GeneralInformation

Hostnames	aquiltersoasis.com www.aquiltersoasis.com server-18-155-1-13.atl59.r.cloudfront.net 3fd2ecb5-7e4d-4b34-ae2f-8baa9233b039.rain-pods.com
Domains	aquiltersoasis.com cloudfront.net rain-pods.com
Cloud Provider	Amazon
Cloud Region	GLOBAL
Cloud Service	CLOUDFRONT
Country	United States
City	East Point
Organization	Amazon.com, Inc.
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

Analytics

Google Analytics

CDN

BootstrapCDN3.3.1

Google Hosted Libraries

cdnjs

Cloudflare

Ecommerce

Rain

JavaScript libraries

jQuery1.10.1

jQuery UI1.10.4

jQuery Migrate1.2.1

Security

reCAPTCHA

Tag managers

Google Tag Manager

UI frameworks

Bootstrap3.3.1

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024(1)

CVE-2024-6484

6.4A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting (XSS) attacks. The issue is present in the carousel component, where the data-slide and data-slide-to attributes can be exploited through the href attribute of an <a> tag due to inadequate sanitization. This vulnerability could potentially enable attackers to execute arbitrary JavaScript within the victim's browser.

2020(2)

CVE-2020-11023

6.9In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-11022

6.9In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

2019(2)

CVE-2019-11358

6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

CVE-2019-8331

6.1In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.

2018(4)

CVE-2018-20677

6.1In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.

CVE-2018-20676

6.1In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.

CVE-2018-14042

6.1In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.

CVE-2018-14040

6.1In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.

2016(1)

CVE-2016-10735

6.1In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.

2015(1)

CVE-2015-9251

6.1jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443

80 / tcp

-1783612047 | 2025-04-04T01:55:07.819671

Hashes

hash

-1926352497

http.dom_hash

-1061043074

http.html_hash

-1783612047

http.server_hash

-195004734

http.title_hash

1893275983

ERROR: The request could not be satisfied

HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Fri, 04 Apr 2025 01:55:07 GMT
Content-Type: text/html
Content-Length: 915
Connection: keep-alive
X-Cache: Error from cloudfront
Via: 1.1 92986caf12a8f35ae04c3b5cf1696138.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ATL59-P3
X-Amz-Cf-Id: chbGLuiDDIyEPEQJjYHCfqAtzxtSF1SfBuWOwA_eTYIjM7aXOLpwvQ==

443 / tcp

-1628091882 | 2025-04-05T13:47:33.930000

Hashes

hash

1223750447

http.dom_hash

-1382207970

http.favicon.hash

1181199603

http.html_hash

-1628091882

http.server_hash

869690771

http.title_hash

1478798291

Home | A Quilter's Oasis

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 05 Apr 2025 13:47:33 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=59e67b7a6edc0f5fc7d403192c7b5d43; path=/; HttpOnly
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 e48151ea773f89885422fe371a8cae40.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ATL59-P3
X-Amz-Cf-Id: oye193Er9heO1VGjwZ9w44ysDJ7GlCI-Y9Dgid8hEwwBPUxftzFUVA==

