GeneralInformation

Hostnames	aulalexit.cat
Domains	aulalexit.cat
Country	United States
City	San Francisco
Organization	Cloudflare, Inc.
ISP	Cloudflare, Inc.
ASN	AS13335

WebTechnologies

Miscellaneous

HTTP/3

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024(2)

CVE-2024-25117

6.8php-svg-lib is a scalable vector graphics (SVG) file parsing/rendering library. Prior to version 0.5.2, php-svg-lib fails to validate that font-family doesn't contain a PHAR url, which might leads to RCE on PHP < 8.0, and doesn't validate if external references are allowed. This might leads to bypass of restrictions or RCE on projects that are using it, if they do not strictly revalidate the fontName that is passed by php-svg-lib. The `Style::fromAttributes(`), or the `Style::parseCssStyle()` should check the content of the `font-family` and prevents it to use a PHAR url, to avoid passing an invalid and dangerous `fontName` value to other libraries. The same check as done in the `Style::fromStyleSheets` might be reused. Libraries using this library as a dependency might be vulnerable to some bypass of restrictions, or even remote code execution, if they do not double check the value of the `fontName` that is passed by php-svg-lib. Version 0.5.2 contains a fix for this issue.

CVE-2024-5458

5.3In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, due to a code logic error, filtering functions such as filter_var when validating URLs (FILTER_VALIDATE_URL) for certain types of URLs the function will result in invalid user information (username + password part of URLs) being treated as valid user information. This may lead to the downstream code accepting invalid URLs as valid and parsing them incorrectly.

2022(1)

CVE-2022-4900

6.2A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.

2013(1)

CVE-2013-2220

7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.

2007(1)

CVE-2007-3205

5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

80 443 2082 2083 2086 2087 2096 8080 8443 8880

80 / tcp

0 | 2025-03-20T11:01:28.482713

Hashes

hash

962106706

http.dom_hash

http.html_hash

http.server_hash

958142897

HTTP/1.1 301 Moved Permanently
Date: Thu, 20 Mar 2025 11:01:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
Location: https://crosswordanswers911.net
cf-cache-status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=56fPSN7HHTc0H4KgiHWBzEwqgL5eQc74LOJqt4NCVfWSwHMlfoESQwgInVLtw3E5%2BvI%2BGvU5DiKnblbdp9fZCrH1uEsl361%2BfFU03P67YbDR2bXPTVbVc3dlvlgl1Q7PQU8PlQ1r1FhwlCEs2L7JGjRo0wY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 9234b630eda6ebeb-SJC
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1087&min_rtt=1087&rtt_var=543&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=273&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"

Vulnerabilities

1 4

443 / tcp

14727403 | 2025-03-21T02:18:46.166923

Hashes

hash

-1660228054

http.dom_hash

471906108

http.html_hash

14727403

http.server_hash

958142897

http.title_hash

1522695184

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Date: Fri, 21 Mar 2025 02:18:45 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
Location: http://www.aulalexit.com/ca/
Vary: Accept-Encoding
Cf-Cache-Status: DYNAMIC
CF-RAY: 9239f5e31ae930b1-SEA
alt-svc: h3=":443"; ma=86400

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            69:5b:87:32:4b:88:51:e9:0d:95:bd:02:2d:12:37:67
        Signature Algorithm: ecdsa-with-SHA256
        Issuer: C=US, O=Google Trust Services, CN=WE1
        Validity
            Not Before: Feb  3 07:10:03 2025 GMT
            Not After : May  4 08:08:45 2025 GMT
        Subject: CN=aulalexit.cat
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:d6:c1:21:6f:61:36:2b:96:7d:68:ac:3d:ac:7c:
                    1d:47:9c:53:1e:9b:21:11:10:2d:0c:18:c5:ff:12:
                    eb:76:4d:a2:76:7f:4b:35:cf:41:88:b4:30:9c:2f:
                    e7:c0:e4:e5:ee:60:1d:0c:fb:ac:c5:74:f4:66:93:
                    09:fd:a6:6a:25
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                6E:A2:6D:84:46:16:0F:5A:28:0B:18:4E:2F:50:DC:DA:A8:2F:7D:2A
            X509v3 Authority Key Identifier: 
                90:77:92:35:67:C4:FF:A8:CC:A9:E6:7B:D9:80:79:7B:CC:93:F9:38
            Authority Information Access: 
                OCSP - URI:http://o.pki.goog/s/we1/aVs
                CA Issuers - URI:http://i.pki.goog/we1.crt
            X509v3 Subject Alternative Name: 
                DNS:aulalexit.cat, DNS:*.aulalexit.cat
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://c.pki.goog/we1/2DqfS24kcdI.crl
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb  3 08:10:04.140 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A2:FA:DF:2C:04:22:DE:A1:83:CB:51:
                                51:E4:F8:EE:8E:52:46:D5:23:84:3F:B3:49:F6:5D:94:
                                9F:F6:66:34:9E:02:20:1E:A1:2C:B5:A6:C9:FA:69:EF:
                                82:92:D4:D4:F4:D6:FE:D8:6B:C6:8C:F3:66:3A:17:CF:
                                92:57:1F:07:CF:13:1A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb  3 08:10:04.178 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:76:EA:CE:0E:88:E6:78:12:03:7D:14:44:
                                50:04:49:37:1F:91:F9:EF:C6:45:E1:FF:B8:46:D7:B4:
                                E2:38:3A:EC:02:21:00:AE:15:EA:2D:39:69:E0:CD:B8:
                                43:02:8E:C3:EF:17:C2:9E:7B:7A:D1:27:4C:F4:5A:86:
                                35:C7:B6:3E:B0:6B:9E
    Signature Algorithm: ecdsa-with-SHA256
    Signature Value:
        30:45:02:21:00:92:fb:aa:50:8c:ab:f0:77:b8:e5:1c:7a:8c:
        a7:7e:02:38:af:cc:de:ac:75:45:ea:91:9a:1f:c2:59:35:cd:
        a7:02:20:52:ad:4c:6b:9b:b3:bc:ea:58:e6:06:d4:4f:d7:ba:
        99:ad:c8:3a:38:0e:c6:2a:57:13:ad:5f:70:34:6f:84:cf

