GeneralInformation

Hostnames	hstgr.io
Domains	hstgr.io
Country	United States
City	Phoenix
Organization	Internet Utilities Europe and Asia Limited
ISP	Hostinger International Limited
ASN	AS47583

WebTechnologies

Hosting

Hostinger

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024(1)

CVE-2024-5458

5.3In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, due to a code logic error, filtering functions such as filter_var when validating URLs (FILTER_VALIDATE_URL) for certain types of URLs the function will result in invalid user information (username + password part of URLs) being treated as valid user information. This may lead to the downstream code accepting invalid URLs as valid and parsing them incorrectly.

2013(1)

CVE-2013-2220

7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.

2007(1)

CVE-2007-3205

5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

21 80 443 3306

21 / tcp

481931435 | 2025-03-22T16:38:57.153659

220 FTP Server ready.
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
 CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
 EPRT    EPSV    ALLO*   RNFR    RNTO    DELE    MDTM    RMD     
 XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
 NOOP    FEAT    OPTS    HOST    CLNT    AUTH    CCC*    CONF*   
 ENC*    MIC*    PBSZ    PROT    TYPE    STRU    MODE    RETR    
 STOR    STOU    APPE    REST    ABOR    USER    PASS    ACCT*   
 REIN*   LIST    NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@localhost
211-Features:
 AUTH TLS
 CCC
 CLNT
 EPRT
 EPSV
 HOST
 LANG bg-BG;es-ES;zh-CN;fr-FR;it-IT;en-US;ru-RU;ko-KR;ja-JP;zh-TW
 MDTM
 MFF modify;UNIX.group;UNIX.mode;
 MFMT
 MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*;
 PBSZ
 PROT
 REST STREAM
 SIZE
 SSCN
 TVFS
 UTF8
211 End

