GeneralInformation

Hostnames	cdpgroupltd.com
Domains	cdpgroupltd.com
Country	China
City	Shanghai
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

WebTechnologies

JavaScript frameworks

WOW

JavaScript graphics

WOW

JavaScript libraries

jQuery3.6.0

Slick

Swiper

UI frameworks

Bootstrap3.3.5

Web frameworks

WOW

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024(1)

CVE-2024-6484

6.4A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting (XSS) attacks. The issue is present in the carousel component, where the data-slide and data-slide-to attributes can be exploited through the href attribute of an <a> tag due to inadequate sanitization. This vulnerability could potentially enable attackers to execute arbitrary JavaScript within the victim's browser.

2019(1)

CVE-2019-8331

6.1In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.

2018(4)

CVE-2018-20677

6.1In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.

CVE-2018-20676

6.1In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.

CVE-2018-14042

6.1In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.

CVE-2018-14040

6.1In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.

2016(1)

CVE-2016-10735

6.1In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.

OpenPorts

80 443

80 / tcp

-2100514759 | 2025-02-21T00:44:04.899907

Hashes

hash

-849424950

http.dom_hash

1239617585

http.html_hash

-2100514759

http.server_hash

-1340961475

http.title_hash

1522695184

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 21 Feb 2025 00:44:04 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://139.196.196.152/
Strict-Transport-Security: max-age=31536000

