- Nikto v2.5.0
---------------------------------------------------------------------------
+ Target IP:          159.203.21.90
+ Target Hostname:    www.yellowbrickhouse.org
+ Target Port:        80
+ Start Time:         2024-05-26 21:31:46 (GMT-4)
---------------------------------------------------------------------------
+ Server: nginx
+ Root page / redirects to: https://training.yellowbrickhouse.org/
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ /webmail/horde/test.php: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/
+ /webmail/blank.html: IlohaMail 0.8.10 contains an XSS vulnerability. Previous versions contain other non-descript vulnerabilities.
+ /securecontrolpanel/: Web Server Control Panel.
+ /webmail/: Web based mail package installed.
+ /mailman/listinfo: Mailman was found on the server. See: CWE-552
+ /cpanel/: Web-based control panel. See: OSVDB-2117
+ /img-sys/: Default image directory should not allow directory listing.
+ /webmail/lib/emailreader_execute_on_each_page.inc.php: This might be interesting: has been seen in web logs from an unknown scanner.
+ Scan terminated: 0 error(s) and 8 item(s) reported on remote host
+ End Time:           2024-05-26 21:32:47 (GMT-4) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested