GeneralInformation

Country	China
City	Shanghai
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

WebTechnologies

JavaScript libraries

jQuery

Slick

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2022-41742	NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted audio or video file. The issue affects only NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the configuration file. Further, the attack is possible only if an attacker can trigger processing of a specially crafted audio or video file with the module ngx_http_mp4_module.
CVE-2022-41741	NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its termination or potential other impact using a specially crafted audio or video file. The issue affects only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the configuration file. Further, the attack is possible only if an attacker can trigger processing of a specially crafted audio or video file with the module ngx_http_mp4_module.

OpenPorts

80 3306 8081 8082 8092 9000

530653675 | 2024-05-02T13:01:18.098327

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.23.0
Date: Thu, 02 May 2024 13:01:17 GMT
Content-Type: text/html
Content-Length: 20186
Last-Modified: Mon, 26 Feb 2024 08:06:00 GMT
Connection: keep-alive
ETag: "65dc4668-4eda"
Accept-Ranges: bytes

847611026 | 2024-05-07T01:39:37.961511

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 5.7.36
  Capabilities: 65535
  Server Language: 192
  Server Status: 2
  Extended Server Capabilities: 49663
  Authentication Plugin: mysql_native_password

-1294951985 | 2024-05-09T08:18:38.151028

8081 / tcp

HTTP/1.1 200 
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 93
Date: Thu, 09 May 2024 08:18:37 GMT

欢迎使用whaler后台管理框架，当前版本：v1.0.0，请通过前端地址访问。

-2077160466 | 2024-05-03T05:03:15.920614

8082 / tcp

HTTP/1.1 200 
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 93
Date: Fri, 03 May 2024 05:03:15 GMT

欢迎使用whaler后台管理框架，当前版本：v1.0.0，请通过前端地址访问。

358655423 | 2024-05-09T07:21:01.651247

8092 / tcp

HTTP/1.1 200 OK
Server: nginx/1.23.0
Date: Thu, 09 May 2024 07:21:00 GMT
Content-Type: text/html
Content-Length: 33996
Last-Modified: Tue, 23 Apr 2024 03:23:48 GMT
Connection: keep-alive
ETag: "662729c4-84cc"
Accept-Ranges: bytes

-352285322 | 2024-05-08T12:36:18.223370

9000 / tcp

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-store
Content-Length: 2256
Content-Security-Policy: block-all-mixed-content
Content-Type: text/html; charset=utf-8
Vary: Origin
Vary: Accept-Encoding
X-Amz-Request-Id: 17CD83A512C08927
X-Xss-Protection: 1; mode=block
Date: Wed, 08 May 2024 12:36:18 GMT

47.117.143.1

Last Seen: 2024-05-09

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

530653675 | 2024-05-02T13:01:18.098327
80 / tcp

nginx1.23.0

847611026 | 2024-05-07T01:39:37.961511
3306 / tcp

MySQL5.7.36

-1294951985 | 2024-05-09T08:18:38.151028
8081 / tcp

-2077160466 | 2024-05-03T05:03:15.920614
8082 / tcp

358655423 | 2024-05-09T07:21:01.651247
8092 / tcp

nginx1.23.0

-352285322 | 2024-05-08T12:36:18.223370
9000 / tcp

MinIO Server

Products

Pricing

Contact Us

47.117.143.1

Last Seen: 2024-05-09

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

530653675 | 2024-05-02T13:01:18.098327 80 / tcp

nginx1.23.0

847611026 | 2024-05-07T01:39:37.961511 3306 / tcp

MySQL5.7.36

-1294951985 | 2024-05-09T08:18:38.151028 8081 / tcp

-2077160466 | 2024-05-03T05:03:15.920614 8082 / tcp

358655423 | 2024-05-09T07:21:01.651247 8092 / tcp

nginx1.23.0

-352285322 | 2024-05-08T12:36:18.223370 9000 / tcp

MinIO Server

Products

Pricing

Contact Us

530653675 | 2024-05-02T13:01:18.098327
80 / tcp

847611026 | 2024-05-07T01:39:37.961511
3306 / tcp

-1294951985 | 2024-05-09T08:18:38.151028
8081 / tcp

-2077160466 | 2024-05-03T05:03:15.920614
8082 / tcp

358655423 | 2024-05-09T07:21:01.651247
8092 / tcp

-352285322 | 2024-05-08T12:36:18.223370
9000 / tcp