GeneralInformation

Hostnames	api.minetools.eu api-dev.minetools.eu static.6.12.130.94.clients.your-server.de
Domains	minetools.eu your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

WebTechnologies

JavaScript libraries

jQuery2.1.3

Miscellaneous

Prism

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443 8085

1637199859 | 2024-04-20T16:24:03.158073

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sat, 20 Apr 2024 16:24:03 GMT
Content-Type: text/html
Content-Length: 615
Last-Modified: Sat, 07 Oct 2023 18:05:54 GMT
Connection: keep-alive
ETag: "65219e02-267"
Accept-Ranges: bytes

1720512286 | 2024-05-02T14:38:38.740728

443 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 May 2024 14:38:38 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 8229
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Cross-Origin-Opener-Policy: same-origin
Access-Control-Allow-Origin: *
X-Backend: candy
Vary: Accept-Encoding
Age: 40
Accept-Ranges: bytes
X-Cache: HIT
X-Cache-Hits: 1

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:dc:a6:d9:99:b9:09:d2:b7:aa:cd:4d:7c:c5:5a:d6:80:fd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 30 22:18:58 2024 GMT
            Not After : Jul 29 22:18:57 2024 GMT
        Subject: CN=api-dev.minetools.eu
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:43:4c:99:b1:15:33:8c:8b:d4:18:b9:60:11:67:
                    fa:eb:85:fc:fa:af:5b:b7:c1:a2:15:59:e4:52:dc:
                    b6:ec:4e:bb:a1:03:3e:4b:30:10:78:1c:68:ca:e0:
                    e4:58:a1:05:6d:84:c5:fe:dc:a6:7b:37:df:8b:37:
                    42:8a:61:eb:8d
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                EE:B6:0F:6E:14:52:5A:E8:6C:63:3F:EA:28:CA:82:E9:8A:34:7A:79
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api-dev.minetools.eu, DNS:api.minetools.eu
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 30 23:18:58.233 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:61:5F:3F:C8:51:45:0F:57:89:69:03:48:
                                A1:57:84:EA:57:61:26:2D:3E:95:75:A6:76:1F:7C:13:
                                FF:52:59:97:02:21:00:A6:91:92:14:84:FD:6B:D2:4C:
                                86:2B:B6:2C:A5:3F:BB:0F:3A:87:D1:CA:59:54:99:1B:
                                05:A5:AD:55:29:2B:D7
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 30 23:18:58.317 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:93:65:11:13:57:76:A4:30:92:59:10:
                                13:DE:B5:C2:61:41:67:63:BC:EA:34:E0:5B:A8:2C:32:
                                96:55:C1:2F:07:02:21:00:A0:13:E3:87:E5:5D:1D:E2:
                                AB:40:E9:14:2E:55:CC:C1:AC:D7:7A:31:2F:B7:82:05:
                                35:FA:74:7A:12:E5:0C:43
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        39:ed:a7:11:f5:71:11:58:d7:be:6c:d7:65:2b:71:f1:f7:a4:
        6a:c6:af:91:30:e0:0f:11:17:bc:2a:97:08:0f:9d:36:3f:67:
        34:97:f8:ce:1b:cb:8d:c1:ce:17:19:23:29:7f:e0:55:52:6c:
        4a:0f:95:7d:95:27:bf:00:bb:4c:b5:dd:ac:55:ed:e6:b4:cd:
        6d:6d:b2:8b:26:40:6e:b2:f2:34:2c:90:19:b8:2e:a9:fc:49:
        02:d1:ab:cc:88:42:81:70:fc:56:0f:1d:f4:b1:7f:e8:bb:43:
        a0:fc:98:bc:bd:eb:0b:ce:23:a5:1b:fd:0a:eb:e4:92:10:bf:
        cc:38:90:40:af:7e:eb:c8:59:1a:b2:7c:b9:33:7d:03:bc:48:
        c2:41:c6:11:5f:73:82:42:2b:f0:a2:65:66:11:ba:b5:a7:53:
        14:fd:d0:76:8b:80:4b:e9:5d:22:88:01:8d:9d:7a:93:05:f1:
        b1:7b:af:3a:a5:73:f9:29:60:39:e9:3f:cf:34:df:8e:42:f4:
        7e:60:f2:84:f3:ce:eb:eb:6d:28:89:d8:92:b5:e7:aa:79:0a:
        2c:af:60:ac:44:2f:46:1e:d7:ff:4d:e9:f6:76:ed:27:fa:b0:
        9c:b5:9f:41:84:65:c0:28:96:53:f7:c6:2d:2e:e4:11:e9:fa:
        73:d5:d9:e8

574097288 | 2024-04-17T21:38:43.991540

8085 / tcp

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 21:38:43 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Server: Jetty(9.4.z-SNAPSHOT)

C
Hello World!

94.130.12.6

Last Seen: 2024-05-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1637199859 | 2024-04-20T16:24:03.158073
80 / tcp

nginx1.22.1

1720512286 | 2024-05-02T14:38:38.740728
443 / tcp

nginx

574097288 | 2024-04-17T21:38:43.991540
8085 / tcp

Jetty

Products

Pricing

Contact Us

94.130.12.6

Last Seen: 2024-05-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1637199859 | 2024-04-20T16:24:03.158073 80 / tcp

nginx1.22.1

1720512286 | 2024-05-02T14:38:38.740728 443 / tcp

nginx

574097288 | 2024-04-17T21:38:43.991540 8085 / tcp

Jetty

Products

Pricing

Contact Us

1637199859 | 2024-04-20T16:24:03.158073
80 / tcp

1720512286 | 2024-05-02T14:38:38.740728
443 / tcp

574097288 | 2024-04-17T21:38:43.991540
8085 / tcp