GeneralInformation

Hostnames	tau.linac.de
Domains	linac.de
Country	Germany
City	Nürnberg
Organization	netcup GmbH
ISP	netcup GmbH
ASN	AS197540

WebTechnologies

UI frameworks

Bootstrap3.3.7

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024

CVE-2024-6484

6.4A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting (XSS) attacks. The issue is present in the carousel component, where the data-slide and data-slide-to attributes can be exploited through the href attribute of an <a> tag due to inadequate sanitization. This vulnerability could potentially enable attackers to execute arbitrary JavaScript within the victim's browser.

2019

CVE-2019-8331

6.1In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.

2018

CVE-2018-20677

6.1In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.

CVE-2018-20676

6.1In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.

CVE-2018-14042

6.1In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.

CVE-2018-14040

6.1In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.

2016

CVE-2016-10735

6.1In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.

OpenPorts

25 80 222 443 4000 9090

25 / tcp

-823803398 | 2025-02-25T01:55:05.608871

220 e6683fc1bfb7 ESMTP
250-e6683fc1bfb7 Nice to meet you, 224.238.215.60
250-PIPELINING
250-8BITMIME
250-SMTPUTF8
250-AUTH LOGIN PLAIN
250 STARTTLS

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number:
            ae:54:b5:4a:55:35:e7:02
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=localhost
        Validity
            Not Before: Feb 12 11:32:58 2015 GMT
            Not After : Feb  9 11:32:58 2025 GMT
        Subject: CN=localhost
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e9:9e:50:aa:1c:3e:a1:67:e1:b4:48:8c:1c:4d:
                    f6:1e:df:78:9b:04:c1:a4:07:e3:b7:7b:cf:a5:7f:
                    0c:ec:33:02:4f:01:ec:d7:17:17:bd:0e:25:43:7a:
                    f0:ad:e0:d3:39:67:68:25:e1:04:cb:b8:0c:c5:7a:
                    87:d2:3c:34:59:f0:71:fb:c2:08:25:4e:bd:c6:cb:
                    4e:c9:3e:c5:44:50:ef:03:5c:93:45:76:36:ca:df:
                    4a:e6:ce:92:2a:47:a7:fd:e6:cc:7e:66:51:fb:4d:
                    cd:0f:85:05:b0:3c:e4:cf:41:5f:81:c8:eb:91:79:
                    ab:30:5e:44:87:95:17:5f:ff:bd:60:77:94:c6:5a:
                    74:80:c0:2d:fb:f4:ae:99:29:a0:09:ac:ac:c5:92:
                    e3:2e:97:78:b9:7c:fe:5f:e2:55:c6:c9:35:00:28:
                    35:36:81:0e:ee:55:89:0b:fd:d6:04:fe:cc:21:cb:
                    b6:c1:5b:0c:77:65:de:80:b4:f4:81:66:1f:4f:5f:
                    e3:b0:81:fa:e1:4f:e6:4b:f4:95:5c:2f:50:87:13:
                    25:f5:87:e4:a3:69:31:d4:e8:98:84:3c:61:1e:ce:
                    f9:44:96:61:ac:d4:71:81:f8:b0:81:26:f9:d0:6c:
                    38:34:04:1a:0c:8c:6b:fc:32:4f:74:b8:60:9e:96:
                    3a:51
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        15:e6:f0:63:dd:63:4b:1c:98:c5:05:96:00:ea:17:37:1e:be:
        37:46:0d:c7:b4:41:f6:e8:47:e3:3b:58:37:66:e7:5d:89:cf:
        64:9b:45:38:19:0f:fe:27:6b:8d:93:84:e0:ce:67:3f:73:d4:
        07:0c:cc:b8:31:d9:93:59:cd:58:41:cf:4a:1d:09:4e:09:56:
        13:82:12:4b:3f:3b:34:b2:29:e1:b0:8c:86:f8:24:06:3b:76:
        1f:8a:8e:ed:7e:e8:c3:5f:40:9e:2b:d4:7c:da:49:55:c7:d3:
        e2:65:a4:90:da:27:bd:cd:43:62:72:7e:a1:0b:98:9d:66:4d:
        ca:6d:90:0f:cd:ea:b4:16:86:5c:f2:71:30:52:95:fa:20:c1:
        ff:71:6b:08:15:3c:04:cf:e0:0b:b0:82:31:e5:d7:62:48:d8:
        75:55:b3:58:2e:eb:96:37:b2:5b:da:1d:10:ab:d0:1e:3e:2a:
        0d:46:60:d2:cb:71:b1:5c:2b:e3:44:1e:b1:e6:3f:1c:bd:4e:
        74:e1:67:0a:75:76:c3:50:53:e5:e4:ca:5c:fc:21:40:0d:59:
        22:c7:61:93:8c:b4:dd:9e:e5:22:88:77:04:ed:97:90:bc:63:
        1b:de:b9:8f:18:29:bd:60:0c:4c:67:32:b6:93:54:65:d0:0e:
        a3:e5:7a:e8

