GeneralInformation

Hostnames	vsrf.ru
Domains	vsrf.ru
Country	Russian Federation
City	Moscow
Organization	RUSSIAN STATE INTERNET NETWORK
ISP	The Federal Guard Service of the Russian Federation
ASN	AS43797

WebTechnologies

CMS

1C-Bitrix

Ecommerce

1C-Bitrix

JavaScript libraries

jQuery2.2.4

Programming languages

PHP

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

443

909663958 | 2024-04-30T07:51:30.138150

443 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 30 Apr 2024 07:51:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 75774
Connection: keep-alive
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            52:c2:0a:fe:29:2c:88:b0:de:b0:92:d7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R3 DV TLS CA 2020
        Validity
            Not Before: Jul 17 06:50:09 2023 GMT
            Not After : Aug 17 06:50:08 2024 GMT
        Subject: CN=*.vsrf.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b7:a5:ed:96:b7:ff:80:2a:8a:3a:18:13:5d:08:
                    76:66:bc:45:1d:38:ca:29:33:93:d3:75:a9:8a:61:
                    e1:24:63:a7:53:93:b5:4b:a7:26:49:7a:e8:63:7a:
                    04:93:5c:e1:ac:38:82:56:02:cc:5a:3b:e7:92:59:
                    5b:18:f8:f5:0c:80:24:03:c7:c7:66:38:0d:de:03:
                    36:ae:bc:fe:38:97:cf:21:ea:a0:8c:c5:99:94:87:
                    20:61:67:cd:89:95:79:f9:a2:1e:f7:ec:3c:74:3f:
                    b3:a9:38:52:7a:c0:df:2b:4b:07:16:83:d7:dc:d1:
                    6e:dc:23:5c:8a:22:86:13:02:c3:26:b8:b9:8e:c9:
                    fc:33:07:65:41:d6:bd:4a:c6:00:61:9b:c2:7a:fa:
                    ee:e7:74:9f:f7:4b:b4:03:4c:8b:64:98:81:2a:93:
                    82:02:20:53:5a:41:8a:83:84:51:07:13:35:e8:63:
                    a8:c8:b9:c0:14:fd:39:a5:9d:91:87:25:b6:1e:9b:
                    0a:0c:50:36:df:61:e1:06:ec:59:d3:34:41:40:14:
                    8d:da:d9:47:d7:81:1d:24:b5:f5:95:b2:55:45:c7:
                    c8:d1:38:d6:0f:94:df:4c:36:88:b7:f4:db:22:81:
                    12:e9:e4:cd:27:89:9a:2e:e3:41:48:eb:92:91:52:
                    5d:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
                OCSP - URI:http://ocsp.globalsign.com/gsgccr3dvtlsca2020
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.10
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.1
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
            X509v3 Subject Alternative Name: 
                DNS:*.vsrf.ru, DNS:vsrf.ru
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                0D:98:C0:73:7F:AB:BD:BD:D9:47:4B:49:AD:0A:4A:0C:AC:3E:C7:7C
            X509v3 Subject Key Identifier: 
                8F:62:C1:B3:FA:C3:BE:03:6D:BB:22:F6:17:01:16:CD:8C:3A:23:96
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Jul 17 06:50:12.609 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E7:36:0B:D5:91:12:3E:88:F3:71:E0:
                                3C:5C:AB:59:EA:C0:5B:E5:ED:97:FB:05:87:4C:0D:7F:
                                1C:2A:F1:01:38:02:21:00:C6:D7:CE:49:E5:82:1D:43:
                                B0:54:25:2B:00:7D:5E:D2:32:D1:FA:91:D0:54:DD:48:
                                F9:DB:7F:F7:45:5F:4E:0E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Jul 17 06:50:12.675 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6F:84:2A:60:58:77:DA:62:56:9C:73:2A:
                                A9:B2:27:B6:70:1B:12:A8:D8:80:2B:8A:B6:68:8F:45:
                                A7:49:5E:67:02:20:57:0C:6A:35:2B:63:EB:BA:5F:6E:
                                A3:AC:A6:9D:9F:64:07:C0:31:E3:F6:82:E4:D9:5E:69:
                                DF:A2:8E:B0:F3:6C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Jul 17 06:50:12.676 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:21:4B:DF:2C:06:01:68:63:DD:EE:CC:3D:
                                21:32:ED:70:BD:18:90:F8:90:6B:9D:C2:4B:55:B3:0B:
                                40:A1:60:50:02:21:00:BE:49:2A:03:65:3A:A7:71:76:
                                0A:79:F7:6E:4D:AC:1E:3D:BA:BE:52:90:DE:9A:38:B1:
                                8B:08:CF:E9:4E:10:A9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        20:6e:9e:c2:18:62:de:99:c2:1a:21:26:f0:9b:89:ad:44:85:
        c4:d6:17:3c:0f:d8:f2:73:ff:b5:14:a7:0d:c8:36:47:98:18:
        24:4a:ab:47:b3:c2:c8:5f:73:37:d9:5f:f0:56:38:1b:2d:1c:
        4c:19:f1:0a:a1:11:69:59:62:c0:d4:18:86:5e:7f:31:30:3f:
        11:ef:85:35:cc:35:f8:f0:78:48:c2:f8:30:d4:14:f0:f2:75:
        cc:3a:9b:dd:7e:6f:34:23:bc:59:2b:a8:23:c1:bc:af:69:64:
        4d:51:ab:65:8e:70:f3:50:d1:0a:ff:20:69:d3:14:2c:c9:d9:
        65:52:fd:6b:0e:67:4a:fe:77:89:c3:16:32:96:fd:5f:f0:58:
        ae:ae:23:ae:db:58:ea:60:dc:41:06:51:97:b6:19:16:c7:96:
        33:84:7e:56:d2:6a:89:7d:ef:be:d6:ec:5d:0a:f2:af:ee:5a:
        22:bb:04:28:31:72:f3:09:0a:9d:9c:9b:28:5d:51:69:e6:92:
        2c:69:07:31:3c:a8:07:9e:a6:ab:01:4e:96:7f:03:d2:d7:73:
        63:b2:b2:87:e7:43:a1:9f:b3:ec:23:58:03:d2:84:22:3f:2f:
        3f:60:60:67:1e:a9:a0:c3:f0:9a:2a:7e:f5:ec:62:0d:af:f8:
        03:ff:ca:fd

95.173.156.120

Last Seen: 2024-04-30

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

909663958 | 2024-04-30T07:51:30.138150
443 / tcp

nginx

Products

Pricing

Contact Us

95.173.156.120

Last Seen: 2024-04-30

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

909663958 | 2024-04-30T07:51:30.138150 443 / tcp

nginx

Products

Pricing

Contact Us

909663958 | 2024-04-30T07:51:30.138150
443 / tcp