The Apache Tomcat Manager/Host Manager/Server Status is using default or known hardcoded credentials.
It was possible to login into the Tomcat Host Manager at http://www.dvssc.com:8080/host-manager/html,http://www.dvssc.com:8080/manager/html,http://www.dvssc.com:8080/manager/status using user "root" with password "owaspbwa"
CVE-2010-4094,
CVE-2009-3548,
CVE-2009-4189,
CVE-2009-3099,
CVE-2009-3843,
CVE-2009-4188,
CVE-2010-0557
80
This host is running Apache httpd web server and is prone to denial of service vulnerability.
Successful exploitation will let the remote unauthenticated attackers to cause a denial of service.
CVE-2011-3192
80
Joomla! < 3.9.13 Multiple Vulnerabilities
Installed version: 1.5.9
CVE-2019-18650,CVE-2019-18674
80
Tiki Wiki CMS Groupware is prone to multiple unspecified vulnerabilities, including:
- An unspecified SQL-injection vulnerability
- An unspecified authentication-bypass vulnerability
This host is running Microsoft IIS Webserver and is prone to information disclosure vulnerability.
File/Folder name found on server starting with :aspnet
135
Distributed Computing Environment / Remote Procedure Calls (DCE/RPC) or MSRPC services running on the remote host can be enumerated by connecting on port 135 and doing the appropriate queries.
Here is the list of DCE/RPC or MSRPC services running on this host via the TCP protocol:
Port: 1025/tcp
445
This host is missing a critical security update according to Microsoft Bulletin MS09-001.
The host is running phpMyAdmin and is prone to Cross-Site Scripting Vulnerability.
Successful exploitation will allow attackers to inject arbitrary HTML code within the error page and conduct phishing attacks.phpMyAdmin version 3.3.8.1 and prior.
445
Samba is prone to a vulnerability that allows attackers to execute arbitrary shell commands because the software fails to sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary shell commands on an affected system with the privileges of the application.This issue affects Samba 3.0.0 to 3.0.25rc3.