GeneralInformation

Hostnames

blueleon-store.com
blueleon-store.de
blueleon-store.eu
blueleon.com
blueleon.eu
blueleon.shop
blueleon.store
blueleonstore.eu

Domains

blueleon-store.com blueleon-store.de blueleon-store.eu blueleon.com blueleon.eu blueleon.shop blueleon.store blueleonstore.eu

Country

Germany

City

Berlin

Organization

IONOS SE

ISP

IONOS SE

ASN

AS8560

WebTechnologies

JavaScript libraries

jQuery

jQuery UI

jQuery Migrate5.2.1

UI frameworks

Bootstrap

OpenPorts

22 80 443 3306

22 / tcp

-1881112625 | 2025-04-24T21:09:36.856803

SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u5
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBLWyjE5FvRg2AfQT/N7FaOgq
77NxU9MnnMSf8HihqyYSR72n74LD6iLM0b+kmksOJOVoO6yGrtMhe7yvJ9mteDU=
Fingerprint: 0d:88:b1:07:ca:cd:3f:af:17:ea:d2:f8:82:5d:15:b8

Kex Algorithms:
	sntrup761x25519-sha512
	sntrup761x25519-sha512@openssh.com
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

-567627901 | 2025-04-25T13:31:31.217309

Hashes

hash

-1715839492

http.dom_hash

-133615308

http.html_hash

-567627901

http.server_hash

1305632269

http.title_hash

-187131571

Apache2 Debian Default Page: It works

HTTP/1.1 200 OK
Date: Fri, 25 Apr 2025 13:31:31 GMT
Server: Apache/2.4.62 (Debian)
Last-Modified: Sun, 20 Oct 2024 11:39:18 GMT
ETag: "29cd-624e6fc8d1164"
Accept-Ranges: bytes
Content-Length: 10701
Vary: Accept-Encoding
Content-Type: text/html

