Found
Duration
Date
IP
- Nikto --------------------------------------------------------------------------- + Multiple IPs found: 13.225.63.92, 13.225.63.35, 13.225.63.72, 13.225.63.70 + Target IP: 13.225.63.92 + Target Hostname: facturador.nubetic.cl + Target Port: 80 + Start Time: 2024-08-31 11:38:55 (GMT-4) --------------------------------------------------------------------------- + Server: CloudFront + /: Retrieved via header: 1.1 2684a624055735139ca3901fdc6d3742.cloudfront.net (CloudFront). + Root page / redirects to: https://facturador.nubetic.cl/ + No CGI Directories found (use '-C all' to force check all possible dirs) + : Server banner changed from 'CloudFront' to 'AmazonS3'. + /nikto-test-xWDBamNR.html: Uncommon header 'x-amz-request-id' found, with contents: J46DE3GHMYFYFTRQ. + /nikto-test-xWDBamNR.html: Uncommon header 'x-amz-server-side-encryption' found, with contents: AES256. + /nikto-test-xWDBamNR.html: Uncommon header 'x-amz-id-2' found, with contents: 6Js6NVI4+kATEDJQ8d7wU5xYK0kxh7FTI22c270+aeOUblCKvLOgT7CCqQWYjSxtb1NybcrJ5Jo=. + /nikto-test-xWDBamNR.html: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/ + /: Web Server returns a valid response with junk HTTP methods which may cause false positives. + /blah_badfile.shtml: Allaire ColdFusion allows JSP source viewed through a vulnerable SSI call. + /servlet/com.livesoftware.jrun.plugins.ssi.SSIFilter: Allaire ColdFusion allows JSP source viewed through a vulnerable SSI call. + /servlet/allaire.jrun.ssi.SSIFilter: Allaire ColdFusion allows JSP source viewed through a vulnerable SSI call. See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0926 + /_vti_bin/shtml.dll/_vti_rpc?method=server+version%3a4%2e0%2e2%2e2611: Gives info about server settings. See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0413,http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0709,http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0710 + /_vti_bin/shtml.exe/_vti_rpc?method=server+version%3a4%2e0%2e2%2e2611: Gives info about server settings. See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0413,http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0709,http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0710 + /_vti_bin/_vti_aut/author.dll?method=list+documents%3a3%2e0%2e2%2e1706&service%5fname=&listHiddenDocs=true&listExplorerDocs=true&listRecurse=false&listFiles=true&listFolders=true&listLinkInfo=true&listIncludeParent=true&listDerivedT=false&listBorders=false: We seem to have authoring access to the FrontPage web. + /_vti_bin/_vti_aut/author.exe?method=list+documents%3a3%2e0%2e2%2e1706&service%5fname=&listHiddenDocs=true&listExplorerDocs=true&listRecurse=false&listFiles=true&listFolders=true&listLinkInfo=true&listIncludeParent=true&listDerivedT=false&listBorders=false: We seem to have authoring access to the FrontPage web. + 8045 requests: 0 error(s) and 14 item(s) reported on remote host + End Time: 2024-08-31 11:39:23 (GMT-4) (28 seconds) --------------------------------------------------------------------------- + 1 host(s) tested