Nikto scan (max 60 sec) (nikto -host gunvorgoup.com -maxtime 60)
- Nikto v2.5.0
---------------------------------------------------------------------------
+ Target IP: 198.49.23.145
+ Target Hostname: gunvorgoup.com
+ Target Port: 80
+ Start Time: 2024-09-27 05:51:34 (GMT-4)
---------------------------------------------------------------------------
+ Server: Squarespace
+ /: Cookie crumb created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /:X-Frame-Options header is deprecated and has been replaced with the Content-Security-Policy HTTP header with the frame-ancestors directive instead. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
+ /: Uncommon header 'x-contextid' found, with contents: 36ojA3jI/rpmrPv8G.
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ /upload.asp: An ASP page that allows attackers to upload files to server.
+ /uploadn.asp: An ASP page that allows attackers to upload files to server.
+ /uploadx.asp: An ASP page that allows attackers to upload files to server.
+ /basilix/compose-attach.php3: BasiliX webmail application prior to 1.1.1 contains a non-descript security vulnerability in compose-attach.php3 related to attachment uploads.
+ /server/: Possibly Macromedia JRun or CRX WebDAV upload.
+ /servlets-examples/: Tomcat servlets examples are visible.
+ Scan terminated: 0 error(s) and 9 item(s) reported on remote host
+ End Time: 2024-09-27 05:52:35 (GMT-4) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested