Found
Duration
Date
IP
- Nikto --------------------------------------------------------------------------- + Target IP: 200.195.146.40 + Target Hostname: baixa.atualcard.com.br + Target Port: 80 + Start Time: 2025-01-26 06:33:14 (GMT-8) --------------------------------------------------------------------------- + Server: Apache + /: Retrieved access-control-allow-origin header: *. + /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/ + /crossdomain.xml: Server may leak inodes via ETags, header found with file /crossdomain.xml, inode: 139722775, size: 269, mtime: Tue Dec 16 11:58:02 2014. See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-1418 + /crossdomain.xml contains 1 line which include the following domains: *.atualcard.com.br . See: http://jeremiahgrossman.blogspot.com/2008/05/crossdomainxml-invites-cross-site.html + Scan terminated: 0 error(s) and 4 item(s) reported on remote host + End Time: 2025-01-26 06:34:15 (GMT-8) (61 seconds) --------------------------------------------------------------------------- + 1 host(s) tested