GeneralInformation

Hostnames	5kgc.com m.5kgc.com www.5kgc.com
Domains	5kgc.com
Country	United States
City	Los Angeles
Organization	PEG-LA
ISP	PEG TECH INC
ASN	AS398823

WebTechnologies

JavaScript libraries

jQuery1.4.4

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2020(3)

CVE-2020-11023

6.9In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-11022

6.9In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-7656

6.1jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.

2019(1)

CVE-2019-11358

6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

2015(1)

CVE-2015-9251

6.1jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

2012(1)

CVE-2012-6708

6.1jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.

2011(1)

CVE-2011-4969

4.3Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.

OpenPorts

21 80 443

21 / tcp

-1405763575 | 2025-02-18T02:54:09.976784

220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 1 of 50 allowed.
220-Local time is now 10:54. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.
421 Unable to read the indexed puredb file (or old format detected) - Try pure-pw mkdb
211-Extensions supported:
 UTF8
 EPRT
 IDLE
 MDTM
 SIZE
 MFMT
 REST STREAM
 MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
 MLSD
 PRET
 AUTH TLS
 PBSZ
 PROT
 TVFS
 ESTA
 PASV
 EPSV
 SPSV
 ESTP
211 End.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            b1:f5:4a:be:4b:97:ce:8f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=CN, ST=Guangdong, L=Dongguan, O=BT-PANEL, OU=BT, CN=38.174.249.193/emailAddress=admin@bt.cn
        Validity
            Not Before: Jan 11 16:32:51 2025 GMT
            Not After : Oct 11 16:32:51 2034 GMT
        Subject: C=CN, ST=Guangdong, L=Dongguan, O=BT-PANEL, OU=BT, CN=38.174.249.193/emailAddress=admin@bt.cn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:c7:f0:2e:f7:99:25:48:cf:c9:1a:aa:e7:7e:7f:
                    20:3a:3b:69:82:78:76:d4:05:63:ea:6a:15:57:20:
                    0e:00:9d:63:91:06:21:1d:00:55:ce:3e:94:97:33:
                    73:21:83:03:bd:45:8d:c5:9b:a1:18:ef:b1:2a:5f:
                    31:86:0b:07:be:97:b8:df:67:24:3c:0f:b1:2a:5a:
                    d1:e5:6f:4d:79:ec:c5:4b:d3:2a:be:9c:25:f6:17:
                    75:5d:46:8c:d2:16:6b:b5:fc:3d:f6:82:e2:eb:94:
                    c0:c6:37:72:27:63:ef:53:10:71:d9:dd:7b:f7:35:
                    61:8d:a0:f4:71:f1:c7:4d:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                8A:FC:55:C6:77:3C:34:62:AF:D1:CF:4F:22:73:CF:16:BA:15:2D:F3
            X509v3 Authority Key Identifier: 
                8A:FC:55:C6:77:3C:34:62:AF:D1:CF:4F:22:73:CF:16:BA:15:2D:F3
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7c:df:78:c6:80:c6:53:0e:ad:63:02:eb:c3:55:be:2d:fd:ca:
        23:1a:1b:4f:cb:70:f0:62:2e:2f:b9:bb:4e:61:51:24:5f:16:
        c3:82:6a:82:6f:65:75:6e:b1:73:b2:8d:62:c9:db:fa:6b:bf:
        d1:0b:1e:5d:37:9f:29:4c:04:1c:9c:43:87:51:24:3d:78:6e:
        e8:ef:fa:25:12:88:b0:d5:eb:fe:d9:c6:58:26:f3:c4:73:09:
        d8:45:7b:6e:e5:8b:34:3b:98:da:ae:9f:5e:6f:c9:88:5b:ab:
        86:5b:b8:d5:27:6f:05:ce:91:31:ab:ff:bd:1b:3c:e2:7a:3a:
        8d:e7

80 / tcp

-85749389 | 2025-03-12T18:39:05.968312

Hashes

hash

358866690

http.dom_hash

1239617585

http.html_hash

-85749389

http.server_hash

-1340961475

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Mar 2025 18:39:05 GMT
Content-Type: text/html
Content-Length: 138
Last-Modified: Sun, 23 Feb 2025 12:42:52 GMT
Connection: keep-alive
ETag: "67bb17cc-8a"
Accept-Ranges: bytes

443 / tcp

2052662198 | 2025-03-14T16:14:25.457287

Hashes

hash

-945157925

http.dom_hash

1946398394

http.favicon.hash

-101504576

http.html_hash

2052662198

http.robots_hash

438993706

http.server_hash

-1340961475

http.sitemap_hash

1557765845

五星体育直播_五星体育频道_足球比赛直播在线观看【高清】

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 14 Mar 2025 16:14:25 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=tarclmgc3dgkdcirlo5cfa4fv2; path=/; domain=niuzsoft.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000
Alt-Svc: quic=":443"; h3=":443"; h3-29=":443"; h3-27=":443";h3-25=":443"; h3-T050=":443"; h3-Q050=":443";h3-Q049=":443";h3-Q048=":443"; h3-Q046=":443"; h3-Q043=":443"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:d3:03:e3:c4:3a:b8:d8:fb:c0:c3:e3:ae:3e:2e:9d:1f:e6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Feb 26 06:43:46 2025 GMT
            Not After : May 27 06:43:45 2025 GMT
        Subject: CN=5kgc.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:da:d3:42:2e:4f:a3:47:ae:f7:68:b9:1c:0e:83:
                    6b:0a:9e:cd:e2:39:e7:1b:89:f2:6f:99:3e:df:44:
                    f3:b2:94:72:3e:20:01:d4:26:7f:ff:7d:8d:fc:fc:
                    7c:b1:5f:36:02:6c:47:cc:23:2e:c4:11:63:05:4b:
                    37:91:ea:a1:5b:c1:9d:7c:2e:03:0e:90:5d:0d:8e:
                    e3:c8:4d:0a:c3:4b:e5:30:49:dc:02:a0:18:53:e7:
                    e4:78:86:97:e7:2d:f9:d9:2a:c2:2c:15:26:b3:f4:
                    8f:67:82:d2:22:34:ed:b7:20:7e:0a:3f:77:a2:ae:
                    e4:ee:c2:a2:01:bf:85:fd:9e:59:b4:02:63:58:1a:
                    71:1c:3b:d9:c5:0c:ae:fc:a0:92:67:b4:34:e5:f7:
                    30:20:63:9e:62:e2:6b:0f:cf:16:89:f9:cb:5e:bb:
                    17:3a:5f:2a:b8:ab:fb:ad:9a:5d:57:9c:da:9e:45:
                    b5:ef:32:5f:60:54:d0:56:90:19:cf:3a:0f:84:1c:
                    c6:c1:ad:ab:7f:4a:34:82:6f:75:0d:1e:f5:59:9a:
                    a3:a8:af:a7:4d:26:14:41:8f:b7:8e:f2:5a:3f:5b:
                    dc:0b:a3:0d:d3:1e:2f:e8:12:5e:6c:ab:88:b4:4a:
                    28:28:e4:2d:8e:27:50:af:ee:08:ba:81:b5:ff:52:
                    17:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                88:D3:30:69:AF:1B:B1:1A:79:81:2E:F5:74:57:AF:0A:6B:AA:87:D1
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:5kgc.com, DNS:m.5kgc.com, DNS:www.5kgc.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Feb 26 07:42:16.090 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:49:A9:85:8E:95:D5:65:E9:A8:A9:67:DB:
                                0A:B8:B5:69:E9:8A:72:F7:E8:00:E7:47:18:04:28:48:
                                48:6C:3D:9B:02:21:00:D6:2E:8A:EF:16:19:A5:8F:55:
                                98:37:C2:E0:6C:DC:A8:BE:BF:7F:3B:DB:2F:68:DE:06:
                                A1:37:64:3A:35:8F:7C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Feb 26 07:42:16.161 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:16:C0:2A:D6:51:4F:70:B5:F9:5C:10:9C:
                                47:F5:92:98:FA:BF:68:E3:41:18:11:99:9D:07:D0:06:
                                94:B3:DC:01:02:21:00:B2:24:59:3E:0A:1E:53:40:D2:
                                F8:9E:02:97:B6:34:FA:90:6B:D8:BE:A5:ED:AE:06:1A:
                                45:DF:F5:15:26:C4:D5
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5e:98:f2:47:79:ac:76:1f:48:9c:c5:26:fe:c5:2f:37:e6:49:
        52:c6:c1:d3:ab:ab:4f:15:9e:c9:1d:3b:62:14:76:cc:61:9a:
        da:e2:8d:f0:d9:d5:48:99:c1:f0:6c:e3:68:4e:96:1f:8b:c7:
        f4:e9:1d:bf:ae:2a:1d:d0:86:2e:7d:36:2f:07:d8:9e:e6:c4:
        ea:00:2e:56:ce:56:f8:36:ff:f0:e5:1e:9c:80:fb:4b:26:21:
        a8:54:df:d6:04:da:b6:e6:14:28:a5:c2:4c:f5:36:02:fd:00:
        32:b8:77:98:68:4f:1a:40:a1:af:61:a7:6e:67:61:f5:4c:eb:
        85:87:a8:4b:d6:18:58:e2:2c:84:bb:a2:3c:dc:aa:ad:fa:ec:
        76:90:50:f4:ce:c3:aa:32:04:6b:89:83:0a:e2:1b:38:f6:d1:
        b1:9b:95:35:b5:89:87:44:60:73:24:7b:ee:ff:96:d3:79:e3:
        9d:f1:58:17:a7:d6:92:27:50:07:68:4d:15:00:a4:92:cb:f5:
        4b:9b:63:c4:05:9b:4d:81:c4:da:fa:a0:67:f1:51:29:29:bc:
        92:22:73:f8:b4:df:26:2e:01:d5:4f:fc:52:ce:1a:44:f8:fa:
        88:b4:10:cf:ab:9b:0b:88:9f:5e:73:e2:07:e0:57:fe:ff:3e:
        56:5f:fd:3c

Vulnerabilities

38.14.44.211

Last Seen: 2025-03-14

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

21 / tcp

-1405763575 | 2025-02-18T02:54:09.976784

Pure-FTPd

80 / tcp

-85749389 | 2025-03-12T18:39:05.968312

Hashes

nginx

443 / tcp

2052662198 | 2025-03-14T16:14:25.457287

Hashes

nginx

Products

Pricing

Contact Us

38.14.44.211

Last Seen: 2025-03-14

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

21 / tcp -1405763575 | 2025-02-18T02:54:09.976784

Pure-FTPd

80 / tcp -85749389 | 2025-03-12T18:39:05.968312

Hashes

nginx

443 / tcp 2052662198 | 2025-03-14T16:14:25.457287

Hashes

nginx

Products

Pricing

Contact Us

Vulnerabilities

21 / tcp

-1405763575 | 2025-02-18T02:54:09.976784

80 / tcp

-85749389 | 2025-03-12T18:39:05.968312

443 / tcp

2052662198 | 2025-03-14T16:14:25.457287