Nikto scan (max 60 sec) (nikto -host cibertesting.com -maxtime 60)
- Nikto v2.5.0
---------------------------------------------------------------------------
+ Target IP: 190.7.159.83
+ Target Hostname: cibertesting.com
+ Target Port: 80
+ Start Time: 2024-09-07 19:32:51 (GMT-4)
---------------------------------------------------------------------------
+ Server: Apache/2.4.56 (Win64) OpenSSL/1.1.1t PHP/8.2.4
+ /: Retrieved x-powered-by header: PHP/8.2.4.
+ /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/
+ PHP/8.2.4 appears to be outdated (current is at least 8.3.0).
+ Apache/2.4.56 appears to be outdated (current is at least 2.4.58). Apache 2.2.34 is the EOL for the 2.x branch.
+ OpenSSL/1.1.1t appears to be outdated (current is at least 3.2.0). OpenSSL 1.1.1w is current for 1.x and is supported via contract, and 3.0.12 for 3.0.x, and 3.1.4 for 3.1.x.
+ /: Web Server returns a valid response with junk HTTP methods which may cause false positives.
+ /: HTTP TRACE method is active which suggests the host is vulnerable to XST. See: https://owasp.org/www-community/attacks/Cross_Site_Tracing
+ Scan terminated: 0 error(s) and 7 item(s) reported on remote host
+ End Time: 2024-09-07 19:33:52 (GMT-4) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested