GeneralInformation

Hostnames	commercehq.com li459-231.members.linode.com
Domains	commercehq.com linode.com
Cloud Provider	Linode
Cloud Region	us-nj
Country	United States
City	Cedar Knolls
Organization	Linode
ISP	Akamai Connected Cloud
ASN	AS63949

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2013(1)

CVE-2013-2220

7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.

2007(1)

CVE-2007-3205

5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

22 80 443 3306 4500 8081 8900

22 / tcp

1678387714 | 2025-03-13T13:13:53.558173

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDKyptZLDn/S+L5BY6EUzfvKMnEMP+MLO+KSZlIvbOcGGlc
3gw/aOgvksV0NG5RBTJDlrv4sWUt5/Lymkz/oOgH/JGcP5cGdhrN8njqoakG5sYUXlKe9kq75lRO
P55DcSfKqnhS39ukQ/0EqIpm9Th99br9T7qA35O5ezGOZPRnKg/6Xil6qaMtpEZj7DaVO7kYX/+m
b0w7IwSNxAM/QPPr/ETD2FUYLO/GUtgwkwc8MEau6X40JzGtorijdW9LjTTla0yyAFxBl0NUGy3k
KaL246MtYJF7/8NnMyrf1wRFjniCR4cvTLsJ2CheD/LbcgVmQUYGtlHhSWgpyBbxDMhl
Fingerprint: d7:d6:e9:1f:87:90:d3:9a:0b:48:be:92:5d:bc:e7:1e

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

-1468433693 | 2025-03-15T22:10:23.266438

Hashes

hash

-380151854

http.dom_hash

-2006505642

http.html_hash

-1468433693

http.server_hash

-1340961475

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 15 Mar 2025 22:10:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.31
Location: https://commercehq.com

Vulnerabilities

1 1

443 / tcp

-1468433693 | 2025-03-27T16:24:57.997121

Hashes

hash

313350979

http.dom_hash

-2006505642

http.html_hash

-1468433693

http.server_hash

-1340961475

HTTP/1.1 500 Internal Server Error
Server: nginx
Date: Thu, 27 Mar 2025 16:24:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.31
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: _rclientSessionId=e3309c24ca338bd9402b24825639c; expires=Thu, 03-Apr-2025 16:24:57 GMT; Max-Age=604800; path=/; HttpOnly

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:ba:0b:3b:0a:90:5e:90:72:b1:52:e9:ad:32:29:f1:43:c4
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Jan 16 11:39:01 2025 GMT
            Not After : Apr 16 11:39:00 2025 GMT
        Subject: CN=commercehq.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ba:bc:f6:01:d2:06:94:94:24:cf:ab:f8:2a:da:
                    18:7e:7f:57:63:00:89:fb:40:2b:40:2f:d2:7b:e2:
                    12:9e:6a:32:94:11:c2:25:bb:74:4b:94:69:81:e9:
                    28:b6:27:73:76:e2:0f:6a:c1:0e:30:5c:af:bf:a6:
                    86:75:e0:2d:60:8d:af:80:3e:b3:d1:c6:ab:ca:77:
                    1b:5e:30:f2:8c:cd:c7:a4:0a:c4:f5:f8:36:eb:5a:
                    4e:08:81:ed:ec:7c:e6:92:88:78:2e:92:86:d4:a5:
                    9e:25:7a:7e:d2:cd:9f:fb:3d:04:f1:42:04:a8:25:
                    11:65:43:61:e2:b7:d1:d1:ee:56:ad:56:f3:ac:47:
                    38:27:63:3b:a8:4b:06:db:de:61:c4:78:df:4e:aa:
                    fb:9c:84:f1:7e:79:91:a0:c6:8f:07:8d:28:be:64:
                    88:3f:1d:27:97:2e:a1:61:33:93:4d:ab:7e:48:e6:
                    c5:4d:53:36:80:ca:7a:fd:f9:95:ed:34:e5:6b:0e:
                    0f:cd:b6:40:a7:0e:2b:f8:54:23:e1:3e:ed:4f:2f:
                    87:e9:42:aa:15:f7:15:1d:75:5a:46:7a:f7:e1:95:
                    1d:9f:b9:f7:b4:89:71:43:c0:55:f7:c1:df:4d:3e:
                    35:bd:9e:f8:c8:e8:ff:52:8d:4b:69:da:91:79:33:
                    25:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                F7:E6:C3:86:94:25:DD:B1:C7:D0:F6:45:33:8B:C2:9F:F1:94:E0:C1
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.commercehq.com, DNS:commercehq.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Jan 16 12:37:31.751 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:4D:9D:B2:BB:15:7C:A2:05:11:1F:61:E6:
                                1B:71:01:FF:2E:F0:01:53:B6:D8:D7:51:76:A4:46:7F:
                                9C:19:93:A6:02:20:2B:A0:B6:C0:4A:61:BD:A2:56:3A:
                                17:42:06:3F:CB:B4:AF:CA:75:99:D7:38:AF:1A:9E:CB:
                                6F:77:DF:35:24:72
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Jan 16 12:37:31.804 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:85:8F:C7:41:67:C8:A8:3F:8F:DE:77:
                                DE:02:5D:31:CD:20:9F:D4:A5:E6:36:15:1C:C1:DF:95:
                                75:C9:45:05:71:02:21:00:F8:5E:A1:36:FE:BD:25:6B:
                                DE:E9:6C:E0:8F:E6:7B:9C:AE:F8:5B:A5:E3:24:9B:B6:
                                F5:24:70:FE:89:21:DB:D9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        03:0b:71:f4:ef:f2:c7:5d:92:93:9a:9f:83:03:76:19:36:26:
        2c:e2:08:67:25:64:e3:08:8d:31:94:c6:1c:fa:c1:fb:02:dc:
        3f:70:d0:1a:99:ad:51:f8:1a:c1:ec:3c:83:d7:31:fd:43:f5:
        10:8f:5c:bf:12:14:60:8f:09:0f:8e:57:59:0d:dc:c4:16:8a:
        6d:22:8f:b9:f8:60:7e:25:8d:75:98:0e:02:13:6c:33:44:4a:
        55:cd:c5:65:96:45:bf:08:3e:c6:99:18:f9:3a:bf:c7:f9:e8:
        f4:86:1d:6a:29:6f:91:49:d5:26:34:32:75:0e:56:5f:d8:d1:
        6a:6a:3e:70:2a:3f:c2:37:78:99:9b:6c:cb:fb:fc:74:6d:83:
        88:61:af:19:9d:f4:c5:34:fd:7b:f7:d3:10:51:ac:18:c4:e8:
        84:7c:39:c1:57:63:64:9e:8b:64:d1:4e:0c:9d:60:f9:44:40:
        76:27:45:21:12:f9:7d:53:ff:27:bc:07:b8:33:69:57:66:6f:
        77:42:a1:68:a2:32:41:66:ea:78:a5:aa:a0:31:8c:cf:f9:82:
        e7:37:c9:4a:1f:eb:d8:a8:14:27:da:b8:e0:bd:13:89:e9:1b:
        bd:49:32:bc:e6:22:75:d7:ef:99:b2:ef:33:e5:1f:77:4f:37:
        22:8e:81:b7