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            e5:58:3d:21:c8:7c:56:b7:72:aa:c6:a8:1c:2c:cd:9b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Oct 29 00:00:00 2024 GMT
            Not After : Sep  4 23:59:59 2025 GMT
        Subject: CN=*.hstgr.io
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:bf:ba:90:89:0b:11:23:42:6d:3e:95:02:61:c9:
                    96:d7:ae:d8:56:94:f3:36:01:58:3c:f2:b1:3c:f8:
                    da:7c:fe:67:fc:d8:a5:05:aa:f4:f2:58:79:64:73:
                    5b:0f:75:ee:42:4c:b2:51:98:cb:bb:5f:79:c3:a1:
                    ef:08:6f:06:4d:92:bb:49:2c:8e:1f:fe:bb:4b:28:
                    f8:24:af:74:6e:67:27:3d:e8:06:fb:0f:4d:b7:12:
                    d3:ec:80:22:b3:28:72:ee:4d:79:9d:f8:7f:56:bf:
                    8f:1d:90:f4:fc:8b:6a:9a:96:c9:ce:d4:31:cf:04:
                    33:64:fa:96:b6:a9:fe:33:e8:b3:64:b1:9e:2c:20:
                    e1:f4:ba:fb:af:c2:22:1d:ba:22:87:ac:a2:e6:e0:
                    67:0e:bc:82:9e:dc:ef:4c:78:5f:64:26:4b:c0:43:
                    de:9f:5e:cf:c3:d5:76:4f:ae:f2:3a:ee:5f:5d:c0:
                    31:9d:a5:0a:9c:e1:e6:5f:86:93:fc:9f:60:11:64:
                    94:5e:4b:3c:cf:a0:96:9c:c6:54:d6:ce:22:94:00:
                    90:f6:80:8c:a0:f0:ef:75:b9:2a:5b:a1:b4:90:f1:
                    da:04:6e:6b:37:08:60:b4:71:99:98:b3:a6:ba:e9:
                    0d:36:8d:96:d2:1d:ca:52:d6:85:0e:21:e3:4d:7e:
                    96:ae:93:55:2e:c9:a6:4b:25:1c:ee:92:81:2b:11:
                    35:2b:f4:50:d5:11:c6:2d:17:50:a8:a8:2d:a8:2e:
                    c4:89:b9:3f:80:61:e2:43:cc:65:0e:83:e1:14:80:
                    ff:c7:ba:d3:08:46:1a:c3:d1:f2:97:c1:a6:6f:a8:
                    e1:c6:c8:78:bf:ad:5b:df:3b:10:bb:8c:4d:b7:e0:
                    f5:f6:9f:f7:a9:43:be:d6:30:a0:0d:f4:f6:d1:dd:
                    bf:49:28:05:5d:a2:80:03:51:d9:8e:1d:5e:cf:d3:
                    06:c0:4d:e2:35:e2:4b:ab:42:15:8e:33:a5:48:69:
                    1b:48:2e:98:8a:29:22:75:97:fe:70:49:8e:e2:ad:
                    c3:06:03:39:f5:96:4a:86:eb:99:fa:7c:65:3b:a0:
                    a1:5e:ec:8c:89:0d:00:77:21:d8:73:a3:3e:a0:56:
                    e1:e8:a8:d5:86:95:fe:e7:d8:21:cd:a5:a9:be:8a:
                    15:97:42:7c:b7:09:0f:59:e8:ce:7d:e0:f3:df:6a:
                    50:54:a9:bb:cc:a5:f4:08:5f:64:57:04:15:80:05:
                    38:36:47:92:3a:c8:bd:d4:a5:cc:36:fa:08:37:2e:
                    fe:f6:c1:3b:09:21:e8:0e:97:70:c3:19:f6:70:a7:
                    de:ea:69:25:9d:58:c2:84:79:e8:c7:6c:9c:81:21:
                    11:fb:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                21:1E:4F:A0:D2:FA:95:50:C6:0D:1E:B2:F3:19:A5:E2:9D:A8:D1:B7
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:*.hstgr.io, DNS:hstgr.io
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
                                3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
                    Timestamp : Oct 29 12:23:39.990 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:3C:4E:10:C5:84:3E:23:3B:AA:3B:82:A4:
                                A9:04:92:CB:3F:DF:9F:2A:81:99:D2:3F:E4:24:CE:F6:
                                4B:8F:B2:4E:02:21:00:D8:07:80:7C:BF:D2:54:A9:6F:
                                D0:A5:6C:B5:20:C0:B0:4B:C1:5D:D2:46:9D:6B:37:05:
                                DA:36:00:EC:CA:04:22
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Oct 29 12:23:39.908 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:DE:BB:7D:E7:5C:B1:59:21:49:10:A9:
                                F5:53:45:29:B9:90:2E:AE:6B:6B:AA:53:55:D5:36:60:
                                0A:32:42:64:75:02:21:00:C1:23:90:DC:BD:A8:24:7A:
                                E5:DD:CC:9E:40:F8:92:C9:68:D6:2E:3B:48:6C:AC:96:
                                D2:08:26:B9:45:65:F8:6E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
                                F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
                    Timestamp : Oct 29 12:23:39.858 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A1:93:9A:39:79:7C:AB:3F:F0:23:AE:
                                DE:32:ED:14:B7:98:30:EA:92:BF:44:7E:2A:65:61:E5:
                                89:12:9F:4D:5A:02:21:00:8B:1F:F3:84:69:F4:57:CE:
                                17:7E:F1:83:06:76:66:1C:41:81:DC:7F:F1:F6:4B:94:
                                58:75:80:43:9D:04:6D:C1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        12:67:fb:e3:a6:b0:9e:2e:1b:27:18:a0:95:25:73:e4:15:c2:
        6e:88:86:f1:30:e0:5b:31:94:b3:e0:7a:70:57:ba:82:c7:e3:
        e2:1d:8c:09:a9:29:2c:bd:49:4c:ec:48:20:56:ee:7f:9b:84:
        28:98:9e:b7:76:a0:b6:3a:46:b3:dd:c1:48:58:57:20:76:40:
        aa:d3:89:7b:b2:59:6a:11:5a:31:9c:32:60:74:a0:da:83:98:
        4c:a2:7d:65:97:53:e3:cf:2e:92:ce:09:ed:2f:a7:9a:75:16:
        29:36:7d:60:de:87:0f:dc:b7:19:bd:f2:e6:29:16:61:df:92:
        14:40:8a:66:fd:18:cb:22:d7:d8:ab:81:f3:e8:d4:8f:2d:79:
        56:f2:77:aa:c3:05:8d:4c:32:b3:dc:dc:ed:82:70:7d:f2:d2:
        8f:83:90:14:39:fe:eb:06:cb:2a:1e:93:e0:50:a6:6f:10:c5:
        a9:c1:ea:2f:cf:0b:04:79:df:9f:63:31:be:c8:96:04:6b:d0:
        d0:ef:cf:b6:6c:04:15:06:de:11:e3:64:96:32:a9:37:40:b8:
        8c:55:ce:af:9f:3e:be:8f:ae:93:8a:c1:0d:f5:ec:32:2d:16:
        ab:fb:ef:04:12:6e:c9:a4:86:23:20:5b:0b:d6:63:4c:02:af:
        53:65:ff:9a

