GeneralInformation

Hostnames	fotky.toplist.cz git.toplist.eu
Domains	toplist.cz toplist.eu
Country	Czechia
City	Prague
Organization	NET On Line, s.r.o.
ISP	gsnet.cz s.r.o.
ASN	AS47949

WebTechnologies

Programming languages

Python

Web frameworks

Django

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 9000

2127929724 | 2024-04-25T13:25:38.735979

80 / tcp

HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://92.43.25.100/

-1972326615 | 2024-05-04T22:54:09.626802

443 / tcp

HTTP/1.1 503 Service Unavailable
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 04 May 2024 22:54:09 GMT
Content-Type: text/html
Content-Length: 107
Connection: keep-alive
cache-control: no-cache

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:5a:99:51:ad:4c:04:62:b9:9b:79:08:72:a6:95:15:b4:38
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  8 07:13:37 2024 GMT
            Not After : Jun  6 07:13:36 2024 GMT
        Subject: CN=fotky.toplist.cz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:be:4b:5b:d6:b2:8f:c5:62:92:07:1d:a9:d5:7e:
                    64:ed:41:12:f8:8f:44:97:53:cd:9c:fd:9d:89:8b:
                    93:bd:f4:09:99:af:92:1b:5e:d7:fd:bf:8f:2b:04:
                    cf:38:a6:c0:a3:09:b7:64:1d:9f:1d:2e:7b:5a:45:
                    76:aa:f1:d3:c1:a8:1a:b2:1a:eb:ef:6e:0e:f6:93:
                    66:f9:89:57:c1:54:be:bd:90:c5:1f:8e:79:c5:62:
                    54:64:33:6c:ca:f7:ba:8d:a9:b7:06:40:ab:15:2a:
                    58:7c:d9:a8:3f:ea:7d:01:bf:4a:22:6f:76:cc:7d:
                    24:49:b7:ef:c9:51:c6:ee:b7:ca:12:77:ea:ac:58:
                    28:d7:50:e2:3b:9b:41:0c:ca:5d:f8:9e:a1:00:47:
                    a1:23:6e:4c:5c:a2:a5:a6:fd:45:3f:92:61:f9:9a:
                    54:a6:b4:6d:cf:82:96:cd:f0:99:c9:52:75:00:f4:
                    c7:ea:e8:00:62:21:b1:db:73:df:74:d1:81:c3:30:
                    4a:be:22:96:63:e2:40:d7:a6:40:9c:4b:e1:ff:b4:
                    d6:e7:e8:42:a3:20:4e:d3:33:f6:53:31:85:20:6e:
                    16:e4:01:4f:d1:09:b0:0c:4e:be:bf:ab:a9:4b:ad:
                    05:19:ab:a6:b8:67:85:14:2c:d2:ad:d4:e1:3e:f6:
                    8f:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                24:94:5B:A1:A9:B0:AA:82:DD:E0:85:83:B6:87:E9:FA:AB:D2:5C:82
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:fotky.toplist.cz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar  8 08:13:37.780 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:01:B7:E4:A4:B1:08:94:EE:F2:9F:29:1A:
                                F8:FD:FE:40:04:E4:29:1F:29:70:A3:F1:11:E5:21:40:
                                76:73:5E:CD:02:20:20:94:A2:AB:B1:3B:B9:5D:F3:71:
                                AA:9A:F9:05:C3:31:FC:F4:B2:B3:D0:E7:1D:CD:3E:D3:
                                CE:34:EE:79:38:E3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar  8 08:13:37.864 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:CD:03:B6:31:1B:B3:1E:81:DD:C1:68:
                                28:2C:16:9F:29:DC:7C:A9:2A:DE:64:0D:32:A6:D3:64:
                                7F:55:8B:43:E5:02:20:0E:FF:8B:B5:4E:A5:F5:78:FE:
                                FF:16:5C:19:B7:69:0A:89:C3:01:C1:F0:CD:55:5D:4F:
                                04:88:6E:AA:AD:E3:5F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        59:cb:23:b9:5a:b8:4d:d5:ac:50:d1:8c:a5:a5:4c:33:64:2f:
        08:4b:e1:3b:98:9f:1a:2f:cc:39:84:97:45:ac:39:7d:72:38:
        55:c3:1d:9f:6a:ea:3a:3d:61:64:1d:15:48:39:6f:8d:6e:fc:
        57:2e:68:03:fd:40:1d:d7:36:26:d3:9f:18:a9:66:99:38:75:
        75:f5:ba:46:a3:a1:09:bc:cc:64:9b:b1:27:15:c1:7e:e8:e2:
        e0:7b:cb:f6:d8:0b:42:c7:ed:ec:3c:b1:4c:ab:e9:42:c4:f3:
        80:81:ce:a0:b2:e4:4d:fe:9e:9a:f3:39:c3:32:1e:d3:02:28:
        3a:86:8d:6b:df:65:9d:2d:25:57:ce:4b:e1:d8:e0:51:37:27:
        e9:4e:ff:33:f6:cc:21:7c:f2:a3:34:c3:b8:8f:3f:c2:72:23:
        49:bf:b1:eb:94:ad:b5:ec:12:b6:8f:a7:8f:0c:47:73:cf:7e:
        01:c0:e3:4d:7e:33:67:5b:35:8d:39:cc:15:de:4e:65:ea:76:
        4e:5e:dc:74:38:6e:b5:88:24:16:4f:5a:0e:47:70:f1:7d:be:
        00:a2:5d:3f:46:30:a3:f5:5a:47:d3:06:8b:0e:c7:62:0d:2d:
        8d:54:09:af:05:8c:67:26:be:33:00:77:73:8f:fb:f6:09:01:
        36:79:71:3c

-863545307 | 2024-05-16T08:13:24.469466

9000 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 May 2024 08:13:23 GMT
Content-Type: text/html
Content-Length: 13227
Connection: keep-alive
Expires: Thu, 16 May 2024 08:13:23 GMT
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Vary: Accept-Language, Cookie
Content-Language: en
X-Frame-Options: deny
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: sc=VLBwes5hcVBfAYo4yhdTCjRXvPh2oGyng6jy0zkKPcPf0HuvwDerRNgLriRzdJeu; expires=Thu, 15 May 2025 08:13:23 GMT; Max-Age=31449600; Path=/; SameSite=Lax
Set-Cookie: sentrysid=eyJ0ZXN0Y29va2llIjoid29ya2VkIn0:1s7WEt:Dx02CZK5tAgNroQ6qhVZZDIK2nM; expires=Thu, 30 May 2024 08:13:23 GMT; HttpOnly; Max-Age=1209600; Path=/

92.43.25.100

Last Seen: 2024-05-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2127929724 | 2024-04-25T13:25:38.735979
80 / tcp

-1972326615 | 2024-05-04T22:54:09.626802
443 / tcp

nginx1.18.0

-863545307 | 2024-05-16T08:13:24.469466
9000 / tcp

nginx

Products

Pricing

Contact Us

92.43.25.100

Last Seen: 2024-05-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2127929724 | 2024-04-25T13:25:38.735979 80 / tcp

-1972326615 | 2024-05-04T22:54:09.626802 443 / tcp

nginx1.18.0

-863545307 | 2024-05-16T08:13:24.469466 9000 / tcp

nginx

Products

Pricing

Contact Us

2127929724 | 2024-04-25T13:25:38.735979
80 / tcp

-1972326615 | 2024-05-04T22:54:09.626802
443 / tcp

-863545307 | 2024-05-16T08:13:24.469466
9000 / tcp