GeneralInformation

Hostnames	ec2-15-236-118-120.eu-west-3.compute.amazonaws.com app.nouveaudpe.com
Domains	amazonaws.com nouveaudpe.com
Cloud Provider	Amazon
Cloud Region	eu-west-3
Cloud Service	EC2
Country	France
City	Paris
Organization	Amazon Data Services France
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

JavaScript libraries

jQuery3.6.0

jQuery UI1.13.1

jQuery Migrate3.3.2

DataTables

UI frameworks

Bootstrap3

SecurityContact

Contact	admin@pandopia.com
Expires	2032-06-22T09:45:00.000Z
Preferred-Languages	fr,en
Canonical	https://app.pandopia.com/.well-known/security.txt

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

22 80 443

22 / tcp

-1087607179 | 2025-04-14T15:48:22.346379

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.11
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBAAnbiVqqWPwR3eO8XNXW1TN
FfrqGawc8jURLzL+L8VX4VjMehXbXGKMpoNQEfw8CSZD2tpr4UC25+/sv14PrXE=
Fingerprint: f5:69:0a:8f:41:cf:fb:28:0f:91:74:cd:de:f4:fe:d6

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

-1861665710 | 2025-04-15T15:54:39.817154

Hashes

hash

-1938694221

http.dom_hash

-17634777

http.favicon.hash

-2084212887

http.html_hash

-1861665710

http.robots_hash

347215051

http.securitytxt_hash

1645549799

http.server_hash

-675031582

Pandopia - gestion énergétique de patrimoine

HTTP/1.1 200 OK
Date: Tue, 15 Apr 2025 15:54:39 GMT
Server: Apache/2.4.52 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-FRAME-OPTIONS: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TATi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Security-Policy: default-src 'self' cdn.pandopia.com s3.eu-west-1.amazonaws.com s3.eu-west-3.amazonaws.com ;img-src 'self' cdn.pandopia.com data: s3.eu-west-3.amazonaws.com s3.eu-west-1.amazonaws.com chart.apis.google.com pub-de5b3344659d4a75a7244bc21fc13ae8.r2.dev pub-21a36e125ca8479280812efc58146d64.r2.dev thumb.tableaucdn.com tableaurobot.fr tableaurobot.com euc-premiumprint.s3.eu-central-1.amazonaws.com www.facebook.com ;style-src 'self' 'unsafe-inline' cdn.pandopia.com fonts.googleapis.com cdnjs.cloudflare.com ;script-src 'self' cdn.pandopia.com cdn.mxpnl.com ajax.googleapis.com cdnjs.cloudflare.com connect.facebook.net www.facebook.com ;font-src data: * ;connect-src 'self' api-js.mixpanel.com cdn.pandopia.com s3.eu-west-3.amazonaws.com s3.eu-west-1.amazonaws.com graph.facebook.com ;worker-src 'self' ;manifest-src 'self' app.pandopia.com tableaurobot.fr tableaurobot.com ;frame-src 'self' cdn.pandopia.com s3.eu-west-3.amazonaws.com ;
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Feature-Policy: geolocation 'none'; camera 'none'; microphone 'none'
Vary: Accept-Encoding
Set-Cookie: lbpandopiaprod=ou3najq43qglp13birktflahhn; expires=Wed, 16 Apr 2025 01:54:39 GMT; Max-Age=36000; path=/; secure;HttpOnly;Secure
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-type, Authorization, X-Requested-With
Access-Control-Allow-Methods: PUT, GET, POST, DELETE, OPTIONS
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

