Found
Duration
Date
IP
- Nikto --------------------------------------------------------------------------- + Target IP: 37.97.206.120 + Target Hostname: innoveet.nl + Target Port: 80 + Start Time: 2024-10-31 17:10:31 (GMT-4) --------------------------------------------------------------------------- + Server: Apache/2.4.57 (AlmaLinux) OpenSSL/3.0.7 + Root page / redirects to: http://www.innoveet.nl/ + OpenSSL/3.0.7 appears to be outdated (current is at least 3.2.0). OpenSSL 1.1.1w is current for 1.x and is supported via contract, and 3.0.12 for 3.0.x, and 3.1.4 for 3.1.x. + Apache/2.4.57 appears to be outdated (current is at least 2.4.58). Apache 2.2.34 is the EOL for the 2.x branch. + /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/ + /: HTTP TRACE method is active which suggests the host is vulnerable to XST. See: https://owasp.org/www-community/attacks/Cross_Site_Tracing + /cgi-bin/index.php: Retrieved x-powered-by header: PHP/7.4.33. + Scan terminated: 0 error(s) and 5 item(s) reported on remote host + End Time: 2024-10-31 17:11:32 (GMT-4) (61 seconds) --------------------------------------------------------------------------- + 1 host(s) tested