GeneralInformation

Hostnames	ec2-3-13-250-126.us-east-2.compute.amazonaws.com www.gabriellasgifts.com
Domains	amazonaws.com gabriellasgifts.com
Cloud Provider	Amazon
Cloud Region	us-east-2
Cloud Service	EC2
Country	United States
City	Columbus
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS16509
Operating System	Ubuntu

WebTechnologies

JavaScript libraries

OWL Carousel

jQuery

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

80 / tcp

1651973090 | 2025-04-02T21:20:34.436705

Hashes

hash

-2050780985

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 02 Apr 2025 21:20:34 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Thu, 18 Jan 2024 11:09:09 GMT
Connection: keep-alive
ETag: "65a906d5-264"
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

159336014 | 2025-03-28T07:14:39.326741

Hashes

hash

-1397412533

http.dom_hash

-499610800

http.favicon.hash

-1382948124

http.html_hash

159336014

http.server_hash

967792298

http.sitemap_hash

403123311

http.title_hash

751853273

Gabriella's Gifts Sale Items - Gifts from around the world

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 28 Mar 2025 07:14:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=27h36g7rqofdfjvbk56m3hsksi; expires=Sat, 29-Mar-2025 07:14:38 GMT; Max-Age=86400; path=/; domain=gabriellasgifts.com; secure; HttpOnly; SameSite=Lax
X-Magento-Cache-Control: max-age=86400, public, s-maxage=86400
X-Magento-Tags: cms_b_home_page_content_block,store,cms_b,mp_smtp_script,cms_p_251,cms_b_porto_custom_block_for_header,cms_b_porto_homeslider_11,cms_b_home_banner_slider_for_mobile,cat_c_p_2,cat_p_372,cat_p,cat_p_1044,cat_p_1972,cat_p_2111,cat_p_160,cat_p_571,cat_p_1329,cat_p_1765,cat_p_64,cat_p_70,cat_p_78,cat_p_99,cat_p_100,cat_p_133,cat_p_136,cat_p_137,cms_b_porto_footer_contact_information,cms_b_porto_footer_newsletter,cms_b_porto_footer_links,cms_b_porto_footer_features,cms_b_porto_footer_bottom_social_icon_demo10,cms_b_porto_footer_bottom_custom_block,FPC
Pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
Expires: Thu, 28 Mar 2024 06:24:09 GMT
X-Magento-Cache-Debug: HIT
Content-Security-Policy-Report-Only: font-src *.stripe.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors *.stripe.com stripe.com 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com *.paypal.com * *.stripe.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com *.weltpixel.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com *.paypal.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ *.avada.io js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com songbirdstag.cardinalcommerce.com *.stripe.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com unsafe-inline assets.braintreegateway.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com https://get.geojs.io *.avada.io api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.paypal.com *.cardinalcommerce.com *.google.com google.com *.stripe.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:57:06:15:7e:a4:27:ba:14:cf:47:60:5e:8d:c9:51:e8:7f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Mar 19 17:16:04 2025 GMT
            Not After : Jun 17 17:16:03 2025 GMT
        Subject: CN=www.gabriellasgifts.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a1:87:ce:94:ca:5c:47:df:f2:94:10:53:35:6b:
                    5e:4b:d8:d7:95:0c:6f:4c:9e:48:ae:27:53:7b:c3:
                    d4:95:f7:8b:77:30:f3:e0:7f:f3:1b:0c:5b:fa:1c:
                    aa:05:14:16:63:12:73:ad:86:02:68:48:4d:5f:40:
                    5e:0c:80:e5:31:45:a8:2f:d9:61:a9:3c:db:d2:b5:
                    ae:0b:44:4e:9d:aa:d7:a6:a0:59:2b:12:03:55:33:
                    2a:65:87:54:97:3a:e6:15:b8:2f:56:62:7e:49:70:
                    e0:3e:1c:e3:4f:82:c3:17:2e:5f:19:85:46:a2:75:
                    c6:6a:74:4d:fc:07:2b:19:b5:d7:da:2e:e2:51:f5:
                    0c:b9:c8:b4:e5:1b:23:f5:6c:89:c1:3d:ba:e3:ba:
                    03:df:60:24:9c:b8:ad:87:6f:e5:a8:0a:18:86:41:
                    33:9c:2c:c1:d2:d3:a1:d7:56:3f:be:ce:a2:09:4a:
                    07:ab:49:45:69:70:01:10:8a:b9:ab:b9:24:84:a8:
                    e8:5b:1d:ec:fb:99:ac:1b:f9:e6:cd:5a:1e:0c:69:
                    7e:35:78:f9:94:9e:f6:f6:d6:f4:6a:f2:3a:a5:b1:
                    0d:37:65:ee:2d:18:5f:68:24:31:5b:85:60:80:14:
                    fa:8f:23:bb:33:ea:46:15:60:35:e6:64:a5:99:13:
                    6d:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                61:F0:15:40:C6:ED:9D:C9:22:B3:E7:45:94:A3:A4:A2:33:DC:63:91
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:www.gabriellasgifts.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://r11.c.lencr.org/128.crl
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Mar 19 18:14:34.224 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:86:AE:7F:BF:02:65:40:1F:6D:6A:5E:
                                26:F2:5B:A2:64:A4:49:AC:8A:B1:C2:2F:15:D4:57:07:
                                FB:9D:C9:57:49:02:20:4A:EB:05:AF:98:2F:6C:D7:52:
                                8B:1D:58:72:FB:31:32:4F:53:0D:23:23:8A:EB:71:91:
                                FC:D6:3E:A7:9A:83:F6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Mar 19 18:14:34.371 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:96:F3:20:7C:36:31:81:EA:39:F7:47:
                                66:3D:35:BE:42:E4:94:21:33:5E:43:62:0F:6B:2D:83:
                                CA:33:78:5A:56:02:21:00:AF:81:5C:49:CA:CD:E8:E4:
                                81:4D:F1:EB:90:B8:E0:55:77:DB:F5:7F:59:D0:9B:57:
                                F6:85:DC:9D:B9:9C:55:77
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        79:f8:82:a7:48:74:6e:68:d4:54:0f:49:d9:b3:5d:7a:2d:77:
        62:a0:d0:f4:c2:7e:ca:02:e1:32:37:20:62:c3:72:66:79:96:
        fa:ec:d9:c0:6f:de:b2:3a:8d:34:e3:7b:13:ea:09:45:3f:79:
        1e:11:f7:e1:b9:29:8a:7f:a9:8f:75:ec:76:a2:95:47:61:b9:
        55:73:ca:93:a0:6b:49:02:78:fc:b4:e3:56:d1:d5:bc:9c:0a:
        ae:f6:7f:cf:52:4b:b1:2b:46:2b:1f:49:00:1c:0f:3d:24:2a:
        af:62:63:b0:82:b4:e6:c7:6c:a9:3e:aa:c6:a9:1b:6e:bd:50:
        44:c8:d7:9b:21:b1:93:db:c2:e2:7e:c0:7f:4c:af:3b:00:22:
        7a:b1:74:87:b4:fb:38:0b:4d:ef:28:25:c6:71:6d:29:b0:d6:
        83:41:d9:27:a1:42:77:8e:01:3a:2b:51:31:5c:16:a7:0b:33:
        83:e5:59:01:8f:41:75:91:c3:76:8d:c3:9d:0c:c8:34:18:59:
        36:19:bf:a7:c2:35:2e:89:0e:d9:4a:ba:22:fe:15:c3:e4:ab:
        bf:de:f3:d2:31:5b:ac:13:d1:84:2c:5f:8d:82:e5:7e:48:71:
        4b:0b:9a:3f:a9:d9:08:e6:40:e2:3e:f5:f4:2d:51:63:0e:ac:
        be:ce:14:f3

Vulnerabilities

3.13.250.126

Last Seen: 2025-04-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

1651973090 | 2025-04-02T21:20:34.436705

Hashes

nginx1.18.0

443 / tcp

159336014 | 2025-03-28T07:14:39.326741

Hashes

nginx1.18.0

Products

Pricing

Contact Us

3.13.250.126

Last Seen: 2025-04-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

80 / tcp 1651973090 | 2025-04-02T21:20:34.436705

Hashes

nginx1.18.0

443 / tcp 159336014 | 2025-03-28T07:14:39.326741

Hashes

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

1651973090 | 2025-04-02T21:20:34.436705

443 / tcp

159336014 | 2025-03-28T07:14:39.326741