GeneralInformation

Hostnames	staging.web.etoges.box4b.net dbadmin.staging.web.etoges.box4b.net chateau-etoges.com www.chateau-etoges.com etoges.com www.etoges.com 41-142-172-163.instances.scw.cloud
Domains	box4b.net chateau-etoges.com etoges.com scw.cloud
Country	France
City	Paris
Organization	Scaleway Dedibox - Paris, France
ISP	SCALEWAY S.A.S.
ASN	AS12876

WebTechnologies

Analytics

Site Kit1.148.0

Google Analytics

Blogs

WordPress

CMS

WordPress

Databases

MySQL

JavaScript libraries

jQuery

Programming languages

PHP

SEO

Yoast SEO24.6

Tag managers

Google Tag Manager

Translation

WPML

WordPress plugins

Site Kit1.148.0

Yoast SEO24.6

WPML

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2025(1)

CVE-2025-26466

5.9A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to an uncontrolled increase in memory consumption on the server side. Consequently, the server may become unavailable, resulting in a denial of service attack.

2024(3)

CVE-2024-11236

9.8In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, uncontrolled long string inputs to ldap_escape() function on 32-bit systems can cause an integer overflow, resulting in an out-of-bounds write.

CVE-2024-11234

4.8In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, when using streams with configured proxy and "request_fulluri" option, the URI is not properly sanitized which can lead to HTTP request smuggling and allow the attacker to use the proxy to perform arbitrary HTTP requests originating from the server, thus potentially gaining access to resources not normally available to the external user.

CVE-2024-11233

4.8In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, due to an error in convert.quoted-printable-decode filter certain data can lead to buffer overread by one byte, which can in certain circumstances lead to crashes or disclose content of other memory areas.

2013(1)

CVE-2013-2220

7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.

2007(1)

CVE-2007-3205

5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

22 80 443 2222 9095

22 / tcp

-1604024319 | 2025-03-15T07:10:08.353354

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.12
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDUMQyk7a/9/yN6OWhxbfFzM72wTAcWqLZmrazA276X8YdL
PO8s0nAe8VJlV8hvuAVAuw2hri0eJSah+21+xQauuDOsC3/fC5O+CxOid2FHH5S4X0i1SRXOkMQ5
+Aauw7k+k2bchpFTiln7sDMflmvl9nSN5zJmF1/94hOV0A6FFZLwLnsPbziK9Kv5LEGb+waEtWLC
u+fId+TcCAKuqOygQIMTnPLet1TlEdhnKmiq///nq5HrI35DuXpuGMiESJdtWSaifOv32pn+t8gb
ZYdPVweyCHoj+8LUxlfMZDr7gDEosCswXISCA78TDY49ApgfYMZqZFhfUZ3uBD6UatHq3L5BNUD4
rHAq6hOVxMp5JV3T2PoIKCjuR98IDX3MGKFUZhx0UBvdW4GT742hy6DJ1WmfvSIE8klkXBZwSTXc
+gFNyRC6lg7lrYJeQ4lS8+H0LZ2ENBfffy4V3RA38/Wm2GAIQV8qb8Pstyv8Yz08blDeE8gxz6aG
panXp+xCelU=
Fingerprint: 3d:2e:d9:67:b8:78:f5:11:38:90:cf:e4:42:1c:86:21

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

0 | 2025-03-12T20:36:10.187326

Hashes

hash

1703930713

http.dom_hash

http.html_hash

http.robots_hash

650016131

http.server_hash

-1340961475

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 12 Mar 2025 20:36:09 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
X-Powered-By: PHP/8.3.10
Expires: Wed, 12 Mar 2025 21:36:09 GMT
Cache-Control: max-age=3600
X-Redirect-By: WordPress
Location: https://www.chateau-etoges.com/

