5.35.249.86

Regular View Raw Data
Last Seen: 2025-01-18

GeneralInformation

Hostnames engels-kerzen.de
www.engels-kerzen.de
vanameland08.de
Domains engels-kerzen.de vanameland08.de 
Country France
City Strasbourg
Organization Host Europe GmbH
ISP Host Europe GmbH
ASN AS8972

WebTechnologies

Blogs
Databases
Ecommerce
Hosting panels
JavaScript frameworks
JavaScript libraries
Photo galleries
Programming languages
Translation
UI frameworks
WordPress plugins

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024
CVE-2024-5458
5.3In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, due to a code logic error, filtering functions such as filter_var when validating URLs (FILTER_VALIDATE_URL) for certain types of URLs the function will result in invalid user information (username + password part of URLs) being treated as valid user information. This may lead to the downstream code accepting invalid URLs as valid and parsing them incorrectly.
2022
CVE-2022-4900
6.2A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.
2020
CVE-2020-11023
6.9In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022
6.9In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
2019
CVE-2019-11358
6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
2015
CVE-2015-9251
6.1jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
2013
CVE-2013-2220
7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
2007
CVE-2007-3205
5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.
1542300585 | 2025-01-07T17:30:46.488380
  
21 / tcp
1123267429 | 2025-01-09T11:29:55.302684
  
22 / tcp
-833936650 | 2025-01-14T04:37:17.376315
  
25 / tcp
112840649 | 2025-01-13T17:07:42.239092
  
53 / tcp
796828835 | 2025-01-10T11:27:44.691904
  
53 / udp
1216332663 | 2025-01-14T13:23:43.034316
  
80 / tcp
-1134041003 | 2025-01-17T11:01:48.589539
  
110 / tcp
-127552878 | 2025-01-11T08:13:47.450302
  
143 / tcp
-1687764312 | 2025-01-03T23:27:56.064805
  
443 / tcp
1976705086 | 2025-01-08T18:06:11.954101
  
465 / tcp
-628402902 | 2025-01-18T01:25:35.715808
  
993 / tcp
-1577184957 | 2025-01-10T23:56:42.804818
  
995 / tcp
1930184947 | 2025-01-17T14:33:47.879699
  
8443 / tcp
70456250 | 2025-01-09T01:40:41.960325
  
8880 / tcp



Contact Us

Shodan ® - All rights reserved