182.16.245.158
{
"scan_id": 1766556008,
"ip": "182.16.245.158",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "182.16.240.0/20",
"postal_code": "",
"coordinates": {
"latitude": "-6.175",
"longitude": "106.8286"
},
"geo_point": "-6.175, 106.8286",
"locale_code": "en",
"continent": "Asia",
"country_code": "ID",
"country_name": "Indonesia",
"city": ""
},
"location_updated_at": "2025-12-23T09:23:43Z",
"asn": {
"number": "AS45298",
"organization": "INTERLINK TECHNOLOGY, PT",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "182.16.245.0/24",
"organization": "PT. INTERLINK TECHNOLOGY",
"descr": "PT. INTERLINK TECHNOLOGY,\nISP,\nJakarta",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T11:26:54Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2025-12-23T09:23:43Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2025-12-23T12:45:31Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2025-12-23T09:23:43Z"
}
],
"hostnames": [
{
"name": "cp01.pintarkerja.com",
"last_updated_at": "2025-12-23T12:45:31Z"
}
],
"services": [
{
"port": 21,
"protocol": "tcp",
"name": "ftp",
"version": "",
"product": "Pure-FTPd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:pureftpd:pure-ftpd",
"part": "a",
"vendor": "pureftpd",
"product": "pure\\-ftpd",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"ftp": {
"banner": "220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\r\n220-You are user number 1 of 50 allowed.\r\n220-Local time is now 23:23. Server port: 21.\r\n220-This is a private system - No anonymous login\r\n220-IPv6 connections are also welcome on this server.\r\n220 You will be disconnected after 15 minutes of inactivity.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r12.i.lencr.org/"
]
},
"authority_key_id": "00b529f22d8e6f31e89b4cad783efadce90cd1d2",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r12.c.lencr.org/92.crl"
],
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"autoconfig.cp01.inter7cloud.com",
"autodiscover.cp01.inter7cloud.com",
"cp01.inter7cloud.com",
"cpanel.cp01.inter7cloud.com",
"cpcalendars.cp01.inter7cloud.com",
"cpcontacts.cp01.inter7cloud.com",
"ipv6.cp01.inter7cloud.com",
"mail.cp01.inter7cloud.com",
"webdisk.cp01.inter7cloud.com",
"webmail.cp01.inter7cloud.com",
"whm.cp01.inter7cloud.com",
"www.cp01.inter7cloud.com"
]
},
"subject_key_id": "5bc1902b730ef2448a0f9d481a98e4d3721bf0f3"
},
"fingerprint_md5": "7911D1B3350AA8756751B0930C3126E7",
"fingerprint_sha1": "3E9DB43F94CD8446C7665FAFAF19589998609CF6",
"fingerprint_sha256": "2A933E8DAE1C6EE07CBB677B3B1C5E78FD7159D9CB5AD9BBE6C12F0BCCF4FE4E",
"issuer": {
"common_name": [
"R12"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2026-01-02T19:27:57",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "449699683170907450340674025832887151190747",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "6411c46ca412eca7891ca2022e00bcab4f2807d41e3527abeafed503c97dcdf0",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304402207ab5b2ec215d753cf65db18e6306ec9454b001189af17fa125beb89619a317b302206bf48901de9e0b4877bf8623d8fbf8e300d1feaca197e1be23034f354368f344"
},
"timestamp": "2025-11-22T16:55:59.059000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "1986d4c728aa6ffeba036f782a4d0191aace2d72310faece5d70412d254cc7d4",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022055d7329ebf647a5356b7366cf8f7d16510ff9cf63f0696ad56f393102a583f62022100d0bea2887c85207e892eb0e6159c4fef23976adcc1cc7f0c2867e2940dc979c0"
},
"timestamp": "2025-11-22T16:55:59.071000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"cp01.inter7cloud.com"
]
},
"subject_alt_name": {
"dns_names": [
"cp01.inter7cloud.com",
"autoconfig.cp01.inter7cloud.com",
"autodiscover.cp01.inter7cloud.com",
"cpanel.cp01.inter7cloud.com",
"cpcalendars.cp01.inter7cloud.com",
"cpcontacts.cp01.inter7cloud.com",
"ipv6.cp01.inter7cloud.com",
"mail.cp01.inter7cloud.com",
"webdisk.cp01.inter7cloud.com",
"webmail.cp01.inter7cloud.com",
"whm.cp01.inter7cloud.com",
"www.cp01.inter7cloud.com"
],
"extended_dns_names": [
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "autoconfig.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "autodiscover.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpanel.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpcalendars.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpcontacts.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "ipv6.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "mail.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "webdisk.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "webmail.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "whm.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "www.cp01",
"tld": "com"
}
]
},
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "c2f227d60ba77ead95a27b62e339437382e6f3dd73a0281648f310cc5b2d6b86",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048
}
},
"tbs_fingerprint": "f0570e715b07e5a24c77d033802e5c4c4978a5cd4edc83f54c38efa76300a7fb",
"tbs_noct_fingerprint": "0c05216c2bdf42a308f23166a1beb3a07dffc86976728e90b6c91639e1db4585",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-02-20T15:57:28",
"not_before": "2025-11-22T15:57:29"
},
"version": 2
},
"fingerprint_sha256": "2A933E8DAE1C6EE07CBB677B3B1C5E78FD7159D9CB5AD9BBE6C12F0BCCF4FE4E",
"precert": false,
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-24T19:42:19.829Z"
},
{
"port": 25,
"protocol": "tcp",
"name": "smtp",
"version": "4.96.2",
"product": "Exim smtpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:exim:exim:4.96.2",
"part": "a",
"vendor": "exim",
"product": "exim",
"version": "4\\.96\\.2",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220-cp01.inter7cloud.com ESMTP Exim 4.96.2 #2 Mon, 15 Dec 2025 04:07:52 +0700 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r12.i.lencr.org/"
]
},
"authority_key_id": "00b529f22d8e6f31e89b4cad783efadce90cd1d2",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r12.c.lencr.org/92.crl"
],
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"autoconfig.cp01.inter7cloud.com",
"autodiscover.cp01.inter7cloud.com",
"cp01.inter7cloud.com",
"cpanel.cp01.inter7cloud.com",
"cpcalendars.cp01.inter7cloud.com",
"cpcontacts.cp01.inter7cloud.com",
"ipv6.cp01.inter7cloud.com",
"mail.cp01.inter7cloud.com",
"webdisk.cp01.inter7cloud.com",
"webmail.cp01.inter7cloud.com",
"whm.cp01.inter7cloud.com",
"www.cp01.inter7cloud.com"
]
},
"subject_key_id": "5bc1902b730ef2448a0f9d481a98e4d3721bf0f3"
},
"fingerprint_md5": "7911D1B3350AA8756751B0930C3126E7",
"fingerprint_sha1": "3E9DB43F94CD8446C7665FAFAF19589998609CF6",
"fingerprint_sha256": "2A933E8DAE1C6EE07CBB677B3B1C5E78FD7159D9CB5AD9BBE6C12F0BCCF4FE4E",
"issuer": {
"common_name": [
"R12"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-25T16:29:08",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "449699683170907450340674025832887151190747",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "6411c46ca412eca7891ca2022e00bcab4f2807d41e3527abeafed503c97dcdf0",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304402207ab5b2ec215d753cf65db18e6306ec9454b001189af17fa125beb89619a317b302206bf48901de9e0b4877bf8623d8fbf8e300d1feaca197e1be23034f354368f344"
},
"timestamp": "2025-11-22T16:55:59.059000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "1986d4c728aa6ffeba036f782a4d0191aace2d72310faece5d70412d254cc7d4",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022055d7329ebf647a5356b7366cf8f7d16510ff9cf63f0696ad56f393102a583f62022100d0bea2887c85207e892eb0e6159c4fef23976adcc1cc7f0c2867e2940dc979c0"
