS) vulnerability in the CCK comment reference module 6.x before 6.x-1.2, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via certain comment titles associated with a node edit form.
CVE-2009-1249	4.3Cross-site scripting (XSS) vulnerability in Feed element mapper 5.x before 5.x-1.1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via the content title in admin/content/node-type/nodetype/map.
CVE-2009-1069	4.3Multiple cross-site scripting (XSS) vulnerabilities in the node edit form feature in Drupal Content Construction Kit (CCK) 6.x before 6.x-2.2, a module for Drupal, allow remote attackers to inject arbitrary web script or HTML via the (1) titles of candidate referenced nodes in the Node reference sub-module and the (2) names of candidate referenced users in the User reference sub-module.
CVE-2009-1047	4.3Cross-site scripting (XSS) vulnerability in the Send by e-mail module in the "Printer, e-mail and PDF versions" module 5.x before 5.x-4.4 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via vectors involving outbound HTML e-mail.
CVE-2009-1037	5.0Unspecified vulnerability in the Send by e-mail module in the "Printer, e-mail and PDF versions" module 5.x before 5.x-4.4 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to send unlimited spam messages via unknown vectors related to the flood control API.
CVE-2009-1036	6.8Cross-site request forgery (CSRF) vulnerability in the Plus 1 module before 6.x-2.6, a module for Drupal, allows remote attackers to cast votes for content via unspecified aspects of the URI.
CVE-2009-1035	4.3Cross-site scripting (XSS) vulnerability in the Tasklist module 5.x-1.x before 5.x-1.3 and 5.x-2.x before 5.x-2.0-alpha1, a module for Drupal, allows remote authenticated users to inject arbitrary web script or HTML via Cascading Style Sheets (CSS).
CVE-2009-0818	3.5Cross-site scripting (XSS) vulnerability in the taxonomy_theme_admin_table_builder function (taxonomy_theme_admin.inc) in Taxonomy Theme module before 5.x-1.2, a module for Drupal, allows remote authenticated users with the "administer taxonomy" permission, or the ability to create pages when tagging is enabled, to inject arbitrary web script or HTML via the Vocabulary name (name parameter) to index.php. NOTE: some of these details are obtained from third party information.
CVE-2009-0817	3.5Cross-site scripting (XSS) vulnerability in the Protected Node module 5.x before 5.x-1.4 and 6.x before 6.x-1.5, a module for Drupal, allows remote authenticated users with "administer site configuration" permissions to inject arbitrary web script or HTML via the Password page info field, which is not properly handled by the protected_node_enterpassword function in protected_node.module.
CVE-2009-0382	4.3Unspecified vulnerability in Internationalization (i18n) Translation 5.x before 5.x-2.5, a module for Drupal, allows remote attackers with "translate node" permissions to bypass intended access restrictions and read unpublished nodes via unspecified vectors.
CVE-2008-7151	6.8Cross-site request forgery (CSRF) vulnerability in Live 5.x before 5.x-0.1, a module for Drupal, allows remote attackers to hijack the authentication of unspecified privileged users for requests that can be leveraged to execute arbitrary PHP code.
CVE-2008-7150	4.3Cross-site scripting (XSS) vulnerability in Refine by Taxonomy 5.x before 5.x-0.1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via a taxonomy term, which is not properly handled by refine_by_taxo when displaying tags.
CVE-2008-6972	3.5Multiple cross-site scripting (XSS) vulnerabilities in Drupal Content Construction Kit (CCK) 5.x through 5.x-1.8 allow remote authenticated users with "administer content" permissions to inject arbitrary web script or HTML via the (1) "field label," (2) "help text," or (3) "allowed values" settings.
CVE-2008-6910	7.5Services 5.x before 5.x-0.92 and 6.x before 6.x-0.13, a module for Drupal, does not use timeouts for signed requests, which allows remote attackers to impersonate other users and gain privileges via a replay attack that sends the same request.
CVE-2008-6909	6.5Services 5.x before 5.x-0.92 and 6.x before 6.x-0.13, a module for Drupal, does not sign all required data in requests, which has unspecified impact, probably related to man-in-the-middle attacks that modify critical data and allow remote attackers to impersonate other users and gain privileges.
CVE-2008-6908	7.5Services 5.x before 5.x-0.92 and 6.x before 6.x-0.13, a module for Drupal, uses an insecure hash when signing requests, which allows remote attackers to impersonate other users and gain privileges.
CVE-2008-6836	6.8Cross-site request forgery (CSRF) vulnerability in OpenID 5.x before 5x.-1.2, a module for Drupal, allows remote attackers to hijack the authentication of unspecified victims to delete OpenID identities via unknown vectors.
CVE-2008-6835	4.3Cross-site scripting (XSS) vulnerability in OpenID 5.x before 5.x-1.2, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2008-6413	4.3Cross-site scripting (XSS) vulnerability in the Answers module 5.x-1.x-dev and possibly other 5.x versions, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via a Simple Answer to a question.
CVE-2008-6383	6.0SQL injection vulnerability in SpeedTech Organization and Resource Manager (Storm) 5.x before 5.x-1.14 and 6.x before 6.x-1.18, a module for Drupal, allows remote authenticated users with storm project access to execute arbitrary SQL commands via unspecified vectors.
CVE-2008-6137	7.5EveryBlog 5.x and 6.x, a module for Drupal, allows remote attackers to bypass access restrictions via unknown vectors.
CVE-2008-6135	4.3Cross-site scripting (XSS) vulnerability in EveryBlog 5.x and 6.x, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2008-6134	7.5SQL injection vulnerability in EveryBlog 5.x and 6.x, a module for Drupal, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
CVE-2008-6020	7.5SQL injection vulnerability in the Views module 6.x before 6.x-2.2 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to "an exposed filter on CCK text fields."
CVE-2008-5999	3.5Cross-site scripting (XSS) vulnerability in the Ajax Checklist module 5.x before 5.x-1.1 for Drupal allows remote authenticated users, with create and edit permissions for posts, to inject arbitrary web script or HTML via unspecified vectors involving the ajax_checklist filter.
CVE-2008-5998	6.0Multiple SQL injection vulnerabilities in the ajax_checklist_save function in the Ajax Checklist module 5.x before 5.x-1.1 for Drupal allow remote authenticated users, with "update ajax checklists" permissions, to execute arbitrary SQL commands via a save operation, related to the (1) nid, (2) qid, and (3) state parameters.
CVE-2008-5996	3.5Cross-site scripting (XSS) vulnerability in the Simplenews module 5.x before 5.x-1.5 and 6.x before 6.x-1.0-beta4, a module for Drupal, allows remote authenticated users, with "administer taxonomy" permissions, to inject arbitrary web script or HTML via a Newsletter category field.
CVE-2008-4710	4.3Cross-site scripting (XSS) vulnerability in the stock quotes page in Stock 6.x before 6.x-1.0, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2008-4633	6.0SQL injection vulnerability in Node Vote 5.x before 5.x-1.1 and 6.x before 6.x-1.0, a module for Drupal, when "Allow user to vote again" is enabled, allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors related to a "previously cast vote."
CVE-2008-3844	9.3Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.
CVE-2008-2629	7.5SQL injection vulnerability in the LifeType (formerly pLog) module for Drupal allows remote attackers to execute arbitrary SQL commands via the albumId parameter in a ViewAlbum action to index.php.
CVE-2008-1792	4.3Cross-site scripting (XSS) vulnerability in the insertion filter in the Flickr Drupal module 5.x before 5.x-1.3 and 6.x before 6.x-1.0-alpha allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2008-1731	7.5The Simple Access module for Drupal 5.x through 5.x-1.2-2 does not properly handle the privacy information for nodes, which might allow remote attackers to bypass intended access restrictions, and read or modify nodes, in opportunistic circumstances related to interaction between Simple Access and (1) Node clone or (2) Project issue tracking.
CVE-2008-0462	4.3Cross-site scripting (XSS) vulnerability in the Archive 5.x before 5.x-1.8 module for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2007-2768	4.3OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.

OpenPorts

21 22 53 80 111 143 443 465 587 993 995 2082 2083 2086 2087 2096 3306

2126845271 | 2024-04-15T16:02:15.620968

21 / tcp

220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 1 of 50 allowed.
220-Local time is now 16:02. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.
530 Login authentication failed
214-The following SITE commands are recognized
 ALIAS
 CHMOD
 IDLE
 UTIME
214 Pure-FTPd - http://pureftpd.org/
211-Extensions supported:
 UTF8
 EPRT
 IDLE
 MDTM
 SIZE
 MFMT
 REST STREAM
 MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
 MLSD
 PRET
 AUTH TLS
 PBSZ
 PROT
 TVFS
 ESTA
 PASV
 EPSV
 ESTP
211 End.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7a:46:bf:76:09:f2:b6:fd:7b:5e:87:c1:7c:1c:4d:67
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority
        Validity
            Not Before: Feb 16 00:00:00 2024 GMT
            Not After : May 16 23:59:59 2024 GMT
        Subject: CN=ns1008064.ip-92-204-137.us
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dc:2d:3b:0f:91:6e:c5:8b:a9:8a:5b:50:15:cb:
                    bb:0d:2f:af:6e:1f:68:66:aa:af:62:18:18:fc:de:
                    71:65:96:60:8b:1c:7b:52:26:01:17:19:68:c1:b2:
                    69:43:d6:82:cd:b4:4b:4a:2e:86:ea:a4:e9:0e:92:
                    e5:aa:72:3f:95:d9:f9:f6:f2:ba:ef:af:de:c7:d5:
                    0a:9b:bf:77:a5:8f:b2:5a:99:c3:0c:03:c5:95:7b:
                    41:0f:a7:f1:df:01:ec:32:68:74:1c:fd:5e:26:5e:
                    76:bb:c9:89:eb:f8:2e:71:57:bb:b0:4d:9f:b1:84:
                    2b:c1:62:72:84:5d:75:5f:6c:1d:78:de:ae:65:70:
                    d9:da:d8:d8:2c:cb:e8:96:51:b1:15:dd:71:1d:c4:
                    71:0a:1b:77:95:c0:ab:4f:7a:a6:ca:8f:35:62:9c:
                    4b:1c:6a:ce:01:b0:af:20:f7:f8:c5:4c:c0:d7:2b:
                    7b:8a:3a:85:1c:40:3a:f1:2d:94:1d:3b:05:db:95:
                    7f:24:29:3f:69:f9:ee:43:46:cc:d1:46:09:4c:88:
                    6e:bf:b6:68:37:37:98:98:3c:5b:24:28:14:97:0d:
                    43:09:0c:03:48:4e:7b:e2:6e:7b:fa:95:05:93:18:
                    97:e4:62:9a:9e:77:49:93:43:c6:c3:44:21:31:7a:
                    35:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65
            X509v3 Subject Key Identifier: 
                51:8E:64:0A:27:E9:7D:B6:F7:1E:65:9C:8B:CC:B6:6C:42:B5:9E:E4
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.52
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt
                OCSP - URI:http://ocsp.comodoca.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Feb 16 14:08:25.411 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:1E:41:91:87:29:65:41:59:3E:10:C0:13:
                                CD:65:99:C1:5B:F2:EB:79:33:F1:68:CE:9A:9C:F6:D2:
                                BE:EF:10:E5:02:20:18:AD:94:55:8A:1E:FF:8C:EC:91:
                                1F:39:03:8B:D0:13:9D:FE:F7:98:96:C7:9E:94:D0:AF:
                                3F:3E:DF:50:78:16
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 16 14:08:26.017 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C4:77:BD:A5:CF:CD:2B:18:3E:E2:1B:
                                0F:C5:ED:94:CF:CB:00:D1:35:09:67:63:7C:F6:8D:C1:
                                7C:BE:CA:B1:DE:02:21:00:C0:32:72:18:97:E2:21:15:
                                80:52:F9:54:64:B6:E6:5F:98:BE:96:65:71:DE:77:D1:
                                1C:21:EC:49:C5:23:3A:0D
            X509v3 Subject Alternative Name: 
                DNS:ns1008064.ip-92-204-137.us
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7c:3b:0e:74:6f:cd:d7:88:3a:38:b2:28:b8:61:ce:29:8c:b1:
        df:66:7f:f8:c8:ea:e9:39:90:69:73:f1:d4:11:d9:12:c8:48:
        f5:cb:4c:e6:6a:c2:24:9e:eb:ab:18:05:a5:6d:df:2d:4a:7f:
        d2:d5:54:52:f7:67:4b:ee:12:2c:42:3d:fa:df:e0:b3:1b:dd:
        f4:57:89:64:b0:60:84:0c:f9:93:c4:ba:ec:0e:03:aa:24:a5:
        05:f3:88:87:8a:2d:92:3a:6e:8a:67:66:9e:bb:23:70:58:5d:
        2a:9c:24:a8:2e:e0:6f:9a:8b:20:3b:b3:1d:59:b9:08:11:e5:
        72:d6:55:c9:28:64:6a:5a:d5:aa:2a:4b:90:64:ee:77:fc:9c:
        0f:4b:8d:7e:f1:c2:66:a0:48:1d:08:50:e8:36:ae:5d:f5:20:
        e4:85:1e:e2:c6:c5:fa:05:59:db:11:5d:f1:a7:b6:10:f6:b6:
        3c:23:75:a6:78:9a:2e:70:1c:52:c0:f7:a6:f2:b4:3b:d5:84:
        ec:b4:8a:60:5e:b2:ff:15:bd:dc:e0:a1:0f:06:b7:00:1d:9f:
        fc:b7:3b:a4:ed:00:11:3a:07:df:0c:73:e9:4a:8b:1c:d4:cf:
        4a:4d:db:7c:84:df:f5:1a:24:a0:14:a2:65:6e:26:07:63:8a:
        4b:5a:d1:db

-817641412 | 2024-04-24T23:30:40.361561

22 / tcp

SSH-2.0-OpenSSH_7.4
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDDM2zLRZzdL8zVxP76lP4oK9PtTzMMkD+nwtaQVR+2dct9
6HCV8ub1LsMykAlSgXC2ZVC2vv24e9SEen6KosYgYknzWBSanLhtWYNlvNZZnBgo/YObLPtXJnbV
1AWP5acqQsiVlCMYv0UwfBHNUn0R9++P/hY8ifZAwaDVCsxDKxus/KVtmOyNcDLqko1EXmNjexBB
38xQnuPFAdtKj+Up+H0GYBL8Bo/C5qRzRqFucGIocg3xAcGxjgwYTa1My2ATevcV4E30CoRMdzpB
cgbk2BgNf2rCGLHcvGpOVhfe9sykJf1bru/H3ScohzyjbxZzR9lzXDMm/tTPhlLveHZz
Fingerprint: 3d:a3:b2:07:17:07:7a:a1:94:08:d3:2e:9e:c4:2a:d2

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group-exchange-sha1
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1
	diffie-hellman-group1-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com
	aes128-cbc
	aes192-cbc
	aes256-cbc
	blowfish-cbc
	cast128-cbc
	3des-cbc

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

600862213 | 2024-04-26T19:24:58.379857

53 / tcp

PowerDNS Authoritative Server 4.7.3 (built Apr 25 2023 12:34:07 by root@bh-centos-7.dev.cpanel.net)
Resolver ID: ns1008064.ip-92-204-137.us

313565032 | 2024-04-15T20:24:30.968054

80 / tcp

HTTP/1.1 200 OK
Date: Mon, 15 Apr 2024 20:24:30 GMT
Server: Apache
Transfer-Encoding: chunked
Content-Type: text/html

-1345205424 | 2024-04-21T16:20:40.074281

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

1559185454 | 2024-04-21T11:50:45.738765

143 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7a:46:bf:76:09:f2:b6:fd:7b:5e:87:c1:7c:1c:4d:67
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority
        Validity
            Not Before: Feb 16 00:00:00 2024 GMT
            Not After : May 16 23:59:59 2024 GMT
        Subject: CN=ns1008064.ip-92-204-137.us
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dc:2d:3b:0f:91:6e:c5:8b:a9:8a:5b:50:15:cb:
                    bb:0d:2f:af:6e:1f:68:66:aa:af:62:18:18:fc:de:
                    71:65:96:60:8b:1c:7b:52:26:01:17:19:68:c1:b2:
                    69:43:d6:82:cd:b4:4b:4a:2e:86:ea:a4:e9:0e:92:
                    e5:aa:72:3f:95:d9:f9:f6:f2:ba:ef:af:de:c7:d5:
                    0a:9b:bf:77:a5:8f:b2:5a:99:c3:0c:03:c5:95:7b:
                    41:0f:a7:f1:df:01:ec:32:68:74:1c:fd:5e:26:5e:
                    76:bb:c9:89:eb:f8:2e:71:57:bb:b0:4d:9f:b1:84:
                    2b:c1:62:72:84:5d:75:5f:6c:1d:78:de:ae:65:70:
                    d9:da:d8:d8:2c:cb:e8:96:51:b1:15:dd:71:1d:c4:
                    71:0a:1b:77:95:c0:ab:4f:7a:a6:ca:8f:35:62:9c:
                    4b:1c:6a:ce:01:b0:af:20:f7:f8:c5:4c:c0:d7:2b:
                    7b:8a:3a:85:1c:40:3a:f1:2d:94:1d:3b:05:db:95:
                    7f:24:29:3f:69:f9:ee:43:46:cc:d1:46:09:4c:88:
                    6e:bf:b6:68:37:37:98:98:3c:5b:24:28:14:97:0d:
                    43:09:0c:03:48:4e:7b:e2:6e:7b:fa:95:05:93:18:
                    97:e4:62:9a:9e:77:49:93:43:c6:c3:44:21:31:7a:
                    35:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65
            X509v3 Subject Key Identifier: 
                51:8E:64:0A:27:E9:7D:B6:F7:1E:65:9C:8B:CC:B6:6C:42:B5:9E:E4
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.52
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt
                OCSP - URI:http://ocsp.comodoca.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Feb 16 14:08:25.411 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:1E:41:91:87:29:65:41:59:3E:10:C0:13:
                                CD:65:99:C1:5B:F2:EB:79:33:F1:68:CE:9A:9C:F6:D2:
                                BE:EF:10:E5:02:20:18:AD:94:55:8A:1E:FF:8C:EC:91:
                                1F:39:03:8B:D0:13:9D:FE:F7:98:96:C7:9E:94:D0:AF:
                                3F:3E:DF:50:78:16
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 16 14:08:26.017 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C4:77:BD:A5:CF:CD:2B:18:3E:E2:1B:
                                0F:C5:ED:94:CF:CB:00:D1:35:09:67:63:7C:F6:8D:C1:
                                7C:BE:CA:B1:DE:02:21:00:C0:32:72:18:97:E2:21:15:
                                80:52:F9:54:64:B6:E6:5F:98:BE:96:65:71:DE:77:D1:
                                1C:21:EC:49:C5:23:3A:0D
            X509v3 Subject Alternative Name: 
                DNS:ns1008064.ip-92-204-137.us
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7c:3b:0e:74:6f:cd:d7:88:3a:38:b2:28:b8:61:ce:29:8c:b1:
        df:66:7f:f8:c8:ea:e9:39:90:69:73:f1:d4:11:d9:12:c8:48:
        f5:cb:4c:e6:6a:c2:24:9e:eb:ab:18:05:a5:6d:df:2d:4a:7f:
        d2:d5:54:52:f7:67:4b:ee:12:2c:42:3d:fa:df:e0:b3:1b:dd:
        f4:57:89:64:b0:60:84:0c:f9:93:c4:ba:ec:0e:03:aa:24:a5:
        05:f3:88:87:8a:2d:92:3a:6e:8a:67:66:9e:bb:23:70:58:5d:
        2a:9c:24:a8:2e:e0:6f:9a:8b:20:3b:b3:1d:59:b9:08:11:e5:
        72:d6:55:c9:28:64:6a:5a:d5:aa:2a:4b:90:64:ee:77:fc:9c:
        0f:4b:8d:7e:f1:c2:66:a0:48:1d:08:50:e8:36:ae:5d:f5:20:
        e4:85:1e:e2:c6:c5:fa:05:59:db:11:5d:f1:a7:b6:10:f6:b6:
        3c:23:75:a6:78:9a:2e:70:1c:52:c0:f7:a6:f2:b4:3b:d5:84:
        ec:b4:8a:60:5e:b2:ff:15:bd:dc:e0:a1:0f:06:b7:00:1d:9f:
        fc:b7:3b:a4:ed:00:11:3a:07:df:0c:73:e9:4a:8b:1c:d4:cf:
        4a:4d:db:7c:84:df:f5:1a:24:a0:14:a2:65:6e:26:07:63:8a:
        4b:5a:d1:db

1448410529 | 2024-04-27T08:23:13.750824

443 / tcp

HTTP/1.1 200 OK
Date: Sat, 27 Apr 2024 08:18:30 GMT
Server: Apache
X-Drupal-Cache: HIT
Content-Language: en
X-Frame-Options: SAMEORIGIN
X-Generator: Drupal 7 (http://drupal.org)
Link: <https://jamacareernet.ama-assn.org/home>; rel="canonical",<https://jamacareernet.ama-assn.org/node/1>; rel="shortlink"
Cache-Control: public, max-age=3600
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Vary: Cookie,Accept-Encoding
Etag: "1620008904-0"
Last-Modified: Mon, 03 May 2021 02:28:24 GMT
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            84:7e:df:f2:a3:f0:3e:5a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http:\/\/certs.godaddy.com\/repository\/, CN=Go Daddy Secure Certificate Authority - G2
        Validity
            Not Before: Apr  6 17:45:27 2021 GMT
            Not After : May  8 17:45:27 2022 GMT
        Subject: OU=Domain Control Validated, CN=request.jamanetwork.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:97:c1:22:57:b0:40:34:f3:b8:f2:ce:d5:4c:4c:
                    20:fb:af:b4:d5:96:8b:54:71:7b:26:8e:b8:a8:4c:
                    e4:82:87:78:f6:d0:be:d3:2b:57:d3:c2:28:5f:03:
                    8d:77:b8:d5:ec:9e:af:41:c0:e6:0b:58:28:d9:59:
                    68:01:1e:03:cc:9b:5d:70:60:5b:fb:e6:3f:9e:d5:
                    03:51:ed:e9:29:70:93:4b:52:0b:9f:0e:c2:3e:90:
                    ed:24:8b:34:72:41:43:cd:a9:98:61:26:a1:f0:3e:
                    7e:03:93:0b:a6:9e:2b:a7:d4:e6:fc:07:d6:9a:83:
                    b6:c6:eb:c4:6c:ea:17:fd:66:89:b7:39:59:6e:0f:
                    c0:dd:c4:65:87:d2:17:c0:2d:d4:61:3b:44:86:b1:
                    94:6c:6e:75:67:a8:9a:32:73:e7:15:7b:74:a3:07:
                    a1:74:ee:e6:9e:e9:25:6b:4a:33:1e:19:33:80:35:
                    c1:bf:83:2d:87:73:b3:36:dd:9b:db:9e:23:72:02:
                    09:9c:1d:c3:0b:c0:4a:d8:a3:92:cc:f9:21:a3:5d:
                    72:5f:76:6b:49:e9:83:4a:9f:31:73:a2:d1:4c:15:
                    1a:33:2a:f3:a4:63:e0:51:82:46:65:24:80:ad:d0:
                    4f:3b:a7:13:6a:7e:9a:81:e3:9d:97:c9:89:21:ea:
                    b0:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.godaddy.com/gdig2s1-2846.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114413.1.7.23.1
                  CPS: http://certificates.godaddy.com/repository/
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.godaddy.com/
                CA Issuers - URI:http://certificates.godaddy.com/repository/gdig2.crt
            X509v3 Authority Key Identifier: 
                40:C2:BD:27:8E:CC:34:83:30:A2:33:D7:FB:6C:B3:F0:B4:2C:80:CE
            X509v3 Subject Alternative Name: 
                DNS:request.jamanetwork.com, DNS:www.request.jamanetwork.com
            X509v3 Subject Key Identifier: 
                01:3B:00:E2:DE:67:9F:BE:12:F6:DF:F7:FD:3D:D8:E4:14:4D:E2:43
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
                                BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
                    Timestamp : Apr  6 17:45:29.826 2021 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:6A:74:F5:68:7A:F4:99:13:E8:BE:9E:C9:
                                49:1A:42:0E:E0:3C:79:EC:D2:A8:7E:DF:08:EB:CD:0E:
                                80:16:D8:36:02:21:00:DC:0B:F9:54:6E:3C:10:37:20:
                                2D:D9:74:CA:20:50:E6:B0:CB:B6:D8:6A:A3:7B:8A:F0:
                                CE:0A:B5:A5:95:9A:AA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 22:45:45:07:59:55:24:56:96:3F:A1:2F:F1:F7:6D:86:
                                E0:23:26:63:AD:C0:4B:7F:5D:C6:83:5C:6E:E2:0F:02
                    Timestamp : Apr  6 17:45:30.139 2021 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D7:9B:0B:B4:0F:F1:CB:21:60:53:91:
                                9B:AA:00:CE:DB:88:C5:95:CA:A4:7A:A5:06:C0:54:B9:
                                B4:F5:E1:61:FC:02:21:00:9D:18:52:08:DA:5F:8D:54:
                                15:E3:53:F1:E6:A4:EF:A5:DE:A5:45:42:CA:4D:9E:51:
                                B2:CB:E1:89:44:A6:EA:7C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        38:ad:64:37:19:13:ff:9b:07:7c:c9:e7:80:e6:9f:5f:7e:12:
        4f:e0:d1:28:43:d8:d0:99:cf:fb:c2:70:2f:8d:54:4f:df:f3:
        78:92:1b:d7:aa:16:f7:a2:4e:23:9a:72:b3:22:04:9d:48:74:
        29:9d:fc:ca:1f:e3:25:a6:08:e0:2f:21:2e:94:db:6d:17:5b:
        25:49:22:43:82:4c:cc:ec:9b:d6:2b:44:d3:0b:72:3d:f5:2a:
        b4:e4:a3:59:35:48:cb:80:ec:09:df:86:ae:f1:8b:cd:18:a7:
        8e:67:9d:ae:67:27:f9:13:db:5a:19:4f:84:9d:e7:fe:3e:4f:
        3d:99:4a:c5:2e:21:72:51:a5:fd:7f:ef:a2:6f:de:24:84:00:
        5b:69:04:52:35:44:38:15:0a:1d:77:aa:1c:a8:f4:27:b5:75:
        f4:d0:2c:25:69:6f:39:46:e9:02:f3:ed:e1:f8:eb:08:92:33:
        69:be:89:4c:5b:dc:a0:f7:d8:e5:41:1d:19:17:13:14:78:eb:
        90:cb:7f:a8:f6:a6:13:bd:c1:34:03:e6:ce:94:d0:de:2a:5e:
        c8:98:1d:32:3d:d3:88:97:60:a1:ec:9a:1b:b5:cb:cb:2c:c8:
        e6:69:0b:b7:c0:02:53:4e:c4:c4:1b:c8:8c:bb:f5:96:64:07:
        ac:c5:02:e6

