GeneralInformation

Hostnames	moduluniversity-prod.magiclick.net modul.ac.at www.modul.ac.at ip85-215-138-113.pbiaas.com
Domains	magiclick.net modul.ac.at pbiaas.com
Country	Germany
City	Berlin
Organization	IONOS SE
ISP	IONOS SE
ASN	AS8560
Operating System	Windows

WebTechnologies

CMS

Progress Sitefinity14.4.8124

Tag managers

Google Tag Manager

UI frameworks

Bootstrap

Video players

YouTube

Web frameworks

Microsoft ASP.NET

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 443

703707298 | 2024-12-30T22:48:37.280463

80 / tcp

IIS Windows Server

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Wed, 03 Jul 2024 17:37:46 GMT
Accept-Ranges: bytes
ETag: "75bd8ab76fcdda1:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Mon, 30 Dec 2024 22:48:34 GMT
Content-Length: 703

-803507616 | 2025-01-04T12:53:15.744475

443 / tcp

Austria's Private International University | Modul University Vienna

HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Content-Security-Policy: default-src 'self'; script-src 'self' *.googleapis.com *.gstatic.com apis.google.com connect.facebook.net ajax.aspnetcdn.com platform.twitter.com *.twimg.com platform.linkedin.com *.google.com www.youtube.com syndication.twitter.com/ s.ytimg.com publish.twitter.com platform.stumbleupon.com/1/widgets.js *.googletagmanager.com *.analytics.google.com *.azureedge.net https://cdn.insight.sitefinity.com https://dec.azureedge.net web-chat.nativechat.com cdn.ampproject.org 'unsafe-inline' 'unsafe-eval'; style-src 'self' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com platform.twitter.com/css/ *.twimg.com use.fontawesome.com/releases/v5.6.3/css/all.css *.analytics.google.com https://cdn.insight.sitefinity.com https://dec.azureedge.net web-chat.nativechat.com 'unsafe-inline'; img-src 'self' *.gstatic.com *.googleapis.com platform.tumblr.com web.facebook.com www.facebook.com www.redditstatic.com www.linkedin.com i.ytimg.com pbs.twimg.com platform.twitter.com/css/ *.twimg.com data: blob: syndication.twitter.com static.licdn.com/scds/common/u/images/apps/connect/sprites/sprite_connect_v14.png *.googletagmanager.com *.cdninstagram.com *.google.com *.google.co.uk https://cdn.insight.sitefinity.com https://dec.azureedge.net web-chat.nativechat.com; font-src 'self' fonts.gstatic.com kendo.cdn.telerik.com netdna.bootstrapcdn.com data:; frame-src 'self' www.youtube.com *.google.com td.doubleclick.net *.dynamics.com web-chat.nativechat.com; connect-src 'self' data: accounts.google.com *.gstatic.com *.googletagmanager.com *.google.com *.google.co.uk *.analytics.google.com *.dynamics.com https://*.insight.sitefinity.com https://*.dec.sitefinity.com; media-src 'self' data: blob:; child-src 'self' apis.google.com accounts.google.com staticxx.facebook.com www.facebook.com web.facebook.com badge.stumbleupon.com platform.twitter.com syndication.twitter.com www.youtube.com www.youtube-nocookie.com player.vimeo.com w.soundcloud.com web-chat.nativechat.com
Cross-Origin-Embedder-Policy: unsafe-none
Cross-Origin-Opener-Policy: unsafe-none
Cross-Origin-Resource-Policy: cross-origin
Permissions-Policy: accelerometer=(self), ambient-light-sensor=(self), autoplay=(self), battery=(self), camera=(self), cross-origin-isolated=(self), display-capture=(self), document-domain=(self), encrypted-media=(self), execution-while-not-rendered=(self), execution-while-out-of-viewport=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), keyboard-map=(self), magnetometer=(self), microphone=(self), midi=(self), navigation-override=(self), payment=(self), picture-in-picture=(self), publickey-credentials-get=(self), screen-wake-lock=(self), sync-xhr=(self), usb=(self), web-share=(self), xr-spatial-tracking=(self)
Referrer-Policy: no-referrer-when-downgrade
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: Nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Date: Sat, 04 Jan 2025 12:53:19 GMT
Content-Length: 235901