},
"timestamp": "2025-11-22T16:55:59.071000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"cp01.inter7cloud.com"
]
},
"subject_alt_name": {
"dns_names": [
"cp01.inter7cloud.com",
"autoconfig.cp01.inter7cloud.com",
"autodiscover.cp01.inter7cloud.com",
"cpanel.cp01.inter7cloud.com",
"cpcalendars.cp01.inter7cloud.com",
"cpcontacts.cp01.inter7cloud.com",
"ipv6.cp01.inter7cloud.com",
"mail.cp01.inter7cloud.com",
"webdisk.cp01.inter7cloud.com",
"webmail.cp01.inter7cloud.com",
"whm.cp01.inter7cloud.com",
"www.cp01.inter7cloud.com"
],
"extended_dns_names": [
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "autoconfig.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "autodiscover.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpanel.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpcalendars.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpcontacts.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "ipv6.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "mail.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "webdisk.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "webmail.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "whm.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "www.cp01",
"tld": "com"
}
]
},
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "c2f227d60ba77ead95a27b62e339437382e6f3dd73a0281648f310cc5b2d6b86",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048
}
},
"tbs_fingerprint": "f0570e715b07e5a24c77d033802e5c4c4978a5cd4edc83f54c38efa76300a7fb",
"tbs_noct_fingerprint": "0c05216c2bdf42a308f23166a1beb3a07dffc86976728e90b6c91639e1db4585",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-02-20T15:57:28",
"not_before": "2025-11-22T15:57:29"
},
"version": 2
},
"fingerprint_sha256": "2A933E8DAE1C6EE07CBB677B3B1C5E78FD7159D9CB5AD9BBE6C12F0BCCF4FE4E",
"precert": false,
"tags": [
"dv",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-2023-51766",
"severity": "medium"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-16T16:48:00.426Z"
},
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "PHP 7.4.11",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:php:php:7.4.11",
"part": "a",
"vendor": "php",
"product": "php",
"version": "7\\.4\\.11",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body_murmur": -1868526250,
"body_sha256": "3d8b5301fe38ecd4a6718ce6ca57cb4949a611127a14c21cbcfe7554a1d77fec",
"component": [
"Apache HTTP Server",
"Bootstrap",
"OWL Carousel",
"jQuery"
],
"content_length": -1,
"favicon": {
"md5_hash": "dbba4b1f28b250e2a4b954a198be15a3",
"murmur_hash": 1481220679,
"path": "http://182.16.245.158/assets/img/icon.png",
"size": 1603
},
"headers": {
"cache_control": [
"no-cache, private"
],
"content_type": [
"text/html; charset=UTF-8"
],
"date": [
"Tue, 23 Dec 2025 00:25:15 GMT"
],
"server": [
"Apache"
],
"set_cookie": [
"XSRF-TOKEN=eyJpdiI6IjRsUWZoQ0VpemhTeHdoYStvR05oL2c9PSIsInZhbHVlIjoiUDFIdHIvbzJKR3gvZ0YzLzVLeG5FZmZ0dzFmd3Z6akZYbCtNQm55b21HWGZYc3JjR0I2cGdpS1ZZbnJVeElBbHM0NERSbWtYYUJFc0xCaVgrMGVHWDdiRWhLb1R0OWd2RURiSnlVdW5PSjdHL3FtWnVINlNHNGU3TjZuTHhRQjIiLCJtYWMiOiI2NzQwZDBlODFiZDhlZmI1MzUxY2NhZTc0MDljZDBjMjYxYjJlZjk5OGQxYmY1M2RmOTZjN2U2ZjczYjRlMjZmIiwidGFnIjoiIn0%3D; expires=Tue, 23-Dec-2025 02:25:16 GMT; Max-Age=7200; path=/; samesite=lax",
"pintar_kerja_session=eyJpdiI6IjRGWW5uNHk3QytvM09zaWRzclI3RVE9PSIsInZhbHVlIjoiZVRTTVh3T0JJM2RLejhPWmJnenFmV0FPWU5aMXNPZGFvQksvS2Q4cmxsNzRIcjloQ21lbHJUQXlHRWVPT2w1Z2lJRS8xaDQ0czM4cEJ1S253ZjYwbC9UUDdJd3BRVFp5cTU2bnN4Y1hzQkNNY1U1RC9mZjNTdEYyVWJ4TEtOYXIiLCJtYWMiOiJmNmY5OWNhMzRmNzE3ZTAyNDYxMzU3NDU1OWJhN2UxNTRhYTRlY2Y3NjBlM2QxNDBmMDIzMjk4YTk1ZmU1N2ZmIiwidGFnIjoiIn0%3D; expires=Tue, 23-Dec-2025 02:25:16 GMT; Max-Age=7200; path=/; httponly; samesite=lax"
],
"x_powered_by": [
"PHP/7.4.11"
]
},
"protocol": "HTTP/1.1",
"status_code": 200,
"title": "Pintar Kerja",
"transfer_encoding": [
"chunked"
]
}
},
"cve": [
{
"id": "CVE-2007-3205",
"severity": "medium"
},
{
"id": "CVE-2017-8923",
"severity": "critical"
},
{
"id": "CVE-2017-9118",
"severity": "high"
}
],
"url": "http://182.16.245.158/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-23T00:25:18.891Z"
},
{
"port": 110,
"protocol": "tcp",
"name": "pop3",
"version": "",
"product": "Dovecot pop3d",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"pop3": {
"banner": "+OK Dovecot ready.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r12.i.lencr.org/"
]
},
"authority_key_id": "00b529f22d8e6f31e89b4cad783efadce90cd1d2",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r12.c.lencr.org/92.crl"
],
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"autoconfig.cp01.inter7cloud.com",
"autodiscover.cp01.inter7cloud.com",
"cp01.inter7cloud.com",
"cpanel.cp01.inter7cloud.com",
"cpcalendars.cp01.inter7cloud.com",
"cpcontacts.cp01.inter7cloud.com",
"ipv6.cp01.inter7cloud.com",
"mail.cp01.inter7cloud.com",
"webdisk.cp01.inter7cloud.com",
"webmail.cp01.inter7cloud.com",
"whm.cp01.inter7cloud.com",
"www.cp01.inter7cloud.com"
]
},
"subject_key_id": "5bc1902b730ef2448a0f9d481a98e4d3721bf0f3"
},
"fingerprint_md5": "7911D1B3350AA8756751B0930C3126E7",
"fingerprint_sha1": "3E9DB43F94CD8446C7665FAFAF19589998609CF6",
"fingerprint_sha256": "2A933E8DAE1C6EE07CBB677B3B1C5E78FD7159D9CB5AD9BBE6C12F0BCCF4FE4E",
"issuer": {
"common_name": [
"R12"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-25T13:33:43",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "449699683170907450340674025832887151190747",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "6411c46ca412eca7891ca2022e00bcab4f2807d41e3527abeafed503c97dcdf0",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304402207ab5b2ec215d753cf65db18e6306ec9454b001189af17fa125beb89619a317b302206bf48901de9e0b4877bf8623d8fbf8e300d1feaca197e1be23034f354368f344"
},
"timestamp": "2025-11-22T16:55:59.059000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "1986d4c728aa6ffeba036f782a4d0191aace2d72310faece5d70412d254cc7d4",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022055d7329ebf647a5356b7366cf8f7d16510ff9cf63f0696ad56f393102a583f62022100d0bea2887c85207e892eb0e6159c4fef23976adcc1cc7f0c2867e2940dc979c0"
},
"timestamp": "2025-11-22T16:55:59.071000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"cp01.inter7cloud.com"
]
},
"subject_alt_name": {
"dns_names": [
"cp01.inter7cloud.com",
"autoconfig.cp01.inter7cloud.com",
"autodiscover.cp01.inter7cloud.com",
"cpanel.cp01.inter7cloud.com",
"cpcalendars.cp01.inter7cloud.com",
"cpcontacts.cp01.inter7cloud.com",
"ipv6.cp01.inter7cloud.com",
"mail.cp01.inter7cloud.com",
"webdisk.cp01.inter7cloud.com",
"webmail.cp01.inter7cloud.com",
"whm.cp01.inter7cloud.com",
"www.cp01.inter7cloud.com"
],
"extended_dns_names": [
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "autoconfig.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "autodiscover.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpanel.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpcalendars.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpcontacts.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "ipv6.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "mail.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "webdisk.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "webmail.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "whm.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "www.cp01",