Vulnerabilities

1 1

3306 / tcp

-1544729339 | 2025-03-13T05:53:45.612726

MySQL:
  Protocol Version: 10
  Version: 5.7.29-32
  Capabilities: 65535
  Server Language: 8
  Server Status: 2
  Extended Server Capabilities: 49663
  Authentication Plugin: mysql_native_password

4500 / tcp

-1246004407 | 2025-03-27T15:44:20.358455

HTTP/1.1 400 Bad Request
Connection: close

8081 / tcp

-585233471 | 2025-03-26T06:46:20.615805

HTTP/1.0 404 Not Found
Server: SimpleHTTP/0.6 Python/3.6.9
Date: Wed, 26 Mar 2025 06:46:20 GMT
Content-type: text/plain

8900 / tcp

1965132531 | 2025-03-21T19:25:38.397071

Hashes

hash

-247509591

http.dom_hash

1239617585

http.html_hash

1965132531

http.server_hash

-1340961475

http.title_hash

-1030444411

403 Forbidden

HTTP/1.1 403 Forbidden
Server: nginx
Date: Fri, 21 Mar 2025 19:25:38 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 564
Connection: keep-alive
Vary: Accept-Encoding

50.116.59.231

Last Seen: 2025-03-27

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

1678387714 | 2025-03-13T13:13:53.558173

OpenSSH7.6p1 Ubuntu 4ubuntu0.3

80 / tcp

-1468433693 | 2025-03-15T22:10:23.266438

Hashes

nginx

443 / tcp

-1468433693 | 2025-03-27T16:24:57.997121

Hashes

nginx

3306 / tcp

-1544729339 | 2025-03-13T05:53:45.612726

MySQL5.7.29-32

4500 / tcp

-1246004407 | 2025-03-27T15:44:20.358455

8081 / tcp

-585233471 | 2025-03-26T06:46:20.615805

8900 / tcp

1965132531 | 2025-03-21T19:25:38.397071

Hashes

nginx

Products

Pricing

Contact Us

50.116.59.231

Last Seen: 2025-03-27

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 1678387714 | 2025-03-13T13:13:53.558173

OpenSSH7.6p1 Ubuntu 4ubuntu0.3

80 / tcp -1468433693 | 2025-03-15T22:10:23.266438

Hashes

nginx

443 / tcp -1468433693 | 2025-03-27T16:24:57.997121

Hashes

nginx

3306 / tcp -1544729339 | 2025-03-13T05:53:45.612726

MySQL5.7.29-32

4500 / tcp -1246004407 | 2025-03-27T15:44:20.358455

8081 / tcp -585233471 | 2025-03-26T06:46:20.615805

8900 / tcp 1965132531 | 2025-03-21T19:25:38.397071

Hashes

nginx

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

1678387714 | 2025-03-13T13:13:53.558173

80 / tcp

-1468433693 | 2025-03-15T22:10:23.266438

443 / tcp

-1468433693 | 2025-03-27T16:24:57.997121

3306 / tcp

-1544729339 | 2025-03-13T05:53:45.612726

4500 / tcp

-1246004407 | 2025-03-27T15:44:20.358455

8081 / tcp

-585233471 | 2025-03-26T06:46:20.615805

8900 / tcp

1965132531 | 2025-03-21T19:25:38.397071