- Nikto v2.5.0
---------------------------------------------------------------------------
+ Multiple IPs found: 104.16.147.108, 104.16.146.108, 2606:4700::6810:936c, 2606:4700::6810:926c
+ Target IP:          104.16.147.108
+ Target Hostname:    hpanel.hostinger.com
+ Target Port:        80
+ Start Time:         2024-04-15 08:21:58 (GMT-4)
---------------------------------------------------------------------------
+ Server: cloudflare
+ /: Retrieved access-control-allow-origin header: *.
+ /: Uncommon header 'x-hostinger-datacenter' found, with contents: gcp.
+ /: Uncommon header 'x-hostinger-node' found, with contents: europe-west2.
+ /: An alt-svc header was found which is advertising HTTP/3. The endpoint is: ':443'. Nikto cannot test HTTP/3 over QUIC. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/alt-svc
+ Root page / redirects to: https://hpanel.hostinger.com
+ /xro7pm6f.swp: IP address found in the 'content-security-policy-report-only' header. The IP is "1.0.1.1". See: https://portswigger.net/kb/issues/00600300_private-ip-addresses-disclosed
+ /xro7pm6f.swp: IP address found in the 'report-to' header. The IP is "1.0.1.1". See: https://portswigger.net/kb/issues/00600300_private-ip-addresses-disclosed
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ /cdn-cgi/trace:X-Frame-Options header is deprecated and has been replaced with the Content-Security-Policy HTTP header with the frame-ancestors directive instead. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
+ /cdn-cgi/trace: Cloudflare trace CGI found, which may leak some system information.
+ 8045 requests: 0 error(s) and 8 item(s) reported on remote host
+ End Time:           2024-04-15 08:34:09 (GMT-4) (731 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested