GeneralInformation

Hostnames	89-171-64-158.static.ip.netia.com.pl rawlplug.co.il
Domains	netia.com.pl rawlplug.co.il
Country	Poland
City	Warsaw
Organization	KOELNER RAWLPLUG IP SPOLKA Z OGRANICZONA ODPOWIEDZIALNOSCIA
ISP	Netia SA
ASN	AS12741

WebTechnologies

Blogs

WordPress6.6.2

CDN

BootstrapCDN4.0.0

jQuery CDN

CMS

WordPress6.6.2

Databases

MySQL

Form builders

Contact Form 75.9.5

JavaScript libraries

Infinite Scroll6.6.2

Photo galleries

Responsive Lightbox & Gallery2.4.8

Programming languages

PHP

Security

reCAPTCHA

SEO

Yoast SEO22.7

UI frameworks

Bootstrap4.0.0

WordPress plugins

Responsive Lightbox & Gallery2.4.8

Contact Form 75.9.5

Yoast SEO22.7

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2020

CVE-2020-11023

6.9In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

CVE-2020-11022

6.9In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

2019

CVE-2019-11358

6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

2018

CVE-2018-14042

6.1In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.

CVE-2018-14041

6.1In Bootstrap before 4.1.2, XSS is possible in the data-target property of scrollspy.

CVE-2018-14040

6.1In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.

2016

CVE-2016-10735

6.1In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.

OpenPorts

80 443

80 / tcp

1947672031 | 2025-01-31T11:38:09.380704

Hashes

hash

664485442

http.dom_hash

1211354832

http.html_hash

1947672031

http.server_hash

-1340961475

http.title_hash

926487502

Web Server's Default Page

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Jan 2025 11:38:09 GMT
Content-Type: text/html
Content-Length: 432
Connection: keep-alive
Last-Modified: Mon, 19 Jun 2023 12:01:39 GMT
ETag: "1b0-5fe7a4c0deec0"
Accept-Ranges: bytes
Vary: Accept-Encoding

