GeneralInformation

Hostnames	haglundlaw.com
Domains	haglundlaw.com
Country	United States
City	San Francisco
Organization	Cloudflare, Inc.
ISP	Cloudflare, Inc.
ASN	AS13335

WebTechnologies

JavaScript libraries

jQuery1.3.2

Video players

YouTube

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2020(3)

CVE-2020-11023

6.9In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-11022

6.9In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-7656

6.1jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.

2019(1)

CVE-2019-11358

6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

2015(1)

CVE-2015-9251

6.1jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

2012(1)

CVE-2012-6708

6.1jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.

2011(1)

CVE-2011-4969

4.3Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.

OpenPorts

80 443 2053 2082 2083 2086 2087 8080 8443 8880

80 / tcp

-2121592942 | 2025-04-04T00:13:32.862938

Hashes

hash

1001326836

http.dom_hash

141679194

http.html_hash

-2121592942

http.server_hash

958142897

http.title_hash

-1039101684

Direct IP access not allowed | Cloudflare

HTTP/1.1 403 Forbidden
Date: Fri, 04 Apr 2025 00:13:32 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 92ac99b8598f4608-DFW

443 / tcp

675207853 | 2025-04-04T17:07:01.620219

Hashes

hash

1267053194

http.dom_hash

1467227392

http.html_hash

675207853

http.server_hash

958142897

http.title_hash

-2048515216

Representation in School Law | Immigration Law | Family Law | Haglund Law

HTTP/1.1 200 OK
Date: Fri, 04 Apr 2025 17:07:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Fri, 04 Apr 2025 17:07:01 GMT
Pragma: no-cache
Vary: Accept-Encoding
Server: cloudflare
Alt-Svc: h3=":443"; ma=86400
X-Turbo-Charged-By: LiteSpeed
Cf-Cache-Status: DYNAMIC
Set-Cookie: exp_last_visit=1428426421; HttpOnly; Secure; Path=/; Max-Age=31536000; Expires=Sat, 04 Apr 2026 17:07:01 GMT
Set-Cookie: exp_last_activity=1743786421; HttpOnly; Secure; Path=/; Max-Age=31536000; Expires=Sat, 04 Apr 2026 17:07:01 GMT
Set-Cookie: exp_tracker=%5B%22index%22%5D; HttpOnly; Secure; Path=/
Set-Cookie: exp_csrf_token=deleted; HttpOnly; Secure; Path=/; Max-Age=0; Expires=Thu, 01 Jan 1970 00:00:01 GMT
Set-Cookie: exp_csrf_token=34a575c778ac04756a73bb911872e2ba1cf45fd5; HttpOnly; Secure; Path=/; Max-Age=7200; Expires=Fri, 04 Apr 2025 19:07:01 GMT
CF-RAY: 92b2664bae88643b-SJC

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:8b:aa:cc:24:e3:1a:d7:11:fa:21:58:a8:04:d8:29
        Signature Algorithm: ecdsa-with-SHA256
        Issuer: C=US, O=Google Trust Services, CN=WE1
        Validity
            Not Before: Apr  3 15:24:14 2025 GMT
            Not After : Jul  2 16:21:39 2025 GMT
        Subject: CN=haglundlaw.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:f6:e8:a1:ae:84:52:92:93:b7:97:31:1a:64:f3:
                    75:79:e3:3f:e8:8e:01:87:ef:9f:29:35:3e:9b:a2:
                    80:02:e5:6c:70:50:56:e8:23:28:e4:57:78:fb:1d:
                    68:e6:78:57:02:be:90:33:c5:4f:5a:c8:fd:53:cd:
                    02:1a:a0:a4:08
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                80:AF:6A:7B:A4:78:B0:17:07:C3:21:05:D5:2E:EE:04:4F:20:73:F3
            X509v3 Authority Key Identifier: 
                90:77:92:35:67:C4:FF:A8:CC:A9:E6:7B:D9:80:79:7B:CC:93:F9:38
            Authority Information Access: 
                OCSP - URI:http://o.pki.goog/s/we1/Z4s
                CA Issuers - URI:http://i.pki.goog/we1.crt
            X509v3 Subject Alternative Name: 
                DNS:haglundlaw.com, DNS:*.haglundlaw.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://c.pki.goog/we1/QoqFz1z0bWA.crl
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
                                F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
                    Timestamp : Apr  3 16:24:15.305 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:13:1E:B3:CC:18:89:C1:95:7E:29:E9:F0:
                                EF:02:B4:F1:B9:BA:F7:94:00:52:94:AF:74:71:76:18:
                                79:A8:AF:C0:02:20:5B:2C:74:38:CE:E3:E9:26:D3:4A:
                                77:5A:12:58:C0:B6:18:3C:7F:FD:F7:8C:F5:10:9D:54:
                                77:E0:B1:86:D8:12
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Apr  3 16:24:15.987 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:12:77:03:37:14:32:35:31:07:C7:86:B1:
                                76:C9:CB:B4:E4:A3:FC:56:7F:F3:8E:9E:EF:02:32:F1:
                                4F:28:FD:A3:02:21:00:98:C3:BF:46:6E:F2:6C:82:C6:
                                27:18:63:75:5C:72:6C:26:C7:69:25:E3:12:0B:84:B0:
                                80:13:6D:8E:9B:9F:9B
    Signature Algorithm: ecdsa-with-SHA256
    Signature Value:
        30:45:02:21:00:da:26:4b:c1:f5:15:89:2a:8e:94:7a:ad:6f:
        ef:2d:d7:2d:4f:1a:16:70:93:ff:17:d5:ec:99:8a:56:5a:b7:
        af:02:20:7d:a6:32:30:3a:c1:96:00:55:8e:d2:06:27:50:a5:
        bb:b4:2c:d5:ec:3f:3d:93:47:30:4b:04:e7:46:d0:f0:ac

