GeneralInformation

Hostnames	sjc.sp.gov.br
Domains	sjc.sp.gov.br
Country	Brazil
City	São José dos Campos
Organization	Prefeitura Municipal de São José dos Campos
ISP	SIANET Datacenter e Provedores Ltda-ME
ASN	AS53101
Operating System	Windows

WebTechnologies

Analytics

Google Analytics

CDN

BootstrapCDN3.4.1

Google Hosted Libraries

Unpkg

JavaScript libraries

jQuery3.4.1

DataTables

jQuery UI1.12.1

SweetAlert

Maps

Leaflet1.5.1

Tag managers

Google Tag Manager

UI frameworks

Bootstrap3.4.1

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024(1)

CVE-2024-6484

6.4A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting (XSS) attacks. The issue is present in the carousel component, where the data-slide and data-slide-to attributes can be exploited through the href attribute of an <a> tag due to inadequate sanitization. This vulnerability could potentially enable attackers to execute arbitrary JavaScript within the victim's browser.

2020(2)

CVE-2020-11023

6.9In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-11022

6.9In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

OpenPorts

80 443

80 / tcp

-1414942515 | 2025-03-31T09:41:56.175441

Hashes

hash

1478677719

http.dom_hash

-547917072

http.html_hash

-1414942515

http.server_hash

http.title_hash

2094765716

Document Moved

HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://servicos.sjc.sp.gov.br/
Server: 
X-Frame-Options: sameorigin
Date: Mon, 31 Mar 2025 09:41:55 GMT
Content-Length: 154

443 / tcp

-170628821 | 2025-03-31T23:01:16.923521

Hashes

hash

137412077

http.dom_hash

-2112020433

http.favicon.hash

-2064294177

http.html_hash

-170628821

http.server_hash

608434861

http.title_hash

-841477970

GeoSanja - Dados Geográficos

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Set-Cookie: myCookieName=atjtvdb3wyr3vc4fu4v4512s; path=/; HttpOnly; SameSite=Lax
Content-Security-Policy: frame-ancestors 'self' *.sjc.sp.gov.br:*
Date: Mon, 31 Mar 2025 23:01:15 GMT
Content-Length: 176923

