Found
Duration
Date
IP
- Nikto v2.5.0 --------------------------------------------------------------------------- + Target IP: 149.56.244.87 + Target Hostname: www.megacorpone.com + Target Port: 80 + Start Time: 2024-07-16 14:17:20 (GMT-4) --------------------------------------------------------------------------- + Server: Apache/2.4.59 (Debian) + /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/ + No CGI Directories found (use '-C all' to force check all possible dirs) + /nanites.php: Retrieved x-powered-by header: PHP/7.3.31-1~deb10u7. + /robots.txt: Entry '/nanites.php' is returned a non-forbidden or redirect HTTP code (200). See: https://portswigger.net/kb/issues/00600600_robots-txt-file + /robots.txt: contains 2 entries which should be manually viewed. See: https://developer.mozilla.org/en-US/docs/Glossary/Robots.txt + /: Server may leak inodes via ETags, header found with file /, inode: 390b, size: 596aedca79780, mtime: gzip. See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-1418 + OPTIONS: Allowed HTTP Methods: GET, POST, OPTIONS, HEAD . + /icons/README: Apache default file found. See: https://www.vntweb.co.uk/apache-restricting-access-to-iconsreadme/ + Scan terminated: 0 error(s) and 7 item(s) reported on remote host + End Time: 2024-07-16 14:18:21 (GMT-4) (61 seconds) --------------------------------------------------------------------------- + 1 host(s) tested ********************************************************************* Portions of the server's headers (Apache/2.4.59) are not in the Nikto 2.5.0 database or are newer than the known string. Would you like to submit this information (*no server specific data*) to CIRT.net for a Nikto update (or you may email to sullo@cirt.net) (y/n)?