91.207.205.34

Regular View Raw Data Timeline
Last Seen: 2025-03-23

GeneralInformation

Hostnames hsemarkazi.com
cpanel.hsemarkazi.com
cpcalendars.hsemarkazi.com
cpcontacts.hsemarkazi.com
mail.hsemarkazi.com
panet.hsemarkazi.com
www.panet.hsemarkazi.com
webdisk.hsemarkazi.com
webmail.hsemarkazi.com
www.hsemarkazi.com
n133.talahost.com
Domains hsemarkazi.com talahost.com 
Country Iran, Islamic Republic of
City Shiraz
Organization Rayan Dadeh Negar Dena LLC
ISP Asiatech Data Transmission company
ASN AS43754

WebTechnologies

Miscellaneous

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024(2)
CVE-2024-25117
6.8php-svg-lib is a scalable vector graphics (SVG) file parsing/rendering library. Prior to version 0.5.2, php-svg-lib fails to validate that font-family doesn't contain a PHAR url, which might leads to RCE on PHP < 8.0, and doesn't validate if external references are allowed. This might leads to bypass of restrictions or RCE on projects that are using it, if they do not strictly revalidate the fontName that is passed by php-svg-lib. The `Style::fromAttributes(`), or the `Style::parseCssStyle()` should check the content of the `font-family` and prevents it to use a PHAR url, to avoid passing an invalid and dangerous `fontName` value to other libraries. The same check as done in the `Style::fromStyleSheets` might be reused. Libraries using this library as a dependency might be vulnerable to some bypass of restrictions, or even remote code execution, if they do not double check the value of the `fontName` that is passed by php-svg-lib. Version 0.5.2 contains a fix for this issue.
CVE-2024-5458
5.3In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, due to a code logic error, filtering functions such as filter_var when validating URLs (FILTER_VALIDATE_URL) for certain types of URLs the function will result in invalid user information (username + password part of URLs) being treated as valid user information. This may lead to the downstream code accepting invalid URLs as valid and parsing them incorrectly.
2022(1)
CVE-2022-4900
6.2A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.
2013(1)
CVE-2013-2220
7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
2007(1)
CVE-2007-3205
5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.
53 / tcp
348232364 | 2025-02-28T23:52:30.069497
53 / udp
348232364 | 2025-03-16T11:26:10.054230
80 / tcp
1797191243 | 2025-03-22T22:06:55.461283
110 / tcp
1952082069 | 2025-03-18T05:21:41.642533
143 / tcp
1559185454 | 2025-03-12T20:41:34.507686
443 / tcp
1693948121 | 2025-03-23T02:41:13.175378
465 / tcp
1030949401 | 2025-03-20T23:01:07.233639
993 / tcp
-1132241830 | 2025-03-16T06:00:50.805910
995 / tcp
-1001764030 | 2025-03-15T19:52:35.879568
2082 / tcp
1052132821 | 2025-03-18T21:17:51.366623
2083 / tcp
-1129444303 | 2025-03-18T17:46:54.611995



Contact Us

Shodan ® - All rights reserved