443 / tcp

-2025136402 | 2025-02-07T05:44:05.626101

Hashes

hash

-1913243317

http.dom_hash

-1756270273

http.favicon.hash

1860679696

http.html_hash

-2025136402

http.robots_hash

-277860991

http.server_hash

-1340961475

http.title_hash

-1389932307

Rawlplug - A world-wide pioneer of safe and reliable fixingsRawlplug Israel

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 07 Feb 2025 05:43:59 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 81550
Connection: keep-alive
X-Powered-By: PHP/8.2.27
Link: <https://rawlplug.co.il/wp-json/>; rel="https://api.w.org/", <https://rawlplug.co.il/wp-json/wp/v2/pages/269>; rel="alternate"; title="JSON"; type="application/json", <https://rawlplug.co.il/>; rel=shortlink
Vary: Accept-Encoding
X-Powered-By: PleskLin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:bf:cc:c4:c6:e4:d1:2e:28:cb:d8:1b:f3:12:c8:ba:d9:69
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Jan 28 07:07:09 2025 GMT
            Not After : Apr 28 07:07:08 2025 GMT
        Subject: CN=rawlplug.co.il
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b0:90:d3:32:88:8f:fd:97:39:60:50:c4:15:5a:
                    db:42:fa:96:71:0f:06:90:45:5b:56:ee:fc:2d:30:
                    86:f1:87:f0:9c:28:0f:60:fb:87:6c:95:5d:00:b2:
                    0a:2a:01:84:cc:5c:30:f2:30:a9:5b:1d:57:c9:ce:
                    61:43:51:f9:af:b9:e9:3d:44:3d:3f:f6:cb:7c:fa:
                    83:0c:24:b7:5f:f2:77:b5:a0:e7:0d:9d:ec:79:38:
                    ab:de:01:94:12:9d:81:46:55:52:53:1c:e7:e0:a9:
                    82:88:0c:aa:d9:cf:43:ab:c9:9a:9d:ad:4a:3d:f2:
                    b8:43:2a:c7:e9:63:00:f3:7e:a5:12:8d:f0:9e:ae:
                    de:9f:3d:af:b6:f8:a1:51:ba:d0:99:26:91:21:7b:
                    55:54:02:b3:0a:cb:71:76:15:5d:34:71:b6:ba:14:
                    db:0c:9f:89:7c:a4:09:d2:70:37:6e:d3:aa:f4:87:
                    a9:5c:4e:0f:d4:58:8d:88:74:14:b3:8a:c5:af:39:
                    8b:fe:48:e3:04:33:ef:7b:b0:ea:f9:b6:09:f6:d1:
                    e4:40:2e:d1:dc:11:8d:89:b3:7f:5b:45:53:18:94:
                    0e:06:0c:60:21:4e:5e:93:1c:25:b0:c4:e0:03:80:
                    b8:d6:f3:b8:0f:1e:fe:99:0c:b0:73:20:dc:d2:75:
                    7a:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                2F:F8:33:AF:83:04:F4:E1:7D:C9:85:21:63:C7:C8:76:DC:85:8F:73
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:rawlplug.co.il
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Jan 28 08:05:40.048 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CC:05:BA:21:C4:4C:84:A5:EA:FA:C0:
                                4C:64:05:EE:DB:56:FC:15:17:2C:2B:4E:A9:CD:EC:F6:
                                D6:B7:0C:F1:FA:02:21:00:DE:D0:95:FB:26:9B:72:7A:
                                91:15:DE:C2:84:76:8B:C4:42:56:AB:5F:5C:24:9B:DF:
                                F0:55:B3:F2:87:CE:24:E5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Jan 28 08:05:40.063 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:61:99:6F:DE:16:B0:93:AC:6A:39:82:C4:
                                49:29:4C:80:5D:24:08:BD:2D:74:ED:2C:05:1D:97:86:
                                B8:76:7B:92:02:20:07:6A:82:64:F2:BD:5A:73:68:3E:
                                D1:BE:22:FD:75:35:C9:7E:22:C6:1A:1A:E6:95:9E:3B:
                                E9:86:A7:03:34:57
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        80:5f:ca:bc:3a:81:96:d2:3a:84:13:fd:e3:ed:04:cb:62:92:
        bc:fa:e2:15:01:35:17:f5:7b:fb:f9:a1:aa:e8:f2:81:50:9b:
        5c:a4:af:d0:ce:2d:25:8b:c0:76:bd:c1:f0:41:d6:6b:3d:ee:
        81:00:c9:08:95:24:46:13:fe:be:dd:9c:92:3f:18:00:7a:ce:
        a6:b2:84:38:00:fd:5c:90:28:6e:69:0a:b5:58:ba:d3:24:43:
        20:4f:34:40:3e:76:c9:a6:70:20:ac:09:65:e2:5c:3e:ed:46:
        bb:1e:88:02:fa:16:eb:be:0a:4c:88:91:9c:59:fe:34:eb:7b:
        17:24:2c:e7:2d:8a:7c:c4:cd:a3:fc:25:c0:fb:bf:0f:60:9c:
        35:d0:4b:35:06:b3:de:ff:d7:c2:74:a7:24:9d:67:f7:ca:dc:
        e1:03:56:ed:8e:38:90:5a:de:e3:cf:20:6f:a5:fa:0a:a2:0e:
        f3:9f:44:87:f2:6d:ba:fc:3a:c9:ef:35:69:ab:f1:f1:48:74:
        e7:b9:ac:6e:af:e0:9c:c8:8b:76:35:c2:3e:a8:ab:9b:aa:26:
        42:f4:ac:ff:71:0b:67:c7:aa:ee:68:3d:19:cf:f0:6c:24:03:
        a3:03:73:58:44:a5:2c:cb:fc:c7:bb:94:7d:62:f6:5a:54:14:
        e6:e9:7a:df

CVE-2020-11023 CVE-2020-11022 CVE-2019-11358 CVE-2018-14042 CVE-2018-14041 2 moreCVE-2018-14040 CVE-2016-10735

89.171.64.158

Last Seen: 2025-02-07

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

1947672031 | 2025-01-31T11:38:09.380704

Hashes

nginx

443 / tcp

-2025136402 | 2025-02-07T05:44:05.626101

Hashes

nginx

Products

Pricing

Contact Us

89.171.64.158

Last Seen: 2025-02-07

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 443 Latest CVSS

OpenPorts

80 / tcp 1947672031 | 2025-01-31T11:38:09.380704

Hashes

nginx

443 / tcp -2025136402 | 2025-02-07T05:44:05.626101

Hashes

nginx

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

1947672031 | 2025-01-31T11:38:09.380704

443 / tcp

-2025136402 | 2025-02-07T05:44:05.626101