443 / tcp

-178484341 | 2025-03-20T11:06:54.196177

Hashes

hash

-235200486

http.dom_hash

-448174206

http.favicon.hash

1523153352

http.html_hash

-178484341

http.robots_hash

-1371291299

http.server_hash

-1340961475

CDP集团-全场景化HCM SaaS+整合人力资源服务提供商-CDP集团

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 20 Mar 2025 11:06:53 GMT
Content-Type: text/html
Content-Length: 118780
Last-Modified: Fri, 14 Feb 2025 10:23:56 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "67af19bc-1cffc"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:de:74:2a:8f:e5:be:c9:4f:c3:a7:d9:04:0d:19:7d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, CN=GeoTrust RSA CN CA G2
        Validity
            Not Before: Aug 22 00:00:00 2022 GMT
            Not After : Sep 21 23:59:59 2023 GMT
        Subject: C=CN, ST=\xE4\xB8\x8A\xE6\xB5\xB7\xE5\xB8\x82, O=\xE8\x96\xAA\xE5\xBE\x97\xE4\xBB\x98\xE4\xBF\xA1\xE6\x81\xAF\xE6\x8A\x80\xE6\x9C\xAF\xEF\xBC\x88\xE4\xB8\x8A\xE6\xB5\xB7\xEF\xBC\x89\xE6\x9C\x89\xE9\x99\x90\xE5\x85\xAC\xE5\x8F\xB8, CN=*.cdpgroupltd.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a2:c0:43:05:c6:b8:4a:29:b1:89:d0:81:c9:47:
                    bd:be:67:c8:2a:aa:e4:36:63:79:63:f6:ae:25:90:
                    81:b8:30:a8:2e:01:1e:67:48:6b:10:77:57:91:ac:
                    31:2e:af:69:87:d3:94:b9:9d:fe:24:90:55:8a:d4:
                    28:a1:33:a1:de:0c:fb:1b:a3:3d:0e:b8:6a:d3:db:
                    bb:2c:f1:8b:d7:93:9a:ba:27:e8:3e:92:63:c4:f1:
                    1c:49:92:d0:ca:f3:96:73:31:7b:40:bb:91:80:ee:
                    3e:80:e2:0e:68:31:95:69:0b:bc:56:56:af:c8:2e:
                    ef:9d:ca:67:4c:b7:49:36:bd:de:fb:98:6b:de:c4:
                    22:ad:b3:0a:a0:19:40:ff:7d:dc:10:a8:3b:1d:b1:
                    1a:47:36:3d:6f:83:77:bb:56:e6:d5:48:7e:58:fe:
                    4a:58:42:24:f8:47:03:5c:75:14:a7:5b:37:fc:d1:
                    a2:69:fe:44:29:8b:26:16:3d:17:48:b3:1d:eb:d5:
                    d5:96:00:3f:fd:34:bc:d3:f5:06:ea:f1:2a:cc:c0:
                    d2:71:a5:27:41:91:9e:19:68:25:ed:b6:94:d2:99:
                    d6:e0:33:0e:a4:5c:61:58:ba:ef:be:7f:ce:df:49:
                    4a:5d:93:47:33:4e:96:3e:73:d3:7c:39:72:c9:42:
                    0c:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                24:6F:91:3F:89:87:87:0E:32:C2:40:18:DF:C5:4C:EB:4F:C8:49:32
            X509v3 Subject Key Identifier: 
                7C:32:29:98:A0:81:A8:99:8D:89:71:6E:0E:B4:F5:7B:56:EA:14:68
            X509v3 Subject Alternative Name: 
                DNS:*.cdpgroupltd.com, DNS:cdpgroupltd.com
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.digicert.cn/GeoTrustRSACNCAG2.crl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.2
                  CPS: http://www.digicert.com/CPS
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.cn
                CA Issuers - URI:http://cacerts.digicert.cn/GeoTrustRSACNCAG2.crt
            X509v3 Basic Constraints: 
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
                                03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
                    Timestamp : Aug 22 08:28:54.381 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B6:9C:7C:24:4E:2E:EF:F9:90:29:18:
                                9E:78:B6:02:91:F8:0B:A4:3B:9F:08:C9:25:6C:AA:54:
                                D3:72:32:02:1B:02:21:00:98:D4:3D:2A:2B:5F:A4:5F:
                                BC:C6:1D:A4:73:C8:4D:09:0B:15:03:33:93:B8:B1:53:
                                D9:4D:42:53:38:F6:0B:18
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 35:CF:19:1B:BF:B1:6C:57:BF:0F:AD:4C:6D:42:CB:BB:
                                B6:27:20:26:51:EA:3F:E1:2A:EF:A8:03:C3:3B:D6:4C
                    Timestamp : Aug 22 08:28:54.234 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:9D:D9:10:A4:96:58:3F:1B:0A:14:AC:
                                42:90:7F:95:BC:39:10:B0:38:42:32:9D:CA:50:56:7D:
                                E0:3A:DE:74:23:02:21:00:FA:24:4A:42:8E:94:24:85:
                                01:41:A0:C2:35:EC:1A:39:C9:00:65:86:0E:E8:07:5B:
                                B8:F9:18:85:9D:9F:A7:6F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : B3:73:77:07:E1:84:50:F8:63:86:D6:05:A9:DC:11:09:
                                4A:79:2D:B1:67:0C:0B:87:DC:F0:03:0E:79:36:A5:9A
                    Timestamp : Aug 22 08:28:54.310 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:76:EE:0F:A3:A2:6C:08:5C:EA:B8:71:F8:
                                78:38:D8:7F:20:6A:7D:AA:A7:A9:D2:BF:33:31:23:04:
                                65:AE:B9:01:02:21:00:E1:FD:05:06:38:D0:5F:6A:55:
                                6F:04:AB:0A:73:98:9C:CD:FB:01:10:74:B8:E8:A3:E2:
                                87:0E:B7:6D:5F:16:31
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5a:ef:f2:7d:e7:66:a5:9d:4d:60:fe:e5:2d:fa:d6:c9:64:8c:
        f6:eb:b3:1e:d6:26:01:15:17:ec:38:8b:a9:1d:36:ea:ee:5e:
        33:a0:fd:ba:d1:91:ca:3e:26:c8:d9:0d:7b:f1:9f:42:1c:1b:
        ba:07:0e:33:c6:37:e9:e4:5e:20:3e:42:97:0f:0e:df:c7:2b:
        f3:61:41:60:75:b1:58:df:31:eb:93:7c:5c:88:c9:d4:f4:93:
        06:b0:5b:5b:a8:35:00:17:ad:a9:df:1a:73:e3:af:f0:47:68:
        ba:03:2d:90:24:2b:2c:37:bc:3d:ef:63:5f:8b:5d:23:14:0a:
        a5:e6:71:58:cc:c9:1a:dd:a3:ce:79:e7:46:a1:74:5e:b6:15:
        39:19:76:aa:68:20:d1:ae:18:ae:64:84:99:d1:ad:4b:47:96:
        50:9a:56:2d:50:18:df:90:bd:62:39:be:42:70:8d:4f:e0:58:
        ad:63:54:6f:5a:a6:6b:7f:eb:e2:b3:71:29:6a:30:1f:70:0e:
        a8:3f:78:71:7f:36:fe:7e:c8:17:f5:e4:c3:bb:67:46:d5:19:
        f1:a1:04:f7:e9:f6:fe:0a:28:c5:fd:ab:16:af:a7:08:24:a8:
        66:27:f5:43:3b:51:8b:58:ea:62:0a:88:27:e1:54:0a:8e:cb:
        43:45:45:2a

Vulnerabilities

139.196.196.152

Last Seen: 2025-03-20

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

-2100514759 | 2025-02-21T00:44:04.899907

Hashes

nginx

443 / tcp

-178484341 | 2025-03-20T11:06:54.196177

Hashes

nginx

Products

Pricing

Contact Us

139.196.196.152

Last Seen: 2025-03-20

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

80 / tcp -2100514759 | 2025-02-21T00:44:04.899907

Hashes

nginx

443 / tcp -178484341 | 2025-03-20T11:06:54.196177

Hashes

nginx

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

-2100514759 | 2025-02-21T00:44:04.899907

443 / tcp

-178484341 | 2025-03-20T11:06:54.196177