GeneralInformation

Hostnames	001yin.com www.001yin.com
Domains	001yin.com
Country	Hong Kong
City	Harmony Garden
Organization	HONG KONG Megalayer Technology Co.,Limited
ISP	Zillion Network Inc.
ASN	AS54801

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024(3)

CVE-2024-8305

6.5prepareUnique index may cause secondaries to crash due to incorrect enforcement of index constraints on secondaries, where in extreme cases may cause multiple secondaries crashing leading to no primaries. This issue affects MongoDB Server v6.0 versions prior to 6.0.17, MongoDB Server v7.0 versions prior to 7.0.13 and MongoDB Server v7.3 versions prior to 7.3.4

CVE-2024-7553

7.3Incorrect validation of files loaded from a local untrusted directory may allow local privilege escalation if the underlying operating systems is Windows. This may result in the application executing arbitrary behaviour determined by the contents of untrusted files. This issue affects MongoDB Server v5.0 versions prior to 5.0.27, MongoDB Server v6.0 versions prior to 6.0.16, MongoDB Server v7.0 versions prior to 7.0.12, MongoDB Server v7.3 versions prior 7.3.3, MongoDB C Driver versions prior to 1.26.2 and MongoDB PHP Driver versions prior to 1.18.1. Required Configuration: Only environments with Windows as the underlying operating system is affected by this issue

CVE-2024-6384

5.3"Hot" backup files may be downloaded by underprivileged users, if they are capable of acquiring a unique backup identifier. This issue affects MongoDB Enterprise Server v6.0 versions prior to 6.0.16, MongoDB Enterprise Server v7.0 versions prior to 7.0.11 and MongoDB Enterprise Server v7.3 versions prior to 7.3.3

2014(1)

CVE-2014-8180

5.5MongoDB on Red Hat Satellite 6 allows local users to bypass authentication by logging in with an empty password and delete information which can cause a Denial of Service.

OpenPorts

21 80 443 27017

21 / tcp

-434791828 | 2025-03-21T12:50:41.181243

220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 2 of 50 allowed.
220-Local time is now 20:50. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.
421 Unable to read the indexed puredb file (or old format detected) - Try pure-pw mkdb
211-Extensions supported:
 UTF8
 EPRT
 IDLE
 MDTM
 SIZE
 MFMT
 REST STREAM
 MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
 MLSD
 PRET
 AUTH TLS
 PBSZ
 PROT
 TVFS
 ESTA
 PASV
 EPSV
 SPSV
 ESTP
211 End.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            81:7d:7b:83:bf:90:b1:40
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=CN, ST=Guangdong, L=Dongguan, O=BT-PANEL, OU=BT, CN=154.39.199.250/emailAddress=admin@bt.cn
        Validity
            Not Before: Oct 17 04:05:43 2024 GMT
            Not After : Jul 17 04:05:43 2034 GMT
        Subject: C=CN, ST=Guangdong, L=Dongguan, O=BT-PANEL, OU=BT, CN=154.39.199.250/emailAddress=admin@bt.cn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:bd:3a:52:af:ff:c3:13:2f:de:34:8b:6b:ee:08:
                    84:af:3b:de:d0:4e:ff:2e:02:ef:30:7f:29:ac:e1:
                    f8:1d:25:cc:e2:72:1c:99:72:92:68:fb:ee:05:c3:
                    a2:41:ec:3e:9e:8b:d2:96:bc:cc:d7:42:14:7d:a9:
                    f1:75:d4:64:56:96:bc:ad:c2:71:4f:4c:cc:16:0a:
                    1b:c4:0e:35:c4:fe:c5:1a:0c:63:66:ad:2e:6c:b7:
                    61:cb:f1:58:a5:e3:ed:b6:03:d9:e1:44:27:54:77:
                    95:bc:f4:09:4d:94:dc:20:bc:fe:f9:5f:85:08:ca:
                    50:60:c0:16:d4:35:10:b1:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                82:FE:EF:E8:88:EB:E9:1E:B7:04:5D:3C:E2:C6:86:20:82:3E:93:53
            X509v3 Authority Key Identifier: 
                82:FE:EF:E8:88:EB:E9:1E:B7:04:5D:3C:E2:C6:86:20:82:3E:93:53
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        93:82:ae:34:8e:d2:1d:58:00:ad:8f:fc:5a:53:81:16:6f:f7:
        ae:30:4e:a5:29:96:1b:91:20:d4:6e:29:30:f6:86:3e:a3:6b:
        2d:0b:98:f4:fc:ac:52:43:af:ba:c9:54:f8:ef:2c:cc:23:f0:
        07:c9:e0:31:cb:57:93:40:a0:79:92:6e:4b:70:9c:0b:8f:1b:
        74:f4:11:40:ba:9b:f2:6d:f5:ef:a1:e0:6d:10:eb:54:02:0a:
        d8:fd:19:95:29:68:62:11:7e:ce:54:15:72:53:78:4a:32:64:
        d9:2a:7e:a7:5e:4b:c9:39:96:80:ac:95:7f:99:5b:40:72:8f:
        0c:94

80 / tcp

-85749389 | 2025-03-19T23:05:41.129391

Hashes

hash

1723567173

http.dom_hash

1239617585

http.html_hash

-85749389

http.server_hash

-1340961475

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 19 Mar 2025 23:05:40 GMT
Content-Type: text/html
Content-Length: 138
Last-Modified: Sun, 10 Nov 2024 01:45:51 GMT
Connection: keep-alive
ETag: "6730104f-8a"
Accept-Ranges: bytes

443 / tcp

430762814 | 2025-03-18T17:15:31.601711

Hashes

hash

-1444434977

http.dom_hash

1977421391

http.favicon.hash

-614262549

http.html_hash

430762814

http.robots_hash

1330548294

http.server_hash

-1340961475

http.sitemap_hash

-1334072444

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 18 Mar 2025 17:15:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:d3:e1:9f:30:5c:b7:59:a7:67:ca:62:d3:76:bf:0f:28:0b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Mar  7 18:09:08 2025 GMT
            Not After : Jun  5 18:09:07 2025 GMT
        Subject: CN=001yin.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:f4:9e:6d:d4:6c:56:02:96:8e:23:5b:65:0f:96:
                    12:11:dd:bb:70:d5:72:69:4c:3a:4a:d7:ca:4c:41:
                    8d:84:8b:a0:3d:f4:8e:54:99:2a:a2:40:e8:ab:c6:
                    67:d8:00:94:f5:be:0b:ee:a7:cb:85:1f:5d:10:00:
                    27:d6:f3:ad:b1:cb:70:73:88:a5:0e:1c:ed:eb:e5:
                    83:94:1b:71:1a:86:c2:52:c9:25:af:1a:d0:bf:9a:
                    7a:d3:00:50:bd:00:c7:05:94:49:fc:98:b9:27:65:
                    aa:32:21:f2:d9:91:d8:56:c0:aa:31:d5:e7:69:23:
                    94:91:a7:6a:66:83:26:a5:11:c5:80:24:4c:f5:e4:
                    7a:cf:63:fa:9d:36:2a:7f:9e:47:b1:7b:8c:b3:1b:
                    22:07:86:03:8a:5f:01:17:49:a2:45:3a:ea:a5:96:
                    33:e6:b2:1c:23:4e:cd:ef:90:b5:dc:92:dd:c7:a4:
                    fb:dd:42:2b:f4:b1:ae:22:85:07:bd:3c:cb:32:2f:
                    03:4a:d2:7b:72:e9:7f:94:4a:f7:ed:87:50:d6:84:
                    6f:94:b4:fc:03:79:35:58:a9:3d:7e:84:22:66:80:
                    05:2a:84:b2:f0:0b:d9:88:81:d7:f7:ea:56:3f:5a:
                    b9:72:e8:fd:c6:12:5b:71:07:dd:fb:d1:9c:74:56:
                    a2:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                37:A1:C8:F3:74:2F:9C:9B:EA:E3:12:F2:42:7E:AE:3C:3C:77:35:BB
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:001yin.com, DNS:www.001yin.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Mar  7 19:07:38.126 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FF:35:5F:06:56:E4:5F:E8:20:34:89:
                                3D:7F:1D:26:81:8C:25:7E:E5:A9:D3:A0:A6:15:1C:10:
                                53:DE:93:54:E3:02:21:00:E2:73:06:C4:B9:52:80:93:
                                8C:6B:BC:02:A2:61:68:86:86:85:5B:F5:D8:3D:AC:89:
                                35:BE:CA:3E:31:0C:84:37
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Mar  7 19:07:38.160 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7C:A9:DB:DB:1B:86:A2:B4:89:FD:B0:C4:
                                03:B5:FE:CC:43:18:9E:C3:8E:73:4C:69:7E:6C:9B:93:
                                D9:7F:6D:05:02:20:33:71:FB:41:5E:7C:35:F5:90:19:
                                1E:61:60:C5:21:0E:2A:D2:93:3C:78:CA:5F:1B:64:3D:
                                0E:68:C3:14:52:F8
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2a:fd:9a:48:52:eb:9c:69:5a:a3:95:c3:03:7f:88:a3:cf:a4:
        a1:04:7d:97:8f:d4:f9:89:d5:6a:c2:27:5d:7b:d3:7c:f2:ba:
        a9:c6:a3:03:32:90:f7:5c:fd:e8:5f:10:8f:2c:57:0a:cb:6b:
        d4:ae:55:31:b1:73:ea:52:93:5c:57:80:c5:d6:4a:9e:76:c8:
        dc:65:c9:0d:e9:08:d4:13:bc:59:aa:5d:49:56:8b:fd:35:23:
        7c:bd:f9:8c:b5:bb:80:e4:cd:db:32:94:a9:09:4a:b5:80:39:
        29:5d:79:52:d1:4f:55:29:2a:40:a0:31:dd:bc:02:b6:44:0e:
        3f:38:1f:9b:a2:28:1e:80:a8:8e:5d:6b:61:20:70:f5:14:ad:
        02:d4:80:7b:44:78:93:87:e3:ce:3f:57:b4:96:11:78:ad:04:
        aa:e3:a3:31:c7:81:82:e3:f5:57:e2:64:62:43:e7:8a:49:a3:
        8c:aa:e8:2b:ee:55:d7:1f:d0:1c:dd:77:2a:e6:2b:f6:2f:99:
        c0:e6:9c:06:4e:ab:32:e2:36:af:e1:9a:08:62:c5:12:88:c2:
        f4:81:8b:82:bd:e9:b7:cc:a6:21:81:05:73:be:8f:e6:1d:15:
        60:13:46:d7:53:bd:08:e6:ae:cd:a9:56:96:0a:71:d1:3d:e2:
        cd:d9:9e:83