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0d:00:3c:bd:ea:5d:b3:69:e0:cd:48:aa:c1:3d:dc:c1
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: Dec  2 00:00:00 2024 GMT
            Not After : Dec 31 23:59:59 2025 GMT
        Subject: CN=www.aquiltersoasis.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b4:96:9c:11:a1:45:d6:31:eb:39:c2:6c:6b:dc:
                    2b:1c:b6:02:0e:dc:fb:86:a6:4e:63:3b:5f:26:9c:
                    03:b4:90:12:45:6c:37:ba:a5:76:c8:46:58:9e:c2:
                    a0:b7:51:98:fd:cc:05:de:fc:0c:c2:56:38:03:4d:
                    5c:ce:5e:f0:3a:93:16:c8:a8:3b:e5:c1:53:82:f3:
                    36:eb:bb:bf:b0:ff:99:cb:d5:ce:e6:c1:5b:86:55:
                    d8:6a:01:4b:3f:da:42:cb:84:42:55:71:ec:c7:b6:
                    b5:ec:c0:82:31:cf:ff:58:ac:f2:f7:27:dc:17:66:
                    c4:1a:c3:20:b0:97:60:50:d1:18:94:90:59:54:5f:
                    e4:6c:d0:11:b9:fc:c7:e4:b6:eb:94:e5:9e:e0:94:
                    f7:08:55:30:14:ae:ca:99:e5:4e:02:b2:4e:5e:99:
                    a1:82:61:c5:ca:5f:89:17:35:07:47:8a:25:b6:34:
                    ad:bc:3c:63:8b:68:f3:fa:6e:44:66:87:68:e0:50:
                    6f:c2:b7:2c:43:40:db:53:d2:b3:fb:aa:e1:95:24:
                    9c:2c:04:4f:82:97:77:3d:9d:55:71:a7:31:d7:32:
                    15:17:41:aa:13:3b:43:09:55:02:99:75:47:b8:f3:
                    fb:27:6b:21:7c:30:f4:0c:1e:83:0e:da:30:c6:9b:
                    9d:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                FE:F0:E7:EC:D7:8A:C2:21:A0:1B:31:36:8F:96:6A:F2:E5:65:58:D2
            X509v3 Subject Alternative Name: 
                DNS:www.aquiltersoasis.com, DNS:aquiltersoasis.com, DNS:3fd2ecb5-7e4d-4b34-ae2f-8baa9233b039.rain-pods.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
                                F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
                    Timestamp : Dec  2 09:41:25.220 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:81:64:9F:5C:8A:E5:61:F9:A9:5A:AC:
                                AF:9E:DC:E1:D4:F1:75:E5:3B:8D:42:64:31:12:DD:40:
                                71:C8:19:10:7D:02:20:69:DC:12:CD:BB:26:56:A0:9C:
                                69:4A:B5:38:D5:6A:F9:3E:AB:7B:86:1C:85:08:F0:92:
                                7E:4A:19:95:16:F2:B0
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : ED:3C:4B:D6:E8:06:C2:A4:A2:00:57:DB:CB:24:E2:38:
                                01:DF:51:2F:ED:C4:86:C5:70:0F:20:DD:B7:3E:3F:E0
                    Timestamp : Dec  2 09:41:25.277 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:0C:AA:5A:D9:34:A9:C6:F6:45:30:04:98:
                                C4:2A:FD:8C:B3:6E:6B:9F:74:85:3F:32:4E:C4:E0:90:
                                79:77:12:53:02:20:75:6A:AA:06:0F:A6:31:EA:E7:69:
                                E8:9C:F9:C2:80:1E:EF:9F:8C:EB:F6:55:D9:10:74:A8:
                                2B:C2:B2:3C:BD:C5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Dec  2 09:41:25.407 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:88:C2:2A:E9:FC:FC:E9:6B:CF:43:DC:
                                03:C2:70:1B:11:0B:0D:DD:58:3F:F0:AD:B1:9D:96:50:
                                EF:DF:64:89:15:02:20:62:04:86:C6:F4:DE:27:D0:42:
                                E3:63:77:01:93:9A:8F:BB:62:C0:1F:4D:5F:53:E7:82:
                                25:32:CF:DB:55:20:19
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a7:c8:eb:de:1a:69:2d:a6:9c:d5:67:5e:50:01:9f:c1:74:73:
        51:4d:46:92:d2:fb:44:c4:42:85:d3:c2:27:83:0d:25:d3:5b:
        8b:9b:2e:29:05:91:e0:e3:87:59:71:7a:75:68:f2:16:be:27:
        3f:45:76:8e:99:4a:a3:cc:fd:96:e7:36:f0:37:4e:3c:5f:c4:
        8c:9e:a6:d7:35:17:e1:99:68:12:e6:7a:29:bc:64:20:e8:47:
        1f:a2:c9:74:49:ec:62:72:0f:f1:fa:47:aa:19:f7:61:25:20:
        42:18:41:c4:1a:5b:5e:3e:0e:5e:2a:72:c1:c4:7a:a6:b9:c5:
        33:6c:8a:a7:55:77:51:02:30:a3:41:09:5a:7d:cb:2b:bc:df:
        2f:30:00:38:a1:0d:73:de:76:2f:f5:d6:be:26:98:53:ae:8f:
        93:4f:6a:62:6a:f4:f0:b9:4d:f2:8c:9b:07:27:42:61:18:dd:
        95:34:34:21:dd:6c:49:28:f5:a2:f7:ab:14:d2:38:e6:19:46:
        aa:c8:af:2c:e6:4f:0d:2f:30:ef:a8:22:32:92:c6:8c:9b:d6:
        99:3c:1e:6c:9b:99:9b:bd:0f:48:e5:6b:25:d8:76:75:28:9b:
        ba:ff:1c:16:08:ca:85:97:71:17:1b:1f:e5:41:45:57:67:c8:
        c2:8a:3c:09

Vulnerabilities

18.155.1.13

Last Seen: 2025-04-05

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

-1783612047 | 2025-04-04T01:55:07.819671

Hashes

CloudFront httpd

443 / tcp

-1628091882 | 2025-04-05T13:47:33.930000

Hashes

Products

Pricing

Contact Us

18.155.1.13

Last Seen: 2025-04-05

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

80 / tcp -1783612047 | 2025-04-04T01:55:07.819671

Hashes

CloudFront httpd

443 / tcp -1628091882 | 2025-04-05T13:47:33.930000

Hashes

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

-1783612047 | 2025-04-04T01:55:07.819671

443 / tcp

-1628091882 | 2025-04-05T13:47:33.930000