"tld": "com"
}
]
},
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "c2f227d60ba77ead95a27b62e339437382e6f3dd73a0281648f310cc5b2d6b86",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048
}
},
"tbs_fingerprint": "f0570e715b07e5a24c77d033802e5c4c4978a5cd4edc83f54c38efa76300a7fb",
"tbs_noct_fingerprint": "0c05216c2bdf42a308f23166a1beb3a07dffc86976728e90b6c91639e1db4585",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-02-20T15:57:28",
"not_before": "2025-11-22T15:57:29"
},
"version": 2
},
"fingerprint_sha256": "2A933E8DAE1C6EE07CBB677B3B1C5E78FD7159D9CB5AD9BBE6C12F0BCCF4FE4E",
"precert": false,
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-24T00:05:56.164Z"
},
{
"port": 143,
"protocol": "tcp",
"name": "imap",
"version": "",
"product": "Dovecot imapd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"imap": {
"banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r12.i.lencr.org/"
]
},
"authority_key_id": "00b529f22d8e6f31e89b4cad783efadce90cd1d2",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r12.c.lencr.org/92.crl"
],
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"autoconfig.cp01.inter7cloud.com",
"autodiscover.cp01.inter7cloud.com",
"cp01.inter7cloud.com",
"cpanel.cp01.inter7cloud.com",
"cpcalendars.cp01.inter7cloud.com",
"cpcontacts.cp01.inter7cloud.com",
"ipv6.cp01.inter7cloud.com",
"mail.cp01.inter7cloud.com",
"webdisk.cp01.inter7cloud.com",
"webmail.cp01.inter7cloud.com",
"whm.cp01.inter7cloud.com",
"www.cp01.inter7cloud.com"
]
},
"subject_key_id": "5bc1902b730ef2448a0f9d481a98e4d3721bf0f3"
},
"fingerprint_md5": "7911D1B3350AA8756751B0930C3126E7",
"fingerprint_sha1": "3E9DB43F94CD8446C7665FAFAF19589998609CF6",
"fingerprint_sha256": "2A933E8DAE1C6EE07CBB677B3B1C5E78FD7159D9CB5AD9BBE6C12F0BCCF4FE4E",
"issuer": {
"common_name": [
"R12"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-24T02:03:10",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "449699683170907450340674025832887151190747",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "6411c46ca412eca7891ca2022e00bcab4f2807d41e3527abeafed503c97dcdf0",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304402207ab5b2ec215d753cf65db18e6306ec9454b001189af17fa125beb89619a317b302206bf48901de9e0b4877bf8623d8fbf8e300d1feaca197e1be23034f354368f344"
},
"timestamp": "2025-11-22T16:55:59.059000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "1986d4c728aa6ffeba036f782a4d0191aace2d72310faece5d70412d254cc7d4",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022055d7329ebf647a5356b7366cf8f7d16510ff9cf63f0696ad56f393102a583f62022100d0bea2887c85207e892eb0e6159c4fef23976adcc1cc7f0c2867e2940dc979c0"
},
"timestamp": "2025-11-22T16:55:59.071000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"cp01.inter7cloud.com"
]
},
"subject_alt_name": {
"dns_names": [
"cp01.inter7cloud.com",
"autoconfig.cp01.inter7cloud.com",
"autodiscover.cp01.inter7cloud.com",
"cpanel.cp01.inter7cloud.com",
"cpcalendars.cp01.inter7cloud.com",
"cpcontacts.cp01.inter7cloud.com",
"ipv6.cp01.inter7cloud.com",
"mail.cp01.inter7cloud.com",
"webdisk.cp01.inter7cloud.com",
"webmail.cp01.inter7cloud.com",
"whm.cp01.inter7cloud.com",
"www.cp01.inter7cloud.com"
],
"extended_dns_names": [
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "autoconfig.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "autodiscover.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpanel.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpcalendars.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpcontacts.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "ipv6.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "mail.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "webdisk.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "webmail.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "whm.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "www.cp01",
"tld": "com"
}
]
},
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "c2f227d60ba77ead95a27b62e339437382e6f3dd73a0281648f310cc5b2d6b86",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048
}
},
"tbs_fingerprint": "f0570e715b07e5a24c77d033802e5c4c4978a5cd4edc83f54c38efa76300a7fb",
"tbs_noct_fingerprint": "0c05216c2bdf42a308f23166a1beb3a07dffc86976728e90b6c91639e1db4585",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-02-20T15:57:28",
"not_before": "2025-11-22T15:57:29"
},
"version": 2
},
"fingerprint_sha256": "2A933E8DAE1C6EE07CBB677B3B1C5E78FD7159D9CB5AD9BBE6C12F0BCCF4FE4E",
"precert": false,
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-22T15:33:06.729Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "PHP 7.4.11",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:php:php:7.4.11",
"part": "a",
"vendor": "php",
"product": "php",
"version": "7\\.4\\.11",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body_murmur": -575331303,
"body_sha256": "ce96637b107b8e5eb7899d0c0292c4f76665359bd68ae6717801835a3972e21e",
"component": [
"Apache HTTP Server",
"Bootstrap",
"OWL Carousel",
"jQuery"
],
"content_length": -1,
"favicon": {
"md5_hash": "dbba4b1f28b250e2a4b954a198be15a3",
"murmur_hash": 1481220679,
"path": "https://182.16.245.158/assets/img/icon.png",
"size": 1603
},
"headers": {
"cache_control": [
"no-cache, private"
],
"content_type": [
"text/html; charset=UTF-8"
],
"date": [
"Mon, 22 Dec 2025 10:11:57 GMT"
],
"server": [
"Apache"
],
"set_cookie": [
"XSRF-TOKEN=eyJpdiI6IjFqZmNBRzJFMTZsOXF4Q3VVUzR6SGc9PSIsInZhbHVlIjoiUGxoYWluSTgwbm1ERVdncTVQQUUzOFNBWksyM2cyV1F4cDdkN2Q1ci9JZk5MRHBZcVpGOUZRWC84Zm1MUHdtSHh1bFVUODdPVHR5NTZ4d2ZoaEdVREVObE1VUlh5NGFrQWtON2txZzNoZXBlZldxcmhudTVNWDlMWm9DWlR0YUkiLCJtYWMiOiI0NGNkNjQ3ZDcxMjRiNjgxYjJkODFlOWQ4M2RjZGZhNzI2ZTc3MzdmNWU0OWZjZmEzYmM4YmY2YWFkZGYxYjQyIiwidGFnIjoiIn0%3D; expires=Mon, 22-Dec-2025 12:11:59 GMT; Max-Age=7200; path=/; samesite=lax",
"pintar_kerja_session=eyJpdiI6IkxDZ2ZlZnpNWVNrUTdHa25DOEJhRXc9PSIsInZhbHVlIjoid3A1TzZybExENnREU1VCLy9JTmZOd04rejNheWFlRS9IbXFJU2pCUGQxRDIyTjcwSkQ5UFJac1laWURIcU9qcTdHV0gzcW51Sjd4RURoUlBvMEx4c3ovaUZ3ejczUDkzOFRsQmtOOVIyRUV0R3F3andrK2dtTkhNc1dxbjZCM3UiLCJtYWMiOiI0MmJlOWMyNzA2YTc2YWQyYTA5ZWUxY2EyYmE3ZjIyNjU3ZWRjY2I5ODExNGYyYTQ4YjhjMzU4YjAzODMzNzg5IiwidGFnIjoiIn0%3D; expires=Mon, 22-Dec-2025 12:11:59 GMT; Max-Age=7200; path=/; httponly; samesite=lax"
],
"x_powered_by": [
"PHP/7.4.11"
]
},
"protocol": "HTTP/1.1",
"status_code": 200,
"title": "Pintar Kerja",
"transfer_encoding": [
"chunked"
]
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://crt.comodoca.com/cPanelIncCertificationAuthority.crt"
],
"ocsp_urls": [
"http://ocsp.comodoca.com"
]
},
"authority_key_id": "7e035a65416ba77e0ae1b89d08ea1d8e1d6ac765",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"cps": [
"https://sectigo.com/CPS"
],
"id": "1.3.6.1.4.1.6449.1.2.2.52"
},
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://crl.comodoca.com/cPanelIncCertificationAuthority.crl"
],
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"instructor.dev.pintarkerja.com",
"www.instructor.dev.pintarkerja.com"
]
},
"subject_key_id": "d0f20243878a08a84b2eec939b731f429b5fc591"
},
"fingerprint_md5": "96B7D84454C6BDCC50E9C9123ABB3374",
"fingerprint_sha1": "38C964ACCB1B1D4CD2B3F468F9079315F357CD0C",
"fingerprint_sha256": "45A70CD971BB1501204B0EA1B4D799AA3D140CE3B26AB126A82688537288ED6D",
"issuer": {
"common_name": [
"cPanel, Inc. Certification Authority"
],
"country": [
"US"
],
"locality": [
"Houston"
],
"organization": [
"cPanel, Inc."
],
"province": [
"TX"
]
},
"jarm": "07d3fd12d3fd3fd07c42d43d000000db81843f382e62671202b31bdb95765e",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-29T07:56:48",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "291179408987866520491319865134293564901",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "46a555eb75fa912030b5a28969f4f37d112c4174befd49b885abf2fc70fe6d47",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "30450221008804a6c93d3127cfbdd08fcac01226359fa9b0a3bd711da9648cd564e839c0e602207b772533a513f8cae7acc3fd022123d2f5a9fb586ba558487813a4f644f689b6"
},
"timestamp": "2021-11-18T07:36:40.527000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "41c8cab1df22464a10c6a13a0942875e4e318b1b03ebeb4bc768f090629606f6",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3046022100c17851016bde5855af83984baf8a352a37de65e44e6a4ffd2dc5df12a6157d83022100c1699b51956478f207896d8b349cbde99d28b90e04106104e02b94169f93af03"
},
"timestamp": "2021-11-18T07:36:40.457000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"instructor.dev.pintarkerja.com"
]
},
"subject_alt_name": {
"dns_names": [
"instructor.dev.pintarkerja.com",
"www.instructor.dev.pintarkerja.com"
],
"extended_dns_names": [
{
"domain": "pintarkerja",
"fld": "pintarkerja.com",
"subdomain": "instructor.dev",
"tld": "com"
},
{
"domain": "pintarkerja",
"fld": "pintarkerja.com",
"subdomain": "www.instructor.dev",
"tld": "com"
}
]
},
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "9d1fee5a7c22c0af09eedc40a2c2bc2d8d6519a59e72852af3f5be6deb42cef2",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048
}
},
"tbs_fingerprint": "df7f5d8a5bc84eb8c46372b77e33afa0667504e88e96ce3287f07d769f62fd44",
"tbs_noct_fingerprint": "7eaecfdc991e4fcd0983b9667fef670d89ae8fb3336987a6f51d122b410d31c1",
"validation_level": "DV",
"validity": {
"length_seconds": 7862399,
"not_after": "2022-02-16T23:59:59",
"not_before": "2021-11-18T00:00:00"
},
"version": 2
},
"fingerprint_sha256": "45A70CD971BB1501204B0EA1B4D799AA3D140CE3B26AB126A82688537288ED6D",
"precert": false,
"tags": [
"dv",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-2007-3205",
"severity": "medium"
},
{
"id": "CVE-2017-8923",
"severity": "critical"
},
{
"id": "CVE-2017-9118",
"severity": "high"
}
],
"url": "https://182.16.245.158/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-22T19:39:09.5Z"
},
{
"port": 465,
"protocol": "tcp",
"name": "smtp",
"version": "4.96.2",
"product": "Exim smtpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:exim:exim:4.96.2",
"part": "a",
"vendor": "exim",
"product": "exim",
"version": "4\\.96\\.2",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"cve": [
{
"id": "CVE-2023-51766",
"severity": "medium"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-15T17:33:43.455Z"
},
{
"port": 587,
"protocol": "tcp",
"name": "smtp",
"version": "4.96.2",
"product": "Exim smtpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:exim:exim:4.96.2",
"part": "a",
"vendor": "exim",
"product": "exim",
"version": "4\\.96\\.2",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220-cp01.inter7cloud.com ESMTP Exim 4.96.2 #2 Thu, 25 Dec 2025 03:18:08 +0700 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r12.i.lencr.org/"
]
},
"authority_key_id": "00b529f22d8e6f31e89b4cad783efadce90cd1d2",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r12.c.lencr.org/92.crl"
],
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"autoconfig.cp01.inter7cloud.com",
"autodiscover.cp01.inter7cloud.com",
"cp01.inter7cloud.com",
"cpanel.cp01.inter7cloud.com",
"cpcalendars.cp01.inter7cloud.com",
"cpcontacts.cp01.inter7cloud.com",
"ipv6.cp01.inter7cloud.com",
"mail.cp01.inter7cloud.com",
"webdisk.cp01.inter7cloud.com",
"webmail.cp01.inter7cloud.com",
"whm.cp01.inter7cloud.com",
"www.cp01.inter7cloud.com"
]
},
"subject_key_id": "5bc1902b730ef2448a0f9d481a98e4d3721bf0f3"
},
"fingerprint_md5": "7911D1B3350AA8756751B0930C3126E7",
"fingerprint_sha1": "3E9DB43F94CD8446C7665FAFAF19589998609CF6",
"fingerprint_sha256": "2A933E8DAE1C6EE07CBB677B3B1C5E78FD7159D9CB5AD9BBE6C12F0BCCF4FE4E",
"issuer": {
"common_name": [
"R12"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2026-01-02T22:27:57",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "449699683170907450340674025832887151190747",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "6411c46ca412eca7891ca2022e00bcab4f2807d41e3527abeafed503c97dcdf0",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304402207ab5b2ec215d753cf65db18e6306ec9454b001189af17fa125beb89619a317b302206bf48901de9e0b4877bf8623d8fbf8e300d1feaca197e1be23034f354368f344"
},
"timestamp": "2025-11-22T16:55:59.059000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "1986d4c728aa6ffeba036f782a4d0191aace2d72310faece5d70412d254cc7d4",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022055d7329ebf647a5356b7366cf8f7d16510ff9cf63f0696ad56f393102a583f62022100d0bea2887c85207e892eb0e6159c4fef23976adcc1cc7f0c2867e2940dc979c0"
},
"timestamp": "2025-11-22T16:55:59.071000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"cp01.inter7cloud.com"
]
},
"subject_alt_name": {
"dns_names": [
"cp01.inter7cloud.com",
"autoconfig.cp01.inter7cloud.com",
"autodiscover.cp01.inter7cloud.com",
"cpanel.cp01.inter7cloud.com",
"cpcalendars.cp01.inter7cloud.com",
"cpcontacts.cp01.inter7cloud.com",
"ipv6.cp01.inter7cloud.com",
"mail.cp01.inter7cloud.com",
"webdisk.cp01.inter7cloud.com",
"webmail.cp01.inter7cloud.com",
"whm.cp01.inter7cloud.com",
"www.cp01.inter7cloud.com"
],
"extended_dns_names": [
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "autoconfig.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "autodiscover.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpanel.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpcalendars.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "cpcontacts.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "ipv6.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "mail.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "webdisk.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "webmail.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "whm.cp01",
"tld": "com"
},
{
"domain": "inter7cloud",
"fld": "inter7cloud.com",
"subdomain": "www.cp01",
"tld": "com"
}
]
},
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "c2f227d60ba77ead95a27b62e339437382e6f3dd73a0281648f310cc5b2d6b86",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048
}
},
"tbs_fingerprint": "f0570e715b07e5a24c77d033802e5c4c4978a5cd4edc83f54c38efa76300a7fb",
"tbs_noct_fingerprint": "0c05216c2bdf42a308f23166a1beb3a07dffc86976728e90b6c91639e1db4585",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-02-20T15:57:28",
"not_before": "2025-11-22T15:57:29"
},
"version": 2
},
"fingerprint_sha256": "2A933E8DAE1C6EE07CBB677B3B1C5E78FD7159D9CB5AD9BBE6C12F0BCCF4FE4E",
"precert": false,
"tags": [
"dv",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-2023-51766",
"severity": "medium"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-24T22:41:04.825Z"
},
{
"port": 993,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-19T03:28:12.774Z"
},
{
"port": 995,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-14T04:40:14.88Z"
},
{
"port": 3306,
"protocol": "tcp",
"name": "mysql",
"version": "5.7.34",
"product": "MySQL",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:mysql:mysql:5.7.34",
"part": "a",
"vendor": "mysql",
"product": "mysql",
"version": "5\\.7\\.34",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"mysql": {
"capability_flags": {
"CLIENT_CAN_HANDLE_EXPIRED_PASSWORDS": true,
"CLIENT_COMPRESS": true,
"CLIENT_CONNECT_ATTRS": true,
"CLIENT_CONNECT_WITH_DB": true,
"CLIENT_DEPRECATED_EOF": true,
"CLIENT_FOUND_ROWS": true,
"CLIENT_IGNORE_SIGPIPE": true,
"CLIENT_IGNORE_SPACE": true,
"CLIENT_INTERACTIVE": true,
"CLIENT_LOCAL_FILES": true,
"CLIENT_LONG_FLAG": true,
"CLIENT_LONG_PASSWORD": true,
"CLIENT_MULTI_RESULTS": true,
"CLIENT_MULTI_STATEMENTS": true,
"CLIENT_NO_SCHEMA": true,
"CLIENT_ODBC": true,
"CLIENT_PLUGIN_AUTH": true,
"CLIENT_PLUGIN_AUTH_LEN_ENC_CLIENT_DATA": true,
"CLIENT_PROTOCOL_41": true,
"CLIENT_PS_MULTI_RESULTS": true,
"CLIENT_RESERVED": true,
"CLIENT_SECURE_CONNECTION": true,
"CLIENT_SESSION_TRACK": true,
"CLIENT_SSL": true,
"CLIENT_TRANSACTIONS": true
},
"protocol_version": 10,
"version": "5.7.34"
},
"tls": {
"certificate": {
"extensions": {
"basic_constraints": {
"is_ca": true
}
},
"fingerprint_md5": "0CF998C30EBF9697741A18A9F7AD7037",
"fingerprint_sha1": "6D325345721F25136179FA22571DD1CC4AC32551",
"fingerprint_sha256": "039BEAA41F66C994902E8F75D141A20ECE8515AAFE54007620E1A9CDDC9060B4",
"issuer": {
"common_name": [
"MySQL_Server_5.7.27_Auto_Generated_CA_Certificate"
]
},
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "2",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false
},
"subject": {
"common_name": [
"MySQL_Server_5.7.27_Auto_Generated_Server_Certificate"
]
},
"subject_alt_name": {
"dns_names": [
"MySQL_Server_5.7.27_Auto_Generated_Server_Certificate"
],
"extended_dns_names": []
},
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "770bf2abedc81699cac5c1b4e2be8958a74b381b875f5160024f48ae793c1e95",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048
}
},
"tbs_fingerprint": "31599744eaa84d18afe4b92046612be2c26647900f44136c8494977dbadbaab6",
"validation_level": "DV",
"validity": {
"length_seconds": 315360000,
"not_after": "2029-09-02T09:54:44",
"not_before": "2019-09-05T09:54:44"
},
"version": 2
},
"fingerprint_sha256": "039BEAA41F66C994902E8F75D141A20ECE8515AAFE54007620E1A9CDDC9060B4",
"precert": false,
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-12-24T14:47:42.842Z"
}
],
"services_hash": "9acb7745f20cc9361995c054437852d994e15275ecbbeaa765819858e8fb0177",
"last_updated_at": "2025-12-24T22:41:04.825Z",
"banner": [
"ftp",
"tls",
"smtp",
"mysql",
"http",
"pop3",
"imap"
],
"is_vuln": true,
"cveDetails": {
"CVE-2007-3205": {
"id": "CVE-2007-3205",
"references": [
"http://osvdb.org/39834",
"http://securityreason.com/securityalert/2800",
"http://www.acid-root.new.fr/advisories/14070612.txt",
"http://www.securityfocus.com/archive/1/471178/100/0/threaded",
"http://www.securityfocus.com/archive/1/471204/100/0/threaded",
"http://www.securityfocus.com/archive/1/471275/100/0/threaded",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/34836",
"http://osvdb.org/39834",
"http://securityreason.com/securityalert/2800",
"http://www.acid-root.new.fr/advisories/14070612.txt",
"http://www.securityfocus.com/archive/1/471178/100/0/threaded",
"http://www.securityfocus.com/archive/1/471204/100/0/threaded",
"http://www.securityfocus.com/archive/1/471275/100/0/threaded",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/34836"
],
"score": 5,
"services": [
"80/http"
],
"severity": "medium",
"summary": "The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"weakness": "NVD-CWE-Other"
},
"CVE-2017-8923": {
"id": "CVE-2017-8923",
"references": [
"http://www.securityfocus.com/bid/98518",
"https://bugs.php.net/bug.php?id=74577",
"http://www.securityfocus.com/bid/98518",
"https://bugs.php.net/bug.php?id=74577",
"https://security.netapp.com/advisory/ntap-20241227-0007/"
],
"score": 9.8,
"services": [
"80/http"
],
"severity": "critical",
"summary": "The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact by leveraging a script's use of .= with a long string.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-787"
},
"CVE-2017-9118": {
"id": "CVE-2017-9118",
"references": [
"https://access.redhat.com/errata/RHSA-2019:2519",
"https://bugs.php.net/bug.php?id=74604",
"https://security.netapp.com/advisory/ntap-20181107-0003/",
"https://access.redhat.com/errata/RHSA-2019:2519",
"https://bugs.php.net/bug.php?id=74604",
"https://security.netapp.com/advisory/ntap-20181107-0003/"
],
"score": 7.5,
"services": [
"80/http"
],
"severity": "high",
"summary": "PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a crafted preg_replace call.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"weakness": "CWE-125"
},
"CVE-2017-9120": {
"id": "CVE-2017-9120",
"references": [
"https://access.redhat.com/errata/RHSA-2019:2519",
"https://bugs.php.net/bug.php?id=74544",
"https://security.netapp.com/advisory/ntap-20181107-0003/",
"https://access.redhat.com/errata/RHSA-2019:2519",
"https://bugs.php.net/bug.php?id=74544",
"https://security.netapp.com/advisory/ntap-20181107-0003/"
],
"score": 9.8,
"services": [
"80/http"
],
"severity": "critical",
"summary": "PHP 7.x through 7.1.5 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a long string because of an Integer overflow in mysqli_real_escape_string.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-190"
},
"CVE-2020-7071": {
"id": "CVE-2020-7071",
"references": [
"https://bugs.php.net/bug.php?id=77423",
"https://lists.debian.org/debian-lts-announce/2021/07/msg00008.html",
"https://security.gentoo.org/glsa/202105-23",
"https://security.netapp.com/advisory/ntap-20210312-0005/",
"https://www.debian.org/security/2021/dsa-4856",
"https://www.oracle.com/security-alerts/cpuoct2021.html",
"https://www.tenable.com/security/tns-2021-14",
"https://bugs.php.net/bug.php?id=77423",
"https://lists.debian.org/debian-lts-announce/2021/07/msg00008.html",
"https://security.gentoo.org/glsa/202105-23",
"https://security.netapp.com/advisory/ntap-20210312-0005/",
"https://www.debian.org/security/2021/dsa-4856",
"https://www.oracle.com/security-alerts/cpuoct2021.html",
"https://www.tenable.com/security/tns-2021-14"
],
"score": 5.3,
"services": [
"80/http"
],
"severity": "medium",
"summary": "In PHP versions 7.3.x below 7.3.26, 7.4.x below 7.4.14 and 8.0.0, when validating URL with functions like filter_var($url, FILTER_VALIDATE_URL), PHP will accept an URL with invalid password as valid URL. This may lead to functions that rely on URL being valid to mis-parse the URL and produce wrong data as components of the URL.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "CWE-20"
},
"CVE-2021-21702": {
"id": "CVE-2021-21702",
"references": [
"https://bugs.php.net/bug.php?id=80672",
"https://lists.debian.org/debian-lts-announce/2021/07/msg00008.html",
"https://security.gentoo.org/glsa/202105-23",
"https://security.netapp.com/advisory/ntap-20210312-0005/",
"https://www.debian.org/security/2021/dsa-4856",
"https://www.oracle.com/security-alerts/cpuoct2021.html",
"https://www.tenable.com/security/tns-2021-14",
"https://bugs.php.net/bug.php?id=80672",
"https://lists.debian.org/debian-lts-announce/2021/07/msg00008.html",
"https://security.gentoo.org/glsa/202105-23",
"https://security.netapp.com/advisory/ntap-20210312-0005/",
"https://www.debian.org/security/2021/dsa-4856",
"https://www.oracle.com/security-alerts/cpuoct2021.html",
"https://www.tenable.com/security/tns-2021-14"
],
"score": 5.3,
"services": [
"80/http"
],
"severity": "medium",
"summary": "In PHP versions 7.3.x below 7.3.27, 7.4.x below 7.4.15 and 8.0.x below 8.0.2, when using SOAP extension to connect to a SOAP server, a malicious SOAP server could return malformed XML data as a response that would cause PHP to access a null pointer and thus cause a crash.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"weakness": "CWE-476"
},
"CVE-2021-21703": {
"id": "CVE-2021-21703",
"references": [
"http://www.openwall.com/lists/oss-security/2021/10/26/7",
"https://bugs.php.net/bug.php?id=81026",
"https://lists.debian.org/debian-lts-announce/2021/10/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PZVLICZUJMXOGWOUWSBAEGIVTF6Y6V3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JO5RA6YOBGGGKLIA6F6BQRZDDECF5L3R/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PBM3KKB3RY2YPOKNMC4HIH7IH3T3WC74/",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20211118-0003/",
"https://www.debian.org/security/2021/dsa-4992",
"https://www.debian.org/security/2021/dsa-4993",
"https://www.oracle.com/security-alerts/cpuapr2022.html",
"https://www.oracle.com/security-alerts/cpujan2022.html",
"http://www.openwall.com/lists/oss-security/2021/10/26/7",
"https://bugs.php.net/bug.php?id=81026",
"https://lists.debian.org/debian-lts-announce/2021/10/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PZVLICZUJMXOGWOUWSBAEGIVTF6Y6V3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JO5RA6YOBGGGKLIA6F6BQRZDDECF5L3R/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PBM3KKB3RY2YPOKNMC4HIH7IH3T3WC74/",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20211118-0003/",
"https://www.debian.org/security/2021/dsa-4992",
"https://www.debian.org/security/2021/dsa-4993",
"https://www.oracle.com/security-alerts/cpuapr2022.html",
"https://www.oracle.com/security-alerts/cpujan2022.html"
],
"score": 7.8,
"services": [
"80/http"
],
"severity": "high",
"summary": "In PHP versions 7.3.x up to and including 7.3.31, 7.4.x below 7.4.25 and 8.0.x below 8.0.12, when running PHP FPM SAPI with main FPM daemon process running as root and child worker processes running as lower-privileged users, it is possible for the child processes to access memory shared with the main process and write to it, modifying it in a way that would cause the root process to conduct invalid memory reads and writes, which can be used to escalate privileges from local unprivileged user to the root user.",
"vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"weakness": "CWE-284"
},
"CVE-2021-21704": {
"id": "CVE-2021-21704",
"references": [
"https://bugs.php.net/bug.php?id=76448",
"https://bugs.php.net/bug.php?id=76449",
"https://bugs.php.net/bug.php?id=76450",
"https://bugs.php.net/bug.php?id=76452",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20211029-0006/",
"https://bugs.php.net/bug.php?id=76448",
"https://bugs.php.net/bug.php?id=76449",
"https://bugs.php.net/bug.php?id=76450",
"https://bugs.php.net/bug.php?id=76452",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20211029-0006/"
],
"score": 5,
"services": [
"80/http"
],
"severity": "medium",
"summary": "In PHP versions 7.3.x below 7.3.29, 7.4.x below 7.4.21 and 8.0.x below 8.0.8, when using Firebird PDO driver extension, a malicious database server could cause crashes in various database functions, such as getAttribute(), execute(), fetch() and others by returning invalid response data that is not parsed correctly by the driver. This can result in crashes, denial of service or potentially memory corruption.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"weakness": "CWE-125"
},
"CVE-2021-21705": {
"id": "CVE-2021-21705",
"references": [
"https://bugs.php.net/bug.php?id=81122",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20211029-0006/",
"https://www.oracle.com/security-alerts/cpujan2022.html",
"https://bugs.php.net/bug.php?id=81122",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20211029-0006/",
"https://www.oracle.com/security-alerts/cpujan2022.html"
],
"score": 4.3,
"services": [
"80/http"
],
"severity": "medium",
"summary": "In PHP versions 7.3.x below 7.3.29, 7.4.x below 7.4.21 and 8.0.x below 8.0.8, when using URL validation functionality via filter_var() function with FILTER_VALIDATE_URL parameter, an URL with invalid password field can be accepted as valid. This can lead to the code incorrectly parsing the URL and potentially leading to other security implications - like contacting a wrong server or making a wrong access decision.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"weakness": "CWE-20"
},
"CVE-2021-21706": {
"id": "CVE-2021-21706",
"references": [
"https://bugs.php.net/bug.php?id=81420",
"https://security.netapp.com/advisory/ntap-20211029-0007/",
"https://bugs.php.net/bug.php?id=81420",
"https://security.netapp.com/advisory/ntap-20211029-0007/"
],
"score": 5.3,
"services": [
"80/http"
],
"severity": "medium",
"summary": "In PHP versions 7.3.x below 7.3.31, 7.4.x below 7.4.24 and 8.0.x below 8.0.11, in Microsoft Windows environment, ZipArchive::extractTo may be tricked into writing a file outside target directory when extracting a ZIP file, thus potentially causing files to be created or overwritten, subject to OS permissions.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"weakness": "CWE-24"
},
"CVE-2021-21707": {
"id": "CVE-2021-21707",
"references": [
"https://bugs.php.net/bug.php?id=79971",
"https://lists.debian.org/debian-lts-announce/2022/12/msg00030.html",
"https://security.netapp.com/advisory/ntap-20211223-0005/",
"https://www.debian.org/security/2022/dsa-5082",
"https://www.tenable.com/security/tns-2022-09",
"https://bugs.php.net/bug.php?id=79971",
"https://lists.debian.org/debian-lts-announce/2022/12/msg00030.html",
"https://security.netapp.com/advisory/ntap-20211223-0005/",
"https://www.debian.org/security/2022/dsa-5082",
"https://www.tenable.com/security/tns-2022-09"
],
"score": 5.3,
"services": [
"80/http"
],
"severity": "medium",
"summary": "In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "CWE-159"
},
"CVE-2021-21708": {
"id": "CVE-2021-21708",
"references": [
"https://bugs.php.net/bug.php?id=81708",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20220325-0004/",
"https://bugs.php.net/bug.php?id=81708",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20220325-0004/"
],
"score": 8.2,
"services": [
"80/http"
],
"severity": "high",
"summary": "In PHP versions 7.4.x below 7.4.28, 8.0.x below 8.0.16, and 8.1.x below 8.1.3, when using filter functions with FILTER_VALIDATE_FLOAT filter and min/max limits, if the filter fails, there is a possibility to trigger use of allocated memory after free, which can result it crashes, and potentially in overwrite of other memory chunks and RCE. This issue affects: code that uses FILTER_VALIDATE_FLOAT with min/max limits.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"weakness": "CWE-416"
},
"CVE-2022-31625": {
"id": "CVE-2022-31625",
"references": [
"https://bugs.php.net/bug.php?id=81720",
"https://lists.debian.org/debian-lts-announce/2022/12/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3T4MMEEZYYAEHPQMZDFN44PHORJWJFZQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZZTZQKRGEYJT5UB4FGG3MOE72SQUHSL4/",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20220722-0005/",
"https://www.debian.org/security/2022/dsa-5179",
"https://bugs.php.net/bug.php?id=81720",
"https://lists.debian.org/debian-lts-announce/2022/12/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3T4MMEEZYYAEHPQMZDFN44PHORJWJFZQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZZTZQKRGEYJT5UB4FGG3MOE72SQUHSL4/",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20220722-0005/",
"https://www.debian.org/security/2022/dsa-5179"
],
"score": 8.1,
"services": [
"80/http"
],
"severity": "high",
"summary": "In PHP versions 7.4.x below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, when using Postgres database extension, supplying invalid parameters to the parametrized query may lead to PHP attempting to free memory using uninitialized data as pointers. This could lead to RCE vulnerability or denial of service.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-590"
},
"CVE-2022-31626": {
"id": "CVE-2022-31626",
"references": [
"https://bugs.php.net/bug.php?id=81719",
"https://lists.debian.org/debian-lts-announce/2022/12/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3T4MMEEZYYAEHPQMZDFN44PHORJWJFZQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZZTZQKRGEYJT5UB4FGG3MOE72SQUHSL4/",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20220722-0005/",
"https://www.debian.org/security/2022/dsa-5179",
"https://bugs.php.net/bug.php?id=81719",
"https://lists.debian.org/debian-lts-announce/2022/12/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3T4MMEEZYYAEHPQMZDFN44PHORJWJFZQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZZTZQKRGEYJT5UB4FGG3MOE72SQUHSL4/",
"https://security.gentoo.org/glsa/202209-20",
"https://security.netapp.com/advisory/ntap-20220722-0005/",
"https://www.debian.org/security/2022/dsa-5179"
],
"score": 7.5,
"services": [
"80/http"
],
"severity": "high",
"summary": "In PHP versions 7.4.x below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, when pdo_mysql extension with mysqlnd driver, if the third party is allowed to supply host to connect to and the password for the connection, password of excessive length can trigger a buffer overflow in PHP, which can lead to a remote code execution vulnerability.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-120"
},
"CVE-2022-31628": {
"id": "CVE-2022-31628",
"references": [
"https://bugs.php.net/bug.php?id=81726",
"https://lists.debian.org/debian-lts-announce/2022/12/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2L5SUVYGAKSWODUQPZFBUB3AL6E6CSEV/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VI3E6A3ZTH2RP7OMLJHSVFIEQBIFM6RF/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XNIEABBH5XCXLFWWZYIDE457SPEDZTXV/",
"https://security.gentoo.org/glsa/202211-03",
"https://security.netapp.com/advisory/ntap-20221209-0001/",
"https://www.debian.org/security/2022/dsa-5277",
"https://bugs.php.net/bug.php?id=81726",
"https://lists.debian.org/debian-lts-announce/2022/12/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2L5SUVYGAKSWODUQPZFBUB3AL6E6CSEV/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VI3E6A3ZTH2RP7OMLJHSVFIEQBIFM6RF/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XNIEABBH5XCXLFWWZYIDE457SPEDZTXV/",
"https://security.gentoo.org/glsa/202211-03",
"https://security.netapp.com/advisory/ntap-20221209-0001/",
"https://www.debian.org/security/2022/dsa-5277"
],
"score": 2.3,
"services": [
"80/http"
],
"severity": "low",
"summary": "In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress \"quines\" gzip files, resulting in an infinite loop.",
"vector_string": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
"weakness": "CWE-674"
},
"CVE-2022-31629": {
"id": "CVE-2022-31629",
"references": [
"http://www.openwall.com/lists/oss-security/2024/04/12/11",
"https://bugs.php.net/bug.php?id=81727",
"https://lists.debian.org/debian-lts-announce/2022/12/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2L5SUVYGAKSWODUQPZFBUB3AL6E6CSEV/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJZK3X6B7FBE32FETDSMRLJXTFTHKWSY/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LSJVPJTX7T3J5V7XHR4MFNHZGP44R5XE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VI3E6A3ZTH2RP7OMLJHSVFIEQBIFM6RF/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XNIEABBH5XCXLFWWZYIDE457SPEDZTXV/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZGWIK3HMBACERGB4TSBB2JUOMPYY2VKY/",
"https://security.gentoo.org/glsa/202211-03",
"https://security.netapp.com/advisory/ntap-20221209-0001/",
"https://www.debian.org/security/2022/dsa-5277",
"http://www.openwall.com/lists/oss-security/2024/04/12/11",
"https://bugs.php.net/bug.php?id=81727",
"https://lists.debian.org/debian-lts-announce/2022/12/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2L5SUVYGAKSWODUQPZFBUB3AL6E6CSEV/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJZK3X6B7FBE32FETDSMRLJXTFTHKWSY/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LSJVPJTX7T3J5V7XHR4MFNHZGP44R5XE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VI3E6A3ZTH2RP7OMLJHSVFIEQBIFM6RF/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XNIEABBH5XCXLFWWZYIDE457SPEDZTXV/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZGWIK3HMBACERGB4TSBB2JUOMPYY2VKY/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/KJZK3X6B7FBE32FETDSMRLJXTFTHKWSY/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/ZGWIK3HMBACERGB4TSBB2JUOMPYY2VKY/",
"https://security.gentoo.org/glsa/202211-03",
"https://security.netapp.com/advisory/ntap-20221209-0001/",
"https://www.debian.org/security/2022/dsa-5277"
],
"score": 6.5,
"services": [
"80/http"
],
"severity": "medium",
"summary": "In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"weakness": "CWE-20"
},
"CVE-2022-31630": {
"id": "CVE-2022-31630",
"references": [
"https://bugs.php.net/bug.php?id=81739",
"https://bugs.php.net/bug.php?id=81739"
],
"score": 6.5,
"services": [
"80/http"
],
"severity": "medium",
"summary": "In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using imageloadfont() function in gd extension, it is possible to supply a specially crafted font file, such as if the loaded font is used with imagechar() function, the read outside allocated buffer will be used. This can lead to crashes or disclosure of confidential information. ",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"weakness": "CWE-131"
},
"CVE-2022-37454": {
"id": "CVE-2022-37454",
"references": [
"https://csrc.nist.gov/projects/hash-functions/sha-3-project",
"https://eprint.iacr.org/2023/331",
"https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658",
"https://lists.debian.org/debian-lts-announce/2022/10/msg00041.html",
"https://lists.debian.org/debian-lts-announce/2022/11/msg00000.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/",
"https://mouha.be/sha-3-buffer-overflow/",
"https://news.ycombinator.com/item?id=33281106",