27017 / tcp

-228368960 | 2025-03-25T11:20:47.569031

MongoDB Server Information
Authentication partially enabled
{
    "storageEngines": [
        "devnull", 
        "wiredTiger"
    ], 
    "buildEnvironment": {
        "distarch": "x86_64", 
        "cc": "/opt/mongodbtoolchain/v4/bin/gcc: gcc (GCC) 11.3.0", 
        "cppdefines": "SAFEINT_USE_INTRINSICS 0 PCRE2_STATIC NDEBUG _XOPEN_SOURCE 700 _GNU_SOURCE _FORTIFY_SOURCE 2 ABSL_FORCE_ALIGNED_ACCESS BOOST_ENABLE_ASSERT_DEBUG_HANDLER BOOST_FILESYSTEM_NO_CXX20_ATOMIC_REF BOOST_LOG_NO_SHORTHAND_NAMES BOOST_LOG_USE_NATIVE_SYSLOG BOOST_LOG_WITHOUT_THREAD_ATTR BOOST_MATH_NO_LONG_DOUBLE_MATH_FUNCTIONS BOOST_SYSTEM_NO_DEPRECATED BOOST_THREAD_USES_DATETIME BOOST_THREAD_VERSION 5", 
        "cxxflags": "-Woverloaded-virtual -Wpessimizing-move -Wno-maybe-uninitialized -fsized-deallocation -Wno-deprecated -std=c++20", 
        "linkflags": "-Wl,--fatal-warnings -B/opt/mongodbtoolchain/v4/bin -gdwarf-5 -pthread -Wl,-z,now -fuse-ld=lld -fstack-protector-strong -gdwarf64 -Wl,--build-id -Wl,--hash-style=gnu -Wl,-z,noexecstack -Wl,--warn-execstack -Wl,-z,relro -Wl,--compress-debug-sections=none -Wl,-z,origin -Wl,--enable-new-dtags", 
        "ccflags": "-Werror -include mongo/platform/basic.h -ffp-contract=off -fasynchronous-unwind-tables -g2 -Wall -Wsign-compare -Wno-unknown-pragmas -Winvalid-pch -gdwarf-5 -fno-omit-frame-pointer -fno-strict-aliasing -O2 -march=sandybridge -mtune=generic -mprefer-vector-width=128 -Wno-unused-local-typedefs -Wno-unused-function -Wno-deprecated-declarations -Wno-unused-const-variable -Wno-unused-but-set-variable -Wno-missing-braces -fstack-protector-strong -gdwarf64 -Wa,--nocompress-debug-sections -fno-builtin-memcmp -Wimplicit-fallthrough=5", 
        "target_arch": "x86_64", 
        "distmod": "rhel70", 
        "target_os": "linux", 
        "cxx": "/opt/mongodbtoolchain/v4/bin/g++: g++ (GCC) 11.3.0"
    }, 
    "ok": 1.0, 
    "sysInfo": "deprecated", 
    "modules": [], 
    "openssl": {
        "compiled": "OpenSSL 1.0.1e-fips 11 Feb 2013", 
        "running": "OpenSSL 1.0.1e-fips 11 Feb 2013"
    }, 
    "javascriptEngine": "mozjs", 
    "version": "7.0.8", 
    "allocator": "tcmalloc", 
    "versionArray": [
        7, 
        0, 
        8, 
        0
    ], 
    "debug": false, 
    "maxBsonObjectSize": 16777216, 
    "bits": 64, 
    "gitVersion": "c5d33e55ba38d98e2f48765ec4e55338d67a4a64"
}

Vulnerabilities

1 3

154.55.248.237

Last Seen: 2025-03-25

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

21 / tcp

-434791828 | 2025-03-21T12:50:41.181243

Pure-FTPd

80 / tcp

-85749389 | 2025-03-19T23:05:41.129391

Hashes

nginx

443 / tcp

430762814 | 2025-03-18T17:15:31.601711

Hashes

nginx

27017 / tcp

-228368960 | 2025-03-25T11:20:47.569031

MongoDB7.0.8

Products

Pricing

Contact Us

154.55.248.237

Last Seen: 2025-03-25

Tags:

GeneralInformation

Vulnerabilities All ports Port 27017 Latest CVSS

OpenPorts

21 / tcp -434791828 | 2025-03-21T12:50:41.181243

Pure-FTPd

80 / tcp -85749389 | 2025-03-19T23:05:41.129391

Hashes

nginx

443 / tcp 430762814 | 2025-03-18T17:15:31.601711

Hashes

nginx

27017 / tcp -228368960 | 2025-03-25T11:20:47.569031

MongoDB7.0.8

Products

Pricing

Contact Us

Vulnerabilities

21 / tcp

-434791828 | 2025-03-21T12:50:41.181243

80 / tcp

-85749389 | 2025-03-19T23:05:41.129391

443 / tcp

430762814 | 2025-03-18T17:15:31.601711

27017 / tcp

-228368960 | 2025-03-25T11:20:47.569031