Scan report for "www.trugo.com.tr"

- Nikto 
---------------------------------------------------------------------------
+ Multiple IPs found: 104.18.11.125, 104.18.10.125, 2606:4700::6812:b7d, 2606:4700::6812:a7d
+ Target IP:          104.18.11.125
+ Target Hostname:    www.trugo.com.tr
+ Target Port:        80
+ Start Time:         2025-04-21 04:13:31 (GMT-7)
---------------------------------------------------------------------------
+ Server: cloudflare
+ /: Retrieved via header: 1.1 a58010dcda9232fe5c2a002d88847c0a.cloudfront.net (CloudFront).
+ Root page / redirects to: https://www.trugo.com.tr/
+ /jDwoLGvX.swp: Uncommon header 'accept-ch' found, with contents: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA.
+ /jDwoLGvX.swp: Uncommon header 'origin-agent-cluster' found, with contents: ?1.
+ /jDwoLGvX.swp: Uncommon header 'cf-mitigated' found, with contents: challenge.
+ /jDwoLGvX.swp: Uncommon header 'server-timing' found, with contents: chlray;desc="933c737f8c425343".
+ /jDwoLGvX.swp: Uncommon header 'critical-ch' found, with contents: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA.
+ /jDwoLGvX.swp: Uncommon header 'x-content-options' found, with contents: nosniff.
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ /phpimageview.php?pic=javascript:alert(8754): PHP Image View 1.0 is vulnerable to Cross Site Scripting (XSS). See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1724
+ /modules.php?op=modload&name=FAQ&file=index&myfaq=yes&id_cat=1&categories=%3Cimg%20src=javascript:alert(9456);%3E&parent_id=0: Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS).
+ /modules.php?letter=%22%3E%3Cimg%20src=javascript:alert(document.cookie);%3E&op=modload&name=Members_List&file=index: Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS).
+ /members.asp?SF=%22;}alert(223344);function%20x()\{v%20=%22: Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). See: OSVDB-4598
+ /forum_members.asp?find=%22;}alert(9823);function%20x()\{v%20=%22: Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). See: OSVDB-2946
+ Scan terminated: 0 error(s) and 12 item(s) reported on remote host
+ End Time:           2025-04-21 04:14:32 (GMT-7) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested

Trustpilot

Target

www.trugo.com.tr

Target IP

104.18.11.125

Scan method

Nikto scan (max 60 sec)

Run command

nikto -host www.trugo.com.tr -maxtime 60

Duration

61s

Quick report

Order full scan ($7.99/one time)

Scan date

21 Apr 2025 07:14

Copy scan report

Download report

Remove scan result

$

Check ports

Use Portscanner Tool

API - Scan ID

11be4ee8d9d484946ccfd8906546f6cb1db1b504