Vulnerabilities

9 13 11 2

443 / tcp

1371646446 | 2025-04-11T12:33:53.058185

Hashes

hash

1953957371

http.dom_hash

-17634777

http.favicon.hash

-2084212887

http.html_hash

1371646446

http.robots_hash

347215051

http.securitytxt_hash

1645549799

http.server_hash

-675031582

Pandopia - gestion énergétique de patrimoine

HTTP/1.1 200 OK
Date: Fri, 11 Apr 2025 12:33:52 GMT
Server: Apache/2.4.52 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-FRAME-OPTIONS: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TATi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Security-Policy: default-src 'self' cdn.pandopia.com s3.eu-west-1.amazonaws.com s3.eu-west-3.amazonaws.com ;img-src 'self' cdn.pandopia.com data: s3.eu-west-3.amazonaws.com s3.eu-west-1.amazonaws.com chart.apis.google.com pub-de5b3344659d4a75a7244bc21fc13ae8.r2.dev pub-21a36e125ca8479280812efc58146d64.r2.dev thumb.tableaucdn.com tableaurobot.fr tableaurobot.com euc-premiumprint.s3.eu-central-1.amazonaws.com www.facebook.com ;style-src 'self' 'unsafe-inline' cdn.pandopia.com fonts.googleapis.com cdnjs.cloudflare.com ;script-src 'self' cdn.pandopia.com cdn.mxpnl.com ajax.googleapis.com cdnjs.cloudflare.com connect.facebook.net www.facebook.com ;font-src data: * ;connect-src 'self' api-js.mixpanel.com cdn.pandopia.com s3.eu-west-3.amazonaws.com s3.eu-west-1.amazonaws.com graph.facebook.com ;worker-src 'self' ;manifest-src 'self' app.pandopia.com tableaurobot.fr tableaurobot.com ;frame-src 'self' cdn.pandopia.com s3.eu-west-3.amazonaws.com ;
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Feature-Policy: geolocation 'none'; camera 'none'; microphone 'none'
Vary: Accept-Encoding
Set-Cookie: lbpandopiaprod=4gneasfbbqdm204pth7p3ac6v5; expires=Fri, 11 Apr 2025 22:33:52 GMT; Max-Age=36000; path=/; secure;HttpOnly;Secure
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-type, Authorization, X-Requested-With
Access-Control-Allow-Methods: PUT, GET, POST, DELETE, OPTIONS
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:c3:85:66:03:5f:1e:d7:ee:6b:3a:60:44:09:a3:7d:82:df
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Mar 12 06:13:57 2025 GMT
            Not After : Jun 10 06:13:56 2025 GMT
        Subject: CN=app.nouveaudpe.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dc:fc:32:59:6a:0f:59:73:ca:5e:96:66:d8:fc:
                    9c:7f:c7:e9:0e:72:cc:d6:88:a3:e3:d8:c4:a5:fe:
                    34:e5:f2:f3:91:2a:53:ef:70:c0:b5:26:af:88:2f:
                    08:80:5a:56:56:ca:bc:8a:4b:1b:36:12:dd:86:ae:
                    b0:23:97:dc:c5:4e:49:15:4e:f9:1b:96:5b:6d:3c:
                    08:f8:cb:2d:89:69:e9:57:b6:20:9f:b9:48:b3:7d:
                    63:d2:bb:94:76:e4:63:a8:6b:57:6a:b7:a2:73:98:
                    c2:86:49:a0:b5:fb:1e:82:84:fe:5f:87:55:8b:0f:
                    55:92:e2:35:3c:8d:6e:89:74:91:6a:01:68:27:ef:
                    83:9b:b2:16:cb:35:de:3f:8c:7e:4d:ed:d2:6b:dc:
                    e5:49:33:f6:7c:b6:7c:69:a1:f9:df:00:50:30:fc:
                    03:d9:a6:6c:2c:f5:8c:c1:91:3f:c3:81:32:5d:d9:
                    c9:32:9e:b6:25:34:6c:00:34:f3:aa:ab:ca:f5:36:
                    1f:53:c8:d3:bd:44:33:3b:1f:ed:aa:2f:a7:b1:1f:
                    c3:04:63:65:ae:b8:d8:f0:29:fc:09:b9:ba:ae:71:
                    bf:90:06:a1:10:20:47:9d:f7:32:e5:2c:53:2a:3b:
                    44:32:5d:f4:0c:14:2c:40:75:9b:a3:38:65:ea:26:
                    fc:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                15:33:99:85:6B:76:28:35:74:38:A6:9B:09:F8:94:CF:DD:13:5E:16
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:app.nouveaudpe.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Mar 12 07:12:27.843 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:0A:48:35:00:B7:6A:0F:D3:58:38:BA:39:
                                AA:5E:94:43:A1:85:BF:8A:CC:6E:28:A3:CF:1D:C4:72:
                                F4:BE:72:63:02:21:00:EB:ED:65:9A:94:6D:2A:30:41:
                                01:22:0E:EF:2F:24:2B:67:10:50:90:3A:D0:E8:B2:74:
                                85:60:0A:F2:44:92:79
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Mar 12 07:12:27.826 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:8B:49:BB:ED:F1:AD:27:5D:E8:DB:B7:
                                C9:6E:4A:3D:75:73:D2:45:1B:7E:7D:DE:23:D5:D6:0C:
                                63:8A:1C:BD:AF:02:21:00:A1:BC:B4:22:8C:30:DE:6F:
                                1A:BA:62:CE:1E:02:D5:5E:8F:58:3A:61:03:A5:89:E7:
                                89:32:AD:3F:B8:EB:6A:C6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        18:56:87:79:57:6a:46:fe:9b:95:52:b4:32:89:63:98:d2:64:
        18:ce:f7:f2:f9:cf:49:84:cc:cd:88:d9:a9:60:c3:31:87:6f:
        a3:04:d2:66:4c:d7:ff:68:62:e2:a6:b8:b5:d0:41:c6:58:3f:
        0f:e2:67:d9:7c:5a:82:2d:ce:15:ad:d7:99:1d:bc:d8:5d:86:
        61:92:f3:46:c8:42:52:98:35:06:de:4a:0f:11:a3:74:94:79:
        cd:5d:c1:fb:31:3e:3f:fb:3d:a2:af:35:10:2d:cf:9e:39:a0:
        39:14:6f:f5:89:5a:40:28:de:db:67:88:64:28:e0:5c:08:0b:
        17:25:14:e5:cd:f9:7a:e0:42:09:10:00:d0:17:25:13:86:e8:
        75:ca:36:e8:6b:88:f6:58:b0:cb:64:c7:37:94:b1:46:17:d1:
        51:6a:d4:18:43:c9:36:82:37:37:76:b3:84:c4:08:4c:0e:8f:
        4b:ba:f8:74:ab:89:99:9b:95:76:dc:a0:b4:d1:64:e3:3e:55:
        ee:6c:48:b7:86:9c:d4:f2:a7:bb:ad:3e:60:40:aa:18:7d:ff:
        89:71:fd:5c:7c:82:2a:88:ae:85:70:fa:0d:c1:4c:d2:7e:49:
        cf:3f:1a:c8:08:ea:ba:60:bc:d5:8e:20:21:7d:1f:2e:83:da:
        46:4b:bf:94

Vulnerabilities

9 13 11 2

15.236.118.120

Last Seen: 2025-04-15

Tags:

GeneralInformation

WebTechnologies

SecurityContact

Vulnerabilities

OpenPorts

22 / tcp

-1087607179 | 2025-04-14T15:48:22.346379

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp

-1861665710 | 2025-04-15T15:54:39.817154

Hashes

Apache httpd2.4.52

443 / tcp

1371646446 | 2025-04-11T12:33:53.058185

Hashes

Apache httpd2.4.52

Products

Pricing

Contact Us

15.236.118.120

Last Seen: 2025-04-15

Tags:

GeneralInformation

WebTechnologies

SecurityContact

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp -1087607179 | 2025-04-14T15:48:22.346379

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp -1861665710 | 2025-04-15T15:54:39.817154

Hashes

Apache httpd2.4.52

443 / tcp 1371646446 | 2025-04-11T12:33:53.058185

Hashes

Apache httpd2.4.52

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

-1087607179 | 2025-04-14T15:48:22.346379

80 / tcp

-1861665710 | 2025-04-15T15:54:39.817154

443 / tcp

1371646446 | 2025-04-11T12:33:53.058185