160.16.136.81

Regular View Raw Data Timeline
Last Seen: 2025-02-19
Tags:
starttls

GeneralInformation

Hostnames secure-cms.net
ssw15.secure-cms.net
soaishinkumi.co.jp
www.soaishinkumi.co.jp
Domains secure-cms.net soaishinkumi.co.jp 
Country Japan
City Tokyo
Organization SAKURA Internet Inc.
ISP SAKURA Internet Inc.
ASN AS9370

WebTechnologies

JavaScript libraries
Photo galleries
Tag managers
UI frameworks
Video players
Widgets

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024
CVE-2024-6484
6.4A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting (XSS) attacks. The issue is present in the carousel component, where the data-slide and data-slide-to attributes can be exploited through the href attribute of an <a> tag due to inadequate sanitization. This vulnerability could potentially enable attackers to execute arbitrary JavaScript within the victim's browser.
2020
CVE-2020-11023
6.9In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022
6.9In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
2019
CVE-2019-11358
6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2019-8331
6.1In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.
2018
CVE-2018-20677
6.1In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.
CVE-2018-20676
6.1In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.
CVE-2018-14042
6.1In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.
CVE-2018-14040
6.1In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.
2016
CVE-2016-10735
6.1In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.
2015
CVE-2015-9251
6.1jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

21 / tcp
-1152009489 | 2025-02-06T14:02:47.566895
80 / tcp
414287239 | 2025-02-19T17:46:57.601822
443 / tcp
687425274 | 2025-02-19T14:26:07.679697



Contact Us

Shodan ® - All rights reserved