1825292301 | 2024-04-22T14:55:44.411280

465 / tcp

220-ns1008064.ip-92-204-137.us ESMTP Exim 4.96.2 #2 Mon, 22 Apr 2024 14:55:31 +0000 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-ns1008064.ip-92-204-137.us Hello 224.68.186.70 [224.68.186.70]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:33:41:57:ad:d3:5b:55:bd:a0:c8:b9:17:ce:4a:7d:fd:1a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 22 01:58:09 2024 GMT
            Not After : Jul 21 01:58:08 2024 GMT
        Subject: CN=ns1008064.ip-92-204-137.us
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c1:9a:59:43:7a:f1:6b:31:06:56:88:84:6a:cf:
                    c7:ab:c5:74:32:de:8f:d7:a6:94:91:3e:38:f3:05:
                    23:1a:d5:be:d4:91:d5:a6:64:60:8d:17:12:ea:db:
                    62:f1:fe:e1:b7:9d:f2:c8:03:d6:7e:15:63:17:7e:
                    a5:ec:41:4f:22:7d:b5:7a:bd:83:7e:09:fb:15:04:
                    39:5b:8c:14:41:d8:a5:10:dc:14:cf:31:4f:f5:16:
                    7e:3a:a4:0f:b9:03:b1:50:8b:b9:71:ff:22:be:a9:
                    6d:1d:a8:c0:70:1f:22:80:a4:14:d8:5f:ae:ba:da:
                    77:2b:50:60:3c:8f:6f:6e:17:15:6d:6d:5d:a0:61:
                    f0:54:60:ea:e4:ec:23:dc:c4:d0:32:c0:4a:6a:11:
                    01:02:01:2d:c7:a6:07:2c:83:79:4b:72:f8:8c:65:
                    d4:f3:da:39:73:1a:42:1c:e1:25:ad:97:92:a7:8e:
                    88:39:d8:f6:5a:71:38:e0:b4:3a:a2:59:03:77:f5:
                    9a:a6:ba:c0:6e:a7:b4:41:61:ca:fb:a3:9e:dd:7a:
                    14:9a:77:c3:09:30:eb:5c:59:6e:ac:26:78:e8:5d:
                    32:20:be:0d:bb:22:c5:e5:ca:a0:91:19:13:43:d4:
                    8e:18:f7:24:45:47:30:ae:88:6f:e6:7f:f1:27:1f:
                    1d:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                77:58:D3:00:C3:5B:30:D0:AE:62:7E:5D:14:52:B9:DE:92:71:7F:9C
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:ns1008064.ip-92-204-137.us
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 22 02:58:09.627 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A6:64:EF:2F:E3:2A:04:82:71:F8:8B:
                                51:51:EC:70:FA:3D:1C:AA:0B:77:EE:08:69:A6:28:EB:
                                59:20:8B:9B:A8:02:21:00:EE:55:85:20:9F:15:B9:D9:
                                BA:8C:C2:EF:7A:C9:97:3A:F4:6B:6A:B9:15:D6:EE:21:
                                0B:B3:B2:BB:78:E9:30:72
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 22 02:58:11.357 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D5:A8:B0:7D:61:4A:FD:5C:F4:E9:EA:
                                0F:EC:4B:1E:59:4C:45:5A:2D:AA:88:38:B6:49:8F:C8:
                                52:FA:9D:9B:D3:02:21:00:DB:F0:2E:AA:02:5C:8F:00:
                                21:D8:98:F1:62:52:9B:50:89:3C:04:94:B0:EE:B8:E3:
                                EB:55:EC:F1:9B:BC:F6:D6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        87:9d:6c:14:36:cc:28:b0:42:06:a7:0d:72:6d:38:3b:3a:f4:
        6a:7f:71:57:88:2a:62:d9:22:0d:6d:c4:db:ab:f0:5f:3c:00:
        30:9a:ca:4f:9b:bf:c9:5b:b7:8b:0b:4d:e6:33:b4:23:70:26:
        3f:73:cc:77:1e:e2:f5:66:a4:f4:cf:d5:24:c4:1d:f6:6b:69:
        2e:8f:d6:0e:0d:e7:49:e8:0d:e1:37:37:a1:e6:6b:04:49:10:
        ce:c5:27:0e:ca:a3:38:3a:14:31:65:89:da:03:68:ac:73:70:
        87:5c:e3:a7:7a:75:d8:f2:bf:5c:1e:fa:1f:20:4f:5d:c3:89:
        d9:b4:8f:cd:9f:6f:3b:59:d6:5c:a3:c3:38:49:3e:4f:2c:a2:
        78:57:17:fd:42:32:ab:f2:ae:ff:f1:89:b8:c7:52:08:14:5e:
        40:43:0d:38:81:0d:e8:08:29:32:72:bc:85:d8:d2:98:7b:a5:
        36:52:71:57:94:ee:00:22:98:20:4b:11:ff:44:7d:62:10:fb:
        a3:31:78:05:58:6f:86:d7:b6:38:a8:58:7c:8e:c0:85:7d:61:
        24:33:6d:c9:b6:c7:8f:e9:c9:65:fb:ea:c7:8c:7b:fc:67:0a:
        ee:0f:cd:f5:31:bc:5e:c0:bb:0f:e5:d9:77:df:4b:36:10:55:
        fd:62:e4:dd

-1344709752 | 2024-04-24T02:18:37.892144

587 / tcp

220-ns1008064.ip-92-204-137.us ESMTP Exim 4.96.2 #2 Wed, 24 Apr 2024 02:17:58 +0000 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-ns1008064.ip-92-204-137.us Hello 224.56.73.168 [224.56.73.168]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-STARTTLS
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:33:41:57:ad:d3:5b:55:bd:a0:c8:b9:17:ce:4a:7d:fd:1a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 22 01:58:09 2024 GMT
            Not After : Jul 21 01:58:08 2024 GMT
        Subject: CN=ns1008064.ip-92-204-137.us
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c1:9a:59:43:7a:f1:6b:31:06:56:88:84:6a:cf:
                    c7:ab:c5:74:32:de:8f:d7:a6:94:91:3e:38:f3:05:
                    23:1a:d5:be:d4:91:d5:a6:64:60:8d:17:12:ea:db:
                    62:f1:fe:e1:b7:9d:f2:c8:03:d6:7e:15:63:17:7e:
                    a5:ec:41:4f:22:7d:b5:7a:bd:83:7e:09:fb:15:04:
                    39:5b:8c:14:41:d8:a5:10:dc:14:cf:31:4f:f5:16:
                    7e:3a:a4:0f:b9:03:b1:50:8b:b9:71:ff:22:be:a9:
                    6d:1d:a8:c0:70:1f:22:80:a4:14:d8:5f:ae:ba:da:
                    77:2b:50:60:3c:8f:6f:6e:17:15:6d:6d:5d:a0:61:
                    f0:54:60:ea:e4:ec:23:dc:c4:d0:32:c0:4a:6a:11:
                    01:02:01:2d:c7:a6:07:2c:83:79:4b:72:f8:8c:65:
                    d4:f3:da:39:73:1a:42:1c:e1:25:ad:97:92:a7:8e:
                    88:39:d8:f6:5a:71:38:e0:b4:3a:a2:59:03:77:f5:
                    9a:a6:ba:c0:6e:a7:b4:41:61:ca:fb:a3:9e:dd:7a:
                    14:9a:77:c3:09:30:eb:5c:59:6e:ac:26:78:e8:5d:
                    32:20:be:0d:bb:22:c5:e5:ca:a0:91:19:13:43:d4:
                    8e:18:f7:24:45:47:30:ae:88:6f:e6:7f:f1:27:1f:
                    1d:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                77:58:D3:00:C3:5B:30:D0:AE:62:7E:5D:14:52:B9:DE:92:71:7F:9C
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:ns1008064.ip-92-204-137.us
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 22 02:58:09.627 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A6:64:EF:2F:E3:2A:04:82:71:F8:8B:
                                51:51:EC:70:FA:3D:1C:AA:0B:77:EE:08:69:A6:28:EB:
                                59:20:8B:9B:A8:02:21:00:EE:55:85:20:9F:15:B9:D9:
                                BA:8C:C2:EF:7A:C9:97:3A:F4:6B:6A:B9:15:D6:EE:21:
                                0B:B3:B2:BB:78:E9:30:72
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 22 02:58:11.357 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D5:A8:B0:7D:61:4A:FD:5C:F4:E9:EA:
                                0F:EC:4B:1E:59:4C:45:5A:2D:AA:88:38:B6:49:8F:C8:
                                52:FA:9D:9B:D3:02:21:00:DB:F0:2E:AA:02:5C:8F:00:
                                21:D8:98:F1:62:52:9B:50:89:3C:04:94:B0:EE:B8:E3:
                                EB:55:EC:F1:9B:BC:F6:D6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        87:9d:6c:14:36:cc:28:b0:42:06:a7:0d:72:6d:38:3b:3a:f4:
        6a:7f:71:57:88:2a:62:d9:22:0d:6d:c4:db:ab:f0:5f:3c:00:
        30:9a:ca:4f:9b:bf:c9:5b:b7:8b:0b:4d:e6:33:b4:23:70:26:
        3f:73:cc:77:1e:e2:f5:66:a4:f4:cf:d5:24:c4:1d:f6:6b:69:
        2e:8f:d6:0e:0d:e7:49:e8:0d:e1:37:37:a1:e6:6b:04:49:10:
        ce:c5:27:0e:ca:a3:38:3a:14:31:65:89:da:03:68:ac:73:70:
        87:5c:e3:a7:7a:75:d8:f2:bf:5c:1e:fa:1f:20:4f:5d:c3:89:
        d9:b4:8f:cd:9f:6f:3b:59:d6:5c:a3:c3:38:49:3e:4f:2c:a2:
        78:57:17:fd:42:32:ab:f2:ae:ff:f1:89:b8:c7:52:08:14:5e:
        40:43:0d:38:81:0d:e8:08:29:32:72:bc:85:d8:d2:98:7b:a5:
        36:52:71:57:94:ee:00:22:98:20:4b:11:ff:44:7d:62:10:fb:
        a3:31:78:05:58:6f:86:d7:b6:38:a8:58:7c:8e:c0:85:7d:61:
        24:33:6d:c9:b6:c7:8f:e9:c9:65:fb:ea:c7:8c:7b:fc:67:0a:
        ee:0f:cd:f5:31:bc:5e:c0:bb:0f:e5:d9:77:df:4b:36:10:55:
        fd:62:e4:dd

