Scan report for "www.areandina.com"

  1. Nikto Online
  2. Scan report for "www.areandina.com"
Membership level: Free member
Summary

Found

21

Duration

29sec

Date

2026-03-05

IP

15.197.240.20

Report
Nikto scan (max 60 sec) (nikto -host www.areandina.com -maxtime 60)
- Nikto v2.6.0
---------------------------------------------------------------------------
+ Your Nikto installation is out of date.
+ Target IP:          15.197.240.20
+ Target Hostname:    www.areandina.com
+ Target Port:        80
+ Platform:           Unknown
+ Start Time:         2026-03-05 20:55:11 (GMT-5)
---------------------------------------------------------------------------
+ Server: No banner retrieved
+ No CGI Directories found (use '-C all' to force check all possible dirs). CGI tests skipped.
+ [999996] /robots.txt: contains 1 entry which should be manually viewed. See: https://developer.mozilla.org/en-US/docs/Glossary/Robots.txt
+ [013587] /: Suggested security header missing: permissions-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Permissions-Policy
+ [013587] /: Suggested security header missing: x-content-type-options. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options
+ [013587] /: Suggested security header missing: content-security-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
+ [013587] /: Suggested security header missing: strict-transport-security. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security
+ [013587] /: Suggested security header missing: referrer-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
+ [000324] /tvcs/getservers.exe?action=selects1: Following steps 2-4 of this page may reveal a zip file that contains passwords and system details.
+ [000365] /smg_Smxcfg30.exe?vcc=3560121183d3: This may be a Trend Micro Officescan 'backdoor'.
+ [000486] /WebAdmin.dll?View=Logon: Some versions of WebAdmin are vulnerable to a remote DoS (not tested). See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1247
+ [000885] /guestbook/?number=5&lng=%3Cscript%3Ealert(document.domain);%3C/script%3E: MPM Guestbook 1.2 and previous are vulnreable to XSS attacks. See: CVE‑2003‑1182
+ [000962] /ext.dll?MfcIsapiCommand=LoadPage&page=admin.hts%20&a0=add&a1=root&a2=%5C: This check (A) sets up the next BadBlue test (B) for possible exploit. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0595
+ [001170] /ncl_items.shtml?SUBJECT=1: This may allow attackers to reconfigure your Tektronix printer. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0484
+ [001174] /pub/english.cgi?op=rmail: BSCW self-registration may be enabled. This could allow untrusted users semi-trusted access to the software. 3.x version (and probably some 4.x) allow arbitrary commands to be executed remotely. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0095
+ [001176] /scripts/wsisa.dll/WService=anything?WSMadmin: Allows Webspeed to be remotely administered. Edit unbroker.properties and set AllowMsngrCmds to 0. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0127
+ [001218] /sitemap.xml: The sitemap.xml file provides a listing of the site content.
+ [001239] /ab2/\@AdminAddadmin?uid=foo&password=bar&re_password=bar: Sun Answerbook may allow users to be created without proper authentication first. Attempted to add user 'foo' with password 'bar'. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0696
+ [002078] /carbo.dll: This might be interesting.
+ [002318] /csPassword.cgi?command=remove%20: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002341] /emumail.cgi?type=.%00: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002456] /forum_arc.asp?n=268: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002468] /forum_professionnel.asp?n=100: This might be interesting: has been seen in web logs from an unknown scanner.
- STATUS: Completed 2785 requests (~38% complete, ~48 seconds left): currently in plugin 'Nikto Tests'
- STATUS: Running average: Not enough data.
+ Scan terminated: 18 errors and 21 items reported on the remote host
+ End Time:           2026-03-05 20:55:40 (GMT-5) (29 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested
Trustpilot
Online Nikto scanner - Online Nikto web server scanner | Product Hunt
Detailed report
Target
www.areandina.com
Target IP
15.197.240.20
Scan method
Nikto scan (max 60 sec)
Run command
nikto -host www.areandina.com -maxtime 60
Duration
Quick report
Scan date
05 Mar 2026 20:55
Copy scan report
Download report
Remove scan result
$
Total scans
Check ports
API - Scan ID