GeneralInformation

Hostnames	bwtcmall.com www.bwtcmall.com
Domains	bwtcmall.com
Country	Hong Kong
City	Hong Kong
Organization	ACEVILLE PTE.LTD.
ISP	Tencent Building, Kejizhongyi Avenue
ASN	AS132203

WebTechnologies

JavaScript libraries

jQuery1.9.1

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2020(2)

CVE-2020-11023

6.9In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-11022

6.9In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

2019(1)

CVE-2019-11358

6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

2015(1)

CVE-2015-9251

6.1jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

21 80 443

21 / tcp

-967975350 | 2025-04-04T23:34:21.400532

220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 1 of 50 allowed.
220-Local time is now 07:34. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.
530 Login authentication failed
214-The following SITE commands are recognized
 ALIAS
 CHMOD
 IDLE
 UTIME
214 Pure-FTPd - http://pureftpd.org/
211-Extensions supported:
 UTF8
 EPRT
 IDLE
 MDTM
 SIZE
 MFMT
 REST STREAM
 MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
 MLSD
 PRET
 AUTH TLS
 PBSZ
 PROT
 TVFS
 ESTA
 PASV
 EPSV
 SPSV
 ESTP
211 End.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            b7:ce:db:4b:9d:2e:52:ac
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=CN, ST=Guangdong, L=Dongguan, O=BT-PANEL, OU=BT, CN=101.32.35.188/emailAddress=admin@bt.cn
        Validity
            Not Before: May 31 01:26:03 2022 GMT
            Not After : Feb 28 01:26:03 2032 GMT
        Subject: C=CN, ST=Guangdong, L=Dongguan, O=BT-PANEL, OU=BT, CN=101.32.35.188/emailAddress=admin@bt.cn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e2:dd:64:1e:4b:0c:79:ad:dc:ef:0d:a4:55:80:
                    19:60:72:c4:33:63:b3:54:bb:ef:36:57:82:74:1a:
                    d5:07:e3:56:b9:2b:e8:81:20:05:0c:ed:bd:e7:c1:
                    ef:67:18:d0:ad:a1:3d:a9:c7:a4:62:b4:0c:7e:b6:
                    3c:8c:19:ee:a1:ed:0c:66:67:03:76:da:81:d6:b8:
                    a6:5c:6e:54:a4:75:c8:06:8b:5d:db:b0:9e:d8:7b:
                    96:f8:77:d4:40:81:f4:7f:69:2b:4e:59:e5:0f:a1:
                    5d:7f:22:86:87:84:7b:58:e3:02:2d:c8:5b:7b:49:
                    e0:c5:61:e3:a9:fc:b9:e1:df:72:bd:ad:60:6c:0b:
                    d9:ac:c9:2e:28:bb:04:f2:fd:25:c0:ab:d9:6a:24:
                    cb:aa:48:c5:fe:d4:27:f7:20:91:b0:84:28:82:3e:
                    9a:fc:cd:5a:c7:da:9d:8a:c8:4f:e8:48:6b:16:a0:
                    a8:e4:41:bb:b1:45:0e:19:50:de:ce:78:54:de:41:
                    85:60:28:9a:35:0d:af:be:38:32:08:aa:6a:a4:4a:
                    22:0e:27:4b:00:d1:c0:a7:c2:c4:68:3c:b4:9c:eb:
                    cc:6d:8c:d2:e5:67:4c:b2:a3:01:e2:2d:be:20:c6:
                    9a:b2:53:6e:8c:32:b1:89:f0:eb:34:f2:fd:c7:03:
                    7d:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                F5:34:A2:6F:75:2D:F2:98:4A:C9:C7:AE:15:4A:DC:0F:D8:77:7B:27
            X509v3 Authority Key Identifier: 
                F5:34:A2:6F:75:2D:F2:98:4A:C9:C7:AE:15:4A:DC:0F:D8:77:7B:27
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        23:4e:e3:84:e5:f1:28:fa:88:ab:de:9d:da:7c:56:51:3f:ba:
        72:27:ef:2e:f0:a3:07:32:9b:6b:82:95:b2:0b:37:fd:72:df:
        fd:b5:46:1c:93:06:65:f4:08:dd:c7:07:0d:48:01:04:f9:41:
        82:c0:6e:ae:4b:71:1e:69:91:b9:d1:f5:3e:32:b7:a5:12:83:
        3c:9b:0f:89:a2:14:a3:0e:67:2d:76:c0:a8:15:c0:81:04:01:
        3f:c7:e4:35:c4:09:39:57:01:8e:d5:93:c0:56:ff:73:00:75:
        35:92:e6:83:e2:de:2a:92:16:f3:2d:19:da:7c:6f:57:78:50:
        86:2b:a7:1c:da:55:3a:1b:8f:44:cf:2e:ca:b1:ec:b6:a9:c8:
        95:1d:16:47:d5:18:10:7a:e9:bb:5f:2c:5e:24:a4:eb:80:87:
        ac:d2:23:d1:88:b6:8b:b0:dc:9a:63:9b:8c:7e:d7:6c:3e:c3:
        ec:b6:cb:33:b5:89:df:ee:3a:ea:63:8c:c1:b6:20:35:09:00:
        ba:df:96:a1:43:7a:18:95:64:18:b7:00:e2:17:9c:4a:b2:8c:
        fa:1f:99:b9:e9:4d:55:11:b2:2a:db:79:26:22:39:30:28:50:
        10:17:04:e2:92:37:35:30:f0:96:e3:6d:eb:4f:43:fb:75:93:
        41:3d:8b:52