-1132241830 | 2024-04-27T15:29:19.860864

993 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:33:41:57:ad:d3:5b:55:bd:a0:c8:b9:17:ce:4a:7d:fd:1a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 22 01:58:09 2024 GMT
            Not After : Jul 21 01:58:08 2024 GMT
        Subject: CN=ns1008064.ip-92-204-137.us
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c1:9a:59:43:7a:f1:6b:31:06:56:88:84:6a:cf:
                    c7:ab:c5:74:32:de:8f:d7:a6:94:91:3e:38:f3:05:
                    23:1a:d5:be:d4:91:d5:a6:64:60:8d:17:12:ea:db:
                    62:f1:fe:e1:b7:9d:f2:c8:03:d6:7e:15:63:17:7e:
                    a5:ec:41:4f:22:7d:b5:7a:bd:83:7e:09:fb:15:04:
                    39:5b:8c:14:41:d8:a5:10:dc:14:cf:31:4f:f5:16:
                    7e:3a:a4:0f:b9:03:b1:50:8b:b9:71:ff:22:be:a9:
                    6d:1d:a8:c0:70:1f:22:80:a4:14:d8:5f:ae:ba:da:
                    77:2b:50:60:3c:8f:6f:6e:17:15:6d:6d:5d:a0:61:
                    f0:54:60:ea:e4:ec:23:dc:c4:d0:32:c0:4a:6a:11:
                    01:02:01:2d:c7:a6:07:2c:83:79:4b:72:f8:8c:65:
                    d4:f3:da:39:73:1a:42:1c:e1:25:ad:97:92:a7:8e:
                    88:39:d8:f6:5a:71:38:e0:b4:3a:a2:59:03:77:f5:
                    9a:a6:ba:c0:6e:a7:b4:41:61:ca:fb:a3:9e:dd:7a:
                    14:9a:77:c3:09:30:eb:5c:59:6e:ac:26:78:e8:5d:
                    32:20:be:0d:bb:22:c5:e5:ca:a0:91:19:13:43:d4:
                    8e:18:f7:24:45:47:30:ae:88:6f:e6:7f:f1:27:1f:
                    1d:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                77:58:D3:00:C3:5B:30:D0:AE:62:7E:5D:14:52:B9:DE:92:71:7F:9C
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:ns1008064.ip-92-204-137.us
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 22 02:58:09.627 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A6:64:EF:2F:E3:2A:04:82:71:F8:8B:
                                51:51:EC:70:FA:3D:1C:AA:0B:77:EE:08:69:A6:28:EB:
                                59:20:8B:9B:A8:02:21:00:EE:55:85:20:9F:15:B9:D9:
                                BA:8C:C2:EF:7A:C9:97:3A:F4:6B:6A:B9:15:D6:EE:21:
                                0B:B3:B2:BB:78:E9:30:72
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 22 02:58:11.357 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D5:A8:B0:7D:61:4A:FD:5C:F4:E9:EA:
                                0F:EC:4B:1E:59:4C:45:5A:2D:AA:88:38:B6:49:8F:C8:
                                52:FA:9D:9B:D3:02:21:00:DB:F0:2E:AA:02:5C:8F:00:
                                21:D8:98:F1:62:52:9B:50:89:3C:04:94:B0:EE:B8:E3:
                                EB:55:EC:F1:9B:BC:F6:D6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        87:9d:6c:14:36:cc:28:b0:42:06:a7:0d:72:6d:38:3b:3a:f4:
        6a:7f:71:57:88:2a:62:d9:22:0d:6d:c4:db:ab:f0:5f:3c:00:
        30:9a:ca:4f:9b:bf:c9:5b:b7:8b:0b:4d:e6:33:b4:23:70:26:
        3f:73:cc:77:1e:e2:f5:66:a4:f4:cf:d5:24:c4:1d:f6:6b:69:
        2e:8f:d6:0e:0d:e7:49:e8:0d:e1:37:37:a1:e6:6b:04:49:10:
        ce:c5:27:0e:ca:a3:38:3a:14:31:65:89:da:03:68:ac:73:70:
        87:5c:e3:a7:7a:75:d8:f2:bf:5c:1e:fa:1f:20:4f:5d:c3:89:
        d9:b4:8f:cd:9f:6f:3b:59:d6:5c:a3:c3:38:49:3e:4f:2c:a2:
        78:57:17:fd:42:32:ab:f2:ae:ff:f1:89:b8:c7:52:08:14:5e:
        40:43:0d:38:81:0d:e8:08:29:32:72:bc:85:d8:d2:98:7b:a5:
        36:52:71:57:94:ee:00:22:98:20:4b:11:ff:44:7d:62:10:fb:
        a3:31:78:05:58:6f:86:d7:b6:38:a8:58:7c:8e:c0:85:7d:61:
        24:33:6d:c9:b6:c7:8f:e9:c9:65:fb:ea:c7:8c:7b:fc:67:0a:
        ee:0f:cd:f5:31:bc:5e:c0:bb:0f:e5:d9:77:df:4b:36:10:55:
        fd:62:e4:dd