Vulnerabilities

1 1 3

443 / tcp

-1722444176 | 2025-03-19T11:59:25.301045

Hashes

hash

1154483094

http.dom_hash

-1548725079

http.favicon.hash

2041821736

http.html_hash

-1722444176

http.robots_hash

650016131

http.server_hash

-1340961475

Château d'Étoges - Hôtel, Restaurant, Bistrot et Spa en Champagne

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 19 Mar 2025 11:59:24 GMT
Content-Type: text/html; charset=UTF-8
Connection: close
X-Powered-By: PHP/8.3.10
Link: <https://www.chateau-etoges.com/wp-json/>; rel="https://api.w.org/"
Link: <https://www.chateau-etoges.com/wp-json/wp/v2/pages/17>; rel="alternate"; title="JSON"; type="application/json"
Link: <https://www.chateau-etoges.com/>; rel=shortlink

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:76:14:a2:41:cc:6d:fe:f6:74:2e:d1:98:a5:05:a9:f7:c7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Jan 21 20:49:43 2025 GMT
            Not After : Apr 21 20:49:42 2025 GMT
        Subject: CN=chateau-etoges.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cf:0a:fe:cc:ec:1c:c1:6f:f4:04:87:53:a6:c1:
                    2a:a8:d3:33:ca:33:7c:55:da:b5:5d:b4:a9:96:c2:
                    22:22:e8:37:b6:9f:82:99:87:00:51:8a:66:45:9c:
                    83:c2:d1:be:7e:ba:74:fc:b3:9b:99:43:51:d8:27:
                    bd:9e:11:cb:a5:5c:8f:0a:ca:b2:70:27:07:f2:1b:
                    36:f9:7b:46:68:e9:46:5a:2e:b7:99:cb:a1:f8:61:
                    a3:64:5c:93:b8:ad:50:0b:ca:97:da:f7:37:a3:90:
                    40:c4:0e:6d:99:c8:09:8e:64:0c:ba:d6:83:7f:e3:
                    fd:93:7c:7b:67:0d:d1:b3:59:e4:5c:56:c8:a3:68:
                    6e:d5:ce:e5:0c:ac:72:10:f1:fc:6a:e3:85:1a:ae:
                    67:21:e0:13:ff:0c:8d:2d:9c:dd:21:5e:3c:2b:10:
                    3b:41:ec:57:ac:88:f0:c1:15:70:5e:83:da:b7:7f:
                    a1:29:0a:cf:d3:d0:d3:17:ff:ae:8d:24:5f:50:9f:
                    35:cf:ef:b2:2c:90:b7:b8:39:9c:df:5c:c4:76:b0:
                    a3:47:82:ea:41:36:70:f4:0e:1f:70:96:55:d3:5d:
                    f9:80:2f:1c:27:8d:77:28:8a:5a:44:31:89:5f:e7:
                    85:25:6c:c9:32:ff:76:8e:c6:e8:46:f6:0f:51:03:
                    d9:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                D6:2C:5A:CF:17:68:F3:A1:93:0F:F4:79:3F:AB:B7:27:16:D0:7C:CF
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:chateau-etoges.com, DNS:dbadmin.staging.web.etoges.box4b.net, DNS:etoges.com, DNS:staging.web.etoges.box4b.net, DNS:www.chateau-etoges.com, DNS:www.etoges.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Jan 21 21:48:14.056 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FA:07:ED:3B:BA:D9:F4:67:E9:27:A3:
                                C1:0A:53:75:B4:A5:1C:BE:58:F7:24:5C:AA:DC:AC:22:
                                B9:22:63:46:D6:02:21:00:C7:B3:D8:B4:2C:B7:B7:18:
                                8F:02:AD:BF:39:B6:4D:A4:34:C4:A2:99:F4:15:3A:F4:
                                7B:71:24:1D:2E:34:F2:B6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Jan 21 21:48:14.039 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:08:E4:E5:AD:16:88:67:56:2F:E0:D6:E3:
                                1F:A3:71:BA:E9:FE:08:E8:26:27:83:F5:16:9A:7E:22:
                                D8:E5:4A:1F:02:21:00:B0:28:09:07:FC:6B:05:31:7B:
                                3F:AF:F6:9F:30:68:2D:C2:58:B6:B9:C2:61:ED:59:41:
                                47:7B:6E:66:22:E6:CE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        73:9e:28:b1:d8:f9:2c:ff:df:6c:a7:72:05:ad:07:3f:1e:6e:
        02:fa:8a:8b:70:27:86:f2:01:a0:a0:8f:30:23:ff:e9:e6:74:
        a3:e9:6d:3c:b7:63:8e:29:14:0b:61:48:12:ab:c5:88:d5:62:
        54:e7:60:a2:14:62:e8:31:51:3c:eb:0a:24:17:4f:9e:0c:7e:
        5a:71:8e:68:1b:54:81:11:f0:51:ee:b8:da:cc:7d:81:34:d9:
        37:73:59:3a:d9:f6:14:2c:f8:9d:3e:7c:35:97:b1:fe:4b:4c:
        62:08:16:ab:c1:34:e1:92:2f:3f:4b:d5:c8:55:cd:4d:a5:e6:
        2d:b4:63:3f:76:1e:53:2b:ff:49:07:3a:d0:0a:c6:62:a9:df:
        80:8b:4c:24:15:16:a7:56:35:10:36:43:c9:c3:07:aa:70:04:
        f6:8b:c5:3c:2d:47:6e:d6:53:4f:ae:9d:ff:96:73:1d:9e:38:
        d8:27:81:d2:9d:2d:1c:25:44:2e:ab:f3:96:dd:c7:6a:90:d4:
        d1:c6:80:53:8b:ba:1c:01:da:c7:a8:2f:d1:a8:78:39:8a:d1:
        8f:f4:b4:52:f7:a8:f4:f8:02:2a:a4:a8:eb:ed:27:7d:97:3b:
        64:10:97:d5:36:81:96:9d:02:7c:88:36:ac:f9:11:01:b7:7e:
        02:47:aa:78