Vulnerabilities

443 / tcp

-932037359 | 2025-04-10T23:31:59.574976

Hashes

hash

-1370878040

http.dom_hash

-342405871

http.favicon.hash

-476231906

http.html_hash

-932037359

http.robots_hash

-1022729730

http.server_hash

1305632269

http.title_hash

218603659

phpMyAdmin

HTTP/1.1 200 OK
Date: Thu, 10 Apr 2025 23:31:59 GMT
Server: Apache/2.4.62 (Debian)
Set-Cookie: phpMyAdmin_https=rl03id74c5n2qfduot46mo6fsf; path=/; secure; HttpOnly; SameSite=Strict
Expires: Thu, 10 Apr 2025 23:31:59 +0000
Cache-Control: no-store, no-cache, must-revalidate, pre-check=0, post-check=0, max-age=0
Last-Modified: Thu, 10 Apr 2025 23:31:59 +0000
Set-Cookie: phpMyAdmin_https=rl03id74c5n2qfduot46mo6fsf; path=/; secure; HttpOnly; SameSite=Strict
Set-Cookie: pma_lang_https=en; expires=Sat, 10-May-2025 23:31:59 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=Strict
Set-Cookie: phpMyAdmin_https=i25mlct9vtpc3v7itvc5u34at1; path=/; secure; HttpOnly; SameSite=Strict
X-ob_mode: 1
X-Frame-Options: DENY
Referrer-Policy: no-referrer
Content-Security-Policy: default-src 'self' ;script-src 'self' 'unsafe-inline' 'unsafe-eval' ;style-src 'self' 'unsafe-inline' ;img-src 'self' data:  *.tile.openstreetmap.org;object-src 'none';
X-Content-Security-Policy: default-src 'self' ;options inline-script eval-script;referrer no-referrer;img-src 'self' data:  *.tile.openstreetmap.org;object-src 'none';
X-WebKit-CSP: default-src 'self' ;script-src 'self'  'unsafe-inline' 'unsafe-eval';referrer no-referrer;style-src 'self' 'unsafe-inline' ;img-src 'self' data:  *.tile.openstreetmap.org;object-src 'none';
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: noindex, nofollow
Pragma: no-cache
Vary: Accept-Encoding
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:2a:cf:f1:13:a3:18:5f:e6:a6:e5:ea:83:21:18:17:fa:7b
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E6
        Validity
            Not Before: Mar 16 12:29:40 2025 GMT
            Not After : Jun 14 12:29:39 2025 GMT
        Subject: CN=*.blueleon.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:bb:14:77:fc:68:98:50:3d:00:15:ae:4c:4e:02:
                    43:fe:74:0d:54:97:3a:71:ce:85:9a:05:aa:80:1d:
                    5a:37:e8:6a:90:64:70:ad:c2:8c:40:19:2c:5e:55:
                    77:79:c5:11:d3:6b:97:7f:c2:cb:0d:1c:7d:02:af:
                    30:a6:dd:fc:a1
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                FD:8D:91:5F:CD:92:E6:E8:AE:BD:49:B6:68:F8:3C:13:F6:91:BE:77
            X509v3 Authority Key Identifier: 
                93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
            Authority Information Access: 
                OCSP - URI:http://e6.o.lencr.org
                CA Issuers - URI:http://e6.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.blueleon-store.com, DNS:*.blueleon-store.de, DNS:*.blueleon-store.eu, DNS:*.blueleon.com, DNS:*.blueleon.eu, DNS:*.blueleon.shop, DNS:*.blueleon.store, DNS:*.blueleonstore.eu, DNS:blueleon-store.com, DNS:blueleon-store.de, DNS:blueleon-store.eu, DNS:blueleon.com, DNS:blueleon.eu, DNS:blueleon.shop, DNS:blueleon.store, DNS:blueleonstore.eu
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://e6.c.lencr.org/124.crl
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Mar 16 13:28:10.153 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:55:2D:13:FD:B7:8B:C3:39:4B:E2:0E:B7:
                                03:2B:30:5C:30:03:DE:ED:8D:70:8F:FC:6A:5A:62:5B:
                                EA:5B:DD:18:02:20:03:7E:AC:64:CD:60:74:93:AB:32:
                                74:49:BF:40:96:81:DA:D1:EA:1D:DE:EA:E9:0C:E9:DB:
                                FB:1B:23:7D:1D:89
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Mar 16 13:28:12.163 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:F5:05:63:54:54:B9:BC:19:55:59:86:
                                73:AC:38:6E:0B:14:76:B9:E3:16:B7:1D:71:D8:EB:C4:
                                17:65:32:34:B5:02:20:39:60:63:9E:92:75:80:7F:7B:
                                7C:0F:EE:48:22:95:4D:DE:08:E2:43:68:F9:7C:DF:C8:
                                D5:6C:18:D4:50:5F:16
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:0f:9f:e1:cb:99:c4:8d:b1:b6:e2:7d:5a:a7:d1:
        a5:58:47:80:52:ce:ac:81:56:c9:1e:0d:75:9a:dd:bb:c6:a6:
        b3:3b:50:5e:2b:93:aa:50:a8:02:e3:c4:98:bf:71:59:02:31:
        00:b4:c7:6b:ac:59:dd:2e:1e:dd:9e:8c:1f:c3:d4:d5:4e:e0:
        ff:9b:89:61:8b:2a:27:8f:23:e4:2d:b9:56:32:b6:a7:16:f7:
        b0:ad:1e:4a:2d:06:12:75:c1:cf:42:81:8a

Vulnerabilities

3306 / tcp

2024344435 | 2025-04-25T00:41:12.855884

MySQL:
  Error Message: Host '224.133.56.33' is not allowed to connect to this MySQL server
  Error Code: 1130

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2013(4)

CVE-2013-4365

7.5Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.9 for the Apache HTTP Server allows remote attackers to have an unspecified impact via unknown vectors.

CVE-2013-2765

5.0The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a denial of service (NULL pointer dereference, process crash, and disk consumption) via a POST request with a large body and a crafted Content-Type header.

