GeneralInformation

Hostnames	ec2-65-1-217-199.ap-south-1.compute.amazonaws.com
Domains	amazonaws.com
Cloud Provider	Amazon
Cloud Region	ap-south-1
Cloud Service	EC2
Country	India
City	Mumbai
Organization	Amazon Data Services India
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

JavaScript frameworks

AngularJS1.5.5

JavaScript graphics

MathJax

JavaScript libraries

html2canvas

jQuery1.12.0

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024(3)

CVE-2024-21490

7.5This affects versions of the package angular from 1.3.0. A regular expression used to split the value of the ng-srcset directive is vulnerable to super-linear runtime due to backtracking. With large carefully-crafted input, this can result in catastrophic backtracking and cause a denial of service. **Note:** This package is EOL and will not receive any updates to address this issue. Users should migrate to [@angular/core](https://www.npmjs.com/package/@angular/core).

CVE-2024-8373

4.8Improper sanitization of the value of the [srcset] attribute in <source> HTML elements in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-community/attacks/Content_Spoofing . This issue affects all versions of AngularJS. Note: The AngularJS project is End-of-Life and will not receive any updates to address this issue. For more information see here https://docs.angularjs.org/misc/version-support-status .

CVE-2024-8372

4.8Improper sanitization of the value of the '[srcset]' attribute in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-community/attacks/Content_Spoofing . This issue affects AngularJS versions 1.3.0-rc.4 and greater. Note: The AngularJS project is End-of-Life and will not receive any updates to address this issue. For more information see here https://docs.angularjs.org/misc/version-support-status .

2020(3)

CVE-2020-11023

6.9In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-11022

6.9In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-7676

5.4angular.js prior to 1.8.0 allows cross site scripting. The regex-based input HTML replacement may turn sanitized code into unsanitized one. Wrapping "<option>" elements in "<select>" ones changes parsing behavior, leading to possibly unsanitizing code.

2019(2)

CVE-2019-11358

6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

CVE-2019-10768

7.5In AngularJS before 1.7.9 the function `merge()` could be tricked into adding or modifying properties of `Object.prototype` using a `__proto__` payload.

2015(1)

CVE-2015-9251

6.1jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 443

80 / tcp

590474204 | 2025-03-29T20:13:02.220912

Hashes

hash

1130666497

http.dom_hash

-2006505642

http.html_hash

590474204

HTTP/1.1 302 Found
Date: Sat, 29 Mar 2025 20:13:01 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 77
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Pragma: no-cache
Expires: 0
Location: https://crystal-dashboard.aakash.ac.in/cms-login
Vary: Accept