80 / tcp

-1030761333 | 2025-03-29T06:56:14.377651

Hashes

hash

1755642169

http.dom_hash

-376949072

http.favicon.hash

266926841

http.html_hash

-1030761333

http.robots_hash

-21626816

http.server_hash

-1340961475

http.title_hash

664801074

Global Market Access | Testing & Certification | BWTCmall.com

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Mar 2025 06:56:13 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: real_ipd=224.169.13.38; expires=Sat, 29-Mar-2025 16:56:12 GMT; Max-Age=36000; path=/
Set-Cookie: dsc_real_ip=224.169.13.38; expires=Sat, 29-Mar-2025 16:56:12 GMT; Max-Age=36000; path=/
Set-Cookie: ECS_ID=fdbb1e0dac2defcef65b07737417cb46279f2086; path=/
Cache-control: private
Set-Cookie: ECS[visit_times]=1; expires=Sun, 29-Mar-2026 06:56:12 GMT; Max-Age=31536000; path=/
Set-Cookie: province=8203; expires=Mon, 28-Apr-2025 06:56:13 GMT; Max-Age=2592000; path=/
Set-Cookie: city=8229; expires=Mon, 28-Apr-2025 06:56:13 GMT; Max-Age=2592000; path=/
Set-Cookie: district=0; expires=Mon, 28-Apr-2025 06:56:13 GMT; Max-Age=2592000; path=/
Set-Cookie: street=1; expires=Mon, 28-Apr-2025 06:56:13 GMT; Max-Age=2592000; path=/
Set-Cookie: street_area=1%2C3409%2C3410%2C3411%2C3412%2C3506%2C5099%2C5143%2C5144%2C5145%2C5146%2C5147%2C5148%2C5149%2C5150%2C5151%2C5152%2C5153%2C5154%2C5155%2C5156%2C5157%2C5158%2C5159%2C5160%2C5161%2C5162%2C5163%2C5164%2C5165%2C5166; expires=Mon, 28-Apr-2025 06:56:13 GMT; Max-Age=2592000; path=/
Set-Cookie: session_id_ip=224.169.13.38_fdbb1e0dac2defcef65b07737417cb46; expires=Sun, 29-Mar-2026 06:56:13 GMT; Max-Age=31536000; path=/
Strict-Transport-Security: max-age=31536000