80 / tcp

1658092763 | 2025-03-22T07:17:46.419448

Hashes

hash

132098480

http.dom_hash

-230744803

http.html_hash

1658092763

http.robots_hash

-1008654795

http.server_hash

-133603840

http.title_hash

-1640635299

Database Error

HTTP/1.1 500 Internal Server Error
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/8.0.30
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 2527
date: Sat, 22 Mar 2025 07:17:46 GMT
server: LiteSpeed
platform: hostinger
panel: hpanel

Vulnerabilities

1 2

443 / tcp

0 | 2025-03-23T12:21:39.831091

Hashes

hash

62631503

http.dom_hash

http.html_hash

http.server_hash

-133603840

HTTP/1.0 301 Moved Permanently
Location: https://www.inktank.net/
Cache-Control: private, no-cache, max-age=0
Pragma: no-cache
Server:LiteSpeed
Content-Length: 0
Connection: Close

3306 / tcp

1985248939 | 2025-03-22T02:17:16.320930

MariaDB:
  Protocol Version: 10
  Version: 10.11.10-MariaDB
  Capabilities: 65534
  Server Language: 224
  Server Status: 2
  Extended Server Capabilities: 33279
  Authentication Plugin: mysql_native_password

191.101.13.85

Last Seen: 2025-03-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

21 / tcp

481931435 | 2025-03-22T16:38:57.153659

80 / tcp

1658092763 | 2025-03-22T07:17:46.419448

Hashes

443 / tcp

0 | 2025-03-23T12:21:39.831091

Hashes

3306 / tcp

1985248939 | 2025-03-22T02:17:16.320930

MariaDB10.11.10-MariaDB

Products

Pricing

Contact Us

191.101.13.85

Last Seen: 2025-03-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

21 / tcp 481931435 | 2025-03-22T16:38:57.153659

80 / tcp 1658092763 | 2025-03-22T07:17:46.419448

Hashes

443 / tcp 0 | 2025-03-23T12:21:39.831091

Hashes

3306 / tcp 1985248939 | 2025-03-22T02:17:16.320930

MariaDB10.11.10-MariaDB

Products

Pricing

Contact Us

Vulnerabilities

21 / tcp

481931435 | 2025-03-22T16:38:57.153659

80 / tcp

1658092763 | 2025-03-22T07:17:46.419448

443 / tcp

0 | 2025-03-23T12:21:39.831091

3306 / tcp

1985248939 | 2025-03-22T02:17:16.320930