-1001764030 | 2024-04-15T03:50:35.592102

995 / tcp

+OK Dovecot ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
USER
SASL PLAIN LOGIN
.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7a:46:bf:76:09:f2:b6:fd:7b:5e:87:c1:7c:1c:4d:67
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority
        Validity
            Not Before: Feb 16 00:00:00 2024 GMT
            Not After : May 16 23:59:59 2024 GMT
        Subject: CN=ns1008064.ip-92-204-137.us
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dc:2d:3b:0f:91:6e:c5:8b:a9:8a:5b:50:15:cb:
                    bb:0d:2f:af:6e:1f:68:66:aa:af:62:18:18:fc:de:
                    71:65:96:60:8b:1c:7b:52:26:01:17:19:68:c1:b2:
                    69:43:d6:82:cd:b4:4b:4a:2e:86:ea:a4:e9:0e:92:
                    e5:aa:72:3f:95:d9:f9:f6:f2:ba:ef:af:de:c7:d5:
                    0a:9b:bf:77:a5:8f:b2:5a:99:c3:0c:03:c5:95:7b:
                    41:0f:a7:f1:df:01:ec:32:68:74:1c:fd:5e:26:5e:
                    76:bb:c9:89:eb:f8:2e:71:57:bb:b0:4d:9f:b1:84:
                    2b:c1:62:72:84:5d:75:5f:6c:1d:78:de:ae:65:70:
                    d9:da:d8:d8:2c:cb:e8:96:51:b1:15:dd:71:1d:c4:
                    71:0a:1b:77:95:c0:ab:4f:7a:a6:ca:8f:35:62:9c:
                    4b:1c:6a:ce:01:b0:af:20:f7:f8:c5:4c:c0:d7:2b:
                    7b:8a:3a:85:1c:40:3a:f1:2d:94:1d:3b:05:db:95:
                    7f:24:29:3f:69:f9:ee:43:46:cc:d1:46:09:4c:88:
                    6e:bf:b6:68:37:37:98:98:3c:5b:24:28:14:97:0d:
                    43:09:0c:03:48:4e:7b:e2:6e:7b:fa:95:05:93:18:
                    97:e4:62:9a:9e:77:49:93:43:c6:c3:44:21:31:7a:
                    35:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65
            X509v3 Subject Key Identifier: 
                51:8E:64:0A:27:E9:7D:B6:F7:1E:65:9C:8B:CC:B6:6C:42:B5:9E:E4
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.52
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt
                OCSP - URI:http://ocsp.comodoca.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Feb 16 14:08:25.411 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:1E:41:91:87:29:65:41:59:3E:10:C0:13:
                                CD:65:99:C1:5B:F2:EB:79:33:F1:68:CE:9A:9C:F6:D2:
                                BE:EF:10:E5:02:20:18:AD:94:55:8A:1E:FF:8C:EC:91:
                                1F:39:03:8B:D0:13:9D:FE:F7:98:96:C7:9E:94:D0:AF:
                                3F:3E:DF:50:78:16
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 16 14:08:26.017 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C4:77:BD:A5:CF:CD:2B:18:3E:E2:1B:
                                0F:C5:ED:94:CF:CB:00:D1:35:09:67:63:7C:F6:8D:C1:
                                7C:BE:CA:B1:DE:02:21:00:C0:32:72:18:97:E2:21:15:
                                80:52:F9:54:64:B6:E6:5F:98:BE:96:65:71:DE:77:D1:
                                1C:21:EC:49:C5:23:3A:0D
            X509v3 Subject Alternative Name: 
                DNS:ns1008064.ip-92-204-137.us
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7c:3b:0e:74:6f:cd:d7:88:3a:38:b2:28:b8:61:ce:29:8c:b1:
        df:66:7f:f8:c8:ea:e9:39:90:69:73:f1:d4:11:d9:12:c8:48:
        f5:cb:4c:e6:6a:c2:24:9e:eb:ab:18:05:a5:6d:df:2d:4a:7f:
        d2:d5:54:52:f7:67:4b:ee:12:2c:42:3d:fa:df:e0:b3:1b:dd:
        f4:57:89:64:b0:60:84:0c:f9:93:c4:ba:ec:0e:03:aa:24:a5:
        05:f3:88:87:8a:2d:92:3a:6e:8a:67:66:9e:bb:23:70:58:5d:
        2a:9c:24:a8:2e:e0:6f:9a:8b:20:3b:b3:1d:59:b9:08:11:e5:
        72:d6:55:c9:28:64:6a:5a:d5:aa:2a:4b:90:64:ee:77:fc:9c:
        0f:4b:8d:7e:f1:c2:66:a0:48:1d:08:50:e8:36:ae:5d:f5:20:
        e4:85:1e:e2:c6:c5:fa:05:59:db:11:5d:f1:a7:b6:10:f6:b6:
        3c:23:75:a6:78:9a:2e:70:1c:52:c0:f7:a6:f2:b4:3b:d5:84:
        ec:b4:8a:60:5e:b2:ff:15:bd:dc:e0:a1:0f:06:b7:00:1d:9f:
        fc:b7:3b:a4:ed:00:11:3a:07:df:0c:73:e9:4a:8b:1c:d4:cf:
        4a:4d:db:7c:84:df:f5:1a:24:a0:14:a2:65:6e:26:07:63:8a:
        4b:5a:d1:db

-6472967 | 2024-04-14T11:49:04.857149

2082 / tcp

HTTP/1.1 301 Moved
Content-length: 124
Location: https://ns1008064.ip-92-204-137.us:2083/
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private

1053439838 | 2024-04-18T00:31:47.442512

2083 / tcp

HTTP/1.1 200 OK
Connection: close
Content-Type: text/html; charset="utf-8"
Date: Thu, 18 Apr 2024 00:31:47 GMT
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache
Set-Cookie: cprelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
Set-Cookie: cpsession=%3anxXlOP0GhGfbkDiM%2ce95e9c3213f2314a6d6b7f50b4fa9e78; HttpOnly; path=/; port=2083; secure
Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=92.204.137.54; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
Set-Cookie: PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure
Cache-Control: no-cache, no-store, must-revalidate, private
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 37366

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7a:46:bf:76:09:f2:b6:fd:7b:5e:87:c1:7c:1c:4d:67
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority
        Validity
            Not Before: Feb 16 00:00:00 2024 GMT
            Not After : May 16 23:59:59 2024 GMT
        Subject: CN=ns1008064.ip-92-204-137.us
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dc:2d:3b:0f:91:6e:c5:8b:a9:8a:5b:50:15:cb:
                    bb:0d:2f:af:6e:1f:68:66:aa:af:62:18:18:fc:de:
                    71:65:96:60:8b:1c:7b:52:26:01:17:19:68:c1:b2:
                    69:43:d6:82:cd:b4:4b:4a:2e:86:ea:a4:e9:0e:92:
                    e5:aa:72:3f:95:d9:f9:f6:f2:ba:ef:af:de:c7:d5:
                    0a:9b:bf:77:a5:8f:b2:5a:99:c3:0c:03:c5:95:7b:
                    41:0f:a7:f1:df:01:ec:32:68:74:1c:fd:5e:26:5e:
                    76:bb:c9:89:eb:f8:2e:71:57:bb:b0:4d:9f:b1:84:
                    2b:c1:62:72:84:5d:75:5f:6c:1d:78:de:ae:65:70:
                    d9:da:d8:d8:2c:cb:e8:96:51:b1:15:dd:71:1d:c4:
                    71:0a:1b:77:95:c0:ab:4f:7a:a6:ca:8f:35:62:9c:
                    4b:1c:6a:ce:01:b0:af:20:f7:f8:c5:4c:c0:d7:2b:
                    7b:8a:3a:85:1c:40:3a:f1:2d:94:1d:3b:05:db:95:
                    7f:24:29:3f:69:f9:ee:43:46:cc:d1:46:09:4c:88:
                    6e:bf:b6:68:37:37:98:98:3c:5b:24:28:14:97:0d:
                    43:09:0c:03:48:4e:7b:e2:6e:7b:fa:95:05:93:18:
                    97:e4:62:9a:9e:77:49:93:43:c6:c3:44:21:31:7a:
                    35:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65
            X509v3 Subject Key Identifier: 
                51:8E:64:0A:27:E9:7D:B6:F7:1E:65:9C:8B:CC:B6:6C:42:B5:9E:E4
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.52
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt
                OCSP - URI:http://ocsp.comodoca.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Feb 16 14:08:25.411 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:1E:41:91:87:29:65:41:59:3E:10:C0:13:
                                CD:65:99:C1:5B:F2:EB:79:33:F1:68:CE:9A:9C:F6:D2:
                                BE:EF:10:E5:02:20:18:AD:94:55:8A:1E:FF:8C:EC:91:
                                1F:39:03:8B:D0:13:9D:FE:F7:98:96:C7:9E:94:D0:AF:
                                3F:3E:DF:50:78:16
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb 16 14:08:26.017 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C4:77:BD:A5:CF:CD:2B:18:3E:E2:1B:
                                0F:C5:ED:94:CF:CB:00:D1:35:09:67:63:7C:F6:8D:C1:
                                7C:BE:CA:B1:DE:02:21:00:C0:32:72:18:97:E2:21:15:
                                80:52:F9:54:64:B6:E6:5F:98:BE:96:65:71:DE:77:D1:
                                1C:21:EC:49:C5:23:3A:0D
            X509v3 Subject Alternative Name: 
                DNS:ns1008064.ip-92-204-137.us
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7c:3b:0e:74:6f:cd:d7:88:3a:38:b2:28:b8:61:ce:29:8c:b1:
        df:66:7f:f8:c8:ea:e9:39:90:69:73:f1:d4:11:d9:12:c8:48:
        f5:cb:4c:e6:6a:c2:24:9e:eb:ab:18:05:a5:6d:df:2d:4a:7f:
        d2:d5:54:52:f7:67:4b:ee:12:2c:42:3d:fa:df:e0:b3:1b:dd:
        f4:57:89:64:b0:60:84:0c:f9:93:c4:ba:ec:0e:03:aa:24:a5:
        05:f3:88:87:8a:2d:92:3a:6e:8a:67:66:9e:bb:23:70:58:5d:
        2a:9c:24:a8:2e:e0:6f:9a:8b:20:3b:b3:1d:59:b9:08:11:e5:
        72:d6:55:c9:28:64:6a:5a:d5:aa:2a:4b:90:64:ee:77:fc:9c:
        0f:4b:8d:7e:f1:c2:66:a0:48:1d:08:50:e8:36:ae:5d:f5:20:
        e4:85:1e:e2:c6:c5:fa:05:59:db:11:5d:f1:a7:b6:10:f6:b6:
        3c:23:75:a6:78:9a:2e:70:1c:52:c0:f7:a6:f2:b4:3b:d5:84:
        ec:b4:8a:60:5e:b2:ff:15:bd:dc:e0:a1:0f:06:b7:00:1d:9f:
        fc:b7:3b:a4:ed:00:11:3a:07:df:0c:73:e9:4a:8b:1c:d4:cf:
        4a:4d:db:7c:84:df:f5:1a:24:a0:14:a2:65:6e:26:07:63:8a:
        4b:5a:d1:db

