GeneralInformation

Hostnames	17cag.xyz www.17cag.xyz
Domains	17cag.xyz
Country	Hong Kong
City	Tseung Kwan O
Organization	Tcloudnet, Inc
ISP	Tcloudnet
ASN	AS399077

WebTechnologies

JavaScript libraries

jQuery2.2.4

Clipboard.js

SweetAlert2

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2020(2)

CVE-2020-11023

6.9In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-11022

6.9In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

2019(1)

CVE-2019-11358

6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

2015(1)

CVE-2015-9251

6.1jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

22 80 443 8888 8899

80 / tcp

-257653694 | 2025-03-12T02:06:17.771490

Hashes

hash

2072736380

http.dom_hash

2132529536

http.html_hash

-257653694

http.server_hash

2094538629

http.title_hash

2128152527

410

HTTP/1.1 410 Gone
Server: NgxFence
Date: Wed, 12 Mar 2025 02:06:17 GMT
Content-Type: text/html
Content-Length: 4305
Connection: close

443 / tcp

1326801314 | 2025-03-16T10:39:19.343012

SSL Error: TLSV1_UNRECOGNIZED_NAME

8888 / tcp

1895160654 | 2025-03-09T08:03:14.661359

Hashes

hash

-498725243

http.dom_hash

1239617585

http.html_hash

1895160654

http.server_hash

2094538629

http.title_hash

1522695184

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: NgxFence
Date: Sun, 09 Mar 2025 08:03:14 GMT
Content-Type: text/html
Content-Length: 165
Connection: close
Location: https://156.251.50.131:8888/