"https://news.ycombinator.com/item?id=35050307",
"https://security.gentoo.org/glsa/202305-02",
"https://www.debian.org/security/2022/dsa-5267",
"https://www.debian.org/security/2022/dsa-5269",
"https://csrc.nist.gov/projects/hash-functions/sha-3-project",
"https://eprint.iacr.org/2023/331",
"https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658",
"https://lists.debian.org/debian-lts-announce/2022/10/msg00041.html",
"https://lists.debian.org/debian-lts-announce/2022/11/msg00000.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/",
"https://mouha.be/sha-3-buffer-overflow/",
"https://news.ycombinator.com/item?id=33281106",
"https://news.ycombinator.com/item?id=35050307",
"https://security.gentoo.org/glsa/202305-02",
"https://security.netapp.com/advisory/ntap-20230203-0001/",
"https://www.debian.org/security/2022/dsa-5267",
"https://www.debian.org/security/2022/dsa-5269"
],
"score": 9.8,
"services": [
"80/http"
],
"severity": "critical",
"summary": "The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-190"
},
"CVE-2023-51766": {
"id": "CVE-2023-51766",
"references": [
"http://www.openwall.com/lists/oss-security/2023/12/24/1",
"http://www.openwall.com/lists/oss-security/2023/12/25/1",
"http://www.openwall.com/lists/oss-security/2023/12/29/2",
"http://www.openwall.com/lists/oss-security/2024/01/01/1",
"http://www.openwall.com/lists/oss-security/2024/01/01/2",
"http://www.openwall.com/lists/oss-security/2024/01/01/3",
"https://bugs.exim.org/show_bug.cgi?id=3063",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255852",
"https://exim.org/static/doc/security/CVE-2023-51766.txt",
"https://fahrplan.events.ccc.de/congress/2023/fahrplan/events/11782.html",
"https://git.exim.org/exim.git/commit/5bb786d5ad568a88d50d15452aacc8404047e5ca",
"https://git.exim.org/exim.git/commit/cf1376206284f2a4f11e32d931d4aade34c206c5",
"https://github.com/Exim/exim/blob/master/doc/doc-txt/cve-2023-51766",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00002.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORN7OKEQPPBKUHYRQ6LR5PSNBQVDHAWB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QPDWHJPABVJCXDSNELSSVTIVAJU2MDUQ/",
"https://lwn.net/Articles/956533/",
"https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/",
"https://www.openwall.com/lists/oss-security/2023/12/23/2",
"https://www.youtube.com/watch?v=V8KPV96g1To",
"http://www.openwall.com/lists/oss-security/2023/12/24/1",
"http://www.openwall.com/lists/oss-security/2023/12/25/1",
"http://www.openwall.com/lists/oss-security/2023/12/29/2",
"http://www.openwall.com/lists/oss-security/2024/01/01/1",
"http://www.openwall.com/lists/oss-security/2024/01/01/2",
"http://www.openwall.com/lists/oss-security/2024/01/01/3",
"https://bugs.exim.org/show_bug.cgi?id=3063",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255852",
"https://exim.org/static/doc/security/CVE-2023-51766.txt",
"https://fahrplan.events.ccc.de/congress/2023/fahrplan/events/11782.html",
"https://git.exim.org/exim.git/commit/5bb786d5ad568a88d50d15452aacc8404047e5ca",
"https://git.exim.org/exim.git/commit/cf1376206284f2a4f11e32d931d4aade34c206c5",
"https://github.com/Exim/exim/blob/master/doc/doc-txt/cve-2023-51766",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00002.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORN7OKEQPPBKUHYRQ6LR5PSNBQVDHAWB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QPDWHJPABVJCXDSNELSSVTIVAJU2MDUQ/",
"https://lwn.net/Articles/956533/",
"https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/",
"https://www.openwall.com/lists/oss-security/2023/12/23/2",
"https://www.youtube.com/watch?v=V8KPV96g1To"
],
"score": 5.3,
"services": [
"587/smtp"
],
"severity": "medium",
"summary": "Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"weakness": "CWE-345"
},
"CVE-2024-4577": {
"id": "CVE-2024-4577",
"references": [
"http://www.openwall.com/lists/oss-security/2024/06/07/1",
"https://arstechnica.com/security/2024/06/php-vulnerability-allows-attackers-to-run-malicious-code-on-windows-servers/",
"https://blog.orange.tw/2024/06/cve-2024-4577-yet-another-php-rce.html",
"https://cert.be/en/advisory/warning-php-remote-code-execution-patch-immediately",
"https://devco.re/blog/2024/06/06/security-alert-cve-2024-4577-php-cgi-argument-injection-vulnerability-en/",
"https://github.com/11whoami99/CVE-2024-4577",
"https://github.com/php/php-src/security/advisories/GHSA-3qgc-jrrr-25jv",
"https://github.com/rapid7/metasploit-framework/pull/19247",
"https://github.com/watchtowrlabs/CVE-2024-4577",
"https://github.com/xcanwin/CVE-2024-4577-PHP-RCE",
"https://isc.sans.edu/diary/30994",
"https://labs.watchtowr.com/no-way-php-strikes-again-cve-2024-4577/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/PKGTQUOA2NTZ3RXN22CSAUJPIRUYRB4B/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/W45DBOH56NQDRTOM2DN2LNA2FZIMC3PK/",
"https://security.netapp.com/advisory/ntap-20240621-0008/",
"https://www.imperva.com/blog/imperva-protects-against-critical-php-vulnerability-cve-2024-4577/",
"https://www.php.net/ChangeLog-8.php#8.1.29",
"https://www.php.net/ChangeLog-8.php#8.2.20",
"https://www.php.net/ChangeLog-8.php#8.3.8",
"http://www.openwall.com/lists/oss-security/2024/06/07/1",
"https://arstechnica.com/security/2024/06/php-vulnerability-allows-attackers-to-run-malicious-code-on-windows-servers/",
"https://blog.orange.tw/2024/06/cve-2024-4577-yet-another-php-rce.html",
"https://blog.talosintelligence.com/new-persistent-attacks-japan/",
"https://cert.be/en/advisory/warning-php-remote-code-execution-patch-immediately",
"https://devco.re/blog/2024/06/06/security-alert-cve-2024-4577-php-cgi-argument-injection-vulnerability-en/",
"https://github.com/11whoami99/CVE-2024-4577",
"https://github.com/php/php-src/security/advisories/GHSA-3qgc-jrrr-25jv",
"https://github.com/rapid7/metasploit-framework/pull/19247",
"https://github.com/watchtowrlabs/CVE-2024-4577",
"https://github.com/xcanwin/CVE-2024-4577-PHP-RCE",
"https://isc.sans.edu/diary/30994",
"https://labs.watchtowr.com/no-way-php-strikes-again-cve-2024-4577/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/PKGTQUOA2NTZ3RXN22CSAUJPIRUYRB4B/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/W45DBOH56NQDRTOM2DN2LNA2FZIMC3PK/",
"https://security.netapp.com/advisory/ntap-20240621-0008/",
"https://www.imperva.com/blog/imperva-protects-against-critical-php-vulnerability-cve-2024-4577/",
"https://www.php.net/ChangeLog-8.php#8.1.29",
"https://www.php.net/ChangeLog-8.php#8.2.20",
"https://www.php.net/ChangeLog-8.php#8.3.8",
"https://www.vicarius.io/vsociety/posts/php-cgi-argument-injection-to-rce-cve-2024-4577",
"https://www.vicarius.io/vsociety/posts/php-cgi-os-command-injection-vulnerability-cve-2024-4577"
],
"score": 9.8,
"services": [
"80/http"
],
"severity": "critical",
"summary": "In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, when using Apache and PHP-CGI on Windows, if the system is set up to use certain code pages, Windows may use \"Best-Fit\" behavior to replace characters in command line given to Win32 API functions. PHP CGI module may misinterpret those characters as PHP options, which may allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-78"
}
}
}