Vulnerabilities

2053 / tcp

141477257 | 2025-03-15T10:21:06.119007

Hashes

hash

-1372812309

http.dom_hash

1678420308

http.html_hash

141477257

http.server_hash

958142897

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Sat, 15 Mar 2025 10:21:23 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

2082 / tcp

1510577829 | 2025-04-04T19:38:59.135734

Hashes

hash

1994802280

http.dom_hash

141679194

http.html_hash

1510577829

http.server_hash

958142897

http.title_hash

-1039101684

Direct IP access not allowed | Cloudflare

HTTP/1.1 403 Forbidden
Date: Fri, 04 Apr 2025 19:38:59 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 92b344e78b4d6377-LHR

2083 / tcp

141477257 | 2025-04-03T13:34:20.980347

Hashes

hash

3434973

http.dom_hash

1678420308

http.html_hash

141477257

http.server_hash

958142897

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 03 Apr 2025 13:34:20 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

2086 / tcp

-1129821287 | 2025-04-04T02:38:30.713194

Hashes

hash

1996278397

http.dom_hash

141679194

http.html_hash

-1129821287

http.server_hash

958142897

http.title_hash

-1039101684

Direct IP access not allowed | Cloudflare

HTTP/1.1 403 Forbidden
Date: Fri, 04 Apr 2025 02:38:30 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 92ad6e11688ff0b6-DFW

2087 / tcp

141477257 | 2025-04-04T16:24:05.608211

Hashes

hash

-1298578717

http.dom_hash

1678420308

http.html_hash

141477257

http.server_hash

958142897

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Fri, 04 Apr 2025 16:24:05 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

8080 / tcp

-442866204 | 2025-04-03T18:03:30.737730

Hashes

hash

-642904224

http.dom_hash

141679194

http.html_hash

-442866204

http.server_hash

958142897

http.title_hash

-1039101684

Direct IP access not allowed | Cloudflare

HTTP/1.1 403 Forbidden
Date: Thu, 03 Apr 2025 18:03:30 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5894
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 92aa7bad1b3addab-DFW

8443 / tcp

141477257 | 2025-04-04T11:35:55.720122

Hashes

hash

117410729

http.dom_hash

1678420308

http.html_hash

141477257

http.server_hash

958142897

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Fri, 04 Apr 2025 11:35:55 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

8880 / tcp

1764034558 | 2025-04-04T16:09:31.418621

HTTP/1.1 403 Forbidden
Date: Fri, 04 Apr 2025 16:09:31 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 92b212135a84ab5d-YYZ

error code: 1003

172.67.134.89

Last Seen: 2025-04-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

-2121592942 | 2025-04-04T00:13:32.862938

Hashes

CloudFlare

443 / tcp

675207853 | 2025-04-04T17:07:01.620219

Hashes

2053 / tcp

141477257 | 2025-03-15T10:21:06.119007

Hashes

2082 / tcp

1510577829 | 2025-04-04T19:38:59.135734

Hashes

2083 / tcp

141477257 | 2025-04-03T13:34:20.980347

Hashes

2086 / tcp

-1129821287 | 2025-04-04T02:38:30.713194

Hashes

2087 / tcp

141477257 | 2025-04-04T16:24:05.608211

Hashes

8080 / tcp

-442866204 | 2025-04-03T18:03:30.737730

Hashes

CloudFlare

8443 / tcp

141477257 | 2025-04-04T11:35:55.720122

Hashes

CloudFlare

8880 / tcp

1764034558 | 2025-04-04T16:09:31.418621

Products

Pricing

Contact Us

172.67.134.89

Last Seen: 2025-04-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

80 / tcp -2121592942 | 2025-04-04T00:13:32.862938

Hashes

CloudFlare

443 / tcp 675207853 | 2025-04-04T17:07:01.620219

Hashes

2053 / tcp 141477257 | 2025-03-15T10:21:06.119007

Hashes

2082 / tcp 1510577829 | 2025-04-04T19:38:59.135734

Hashes

2083 / tcp 141477257 | 2025-04-03T13:34:20.980347

Hashes

2086 / tcp -1129821287 | 2025-04-04T02:38:30.713194

Hashes

2087 / tcp 141477257 | 2025-04-04T16:24:05.608211

Hashes

8080 / tcp -442866204 | 2025-04-03T18:03:30.737730

Hashes

CloudFlare

8443 / tcp 141477257 | 2025-04-04T11:35:55.720122

Hashes

CloudFlare

8880 / tcp 1764034558 | 2025-04-04T16:09:31.418621

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

-2121592942 | 2025-04-04T00:13:32.862938

443 / tcp

675207853 | 2025-04-04T17:07:01.620219

2053 / tcp

141477257 | 2025-03-15T10:21:06.119007

2082 / tcp

1510577829 | 2025-04-04T19:38:59.135734

2083 / tcp

141477257 | 2025-04-03T13:34:20.980347

2086 / tcp

-1129821287 | 2025-04-04T02:38:30.713194

2087 / tcp

141477257 | 2025-04-04T16:24:05.608211

8080 / tcp

-442866204 | 2025-04-03T18:03:30.737730

8443 / tcp

141477257 | 2025-04-04T11:35:55.720122

8880 / tcp

1764034558 | 2025-04-04T16:09:31.418621