Scan report for "charlottewildliferemoval.net"

- Nikto v2.6.0
---------------------------------------------------------------------------
+ Your Nikto installation is out of date.
+ Target IP:          35.212.124.173
+ Target Hostname:    charlottewildliferemoval.net
+ Target Port:        80
+ Platform:           Unknown
+ Start Time:         2026-05-01 15:03:56 (GMT-4)
---------------------------------------------------------------------------
+ Server: nginx
+ [999100] /: Uncommon header(s) 'host-header' found, with contents: 6b7412fb82ca5edfd0917e3957f05d89.
+ [999100] /: Uncommon header(s) 'x-proxy-cache-info' found, with contents: 0301 NC:000000 UP:.
+ [999100] /: Uncommon header(s) 'x-proxy-cache' found, with contents: MISS.
+ [999979] /: IP address found in the 'remote-addr' header. The IP is "172.96.166.66". See: https://portswigger.net/kb/issues/00600300_private-ip-addresses-disclosed
+ [999100] /: Uncommon header(s) 'x-default-vhost' found, with contents: 1.
+ [999100] /: Uncommon header(s) 'remote-addr' found, with contents: 172.96.166.66.
+ [013587] /: Suggested security header missing: strict-transport-security. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security
+ [013587] /: Suggested security header missing: content-security-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
+ [013587] /: Suggested security header missing: permissions-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Permissions-Policy
+ [013587] /: Suggested security header missing: referrer-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
+ [013587] /: Suggested security header missing: x-content-type-options. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options
+ [999986] /webmail/horde/test.php: Retrieved x-server-name header: gvam1016.siteground.biz.
+ [999986] /webmail/horde/test.php: Retrieved x-real-ip header: 172.96.166.66.
+ [999979] /webmail/horde/test.php: IP address found in the 'x-real-ip' header. The IP is "172.96.166.66". See: https://portswigger.net/kb/issues/00600300_private-ip-addresses-disclosed
+ [999100] /webmail/horde/test.php: Uncommon header(s) 'x-server-name' found, with contents: gvam1016.siteground.biz.
+ [999100] /webmail/horde/test.php: Uncommon header(s) 'x-real-ip' found, with contents: 172.96.166.66.
+ [999100] /%3f.jsp: Uncommon header(s) 'x-httpd' found, with contents: 1.
+ [000777] /user.php?op=confirmnewuser&module=NS-NewUser&uNikto=%22%3E%3Cimg%20src=%22javascript:alert(document.cookie);%22%3E&email=test@test.com: Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS).
+ Scan terminated: 1 error and 18 items reported on the remote host
+ End Time:           2026-05-01 15:04:57 (GMT-4) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested

Trustpilot

Target

charlottewildliferemoval.net

Target IP

35.212.124.173

Scan method

Nikto scan (max 60 sec)

Run command

nikto -host charlottewildliferemoval.net -maxtime 60

Duration

61s

Quick report

Order full scan ($7.99/one time)

Scan date

01 May 2026 15:04

Copy scan report

Download report

Remove scan result

$

Check ports

Use Portscanner Tool

API - Scan ID

5251aa3f3441d35a4de28d87ee16c26ba286b162