CVE-2013-0942

4.3Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Agent 7.1 before 7.1.1 for Web for Internet Information Services, and 7.1 before 7.1.1 for Web for Apache, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2013-0941

2.1EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, RSA PAM Agent before 7.0, and RSA Agent before 6.1.4 for Microsoft Windows use an improper encryption algorithm and a weak key for maintaining the stored data of the node secret for the SecurID Authentication API, which allows local users to obtain sensitive information via cryptographic attacks on this data.

2012(3)

CVE-2012-4360

4.3Cross-site scripting (XSS) vulnerability in the mod_pagespeed module 0.10.19.1 through 0.10.22.4 for the Apache HTTP Server allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2012-4001

5.0The mod_pagespeed module before 0.10.22.6 for the Apache HTTP Server does not properly verify its host name, which allows remote attackers to trigger HTTP requests to arbitrary hosts via unspecified vectors, as demonstrated by requests to intranet servers.

CVE-2012-3526

5.0The reverse proxy add forward module (mod_rpaf) 0.5 and 0.6 for the Apache HTTP Server allows remote attackers to cause a denial of service (server or application crash) via multiple X-Forwarded-For headers in a request.

2011(2)

CVE-2011-2688

7.5SQL injection vulnerability in mysql/mysql-auth.pl in the mod_authnz_external module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field.

CVE-2011-1176

4.3The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, which might allow remote attackers to gain privileges by leveraging the root uid and root gid of an mpm-itk process.

2009(2)

CVE-2009-2299

5.0The Artofdefence Hyperguard Web Application Firewall (WAF) module before 2.5.5-11635, 3.0 before 3.0.3-11636, and 3.1 before 3.1.1-11637, a module for the Apache HTTP Server, allows remote attackers to cause a denial of service (memory consumption) via an HTTP request with a large Content-Length value but no POST data.

CVE-2009-0796

2.6Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apache2::Status in mod_perl1 and mod_perl2 for the Apache HTTP Server, when /perl-status is accessible, allows remote attackers to inject arbitrary web script or HTML via the URI.

2007(1)

CVE-2007-4723

7.5Directory traversal vulnerability in Ragnarok Online Control Panel 4.3.4a, when the Apache HTTP Server is used, allows remote attackers to bypass authentication via directory traversal sequences in a URI that ends with the name of a publicly available page, as demonstrated by a "/...../" sequence and an account_manage.php/login.php final component for reaching the protected account_manage.php page.

82.165.111.137

Last Seen: 2025-04-25

Tags:

GeneralInformation

WebTechnologies

OpenPorts

22 / tcp

-1881112625 | 2025-04-24T21:09:36.856803

OpenSSH9.2p1 Debian 2+deb12u5

80 / tcp

-567627901 | 2025-04-25T13:31:31.217309

Hashes

Apache httpd2.4.62

443 / tcp

-932037359 | 2025-04-10T23:31:59.574976

Hashes

Apache httpd2.4.62

3306 / tcp

2024344435 | 2025-04-25T00:41:12.855884

MySQL

Vulnerabilities

Products

Pricing

Contact Us

82.165.111.137

Last Seen: 2025-04-25

Tags:

GeneralInformation

WebTechnologies

OpenPorts

22 / tcp -1881112625 | 2025-04-24T21:09:36.856803

OpenSSH9.2p1 Debian 2+deb12u5

80 / tcp -567627901 | 2025-04-25T13:31:31.217309

Hashes

Apache httpd2.4.62

443 / tcp -932037359 | 2025-04-10T23:31:59.574976

Hashes

Apache httpd2.4.62

3306 / tcp 2024344435 | 2025-04-25T00:41:12.855884

MySQL

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

Products

Pricing

Contact Us

22 / tcp

-1881112625 | 2025-04-24T21:09:36.856803

80 / tcp

-567627901 | 2025-04-25T13:31:31.217309

443 / tcp

-932037359 | 2025-04-10T23:31:59.574976

3306 / tcp

2024344435 | 2025-04-25T00:41:12.855884

Vulnerabilities