GeneralInformation

Country	China
City	Shanghai
Organization	CHINANET jiangsu province network
ISP	CHINANET-BACKBONE
ASN	AS4134

WebTechnologies

JavaScript libraries

jQuery

metisMenu

UI frameworks

Bootstrap3.3.7

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2019-8331	4.3In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.
CVE-2018-20677	4.3In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.
CVE-2018-20676	4.3In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.
CVE-2018-14042	4.3In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.
CVE-2018-14040	4.3In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.
CVE-2016-10735	4.3In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.

OpenPorts

21 23 80 8000 8001 8008 8010 8080 8112 9000 9002

-672347683 | 2024-05-15T10:50:31.039283

21 / tcp

220 Serv-U FTP Server v15.2.1 ready...
530 Sorry, no ANONYMOUS access allowed.
214-The following commands are recognized (* => unimplemented).
    OPTS    CLNT    CSID    NOOP    HELP    FEAT    HOST    USER    PASS
    REIN    QUIT    ACCT*   SMNT*   SITE    ABOR    SYST    STAT    AUTH
    PBSZ    PROT    CCC     SSCN    CWD     XCWD    CDUP    XCUP    PWD
    XPWD    MKD     XMKD    RMD     XRMD    RMDA    DSIZ    AVBL    PORT
    EPRT    PASV    EPSV    TYPE    STRU    MODE    RETR    STOR    APPE
    STOU    THMB    ALLO    REST    SIZE    RNFR    RNTO    DELE    XDEL
    MDTM    MFMT    MFCT    MFF     XCRC    XMD5    XSHA1   XSHA256 XSHA512
    COMB    LIST    NLST    MLST    MLSD
214 End
211-Extensions supported
 OPTS MODE;MLST
 CLNT
 CSID Name; Version;
 HOST domain
 SITE PSWD;SET;ZONE;CHMOD;MSG;EXEC;HELP
 AUTH TLS;SSL;TLS-C;TLS-P;
 PBSZ
 PROT
 CCC
 SSCN
 RMDA directoryname
 DSIZ
 AVBL
 EPRT
 EPSV
 MODE Z
 THMB BMP|JPEG|GIF|TIFF|PNG max_width max_height pathname
 REST STREAM
 SIZE
 MDTM
 MDTM YYYYMMDDHHMMSS[+-TZ];filename
 MFMT
 MFCT
 MFF Create;Modify;
 XCRC filename;start;end
 XMD5 filename;start;end
 XSHA1 filename;start;end
 XSHA256 filename;start;end
 XSHA512 filename;start;end
 COMB target;source_list
 MLST Type*;Size*;Create;Modify*;Perm;Win32.ea;Win32.dt;Win32.dl
211 End (for details use "HELP commmand" where command is the command of interest)

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, ST=WI, L=Helenville, O=Rhino Software, Inc., OU=Software Development, CN=ftp.Serv-U.com
        Validity
            Not Before: May 13 17:27:39 2020 GMT
            Not After : May 11 17:27:39 2030 GMT
        Subject: C=US, ST=WI, L=Helenville, O=Rhino Software, Inc., OU=Software Development, CN=ftp.Serv-U.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b1:71:4f:17:61:bb:11:b2:91:94:24:96:6f:72:
                    89:8b:f5:eb:af:12:1a:a5:c1:35:d5:18:70:51:bc:
                    ae:6c:1c:71:8c:8e:3d:fb:71:e3:d2:c2:cc:79:52:
                    c6:05:2e:8a:aa:c8:a7:27:b9:ef:c6:93:ff:c1:53:
                    05:00:4a:2a:41:e1:36:8b:de:08:71:7b:aa:86:17:
                    f2:cd:27:92:a6:ac:69:ea:8c:f2:9c:92:b4:c3:7e:
                    ea:d3:d2:c7:20:0d:00:76:42:2f:66:8c:ae:ce:88:
                    51:6b:a4:d3:45:c5:e9:72:e9:d2:43:e7:dc:5e:15:
                    ad:6e:57:d9:54:ea:9e:df:ea:41:e7:5c:0f:64:c7:
                    9e:b5:62:48:48:4f:00:d6:bc:f3:93:3c:17:d8:c5:
                    3e:22:d5:a0:5e:66:74:be:9a:62:40:0a:a0:30:34:
                    04:c0:48:e8:c9:3d:76:81:87:f1:54:41:a3:d8:ba:
                    6d:5a:c6:b5:dc:ff:bb:46:04:1c:0d:df:35:d6:f1:
                    b9:c5:5b:a0:ee:4f:ca:3d:ef:0c:f2:fe:fe:f3:16:
                    0e:8e:a1:6f:f6:08:27:45:f3:5e:b6:16:52:b7:d7:
                    c8:0e:8a:d6:ec:48:b6:54:f7:d7:f9:b8:e2:f1:3f:
                    b5:77:d5:ab:00:04:45:7d:df:79:42:7b:31:7f:02:
                    3d:73
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        5b:75:e7:49:03:35:f6:03:94:fc:d5:9d:81:a6:f3:12:8f:81:
        74:c8:89:7d:1f:f0:d2:ec:50:f2:b1:18:be:53:ea:68:9d:7f:
        63:29:56:4f:f3:12:23:15:da:52:ae:0d:e0:c1:e5:5c:c3:c4:
        56:df:4c:c0:56:5b:2b:02:b9:a5:93:bc:c3:7d:c9:74:1a:22:
        61:c3:42:42:62:ea:91:bc:81:5f:ee:8c:fc:18:bb:1a:d2:ea:
        06:9e:a7:e2:06:17:af:61:6e:57:7a:49:fd:a7:2b:38:b1:53:
        26:d1:be:9d:e8:f5:26:3c:fa:18:c6:2b:35:ee:b8:f5:a5:d0:
        97:86:cb:ff:17:40:38:9e:40:34:18:73:ff:7b:80:f9:69:64:
        03:f6:07:b9:4d:76:48:a6:aa:07:f5:ce:fb:cd:0d:e5:d5:7a:
        2c:94:8a:cf:b7:bc:0a:20:4c:da:72:db:a6:5b:ed:26:a0:c0:
        d7:0c:21:1c:0f:3e:80:96:e2:30:80:dd:9f:2b:b2:e2:63:a1:
        f4:83:02:b2:c6:4c:bd:58:a2:c0:55:68:99:26:c9:18:ab:79:
        bf:10:1b:06:37:9f:eb:e2:1d:9e:3c:5c:67:18:8f:56:65:6d:
        a3:fe:cd:fa:0d:7f:0d:69:67:ae:da:db:18:7b:58:49:5d:19:
        5f:3c:37:f9

1454653432 | 2024-05-14T19:05:07.205791

23 / tcp


Login authentication


Username:

654950492 | 2024-05-09T08:21:23.785188

80 / tcp

HTTP/1.1 301 Moved Permanently
Location: https://222.92.81.42/view/loginSimple.html
Server: AR
Date: thu, 09 may 2024 16:21:23 GMT
Pragma: no-cache
Cache-Control: no-store
Content-Type: text/html
Content-Length: 0
Last-Modified:mon, 19 may 0228 17:19:39 GMT
Connection: Close

1419765850 | 2024-05-15T09:32:20.762576

8000 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Wed, 15 May 2024 09:32:20 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive

-1045416154 | 2024-05-03T14:25:57.347694

8001 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Fri, 03 May 2024 14:25:56 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive

1468056591 | 2024-05-16T01:27:21.362332

8008 / tcp

HTTP/1.0 200 OK
Server: Serv-U/15.2.1.446
Date: Thu, 16 May 2024 01:27:18 GMT
Accept-Encoding: deflate
Connection: close
X-Frame-Options: sameorigin
X-Same-Domain: 1
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=0
Content-Type: text/html
Pragma: no-cache
Cache-Control: no-cache,no-store,max-age=0,must-revalidate
Expires: -1
Set-Cookie: Session=; expires=Thu, 01-Jan-1970 00:00:01 GMT; SameSite=Strict; path=/; httponly
Content-Length: 50560

561578021 | 2024-05-12T23:35:26.533361

8010 / tcp

HTTP/1.1 200 OK
Date: Sun, 12 May 2024 23:35:25 GMT
Server: Apache
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

-659545717 | 2024-04-29T00:09:06.743677

8080 / tcp

HTTP/1.1 200 
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Content-Type: text/html;charset=UTF-8
Content-Length: 90
Date: Mon, 29 Apr 2024 00:09:06 GMT

1104166174 | 2024-05-12T21:09:16.779145

8112 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Sun, 12 May 2024 21:09:16 GMT
Content-Type: text/html
Content-Length: 6907
Last-Modified: Thu, 09 May 2024 02:41:42 GMT
Connection: keep-alive
ETag: "663c37e6-1afb"
Accept-Ranges: bytes

33901970 | 2024-05-04T22:05:14.870902

9000 / tcp

HTTP/1.1 200 
Last-Modified: Tue, 23 May 2023 09:26:35 GMT
Accept-Ranges: bytes
vary: accept-encoding
Content-Type: text/html
Content-Language: zh-CN
Content-Length: 71342
Date: Sat, 04 May 2024 22:05:14 GMT

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta content="text/html; charset=utf-8" http-equiv="Content-Type">
    <!--页面不缓存-->
    <meta http-equiv="Pragma" content="no-cache">
    <meta http-equiv="Cache-Control" content="no-cache">
    <meta http-equiv="Expires" content="0">
    <title>Swagger-Bootstrap-UI</title>
    <link rel="shortcut icon" href="webjars/bycdao-ui/images/api.ico"/>
    <script src="webjars/bycdao-ui/ext/i18n.js"></script>
    <script type="text/javascript" src="webjars/bycdao-ui/jquery/jquery-1.9.1.min.js"></script>
    <script type="text/javascript" src="webjars/bycdao-ui/ace/bootstrap.min.js"></script>
    <script type="text/javascript" src="webjars/bycdao-ui/ace/ace.min.js"></script>

    <link rel="stylesheet" href="webjars/bycdao-ui/bootstrap/css/bootstrap.min.css" />
    <script type="text/javascript" src="webjars/bycdao-ui/jquery/clipboard/clipboard.min.js"></script>
    <script type="text/javascript" src="webjars/bycdao-ui/layer3.0.3/layer.js"></script>
    <link rel="stylesheet" href="webjars/bycdao-ui/layer3.0.3/skin/default/layer.css" />
    <link rel="stylesheet" href="webjars/bycdao-ui/highlight/styles/docco.css" />
    <link rel="stylesheet" href="webjars/bycdao-ui/highlight/styles/style.css" />
    <link rel="stylesheet" href="webjars/bycdao-ui/highlight/styles/default.css" />
    <script src="webjars/bycdao-ui/highlight/highlight.pack.js"></script>
    <script src="webjars/bycdao-ui/jquery/marked.js"></script>
    <link rel="stylesheet" href="webjars/bycdao-ui/cdao/swaggerbootstrapui.css?v=1.9.3" />
    <link rel="stylesheet" type="text/css" href="webjars/bycdao-ui/iconfont/iconfont.css" />

    <link rel="stylesheet" href="webjars/bycdao-ui/layui/css/layui.css"  media="all">
    <link rel="stylesheet" href="webjars/bycdao-ui/ext/sbuadmin.css" media="all">

    <script src="webjars/bycdao-ui/jquery/template-web.js"></script>

    <script src="webjars/bycdao-ui/jquery/axios.min.js"></script>
    <link rel="stylesheet" href="webjars/bycdao-ui/bootstrap-tabx/css/bootstrap-tabs-x.min.css" />
    <script src="webjars/bycdao-ui/bootstrap-tabx/js/bootstrap-tabs-x.min.js"></script>

    <script src="webjars/bycdao-ui/layui/layui.js" charset="utf-8"></script>

    <script src="webjars/bycdao-ui/ace-editor/ace.js" type="text/javascript"></script>

    <script src="webjars/bycdao-ui/jquery/showdown.min.js"></script>
    <script src="webjars/bycdao-ui/jquery/async.min.js"></script>
    <script src="webjars/bycdao-ui/jquery/md5.min.js"></script>
    <link rel="stylesheet" href="webjars/bycdao-ui/cdao/swaggerbootstrapui-md.css?v=1.9.3" />
    <style type="text/css">
        #container {
            width: 100%;
            /*height: 90%;*/
            /* Disable selection so it doesn't get annoying */
          /*  -webkit-touch-callout: none;
            -webkit-user-select: none;
            -khtml-user-select: none;
            -moz-user-select: moz-none;
            -ms-user-select: none;
            user-select: none;*/
        }
        #container .left {
            position: absolute;
        }
        #container .right {
            position: fixed;
            width: 100%;
        }
        #container #handle {
            position: absolute;
            left: 310px;
            /* bottom: 0; */
            width: 8px;
            height: 90%;
            /*background-color: #1a1a1a;*/
            cursor: w-resize;
        }
        .panel-body{
            padding: 5px;
        }

        .swbu-main p{
            line-height: 2em;
            margin: 1em 0;
        }
        .swbu-main .layui-table td{
            border-color: #e6e6e6;
        }
        /*.layui-table .layui-table-cell{
            height:auto;
            overflow:visible;
            text-overflow:inherit;
            white-space:normal;
        }*/
        /*.layui-table-tips-main{display:none}
        .layui-table-tips-c{display:none}*/
    </style>
    <script>
        /*var _hmt = _hmt || [];
        (function() {
            var hm = document.createElement("script");
            hm.src = "https://hm.baidu.com/hm.js?08a0203144c393bb4372386953b1c593";
            var s = document.getElementsByTagName("script")[0];
            s.parentNode.insertBefore(hm, s);
        })();*/
   </script>
</head>
<body style="overflow: hidden;">
<div class="sbu-header" id="sbu-header">
    <div class="sbu-header-left sbu-header-left-wd" id="leftGroup">
        <div class="form-group sbu-header-group">
            <div class="col-sm-12">
                <select  class="form-control" id="sbu-group-sel" style="margin-top: 13px;">
                </select>
            </div>
        </div>
    </div>
    <div class="sbu-header-le

878782317 | 2024-05-16T09:46:49.366980

9002 / tcp

HTTP/1.1 200 OK
Server: nginx/1.21.4
Date: Thu, 16 May 2024 09:46:49 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1957
Last-Modified: Sat, 18 Jun 2022 00:59:12 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "62ad2360-7a5"
Accept-Ranges: bytes

<!DOCtype html>
<html>
	<head>
		<title></title>
	</head>
	<script>

/**
 * [通过参数名获取url中的参数值]
 * 
 * @param  {[string]} queryName [参数名]
 * @return {[string]}           [参数值]
 */
function GetQueryValue(queryName) {
    
    var reg = new RegExp("(^|&)" + queryName + "=([^&]*)(&|$)", "i");
    // 获取url中"?"符后的字符串并正则匹配
    var r = window.location.search.substr(1).match(reg);
    if (r != null) {
        return decodeURI(r[2]);
    } else {
        return null;
    }
}

		function whatBrowser() {
			if (navigator.userAgent.indexOf("Windows") >= 0 || navigator.userAgent.indexOf("Macintosh") >= 0) {
				location.href = "http://www.imcoming.icu/WechatWorkApi/OAuth2/Authorize?redirectUrl=http%3A%2F%2F192.168.10.62%3A9001%2Fuser%2Flogin";
			} else {
				location.href = "http://www.imcoming.icu/WechatWorkApi/OAuth2/Authorize?redirectUrl=http%3A%2F%2F192.168.10.62%3A9003%2F%23%2Fpages%2Flogin%2Flogin";
			}
		}
		// whatBrowser();

		function whatBrowserN() {
			if (navigator.userAgent.indexOf("Windows") >= 0 || navigator.userAgent.indexOf("Macintosh") >= 0) {
				location.href = "http://192.168.10.62:9001/user/login?code=" + GetQueryValue("code");
			} else {
				location.href = "http://192.168.10.62:9003/#/pages/login/login?code=" + GetQueryValue("code");
			}
		}
		whatBrowserN();
	</script>
	<body>

		<table>
			<form name="Browser">
				<tr>
					<td> 浏览器名称: </td>
					<td> <input type="txt" name="Name" size="110%"></td>
				</tr>
				<tr>
					<td> 版本号:</td>
					<td> <input type="txt" name="Version" size="110%"></td>
				</tr>
				<tr>
					<td> 代码名称: </td>
					<td> <input type="txt" name="Code" size="110%"></td>
				</tr>
				<tr>
					<td> 用户代理标识:</td>
					<td> <input type="txt" name="Agent" size="110%"></td>
				</tr>
			</form>
		</table>
	</body>
</html>

222.92.81.42

Last Seen: 2024-05-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-672347683 | 2024-05-15T10:50:31.039283
21 / tcp

Serv-U ftpd15.2.1

1454653432 | 2024-05-14T19:05:07.205791
23 / tcp

654950492 | 2024-05-09T08:21:23.785188
80 / tcp

Remedy AR System Server

1419765850 | 2024-05-15T09:32:20.762576
8000 / tcp

nginx1.20.2

-1045416154 | 2024-05-03T14:25:57.347694
8001 / tcp

nginx1.20.2

1468056591 | 2024-05-16T01:27:21.362332
8008 / tcp

Rhinosoft Serv-U httpd15.2.1.446

561578021 | 2024-05-12T23:35:26.533361
8010 / tcp

Apache httpd

-659545717 | 2024-04-29T00:09:06.743677
8080 / tcp

1104166174 | 2024-05-12T21:09:16.779145
8112 / tcp

nginx1.20.2

33901970 | 2024-05-04T22:05:14.870902
9000 / tcp

878782317 | 2024-05-16T09:46:49.366980
9002 / tcp

nginx1.21.4

Products

Pricing

Contact Us

222.92.81.42

Last Seen: 2024-05-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-672347683 | 2024-05-15T10:50:31.039283 21 / tcp

1454653432 | 2024-05-14T19:05:07.205791 23 / tcp

654950492 | 2024-05-09T08:21:23.785188 80 / tcp

1419765850 | 2024-05-15T09:32:20.762576 8000 / tcp

-1045416154 | 2024-05-03T14:25:57.347694 8001 / tcp

1468056591 | 2024-05-16T01:27:21.362332 8008 / tcp

561578021 | 2024-05-12T23:35:26.533361 8010 / tcp

-659545717 | 2024-04-29T00:09:06.743677 8080 / tcp

1104166174 | 2024-05-12T21:09:16.779145 8112 / tcp

33901970 | 2024-05-04T22:05:14.870902 9000 / tcp

878782317 | 2024-05-16T09:46:49.366980 9002 / tcp

Products

Pricing

Contact Us

-672347683 | 2024-05-15T10:50:31.039283
21 / tcp

1454653432 | 2024-05-14T19:05:07.205791
23 / tcp

654950492 | 2024-05-09T08:21:23.785188
80 / tcp

1419765850 | 2024-05-15T09:32:20.762576
8000 / tcp

-1045416154 | 2024-05-03T14:25:57.347694
8001 / tcp

1468056591 | 2024-05-16T01:27:21.362332
8008 / tcp

561578021 | 2024-05-12T23:35:26.533361
8010 / tcp

-659545717 | 2024-04-29T00:09:06.743677
8080 / tcp

1104166174 | 2024-05-12T21:09:16.779145
8112 / tcp

33901970 | 2024-05-04T22:05:14.870902
9000 / tcp

878782317 | 2024-05-16T09:46:49.366980
9002 / tcp