-1105006320 | 2024-04-26T22:53:38.144022

2086 / tcp

HTTP/1.1 301 Moved
Content-length: 124
Location: https://ns1008064.ip-92-204-137.us:2087/
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private

-626957429 | 2024-04-26T22:53:41.050008

2087 / tcp

HTTP/1.1 301 Moved
Content-length: 123
Location: https://ns1008064.ip-92-204-137.us:2087
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

1693618072 | 2024-03-31T08:48:28.284076

2096 / tcp

HTTP/1.1 301 Moved
Content-length: 123
Location: https://ns1008064.ip-92-204-137.us:2096
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

2516931 | 2024-04-25T07:19:48.140551

3306 / tcp

MySQL:
  Error Message: Host '224.201.117.85' is not allowed to connect to this MySQL server
  Error Code: 1130

92.204.137.54

Last Seen: 2024-04-27

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2126845271 | 2024-04-15T16:02:15.620968
21 / tcp

Pure-FTPd

-817641412 | 2024-04-24T23:30:40.361561
22 / tcp

OpenSSH7.4

600862213 | 2024-04-26T19:24:58.379857
53 / tcp

313565032 | 2024-04-15T20:24:30.968054
80 / tcp

Apache httpd

-1345205424 | 2024-04-21T16:20:40.074281
111 / tcp

1559185454 | 2024-04-21T11:50:45.738765
143 / tcp

1448410529 | 2024-04-27T08:23:13.750824
443 / tcp

Apache httpd

1825292301 | 2024-04-22T14:55:44.411280
465 / tcp

Exim smtpd4.96.2

-1344709752 | 2024-04-24T02:18:37.892144
587 / tcp

Exim smtpd4.96.2

-1132241830 | 2024-04-27T15:29:19.860864
993 / tcp

-1001764030 | 2024-04-15T03:50:35.592102
995 / tcp

-6472967 | 2024-04-14T11:49:04.857149
2082 / tcp

1053439838 | 2024-04-18T00:31:47.442512
2083 / tcp

cPanel

-1105006320 | 2024-04-26T22:53:38.144022
2086 / tcp

-626957429 | 2024-04-26T22:53:41.050008
2087 / tcp

1693618072 | 2024-03-31T08:48:28.284076
2096 / tcp

2516931 | 2024-04-25T07:19:48.140551
3306 / tcp

MySQL

Products

Pricing

Contact Us

92.204.137.54

Last Seen: 2024-04-27

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2126845271 | 2024-04-15T16:02:15.620968 21 / tcp

-817641412 | 2024-04-24T23:30:40.361561 22 / tcp

600862213 | 2024-04-26T19:24:58.379857 53 / tcp

313565032 | 2024-04-15T20:24:30.968054 80 / tcp

-1345205424 | 2024-04-21T16:20:40.074281 111 / tcp

1559185454 | 2024-04-21T11:50:45.738765 143 / tcp

1448410529 | 2024-04-27T08:23:13.750824 443 / tcp

1825292301 | 2024-04-22T14:55:44.411280 465 / tcp

-1344709752 | 2024-04-24T02:18:37.892144 587 / tcp

-1132241830 | 2024-04-27T15:29:19.860864 993 / tcp

-1001764030 | 2024-04-15T03:50:35.592102 995 / tcp

-6472967 | 2024-04-14T11:49:04.857149 2082 / tcp

1053439838 | 2024-04-18T00:31:47.442512 2083 / tcp

-1105006320 | 2024-04-26T22:53:38.144022 2086 / tcp

-626957429 | 2024-04-26T22:53:41.050008 2087 / tcp

1693618072 | 2024-03-31T08:48:28.284076 2096 / tcp

2516931 | 2024-04-25T07:19:48.140551 3306 / tcp

Products

Pricing

Contact Us

2126845271 | 2024-04-15T16:02:15.620968
21 / tcp

-817641412 | 2024-04-24T23:30:40.361561
22 / tcp

600862213 | 2024-04-26T19:24:58.379857
53 / tcp

313565032 | 2024-04-15T20:24:30.968054
80 / tcp

-1345205424 | 2024-04-21T16:20:40.074281
111 / tcp

1559185454 | 2024-04-21T11:50:45.738765
143 / tcp

1448410529 | 2024-04-27T08:23:13.750824
443 / tcp

1825292301 | 2024-04-22T14:55:44.411280
465 / tcp

-1344709752 | 2024-04-24T02:18:37.892144
587 / tcp

-1132241830 | 2024-04-27T15:29:19.860864
993 / tcp

-1001764030 | 2024-04-15T03:50:35.592102
995 / tcp

-6472967 | 2024-04-14T11:49:04.857149
2082 / tcp

1053439838 | 2024-04-18T00:31:47.442512
2083 / tcp

-1105006320 | 2024-04-26T22:53:38.144022
2086 / tcp

-626957429 | 2024-04-26T22:53:41.050008
2087 / tcp

1693618072 | 2024-03-31T08:48:28.284076
2096 / tcp

2516931 | 2024-04-25T07:19:48.140551
3306 / tcp