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:45:93:b0:1c:51:6c:a8:17:4f:2c:91:54:e3:b6:69:83:c4
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Dec 31 10:13:23 2024 GMT
            Not After : Mar 31 10:13:22 2025 GMT
        Subject: CN=www.modul.ac.at
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:be:00:c3:1a:b9:0f:71:4f:57:a8:f3:51:13:e6:
                    6d:76:75:92:f4:94:56:68:c1:92:ad:75:4c:23:b7:
                    37:e9:74:ce:a8:66:7d:a2:06:d1:22:a6:a9:db:4c:
                    e0:b3:25:81:e7:08:79:93:13:8f:4d:23:5e:92:10:
                    36:8b:e5:14:7d:0f:b4:f3:ed:e8:d3:d7:e4:20:cb:
                    60:4f:ce:ec:7d:bd:36:f8:76:fc:3d:5e:8e:ca:04:
                    4f:ea:48:81:1f:e8:fe:9a:d4:6f:e8:e5:8a:03:f8:
                    6a:90:b7:ff:b5:04:e5:d1:85:27:29:c2:84:51:70:
                    29:16:ed:c5:bb:03:90:b2:b5:1b:c6:63:54:73:7a:
                    bd:e8:85:59:f8:ba:3d:1a:54:14:6f:fd:d0:85:4a:
                    2b:bd:f5:1f:7c:2a:f8:0a:a1:8e:19:80:27:4b:00:
                    48:a2:8a:3f:d2:52:44:5b:68:54:c7:c9:f3:91:25:
                    02:83:84:2f:5c:db:72:4b:d7:ac:3f:4b:4d:1a:74:
                    53:31:8d:36:d6:6c:fc:c1:68:c1:74:60:01:21:b6:
                    79:dc:3b:d2:dc:12:5b:aa:a8:ae:aa:b1:08:8e:06:
                    46:95:82:6c:03:1a:f5:3a:57:96:c6:3c:fc:bb:a9:
                    0a:39:db:71:eb:d0:78:02:26:22:e9:87:e9:19:1c:
                    a1:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                17:07:A9:4D:E3:F7:7B:D2:4A:89:45:05:77:B5:95:5C:1B:7A:E7:10
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:modul.ac.at, DNS:moduluniversity-prod.magiclick.net, DNS:www.modul.ac.at
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Dec 31 11:11:53.196 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FB:8E:6E:5E:CB:7D:75:79:82:96:5D:
                                FA:AE:AF:CD:EA:6F:D7:87:40:46:70:05:B4:D3:4D:47:
                                60:DD:17:7D:F8:02:20:1E:EE:73:E9:E4:47:53:08:B4:
                                71:3A:CD:2C:61:65:04:E1:CC:65:B2:B4:DF:F3:14:E4:
                                5A:B6:D5:83:7D:3F:1E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Dec 31 11:11:53.289 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:45:CE:60:93:D2:FC:8D:6B:1F:C6:58:02:
                                5B:ED:7A:0B:48:CA:59:4F:95:5B:85:8B:4C:0A:D8:00:
                                5A:79:EC:A2:02:21:00:FB:64:F4:F5:80:3F:34:F0:52:
                                A9:D5:C3:02:54:D1:36:0B:7E:EA:8C:D0:FE:56:26:52:
                                B4:20:0F:3C:94:1D:FB
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7b:c1:14:88:11:1b:c5:3a:e3:8b:80:9b:a8:05:89:c3:77:16:
        5c:48:d7:ce:5a:e3:60:24:68:a6:34:15:f4:a9:48:b9:84:e7:
        f3:50:ce:da:81:fc:a9:f7:23:c8:49:86:b6:a1:2a:d3:4c:25:
        5f:8e:30:cc:d4:b3:f5:7e:5a:b0:7c:ae:59:3b:6e:04:4e:e5:
        bf:82:dc:c2:3a:a1:d5:55:f5:a2:96:f0:4a:fa:a4:53:53:d5:
        73:08:eb:6b:57:86:13:35:e6:26:f2:fb:ae:74:db:38:92:08:
        18:67:c8:d0:75:18:05:e4:24:2a:9c:d9:04:7a:d8:97:96:eb:
        b8:71:4b:14:8e:f9:af:a5:51:e9:7c:ce:c6:36:a6:c4:f1:31:
        50:d2:a4:a6:e3:f7:a4:62:ef:1e:f3:76:31:6a:fb:07:2c:8a:
        02:87:45:ad:73:a5:96:f9:60:df:48:c4:fa:f3:7a:64:89:82:
        c3:c6:92:64:6c:70:2e:83:eb:76:db:2b:93:7d:c0:39:b2:2f:
        a9:0c:94:de:e2:db:8d:04:88:7f:c9:45:c2:bf:1e:6c:7c:d4:
        4e:36:73:25:ce:06:6f:e5:59:70:5a:78:6a:e0:e1:c6:96:59:
        6b:8d:11:51:14:97:4d:ae:d9:9c:db:ae:25:44:d1:38:14:a4:
        f7:47:06:95

CVE-2024-1636 CVE-2024-1632 CVE-2023-27636 CVE-2023-6784

85.215.138.113

Last Seen: 2025-01-04

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

703707298 | 2024-12-30T22:48:37.280463
80 / tcp

Microsoft IIS httpd10.0

-803507616 | 2025-01-04T12:53:15.744475
443 / tcp

Microsoft IIS httpd10.0

Products

Pricing

Contact Us

85.215.138.113

Last Seen: 2025-01-04

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

703707298 | 2024-12-30T22:48:37.280463 80 / tcp

Microsoft IIS httpd10.0

-803507616 | 2025-01-04T12:53:15.744475 443 / tcp

Microsoft IIS httpd10.0

Products

Pricing

Contact Us

Vulnerabilities

703707298 | 2024-12-30T22:48:37.280463
80 / tcp

-803507616 | 2025-01-04T12:53:15.744475
443 / tcp