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            f4:09:01:98:1f:b1:74:d5:dd:05:a7:bd:80:af:e7:61
        Signature Algorithm: sha384WithRSAEncryption
        Issuer: C=BR, O=Valid Certificadora Digital LTDA, CN=Valid Certificadora RSA OV SSL CA
        Validity
            Not Before: May  8 00:00:00 2024 GMT
            Not After : May  8 23:59:59 2025 GMT
        Subject: C=BR, ST=S\xC3\xA3o Paulo, O=MUNICIPIO DE SAO JOSE DOS CAMPOS, CN=*.sjc.sp.gov.br
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b9:09:d0:c3:3d:60:3e:5a:e1:56:c3:6a:e0:c9:
                    75:b6:1f:3d:5d:2b:b6:8f:61:75:14:04:93:db:6e:
                    68:2c:0f:e6:6f:4f:49:21:82:7b:d7:18:82:6b:91:
                    c8:ad:f0:dd:97:16:a4:15:35:d0:de:38:b4:b9:e8:
                    04:3b:eb:aa:1d:43:21:d6:3c:d7:ab:e0:fa:a8:c3:
                    3e:5d:cd:47:21:1c:86:e5:27:38:af:86:b6:72:6e:
                    47:82:99:b5:65:3d:71:8d:28:62:f2:4d:07:a6:2e:
                    55:58:6a:d7:76:07:3c:82:11:9f:94:44:2b:11:f5:
                    f7:c2:00:af:b9:cc:ea:e6:07:24:93:d1:1b:2d:d1:
                    1c:5e:d0:03:a6:4e:ad:fe:2d:0d:0e:ab:b1:ca:bb:
                    bc:27:9b:09:ef:7b:87:46:b6:ce:12:38:46:0a:03:
                    04:47:74:4d:f9:6c:0b:67:79:45:9e:72:ba:f6:58:
                    cb:92:98:57:5d:40:d2:3a:22:47:c0:aa:68:9f:4f:
                    c1:93:50:a9:a1:f4:db:1e:4b:ea:1d:54:79:95:c7:
                    b5:5f:ff:49:1f:34:b5:13:09:d0:e6:17:f2:4d:c1:
                    3a:d8:84:65:9f:d3:20:a9:b0:ea:5b:e9:2c:76:fe:
                    46:15:37:a2:c7:df:0d:5c:44:9d:0a:3c:80:9f:b7:
                    1d:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                75:9C:2C:AD:D5:D5:44:74:16:84:D7:0D:BC:A2:6B:F2:EA:54:23:78
            X509v3 Subject Key Identifier: 
                14:68:86:87:83:E2:56:BA:20:AC:DD:21:60:6D:83:93:EA:CD:A7:67
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.110
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.sectigo.com/ValidCertificadoraRSAOVSSLCA.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/ValidCertificadoraRSAOVSSLCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:*.sjc.sp.gov.br, DNS:sjc.sp.gov.br
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : May  8 16:07:29.577 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:32:B4:EE:FE:5E:3E:B9:8C:89:0D:E1:0D:
                                DE:68:E6:CF:94:07:B9:76:B2:5A:A7:9A:B4:2E:66:11:
                                3C:AB:CF:FD:02:20:7B:51:F6:40:A8:58:AF:E5:34:88:
                                1A:BF:EF:D2:9B:9D:BC:FE:47:80:FA:BA:F1:12:CB:69:
                                CD:93:57:A7:36:4E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : May  8 16:07:29.472 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:F1:C7:B6:19:D7:B3:91:35:C2:AC:41:
                                C3:36:91:D8:24:A9:E4:EF:38:A0:5B:DB:5C:89:78:E3:
                                96:BF:A1:3C:50:02:20:15:AF:00:35:EB:F9:F8:9E:01:
                                23:43:27:BE:91:91:27:DC:83:30:B0:C7:65:D4:CC:AA:
                                6C:83:E9:AD:1D:65:D5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : May  8 16:07:29.479 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AD:E8:AD:F4:B5:7B:C0:42:FB:93:21:
                                F5:4C:52:00:F1:08:71:53:DB:67:F2:C7:B6:51:66:62:
                                C2:AA:09:F0:20:02:21:00:B0:00:F5:0F:37:AB:C4:0F:
                                76:BE:A6:47:30:68:F3:F6:8E:93:B2:A5:F0:49:C9:D4:
                                10:6E:BE:75:9B:80:A7:A6
    Signature Algorithm: sha384WithRSAEncryption
    Signature Value:
        0f:01:41:bb:92:9e:dd:17:ca:61:07:dc:36:0e:24:50:0f:7c:
        b5:3e:c1:58:21:40:69:23:2c:72:f2:19:b1:48:5e:62:dc:bf:
        aa:ca:d6:dc:b3:c7:1d:cc:25:9b:c2:22:db:23:b5:92:9b:ce:
        4d:a5:21:f3:3b:08:cf:60:05:b2:a3:19:5d:b0:32:c5:ee:9e:
        a0:7d:5e:2a:7a:1c:0c:49:a7:06:13:ff:03:50:4b:1a:d6:07:
        3e:6c:e8:7f:d9:3d:af:9e:de:81:62:22:93:9c:9a:2d:9f:eb:
        2b:d4:33:7b:78:3f:4d:cc:e4:9e:e4:3c:9d:cb:51:e6:e0:df:
        50:c8:6c:48:f8:c1:88:74:b5:ce:39:b0:8f:4c:73:b1:20:af:
        dc:59:59:26:28:4c:24:0d:30:37:48:24:4c:3d:69:c6:de:bb:
        34:b2:b7:17:96:95:00:b3:4a:30:1e:97:01:6e:72:9b:0e:a0:
        3d:8f:79:74:b3:f5:10:da:00:fa:c6:10:23:e6:90:e6:b6:44:
        69:58:13:5b:2d:3b:72:b7:8c:24:bb:2d:e2:7a:ad:cc:6f:8a:
        34:ff:1e:29:62:29:c9:f6:6b:ea:e4:06:c7:64:19:7c:f0:51:
        6d:68:05:e8:d9:90:e0:e3:d6:a7:83:14:82:e4:f4:d9:12:0a:
        aa:f2:09:7a:26:b8:28:61:58:98:f7:f7:19:1f:93:bf:f1:77:
        77:91:77:6d:e0:81:00:17:da:cc:ba:ee:0a:18:39:56:08:91:
        25:5f:95:94:46:8d:ab:50:1e:59:6a:b2:dd:b4:28:e1:97:23:
        24:fa:13:f3:eb:32:b6:0d:cf:64:bc:ea:79:2d:dc:20:0a:e1:
        36:99:a8:13:ba:66:8b:ae:f8:77:41:8f:d4:7f:93:17:2d:78:
        db:19:68:a3:65:80:65:32:88:4a:11:84:1a:66:f4:1f:69:00:
        c9:28:01:85:e0:ee:7b:88:85:25:76:98:86:d0:b1:c6:66:63:
        d1:6f:2d:ba:9b:3b

Vulnerabilities

187.103.147.123

Last Seen: 2025-03-31

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

-1414942515 | 2025-03-31T09:41:56.175441

Hashes

443 / tcp

-170628821 | 2025-03-31T23:01:16.923521

Hashes

Microsoft IIS httpd10.0

Products

Pricing

Contact Us

187.103.147.123

Last Seen: 2025-03-31

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

80 / tcp -1414942515 | 2025-03-31T09:41:56.175441

Hashes

443 / tcp -170628821 | 2025-03-31T23:01:16.923521

Hashes

Microsoft IIS httpd10.0

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

-1414942515 | 2025-03-31T09:41:56.175441

443 / tcp

-170628821 | 2025-03-31T23:01:16.923521