Nikto scan (max 60 sec) (nikto -host mobile.boxer-digital.co.za -maxtime 60)
- Nikto v2.5.0
---------------------------------------------------------------------------
+ Multiple IPs found: 3.171.139.56, 3.171.139.50, 3.171.139.99, 3.171.139.95
+ Target IP: 3.171.139.56
+ Target Hostname: mobile.boxer-digital.co.za
+ Target Port: 80
+ Start Time: 2024-09-19 13:02:03 (GMT-4)
---------------------------------------------------------------------------
+ Server: CloudFront
+ /: Retrieved via header: 1.1 94ad62d30119f960dbd892be99684e02.cloudfront.net (CloudFront).
+ Root page / redirects to: https://mobile.boxer-digital.co.za/
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ /: Retrieved access-control-allow-origin header: *.
+ : Server banner changed from 'CloudFront' to 'AmazonS3'.
+ /nikto-test-k8vf2leZ.html:X-Frame-Options header is deprecated and has been replaced with the Content-Security-Policy HTTP header with the frame-ancestors directive instead. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
+ /nikto-test-k8vf2leZ.html: Uncommon header 'x-amz-server-side-encryption' found, with contents: AES256.
+ /: Web Server returns a valid response with junk HTTP methods which may cause false positives.
+ /blah_badfile.shtml: Allaire ColdFusion allows JSP source viewed through a vulnerable SSI call.
+ /servlet/com.livesoftware.jrun.plugins.ssi.SSIFilter: Allaire ColdFusion allows JSP source viewed through a vulnerable SSI call.
+ /servlet/allaire.jrun.ssi.SSIFilter: Allaire ColdFusion allows JSP source viewed through a vulnerable SSI call. See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0926
+ /_vti_bin/shtml.dll/_vti_rpc?method=server+version%3a4%2e0%2e2%2e2611: Gives info about server settings. See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0413,http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0709,http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0710
+ /_vti_bin/shtml.exe/_vti_rpc?method=server+version%3a4%2e0%2e2%2e2611: Gives info about server settings. See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0413,http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0709,http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0710
+ /_vti_bin/_vti_aut/author.dll?method=list+documents%3a3%2e0%2e2%2e1706&service%5fname=&listHiddenDocs=true&listExplorerDocs=true&listRecurse=false&listFiles=true&listFolders=true&listLinkInfo=true&listIncludeParent=true&listDerivedT=false&listBorders=false: We seem to have authoring access to the FrontPage web.
+ /_vti_bin/_vti_aut/author.exe?method=list+documents%3a3%2e0%2e2%2e1706&service%5fname=&listHiddenDocs=true&listExplorerDocs=true&listRecurse=false&listFiles=true&listFolders=true&listLinkInfo=true&listIncludeParent=true&listDerivedT=false&listBorders=false: We seem to have authoring access to the FrontPage web.
+ 8129 requests: 0 error(s) and 13 item(s) reported on remote host
+ End Time: 2024-09-19 13:02:28 (GMT-4) (25 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested
Color Scheme
Target
mobile.boxer-digital.co.za
Scan method
Nikto scan (max 60 sec)
Run command
nikto -host mobile.boxer-digital.co.za -maxtime 60