Nikto scan report for "yoma77.com" - Online Nikto scanner

Summary

Found
122

Duration
27sec

Date
2025-07-24

43.174.227.5

Report

Nikto scan (max 60 sec) (nikto -host yoma77.com -maxtime 60)
- Nikto 
---------------------------------------------------------------------------
+ Multiple IPs found: 43.174.227.5, 43.174.229.45
+ Target IP:          43.174.227.5
+ Target Hostname:    yoma77.com
+ Target Port:        80
+ Start Time:         2025-07-24 09:53:10 (GMT-7)
---------------------------------------------------------------------------
+ Server: EdgeOne_L7S_OC
+ /: Uncommon header 'eo-log-uuid' found, with contents: 8869688759553682172.
+ Root page / redirects to: https://yoma77.com/
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ : Server banner changed from 'EdgeOne_L7S_OC' to 'TencentEdgeOne'.
+ /ultrasearch/: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/
+ /_vti_bin/owssvr.dll: FrontPage/Sharepointfile available.
+ /_vti_bin/_vti_adm/admin.exe: FrontPage/Sharepointfile available.
+ /_vti_bin/_vti_aut/author.exe: FrontPage/Sharepointfile available.
+ /_vti_bin/_vti_aut/WS_FTP.log: FrontPage/Sharepointfile available.
+ /_vti_bin/_vti_aut/ws_ftp.log: FrontPage/Sharepointfile available.
+ /_vti_bin/_vti_aut/author.dll: FrontPage/Sharepointfile available.
+ /_layouts/addrole.aspx: FrontPage/Sharepointfile available.
+ /_layouts/AdminRecycleBin.aspx: FrontPage/Sharepointfile available.
+ /_layouts/AreaNavigationSettings.aspx: FrontPage/Sharepointfile available.
+ /_Layouts/AreaTemplateSettings.aspx: FrontPage/Sharepointfile available.
+ /_Layouts/AreaWelcomePage.aspx: FrontPage/Sharepointfile available.
+ /_layouts/bpcf.aspx: FrontPage/Sharepointfile available.
+ /_Layouts/ChangeSiteMasterPage.aspx: FrontPage/Sharepointfile available.
+ /_layouts/create.aspx: FrontPage/Sharepointfile available.
+ /_layouts/editgrp.aspx: FrontPage/Sharepointfile available.
+ /_layouts/editprms.aspx: FrontPage/Sharepointfile available.
+ /_layouts/help.aspx: FrontPage/Sharepointfile available.
+ /_layouts/images/: FrontPage/Sharepointfile available.
+ /_layouts/listedit.aspx: FrontPage/Sharepointfile available.
+ /_layouts/ManageFeatures.aspx: FrontPage/Sharepointfile available.
+ /_layouts/mcontent.aspx: FrontPage/Sharepointfile available.
+ /_layouts/mngctype.aspx: FrontPage/Sharepointfile available.
+ /_layouts/mngfield.aspx: FrontPage/Sharepointfile available.
+ /_layouts/mngsiteadmin.aspx: FrontPage/Sharepointfile available.
+ /_layouts/mngsubwebs.aspx: FrontPage/Sharepointfile available.
+ /_layouts/mngsubwebs.aspx?view=sites: FrontPage/Sharepointfile available.
+ /_layouts/mobile/mbllists.aspx: FrontPage/Sharepointfile available.
+ /_layouts/MyInfo.aspx: FrontPage/Sharepointfile available.
+ /_layouts/MyPage.aspx: FrontPage/Sharepointfile available.
+ /_layouts/MyTasks.aspx: FrontPage/Sharepointfile available.
+ /_layouts/navoptions.aspx: FrontPage/Sharepointfile available.
+ /_layouts/NewDwp.aspx: FrontPage/Sharepointfile available.
+ /_layouts/newgrp.aspx: FrontPage/Sharepointfile available.
+ /_layouts/newsbweb.aspx: FrontPage/Sharepointfile available.
+ /_layouts/PageSettings.aspx: FrontPage/Sharepointfile available.
+ /_layouts/people.aspx?MembershipGroupId=0: FrontPage/Sharepointfile available.
+ /_layouts/permsetup.aspx: FrontPage/Sharepointfile available.
+ /_layouts/picker.aspx: FrontPage/Sharepointfile available.
+ /_layouts/policy.aspx: FrontPage/Sharepointfile available.
+ /_layouts/policyconfig.aspx: FrontPage/Sharepointfile available.
+ /_layouts/policycts.aspx: FrontPage/Sharepointfile available.
+ /_layouts/Policylist.aspx: FrontPage/Sharepointfile available.
+ /_layouts/prjsetng.aspx: FrontPage/Sharepointfile available.
+ /_layouts/quiklnch.aspx: FrontPage/Sharepointfile available.
+ /_layouts/recyclebin.aspx: FrontPage/Sharepointfile available.
+ /_Layouts/RedirectPage.aspx: FrontPage/Sharepointfile available.
+ /_layouts/role.aspx: FrontPage/Sharepointfile available.
+ /_layouts/settings.aspx: FrontPage/Sharepointfile available.
+ /_layouts/SiteDirectorySettings.aspx: FrontPage/Sharepointfile available.
+ /_layouts/sitemanager.aspx: FrontPage/Sharepointfile available.
+ /_layouts/SiteManager.aspx?lro=all: FrontPage/Sharepointfile available.
+ /_layouts/spcf.aspx: FrontPage/Sharepointfile available.
+ /_layouts/storman.aspx: FrontPage/Sharepointfile available.
+ /_layouts/themeweb.aspx: FrontPage/Sharepointfile available.
+ /_layouts/topnav.aspx: FrontPage/Sharepointfile available.
+ /_layouts/user.aspx: FrontPage/Sharepointfile available.
+ /_layouts/userdisp.aspx?ID=1: FrontPage/Sharepointfile available.
+ /_layouts/useredit.aspx: FrontPage/Sharepointfile available.
+ /_layouts/useredit.aspx?ID=1: FrontPage/Sharepointfile available.
