Scan report for "vancekirk.com"

  1. Nikto Online
  2. Scan report for "vancekirk.com"
Membership level: Free member
Summary

Found

31

Duration

1min 1sec

Date

2026-03-13

IP

3.33.130.190

Report
Nikto scan (max 60 sec) (nikto -host vancekirk.com -maxtime 60)
- Nikto v2.6.0
---------------------------------------------------------------------------
+ Your Nikto installation is out of date.
+ Target IP:          3.33.130.190
+ Target Hostname:    vancekirk.com
+ Target Port:        80
+ Platform:           Unknown
+ Start Time:         2026-03-13 00:59:40 (GMT-4)
---------------------------------------------------------------------------
+ Server: No banner retrieved
+ Multiple IPs found: 3.33.130.190, 15.197.148.33
+ No CGI Directories found (use '-C all' to force check all possible dirs). CGI tests skipped.
+ [999996] /robots.txt: contains 1 entry which should be manually viewed. See: https://developer.mozilla.org/en-US/docs/Glossary/Robots.txt
+ [013587] /: Suggested security header missing: permissions-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Permissions-Policy
+ [013587] /: Suggested security header missing: content-security-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
+ [013587] /: Suggested security header missing: x-content-type-options. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options
+ [013587] /: Suggested security header missing: referrer-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
+ [013587] /: Suggested security header missing: strict-transport-security. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security
+ [000324] /tvcs/getservers.exe?action=selects1: Following steps 2-4 of this page may reveal a zip file that contains passwords and system details.
+ [000365] /smg_Smxcfg30.exe?vcc=3560121183d3: This may be a Trend Micro Officescan 'backdoor'.
+ [000486] /WebAdmin.dll?View=Logon: Some versions of WebAdmin are vulnerable to a remote DoS (not tested). See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1247
+ [000885] /guestbook/?number=5&lng=%3Cscript%3Ealert(document.domain);%3C/script%3E: MPM Guestbook 1.2 and previous are vulnreable to XSS attacks. See: CVE‑2003‑1182
+ [000962] /ext.dll?MfcIsapiCommand=LoadPage&page=admin.hts%20&a0=add&a1=root&a2=%5C: This check (A) sets up the next BadBlue test (B) for possible exploit. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0595
+ [001170] /ncl_items.shtml?SUBJECT=1: This may allow attackers to reconfigure your Tektronix printer. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0484
+ [001174] /pub/english.cgi?op=rmail: BSCW self-registration may be enabled. This could allow untrusted users semi-trusted access to the software. 3.x version (and probably some 4.x) allow arbitrary commands to be executed remotely. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0095
+ [001176] /scripts/wsisa.dll/WService=anything?WSMadmin: Allows Webspeed to be remotely administered. Edit unbroker.properties and set AllowMsngrCmds to 0. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0127
+ [001218] /sitemap.xml: The sitemap.xml file provides a listing of the site content.
+ [001239] /ab2/\@AdminAddadmin?uid=foo&password=bar&re_password=bar: Sun Answerbook may allow users to be created without proper authentication first. Attempted to add user 'foo' with password 'bar'. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0696
+ [002078] /carbo.dll: This might be interesting.
+ [002318] /csPassword.cgi?command=remove%20: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002341] /emumail.cgi?type=.%00: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002456] /forum_arc.asp?n=268: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002468] /forum_professionnel.asp?n=100: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002551] /myguestBk/admin/index.asp?|-|0|404_Object_Not_Found: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002552] /netget?sid=Safety&msg=2002&file=Safety: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002611] /sw000.asp?|-|0|404_Object_Not_Found: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002612] /syslog.htm?%20: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002717] /ows-bin/oaskill.exe?abcde.exe: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002718] /ows-bin/oasnetconf.exe?-l%20-s%20BlahBlah: This might be interesting: has been seen in web logs from an unknown scanner.
+ [002743] /.bash_history: A user's home directory may be set to the web root, the shell history was retrieved. This should not be accessible via the web.
+ [002756] /.sh_history: A user's home directory may be set to the web root, the shell history was retrieved. This should not be accessible via the web.
+ [003182] /texis.exe/?-dump: Texis installation may reveal sensitive information. See: OSVDB-4314
+ [003183] /texis.exe/?-version: Texis installation may reveal sensitive information. See: OSVDB-4314
+ Scan terminated: 0 errors and 31 items reported on the remote host
+ End Time:           2026-03-13 01:00:41 (GMT-4) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested
Trustpilot
Online Nikto scanner - Online Nikto web server scanner | Product Hunt
Detailed report
Target
vancekirk.com
Target IP
3.33.130.190
Scan method
Nikto scan (max 60 sec)
Run command
nikto -host vancekirk.com -maxtime 60
Duration
Quick report
Scan date
13 Mar 2026 01:00
Copy scan report
Download report
Remove scan result
$
Total scans
Check ports
API - Scan ID