8899 / tcp

622320197 | 2025-03-15T15:17:08.550906

Hashes

hash

1273215702

http.dom_hash

1242106051

http.favicon.hash

1893691474

http.html_hash

622320197

http.robots_hash

1714206274

http.server_hash

2094538629

http.title_hash

-694442446

17c

HTTP/1.1 200 OK
Server: NgxFence
Date: Sat, 15 Mar 2025 15:17:07 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Cache: DYNAMIC
Via: 1.1 eeb650cd52fd8e9d2546f8e04de572e2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: HKG1-P1
X-Amz-Cf-Id: 27R9AOOAYj0haKCP2AsXaWFfVyedUD2Z8-G6hBLTIv1yKxfUOvosgA==
Age: 173
Vary: Origin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:af:ad:83:69:1c:7c:9a:8e:cd:b9:ba:fb:72:36:c2:48:29
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Nov 18 11:17:57 2024 GMT
            Not After : Feb 16 11:17:56 2025 GMT
        Subject: CN=17cag.xyz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cb:c6:3c:3c:ef:b1:71:37:fc:54:6b:3d:bb:9b:
                    41:71:dd:cf:69:ea:1c:36:aa:0c:f4:e0:57:2a:e7:
                    a1:e9:0c:2a:2e:e7:1b:e4:b5:cc:79:65:61:ae:46:
                    78:89:39:9e:48:1e:b0:81:ea:9f:a7:0a:2e:3e:4a:
                    fe:d4:45:71:df:91:14:da:e6:53:8b:ce:ed:e2:a4:
                    f8:cd:a2:97:ea:a1:c4:84:f4:ea:a8:c0:eb:9f:f6:
                    f0:b3:fd:3d:ff:1f:d2:cd:8a:74:c4:7d:2d:43:54:
                    28:cb:0e:70:2e:60:88:76:fc:94:be:f9:08:51:5e:
                    95:21:ec:85:63:4f:bd:c4:42:d4:0a:d5:f3:0e:18:
                    3e:03:92:fb:26:39:18:17:8e:0f:37:b8:df:91:bb:
                    1e:dc:96:e8:e0:7c:70:ab:8a:3a:6b:49:f8:2e:e0:
                    92:49:7a:e0:52:1e:35:15:81:b1:c5:ee:07:b4:c2:
                    e7:57:81:89:48:c6:4f:06:57:ae:6e:77:6d:26:50:
                    20:8a:8a:e5:d2:87:92:3d:b9:1c:a8:32:b5:e5:d1:
                    4b:e4:bf:b7:75:da:d2:08:a6:d7:ec:79:55:27:f7:
                    0a:dc:db:47:6b:64:08:2a:be:22:33:4b:aa:d9:99:
                    34:59:e0:22:12:54:08:d0:b9:dd:ad:66:be:f1:41:
                    77:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                7D:B5:58:99:B2:20:5F:91:28:78:01:AC:EA:DF:2C:12:C4:6B:05:2D
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:17cag.xyz, DNS:www.17cag.xyz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Nov 18 12:16:27.351 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FD:C9:60:86:B7:31:00:1B:50:35:06:
                                E2:42:33:E3:28:D9:EB:E2:3D:B7:2A:2D:A0:A0:57:EF:
                                10:27:9F:ED:22:02:21:00:FC:FB:A3:D2:E7:EC:8B:9B:
                                51:C6:58:43:D5:26:3E:A0:60:D3:C5:36:DF:07:96:9D:
                                95:2E:1B:B2:82:90:56:09
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Nov 18 12:16:27.376 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:36:A2:00:82:37:DB:B4:1B:EA:59:68:16:
                                59:38:E0:A1:F3:F8:04:F3:39:57:5A:AE:F6:D1:69:0D:
                                E9:1D:4C:4E:02:21:00:BD:08:3C:F7:C1:C2:C8:A1:54:
                                60:D1:16:83:22:BA:69:E6:6B:E1:9D:F8:A5:A1:24:DD:
                                CD:29:E7:AE:82:0A:6D
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        25:c2:f3:69:c7:9d:eb:ba:92:1b:2f:3f:4f:a5:34:a2:73:fe:
        ea:cd:5a:54:78:25:5e:3d:26:f3:84:14:9f:61:b2:b8:40:68:
        b9:2a:75:72:e8:91:51:90:3c:82:83:fc:f0:35:15:92:f7:21:
        42:6d:f7:1e:ad:8b:cd:50:d0:44:89:f6:4b:c6:e9:31:73:96:
        fe:96:1e:e1:5e:42:db:81:08:9f:0d:c1:08:ed:b6:c9:8f:73:
        f7:45:d9:ff:39:38:25:6b:6d:5a:bc:d2:1d:6b:46:53:ba:89:
        68:72:db:2b:a8:51:1a:38:b7:c9:d6:29:ee:2d:49:71:7c:36:
        8e:74:f5:14:a6:05:83:c2:a2:bd:00:d9:79:2b:bf:95:60:0a:
        ea:f7:9d:ac:8e:ff:ce:95:35:d1:f9:c3:23:9b:6c:14:52:54:
        30:03:ec:22:e1:b6:8d:54:d7:fb:b9:3a:be:5b:3b:10:53:0e:
        a6:4c:db:06:4d:3e:e8:c8:1b:c0:97:7f:14:36:e5:99:c9:54:
        f5:46:17:1a:e2:13:b8:81:a5:1e:db:e8:e6:94:cd:13:6a:56:
        c3:0a:5d:34:b9:36:fd:7a:1f:79:c0:79:2e:80:eb:9b:55:0c:
        80:6f:5b:e4:d0:4e:2d:5b:4a:29:87:2a:16:31:38:19:73:1b:
        8d:97:43:cd

Vulnerabilities

156.251.50.131

Last Seen: 2025-03-16

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

-257653694 | 2025-03-12T02:06:17.771490

Hashes

443 / tcp

1326801314 | 2025-03-16T10:39:19.343012

8888 / tcp

1895160654 | 2025-03-09T08:03:14.661359

Hashes

8899 / tcp

622320197 | 2025-03-15T15:17:08.550906

Hashes

Products

Pricing

Contact Us

156.251.50.131

Last Seen: 2025-03-16

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 8899 Latest CVSS

OpenPorts

80 / tcp -257653694 | 2025-03-12T02:06:17.771490

Hashes

443 / tcp 1326801314 | 2025-03-16T10:39:19.343012

8888 / tcp 1895160654 | 2025-03-09T08:03:14.661359

Hashes

8899 / tcp 622320197 | 2025-03-15T15:17:08.550906

Hashes

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

-257653694 | 2025-03-12T02:06:17.771490

443 / tcp

1326801314 | 2025-03-16T10:39:19.343012

8888 / tcp

1895160654 | 2025-03-09T08:03:14.661359

8899 / tcp

622320197 | 2025-03-15T15:17:08.550906