+ /_layouts/viewlsts.aspx: FrontPage/Sharepointfile available.
+ /_layouts/vsubwebs.aspx: FrontPage/Sharepointfile available.
+ /_layouts/WPPrevw.aspx?ID=247: FrontPage/Sharepointfile available.
+ /_layouts/wrkmng.aspx: FrontPage/Sharepointfile available.
+ /Forms/DispForm.aspx: FrontPage/Sharepointfile available.
+ /Forms/DispForm.aspx?ID=1: FrontPage/Sharepointfile available.
+ /Forms/EditForm.aspx: FrontPage/Sharepointfile available.
+ /Forms/EditForm.aspx?ID=1: FrontPage/Sharepointfile available.
+ /Forms/Forms/AllItems.aspx: FrontPage/Sharepointfile available.
+ /Forms/MyItems.aspx: FrontPage/Sharepointfile available.
+ /Forms/NewForm.aspx: FrontPage/Sharepointfile available.
+ /Pages/default.aspx: FrontPage/Sharepointfile available.
+ /Pages/Forms/AllItems.aspx: FrontPage/Sharepointfile available.
+ /_catalogs/masterpage/Forms/AllItems.aspx: FrontPage/Sharepointfile available.
+ /_catalogs/wp/Forms/AllItems.aspx: FrontPage/Sharepointfile available.
+ /_catalogs/wt/Forms/Common.aspx: FrontPage/Sharepointfile available.
+ /_vti_pvt/service.grp: FrontPage/Sharepointfile available.
+ /_vti_pvt/botsinf.cnf: FrontPage/Sharepointfile available.
+ /_vti_pvt/structure.cnf: FrontPage/Sharepointfile available.
+ /_vti_pvt/uniqperm.cnf: FrontPage/Sharepointfile available.
+ /server-manager/: Mitel Audio and Web Conferencing server manager identified.
+ /wp-content/plugins/gravityforms/change_log.txt: Gravity forms is installed. Based on the version number in the changelog, it is vulnerable to an authenticated SQL injection. https://wpvulndb.com/vulnerabilities/7849.
+ /wordpress/wp-content/plugins/gravityforms/change_log.txt: Gravity forms is installed. Based on the version number in the changelog, it is vulnerable to an authenticated SQL injection. https://wpvulndb.com/vulnerabilities/7849.
+ /manager/status: Tomcat Server Status interface found (pass protected).
+ /jk-manager/status: Tomcat Server Status interface found (pass protected).
+ /jk-status/status: Tomcat Server Status interface found (pass protected).
+ /admin/status: Tomcat Server Status interface found (pass protected).
+ /host-manager/status: Tomcat Server Status interface found (pass protected).
+ /humans.txt: The humans.txt file may reveal information aboute site owners/developers. See: http://humanstxt.org/
+ /web.txt: This might be interesting.
+ /master.xml: This might be interesting.
+ /masters.xml: This might be interesting.
+ /connections.xml: This might be interesting.
+ /connection.xml: This might be interesting.
+ /passwords.xml: This might be interesting.
+ /PasswordsData.xml: This might be interesting.
+ /users.xml: This might be interesting.
+ /conndb.xml: This might be interesting.
+ /conn.xml: This might be interesting.
+ /security.xml: This might be interesting.
+ /accounts.xml: This might be interesting.
+ /db.json: This might be interesting.
+ /userdata.json: This might be interesting.
+ /login.json: This might be interesting.
+ /master.json: This might be interesting.
+ /masters.json: This might be interesting.
+ /connections.json: This might be interesting.
+ /connection.json: This might be interesting.
+ /passwords.json: This might be interesting.
+ /PasswordsData.json: This might be interesting.
+ /users.json: This might be interesting.
+ /conndb.json: This might be interesting.
+ /conn.json: This might be interesting.
+ /accounts.json: This might be interesting.
+ /.gitignore: .gitignore file found. It is possible to grasp the directory structure.
+ /.hgignore: .hgignore file found. It is possible to grasp the directory structure.
+ /.env: .env file found. The .env file may contain credentials.
+ /_async/AsyncResponseServiceJms?WSDL: BEA WebLogic may allow remote takeover. See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2725 CNVD-C-2019-48814
+ /.dockerignore: .dockerignore file found. It may be possible to grasp the directory structure and learn more about the site.
+ /README.md: Readme Found.
+ 7961 requests: 0 error(s) and 122 item(s) reported on remote host
+ End Time:           2025-07-24 09:53:37 (GMT-7) (27 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested
Online Nikto scanner - Online Nikto web server scanner | Product Hunt
Detailed report

Target
yoma77.com
Target IP
43.174.227.5
Scan method
Nikto scan (max 60 sec)
Run command
nikto -host yoma77.com -maxtime 60
Duration
27s
Quick report
Order full scan ($7.99/one time)
Scan date
24 Jul 2025 12:53
Copy scan report
Download report
Remove scan result
Check ports
Use Portscanner Tool
Wordpress site
Use Wordpress Scanner
API - Scan ID
3c3a1e864b21e4b8aa0eb1b35bdd3a33863e48c7
Scan report for "yoma77.com"

Summary

122

27sec

2025-07-24

43.174.227.5

Report

Detailed report
