GeneralInformation

Hostnames	ads.crm.todayistheday.app static.40.80.161.5.clients.your-server.de
Domains	todayistheday.app your-server.de
Country	United States
City	Ashburn
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS213230
Operating System	Linux

WebTechnologies

JavaScript frameworks

React

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443

22 / tcp

687611896 | 2025-03-14T19:52:30.988421

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.10
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBMEzscUkqQiUb6gstUx11+MP
rDRskQ/MjHvEJdnxNNZS48Rqv5sopgB/oo4CJt5JU9N8sqLA9RAGIJjrIpVYrJE=
Fingerprint: 88:4d:93:b5:1e:6f:68:68:b1:a2:30:e4:c6:fc:2b:b9

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

1651973090 | 2025-03-14T16:25:01.931164

Hashes

hash

1659448682

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

967792298

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 14 Mar 2025 16:25:01 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Thu, 20 Jul 2023 09:54:58 GMT
Connection: keep-alive
ETag: "64b90472-264"
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

442475200 | 2025-03-10T11:40:45.667582

Hashes

hash

1597971087

http.dom_hash

736351037

http.favicon.hash

-2009722838

http.html_hash

442475200

http.robots_hash

864332182

http.server_hash

967792298

http.title_hash

479417315

React App

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 10 Mar 2025 11:40:45 GMT
Content-Type: text/html
Content-Length: 644
Connection: keep-alive
Last-Modified: Mon, 27 Jan 2025 05:57:36 GMT
ETag: "67972050-284"
Accept-Ranges: bytes
X-Robots-Tag: noindex, nofollow, nosnippet, noarchive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:d3:a8:1c:1a:b2:a8:7b:5a:b8:96:f6:23:6c:b5:c1:d6:76
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Feb 27 07:46:29 2025 GMT
            Not After : May 28 07:46:28 2025 GMT
        Subject: CN=ads.crm.todayistheday.app
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ab:cc:5e:5a:e9:7c:f4:76:af:4c:97:fa:51:05:
                    ae:f8:18:1d:fb:68:7e:be:f1:59:52:2d:b5:c5:96:
                    af:79:3f:02:77:85:eb:6e:4e:df:fe:0a:8f:a3:a3:
                    ff:10:76:4b:01:dc:cb:f2:08:f9:b5:0e:76:2d:f3:
                    4e:f5:26:a0:bf:ee:01:6d:39:79:86:fe:5a:46:71:
                    c0:ad:7d:93:d6:41:14:78:9f:a9:34:dd:95:ad:2d:
                    30:01:b3:30:a3:84:ef:67:fb:5f:83:a6:f6:01:4f:
                    0b:45:59:c2:fc:94:87:bd:c9:eb:f3:d9:32:84:67:
                    0d:bd:0c:5c:d7:fa:77:21:d5:83:6e:48:aa:ee:c8:
                    e6:f3:53:06:cc:c6:0c:11:db:9b:3a:c6:3c:d8:ea:
                    05:78:bd:ed:2f:28:c5:89:14:dc:2c:65:a0:52:21:
                    c2:bd:bc:f5:af:7f:08:f7:bc:2d:8c:17:bd:d3:ac:
                    27:1a:34:dd:c0:13:d9:c7:4d:22:4d:a8:a6:2a:84:
                    c8:93:45:25:62:28:1d:51:d4:f0:a3:0d:6d:36:92:
                    c6:e8:23:3c:f2:51:22:81:da:52:c2:f1:67:f7:22:
                    02:65:40:44:4a:b9:47:c9:af:12:6c:1f:21:ff:e6:
                    ab:0f:db:fc:0e:af:a4:b6:b4:4c:8f:79:0a:06:d1:
                    07:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                64:29:CF:F3:04:AD:74:F2:B9:4C:1F:45:8E:ED:1A:00:28:BE:A2:59
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:ads.crm.todayistheday.app
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb 27 08:45:00.082 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:64:C9:A1:DF:FD:19:13:03:06:EB:DF:79:
                                B4:88:69:25:0D:32:21:E9:08:BF:5A:B6:90:29:DF:BA:
                                D9:35:48:3A:02:21:00:8E:BE:2B:DA:5F:73:40:5B:75:
                                16:CB:07:5C:BC:B8:5E:B4:BF:32:57:C6:91:5F:8C:FE:
                                87:69:95:FB:88:DC:DB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 27 08:45:00.086 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:27:81:66:8C:E5:46:42:F3:43:D2:4A:E4:
                                81:C3:B9:E1:A8:28:E2:26:D3:A0:6D:D3:09:8A:C3:E5:
                                F4:17:E6:F9:02:20:29:BA:52:D3:7D:48:78:E1:1C:DB:
                                EC:CE:38:37:55:91:7E:64:2E:F0:5C:9F:D4:A3:77:9F:
                                18:91:AA:7F:E3:B6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        07:2b:e0:08:54:2d:3a:cf:cf:9c:25:22:ea:8d:93:c8:b5:06:
        67:95:2e:34:27:39:2f:44:d6:63:bf:55:dc:b5:03:8d:d3:f9:
        58:32:95:e8:b5:e2:89:13:84:6a:80:84:e1:af:a5:e8:ff:3a:
        9a:d6:66:d0:12:25:96:c3:c3:54:c5:23:44:79:34:f3:a0:e8:
        1d:aa:87:2e:e5:fe:c6:26:36:88:3d:fc:31:1d:00:e3:ff:02:
        fd:32:50:8b:e1:d7:c9:9f:f0:9e:56:f8:26:ee:8a:9a:d7:2b:
        8f:a8:a3:43:a5:47:2f:83:72:83:2d:f5:53:75:9b:21:01:95:
        3e:10:e0:9f:5b:3b:a2:21:57:17:7e:ae:31:f0:ac:ee:42:41:
        fe:bc:0c:d8:32:1d:52:d5:ca:95:a9:2f:31:9d:a1:d9:69:4e:
        7f:f2:da:66:36:40:e2:d9:ee:02:60:5f:31:83:d2:9e:8c:26:
        d5:46:32:a0:d4:c8:6e:c3:59:5d:68:5d:ab:51:39:e3:74:6a:
        72:e6:f7:50:23:9d:70:97:51:0a:03:54:1c:d4:6c:8c:bf:9a:
        56:7b:9f:da:58:07:37:5c:5e:a3:e8:21:1a:49:37:1d:f0:65:
        48:c5:ea:06:38:e0:c0:83:bb:89:1b:b7:32:85:e0:68:ab:dc:
        ee:ea:9f:1e

Vulnerabilities

5.161.80.40

Last Seen: 2025-03-14

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

22 / tcp

687611896 | 2025-03-14T19:52:30.988421

OpenSSH8.9p1 Ubuntu 3ubuntu0.10

80 / tcp

1651973090 | 2025-03-14T16:25:01.931164

Hashes

nginx1.18.0

443 / tcp

442475200 | 2025-03-10T11:40:45.667582

Hashes

nginx1.18.0

Products

Pricing

Contact Us

5.161.80.40

Last Seen: 2025-03-14

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 687611896 | 2025-03-14T19:52:30.988421

OpenSSH8.9p1 Ubuntu 3ubuntu0.10

80 / tcp 1651973090 | 2025-03-14T16:25:01.931164

Hashes

nginx1.18.0

443 / tcp 442475200 | 2025-03-10T11:40:45.667582

Hashes

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

687611896 | 2025-03-14T19:52:30.988421

80 / tcp

1651973090 | 2025-03-14T16:25:01.931164

443 / tcp

442475200 | 2025-03-10T11:40:45.667582