443 / tcp

-779246842 | 2025-03-29T20:13:06.940916

Hashes

hash

137780642

http.dom_hash

957902109

http.favicon.hash

410440564

http.html_hash

-779246842

http.title_hash

1475361727

Aakash Digital - Live Classes

HTTP/1.1 200 OK
Date: Sat, 29 Mar 2025 20:13:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 5200
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-store
Pragma: no-cache
Expires: 0
ETag: W/"1450-tJ6c115sto0Yg0D/DPGsLp44CpE"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0b:ac:06:8d:7d:3b:a4:96:fd:df:47:d2:38:cd:c3:d3
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: May 23 00:00:00 2024 GMT
            Not After : Jun 21 23:59:59 2025 GMT
        Subject: CN=*.aakash.ac.in
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b0:9d:fa:b7:ac:ee:30:b4:59:10:7a:39:0b:05:
                    c9:57:78:3f:d3:d0:d3:94:43:07:53:40:30:50:7d:
                    76:bd:4c:be:ce:2e:5e:f1:25:2c:a2:37:86:30:6c:
                    a2:38:a9:49:6e:2e:a8:8b:30:00:6f:a3:f9:a4:c6:
                    e2:54:2f:49:3e:ce:4e:65:b5:74:d3:75:51:86:55:
                    2d:cf:45:b4:73:0a:2c:e5:37:6a:d0:72:89:e9:28:
                    10:43:0b:f9:90:4f:9e:7c:6e:6c:f7:5f:85:e6:4a:
                    f3:45:e6:02:0c:c6:0e:15:4d:36:dc:16:46:6a:3d:
                    58:b3:9e:01:5a:ce:a1:9b:a0:f1:bc:0f:a1:ad:3a:
                    db:35:0b:b7:84:05:48:53:48:cf:5e:cb:1d:33:34:
                    42:a1:48:da:f4:17:bf:80:80:59:10:59:ab:0d:6d:
                    39:45:03:20:9d:0b:df:e3:ba:de:c9:df:6a:9a:26:
                    21:5d:24:40:07:a2:35:9c:8a:d0:5a:82:3f:77:c2:
                    7b:c1:fc:d7:06:63:5d:97:b8:48:d2:b3:bb:12:12:
                    08:03:cd:d1:32:2a:a2:83:7c:12:ce:4e:ef:10:4b:
                    ac:cf:de:03:d6:44:9b:fc:2e:07:b8:d7:be:b9:b1:
                    6b:7e:e1:72:92:0e:8e:a7:9b:fd:e9:d8:54:0b:ab:
                    50:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                DB:B4:99:F5:B4:21:54:00:C8:D2:CD:ED:E6:BC:E0:48:7E:52:3F:27
            X509v3 Subject Alternative Name: 
                DNS:*.aakash.ac.in
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : May 23 09:20:21.336 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:13:40:FF:14:01:61:EF:97:7E:30:8C:CD:
                                69:93:24:1A:49:90:B1:EF:FB:B0:52:81:29:AD:8C:B4:
                                76:68:41:BD:02:21:00:C6:1D:B5:FF:30:19:2A:CA:E9:
                                01:C7:9C:9E:B0:17:79:23:5D:FA:C8:A1:35:4D:CB:31:
                                85:41:61:94:A2:CD:80
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : May 23 09:20:21.388 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C0:E0:CA:C6:7E:62:B4:C5:D2:BC:B8:
                                95:75:6A:4B:67:7E:8F:57:C1:88:69:62:EA:3E:34:93:
                                82:B7:5D:68:3C:02:20:7D:36:F7:A4:8A:21:DE:FE:96:
                                28:02:4C:B8:EB:26:D3:61:B4:DB:48:F5:10:D3:AB:E0:
                                57:5B:35:F5:85:46:82
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : May 23 09:20:21.403 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7D:7A:D7:36:48:FD:AD:B3:AF:10:04:0F:
                                EB:F1:CB:64:85:2A:F6:D1:AB:00:EC:7C:A8:0F:8E:52:
                                19:49:82:46:02:20:6B:E3:39:BA:03:8F:E8:02:BD:FD:
                                04:C9:8D:88:40:CC:F8:1B:4C:6D:E4:BC:E2:6F:8F:7F:
                                65:64:92:C4:9E:66
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2b:e6:a8:fe:47:e1:c8:ae:df:53:d6:5d:8c:be:57:3e:39:45:
        47:d5:01:2e:2d:6a:7b:1c:ec:2a:aa:3a:79:55:1c:fc:f8:10:
        0b:f7:6a:b6:19:12:7c:fd:3a:ed:d6:ca:f0:83:81:9b:11:e0:
        82:d1:b3:e2:79:e2:5f:ef:0f:a1:7b:d7:b8:58:8f:52:4c:48:
        e6:89:1a:1a:c3:40:bb:64:c4:d7:58:33:f7:36:b0:a4:a9:68:
        dc:0c:67:9c:b0:b2:6a:1f:7a:0a:99:ed:94:2e:d5:61:70:38:
        4c:66:f9:75:0d:dc:c3:1d:3c:5b:86:71:1f:82:8b:56:3f:7f:
        b2:12:d4:3c:80:b1:f4:ff:c9:7d:ce:60:f6:74:99:73:f2:6e:
        e2:9c:8c:e7:18:5d:c0:a9:87:c2:38:d6:c2:be:02:df:10:2b:
        a0:a7:06:2b:de:66:49:df:16:30:df:75:68:15:81:3f:af:1d:
        f4:8a:1a:27:60:83:47:86:cc:fc:8c:3c:17:cd:1d:38:f2:34:
        16:19:eb:ac:fd:2b:e5:c1:2d:b2:c3:ef:06:71:15:10:0e:9b:
        fc:fc:52:a4:58:6e:b0:a1:7a:73:9c:59:b9:fd:45:bc:cd:4d:
        85:18:e6:15:be:45:0c:67:3b:1e:a2:a1:46:8b:d6:90:dd:83:
        7f:81:09:12

Vulnerabilities

2 7

65.1.217.199

Last Seen: 2025-03-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

590474204 | 2025-03-29T20:13:02.220912

Hashes

443 / tcp

-779246842 | 2025-03-29T20:13:06.940916

Hashes

Products

Pricing

Contact Us

65.1.217.199

Last Seen: 2025-03-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

80 / tcp 590474204 | 2025-03-29T20:13:02.220912

Hashes

443 / tcp -779246842 | 2025-03-29T20:13:06.940916

Hashes

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

590474204 | 2025-03-29T20:13:02.220912

443 / tcp

-779246842 | 2025-03-29T20:13:06.940916