Vulnerabilities

443 / tcp

1151870696 | 2025-04-01T08:58:52.968758

Hashes

hash

781777419

http.dom_hash

-376949072

http.favicon.hash

266926841

http.html_hash

1151870696

http.robots_hash

-21626816

http.server_hash

-1340961475

http.title_hash

664801074

Global Market Access | Testing & Certification | BWTCmall.com

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 01 Apr 2025 08:58:41 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: real_ipd=224.100.3.232; expires=Tue, 01-Apr-2025 18:58:40 GMT; Max-Age=36000; path=/
Set-Cookie: dsc_real_ip=224.100.3.232; expires=Tue, 01-Apr-2025 18:58:40 GMT; Max-Age=36000; path=/
Set-Cookie: ECS_ID=3cf1c90af66f65438af9446c9aae5bbbef16f65d; path=/
Cache-control: private
Set-Cookie: ECS[visit_times]=1; expires=Wed, 01-Apr-2026 08:58:40 GMT; Max-Age=31536000; path=/
Set-Cookie: province=8203; expires=Thu, 01-May-2025 08:58:41 GMT; Max-Age=2592000; path=/
Set-Cookie: city=8229; expires=Thu, 01-May-2025 08:58:41 GMT; Max-Age=2592000; path=/
Set-Cookie: district=0; expires=Thu, 01-May-2025 08:58:41 GMT; Max-Age=2592000; path=/
Set-Cookie: street=1; expires=Thu, 01-May-2025 08:58:41 GMT; Max-Age=2592000; path=/
Set-Cookie: street_area=1%2C3409%2C3410%2C3411%2C3412%2C3506%2C5099%2C5143%2C5144%2C5145%2C5146%2C5147%2C5148%2C5149%2C5150%2C5151%2C5152%2C5153%2C5154%2C5155%2C5156%2C5157%2C5158%2C5159%2C5160%2C5161%2C5162%2C5163%2C5164%2C5165%2C5166; expires=Thu, 01-May-2025 08:58:41 GMT; Max-Age=2592000; path=/
Set-Cookie: session_id_ip=224.100.3.232_3cf1c90af66f65438af9446c9aae5bbb; expires=Wed, 01-Apr-2026 08:58:41 GMT; Max-Age=31536000; path=/
Strict-Transport-Security: max-age=31536000