Vulnerabilities

1 1 3

2222 / tcp

131630009 | 2025-03-10T18:29:27.827299

SSH-2.0-OpenSSH_9.7
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQCdOVzXnF8pePvuPPCpJaEhZIsF3DmtybRU6RzyeeTDfWAK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Fingerprint: 6c:cb:fc:54:fe:51:df:41:4e:35:3e:b7:fa:4e:c4:e6

Kex Algorithms:
	sntrup761x25519-sha512@openssh.com
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	ext-info-s
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

Vulnerabilities

9095 / tcp

60384001 | 2025-03-14T18:43:04.486172

HTTP/1.1 404 Not Found
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
Date: Fri, 14 Mar 2025 18:43:04 GMT
Connection: keep-alive
Keep-Alive: timeout=5

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

163.172.142.41

Last Seen: 2025-03-19

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

22 / tcp

-1604024319 | 2025-03-15T07:10:08.353354

OpenSSH8.2p1 Ubuntu 4ubuntu0.12

80 / tcp

0 | 2025-03-12T20:36:10.187326

Hashes

nginx

443 / tcp

-1722444176 | 2025-03-19T11:59:25.301045

Hashes

nginx

2222 / tcp

131630009 | 2025-03-10T18:29:27.827299

OpenSSH9.7

9095 / tcp

60384001 | 2025-03-14T18:43:04.486172

Products

Pricing

Contact Us

163.172.142.41

Last Seen: 2025-03-19

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Port 443 Port 2222 Latest CVSS

OpenPorts

22 / tcp -1604024319 | 2025-03-15T07:10:08.353354

OpenSSH8.2p1 Ubuntu 4ubuntu0.12

80 / tcp 0 | 2025-03-12T20:36:10.187326

Hashes

nginx

443 / tcp -1722444176 | 2025-03-19T11:59:25.301045

Hashes

nginx

2222 / tcp 131630009 | 2025-03-10T18:29:27.827299

OpenSSH9.7

9095 / tcp 60384001 | 2025-03-14T18:43:04.486172

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

-1604024319 | 2025-03-15T07:10:08.353354

80 / tcp

0 | 2025-03-12T20:36:10.187326

443 / tcp

-1722444176 | 2025-03-19T11:59:25.301045

2222 / tcp

131630009 | 2025-03-10T18:29:27.827299

9095 / tcp

60384001 | 2025-03-14T18:43:04.486172