2082 / tcp

-1212570746 | 2025-03-13T08:34:24.954968

Hashes

hash

-2099463152

http.dom_hash

141679194

http.html_hash

-1212570746

http.server_hash

958142897

http.title_hash

-1039101684

Direct IP access not allowed | Cloudflare

HTTP/1.1 403 Forbidden
Date: Thu, 13 Mar 2025 08:34:24 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5893
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 91fa3129dfa3a918-DFW

2083 / tcp

141477257 | 2025-03-16T10:34:55.502893

Hashes

hash

435450114

http.dom_hash

1678420308

http.html_hash

141477257

http.server_hash

958142897

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Sun, 16 Mar 2025 10:34:55 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

2086 / tcp

1909152810 | 2025-03-17T13:06:11.985434

Hashes

hash

1999033766

http.dom_hash

141679194

http.html_hash

1909152810

http.server_hash

958142897

http.title_hash

-1039101684

Direct IP access not allowed | Cloudflare

HTTP/1.1 403 Forbidden
Date: Mon, 17 Mar 2025 13:06:11 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5895
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 921cb4c8dfc07b09-DEN

2087 / tcp

444137540 | 2025-03-13T10:27:45.154554

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 13 Mar 2025 10:27:45 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>cloudflare</center>
</body>
</html>

2096 / tcp

141477257 | 2025-03-17T04:04:10.418764

Hashes

hash

-927956303

http.dom_hash

1678420308

http.html_hash

141477257

http.server_hash

958142897

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Mon, 17 Mar 2025 04:04:10 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

8080 / tcp

-1929392522 | 2025-03-07T08:07:18.234218

Hashes

hash

415498848

http.dom_hash

141679194

http.html_hash

-1929392522

http.server_hash

958142897

http.title_hash

-1039101684

Direct IP access not allowed | Cloudflare

HTTP/1.1 403 Forbidden
Date: Fri, 07 Mar 2025 08:07:18 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5894
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 91c89932ba8b6644-AMS

8443 / tcp

141477257 | 2025-02-22T15:02:45.783768

Hashes

hash

259057286

http.dom_hash

1678420308

http.html_hash

141477257

http.server_hash

958142897

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Sat, 22 Feb 2025 15:02:45 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -

8880 / tcp

838830249 | 2025-03-17T01:12:31.077958

HTTP/1.1 403 Forbidden
Date: Mon, 17 Mar 2025 01:12:31 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 92189f5a3abd6568-AMS

error code: 1003

172.67.140.5

Last Seen: 2025-03-21

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

0 | 2025-03-20T11:01:28.482713

Hashes

443 / tcp

14727403 | 2025-03-21T02:18:46.166923

Hashes

2082 / tcp

-1212570746 | 2025-03-13T08:34:24.954968

Hashes

2083 / tcp

141477257 | 2025-03-16T10:34:55.502893

Hashes

2086 / tcp

1909152810 | 2025-03-17T13:06:11.985434

Hashes

2087 / tcp

444137540 | 2025-03-13T10:27:45.154554

2096 / tcp

141477257 | 2025-03-17T04:04:10.418764

Hashes

8080 / tcp

-1929392522 | 2025-03-07T08:07:18.234218

Hashes

CloudFlare

8443 / tcp

141477257 | 2025-02-22T15:02:45.783768

Hashes

CloudFlare

8880 / tcp

838830249 | 2025-03-17T01:12:31.077958

Products

Pricing

Contact Us

172.67.140.5

Last Seen: 2025-03-21

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

80 / tcp 0 | 2025-03-20T11:01:28.482713

Hashes

443 / tcp 14727403 | 2025-03-21T02:18:46.166923

Hashes

2082 / tcp -1212570746 | 2025-03-13T08:34:24.954968

Hashes

2083 / tcp 141477257 | 2025-03-16T10:34:55.502893

Hashes

2086 / tcp 1909152810 | 2025-03-17T13:06:11.985434

Hashes

2087 / tcp 444137540 | 2025-03-13T10:27:45.154554

2096 / tcp 141477257 | 2025-03-17T04:04:10.418764

Hashes

8080 / tcp -1929392522 | 2025-03-07T08:07:18.234218

Hashes

CloudFlare

8443 / tcp 141477257 | 2025-02-22T15:02:45.783768

Hashes

CloudFlare

8880 / tcp 838830249 | 2025-03-17T01:12:31.077958

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

0 | 2025-03-20T11:01:28.482713

443 / tcp

14727403 | 2025-03-21T02:18:46.166923

2082 / tcp

-1212570746 | 2025-03-13T08:34:24.954968

2083 / tcp

141477257 | 2025-03-16T10:34:55.502893

2086 / tcp

1909152810 | 2025-03-17T13:06:11.985434

2087 / tcp

444137540 | 2025-03-13T10:27:45.154554

2096 / tcp

141477257 | 2025-03-17T04:04:10.418764

8080 / tcp

-1929392522 | 2025-03-07T08:07:18.234218

8443 / tcp

141477257 | 2025-02-22T15:02:45.783768

8880 / tcp

838830249 | 2025-03-17T01:12:31.077958