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0d:16:d8:1c:d0:ac:9a:59:ce:48:da:5d:a7:b0:79:b8
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=CN, O=TrustAsia Technologies, Inc., OU=Domain Validated SSL, CN=TrustAsia TLS RSA CA
        Validity
            Not Before: Feb 17 00:00:00 2025 GMT
            Not After : May 17 23:59:59 2025 GMT
        Subject: CN=bwtcmall.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d7:21:07:ca:ba:c9:0c:6e:5b:42:a8:7b:fa:78:
                    9b:3f:cd:57:48:03:5f:57:99:e5:c9:dc:ce:04:ad:
                    5c:d6:2c:6a:8e:d9:f9:ef:83:d8:ca:e9:3e:6c:a4:
                    8e:c9:d9:ce:62:c8:17:31:f5:99:4d:f7:70:e0:28:
                    ba:08:9a:ce:86:17:57:f2:72:8d:1d:2f:3a:be:ab:
                    5e:b0:29:46:c6:55:65:5a:16:71:6a:22:cb:3e:46:
                    1b:10:23:8c:51:cb:46:d0:52:7d:96:78:f3:11:44:
                    a0:64:85:e5:d8:00:9b:03:d4:c0:32:15:ac:54:70:
                    4b:22:fb:91:35:e2:e8:2f:df:b4:e1:1d:33:ed:5d:
                    b4:81:08:1f:35:85:ad:03:5b:11:fc:b0:5d:07:7b:
                    c6:03:d0:f2:d1:b9:19:b5:c5:9b:f3:23:2c:8a:7e:
                    a3:b1:26:8e:b5:68:fc:34:df:3e:f9:4b:dd:51:1b:
                    bc:bf:64:0d:41:6c:b2:51:89:69:00:1f:c2:33:cf:
                    28:14:45:2f:73:73:59:42:26:48:7e:18:6f:d9:af:
                    1b:bc:9f:4c:6f:f4:1f:c8:0d:aa:8a:68:2d:28:be:
                    27:d9:aa:03:4c:e9:81:f9:79:56:11:8c:ce:34:65:
                    1b:50:d3:6d:97:dc:8a:e1:ff:7e:1c:9e:ac:0b:a3:
                    b5:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                7F:D3:99:F3:A0:47:0E:31:00:56:56:22:8E:B7:CC:9E:DD:CA:01:8A
            X509v3 Subject Key Identifier: 
                5A:2E:0E:71:DA:FF:B0:E2:32:71:97:4D:81:D4:1B:4D:0D:89:3D:2D
            X509v3 Subject Alternative Name: 
                DNS:bwtcmall.com, DNS:www.bwtcmall.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            Authority Information Access: 
                OCSP - URI:http://statuse.digitalcertvalidation.com
                CA Issuers - URI:http://cacerts.digitalcertvalidation.com/TrustAsiaTLSRSACA.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Feb 17 07:57:44.615 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:49:5F:9B:2A:F6:DB:B9:6E:9F:C6:84:B0:
                                50:3D:39:2A:E8:22:34:E6:9F:AB:C2:8F:9A:E9:BF:FC:
                                75:B0:6B:A7:02:21:00:EC:23:DC:B5:13:C4:17:C1:39:
                                B1:18:2C:12:60:7A:4B:CD:A7:5F:52:6E:48:7C:D6:43:
                                AD:27:95:79:0C:37:10
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 73:20:22:0F:08:16:8A:F9:F3:C4:A6:8B:0A:B2:6A:9A:
                                4A:00:EE:F5:77:85:8A:08:4D:05:00:D4:A5:42:44:59
                    Timestamp : Feb 17 07:57:44.625 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:27:B3:07:8A:E5:59:D7:55:92:BA:8C:B7:
                                26:24:EC:B2:1F:9A:10:50:FC:31:AC:5D:B8:EC:06:D3:
                                69:5B:1C:D0:02:20:34:4D:A8:F8:BC:C1:70:4C:60:E9:
                                87:D2:F5:B5:F2:5F:36:FC:70:FA:DA:C8:EA:32:2A:E5:
                                CC:FC:C4:AA:DC:CB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Feb 17 07:57:44.632 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:4E:78:7E:92:B0:9F:01:CA:85:AC:AB:84:
                                A2:6E:AF:44:7D:68:2B:A8:7F:15:36:9A:E5:CC:A6:D6:
                                88:46:CB:B6:02:20:41:0A:2D:EB:26:80:3D:76:BC:1F:
                                95:52:4C:4E:94:85:18:81:6F:B6:C2:0C:67:80:21:B6:
                                A4:0A:81:7E:37:41
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        63:7b:19:d2:d5:97:d3:72:ea:4a:ed:18:d6:28:f9:a4:54:de:
        5c:f8:ff:c3:74:b1:6b:40:05:13:f3:53:4c:df:bb:4b:bc:e5:
        63:67:80:90:bb:27:8e:0a:99:64:fe:39:5d:65:a2:3f:2e:eb:
        8a:40:8d:c6:a7:24:a0:92:95:56:90:83:f8:16:a5:89:74:d9:
        24:f0:8e:09:23:fa:a6:16:7b:e7:ea:5f:42:d0:22:8d:32:3b:
        d8:a1:48:a4:e1:ed:8f:fb:06:fb:41:e6:e5:93:7a:c8:be:17:
        eb:fc:7e:5d:32:c3:49:38:41:f2:91:4a:4f:54:7f:64:8f:c3:
        b6:85:73:c8:ed:fa:8c:15:43:ff:11:98:a4:cc:c6:f2:fd:ab:
        94:1a:c4:e4:6d:fc:91:4d:a9:68:ac:aa:da:a6:b0:b8:c1:ec:
        b0:60:01:66:20:35:fd:4e:9b:c9:23:61:67:37:1d:e3:bf:12:
        e8:91:56:a3:1b:c5:83:e3:4d:ed:b8:f9:d2:36:b4:1f:a0:2d:
        38:7c:ae:62:b4:61:13:64:da:9c:6a:66:5a:e8:ff:43:7f:9d:
        c5:81:b7:7d:51:d8:01:45:5c:84:7b:68:4a:3a:1b:c7:49:f2:
        ce:19:9f:40:9f:ac:5a:fe:03:d4:d8:31:22:d6:88:ce:ae:b3:
        d7:75:70:0f

Vulnerabilities

101.32.35.188

Last Seen: 2025-04-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

21 / tcp

-967975350 | 2025-04-04T23:34:21.400532

Pure-FTPd

80 / tcp

-1030761333 | 2025-03-29T06:56:14.377651

Hashes

nginx

443 / tcp

1151870696 | 2025-04-01T08:58:52.968758

Hashes

nginx

Products

Pricing

Contact Us

101.32.35.188

Last Seen: 2025-04-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

21 / tcp -967975350 | 2025-04-04T23:34:21.400532

Pure-FTPd

80 / tcp -1030761333 | 2025-03-29T06:56:14.377651

Hashes

nginx

443 / tcp 1151870696 | 2025-04-01T08:58:52.968758

Hashes

nginx

Products

Pricing

Contact Us

Vulnerabilities

21 / tcp

-967975350 | 2025-04-04T23:34:21.400532

80 / tcp

-1030761333 | 2025-03-29T06:56:14.377651

443 / tcp

1151870696 | 2025-04-01T08:58:52.968758