80 / tcp

-1104084038 | 2025-02-24T01:33:51.358756

Hashes

hash

-501133361

http.dom_hash

-320243686

http.html_hash

-1104084038

http.server_hash

1081824176

http.title_hash

86720323

Default Site

HTTP/1.1 200 OK
Server: openresty
Date: Mon, 24 Feb 2025 01:33:51 GMT
Content-Type: text/html
Content-Length: 1033
Last-Modified: Mon, 01 Jul 2024 11:38:08 GMT
Connection: keep-alive
ETag: "66829520-409"
Accept-Ranges: bytes

CVE-2024-6484 CVE-2019-8331 CVE-2018-20677 CVE-2018-20676 CVE-2018-14042 2 moreCVE-2018-14040 CVE-2016-10735

222 / tcp

877794410 | 2025-02-15T15:02:16.171445

SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u3
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBMdPm0WdL+bS8iWRx3A5FDsz
r+Lx5jax+soG4cj0latHb4G0JfX6uh0nPI7I173oGn7pt932LJV3VpGx7IGJO+Y=
Fingerprint: 48:cb:9d:19:2f:20:e9:c9:cc:4a:02:ec:56:e0:e2:63

Kex Algorithms:
	sntrup761x25519-sha512@openssh.com
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

443 / tcp

1326801314 | 2025-02-27T13:56:33.967594

SSL Error: TLSV1_UNRECOGNIZED_NAME

4000 / tcp

-1246004407 | 2025-02-24T23:27:34.035275

HTTP/1.1 400 Bad Request
Connection: close

9090 / tcp

-1740683364 | 2025-02-27T13:56:28.131807

Hashes

hash

-1528252818

http.dom_hash

-220894803

http.html_hash

-1740683364

http.title_hash

-995548052

Moved

HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Location: https://45.132.245.25/

45.132.245.25

Last Seen: 2025-02-27

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

25 / tcp

-823803398 | 2025-02-25T01:55:05.608871

80 / tcp

-1104084038 | 2025-02-24T01:33:51.358756

Hashes

OpenResty

222 / tcp

877794410 | 2025-02-15T15:02:16.171445

OpenSSH9.2p1 Debian 2+deb12u3

443 / tcp

1326801314 | 2025-02-27T13:56:33.967594

4000 / tcp

-1246004407 | 2025-02-24T23:27:34.035275

9090 / tcp

-1740683364 | 2025-02-27T13:56:28.131807

Hashes

Products

Pricing

Contact Us

45.132.245.25

Last Seen: 2025-02-27

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

25 / tcp -823803398 | 2025-02-25T01:55:05.608871

80 / tcp -1104084038 | 2025-02-24T01:33:51.358756

Hashes

OpenResty

222 / tcp 877794410 | 2025-02-15T15:02:16.171445

OpenSSH9.2p1 Debian 2+deb12u3

443 / tcp 1326801314 | 2025-02-27T13:56:33.967594

4000 / tcp -1246004407 | 2025-02-24T23:27:34.035275

9090 / tcp -1740683364 | 2025-02-27T13:56:28.131807

Hashes

Products

Pricing

Contact Us

Vulnerabilities

25 / tcp

-823803398 | 2025-02-25T01:55:05.608871

80 / tcp

-1104084038 | 2025-02-24T01:33:51.358756

222 / tcp

877794410 | 2025-02-15T15:02:16.171445

443 / tcp

1326801314 | 2025-02-27T13:56:33.967594

4000 / tcp

-1246004407 | 2025-02-24T23:27:34.035275

9090 / tcp

-1740683364 | 2025-02-27T13:56:28.131807