LeakIX - Host aba-practice.com

Domain aba-practice.com

United States

SQUIXA PTY LIMITED

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 207.120.36.166
Domain: www.aba-practice.com
Port: 443
URL: https://www.aba-practice.com

First seen 2025-10-28 20:14
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43a81ce88f562b774ca7894bf46905fba96905fba9
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /coupons
GET /coupons/hascoupon
GET /coupons/verify
GET /language
```
  Found on 2025-10-28 20:14
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 45.154.183.183
Domain: aba-practice.com
Port: 443
URL: https://aba-practice.com

First seen 2025-10-28 19:49
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43a81ce88f562b774ca7894bf46905fba96905fba9
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /coupons
GET /coupons/hascoupon
GET /coupons/verify
GET /language
```
  Found on 2025-10-28 19:49
Create report

Open service 45.154.183.183:443 · aba-practice.com

2025-12-31 23:10

HTTP/1.1 403 Forbidden
Date: Wed, 31 Dec 2025 23:10:24 GMT
Content-Type: text/html
Content-Length: 118
Connection: close
X-Varnish: 31697707
Age: 0
Via: 1.1 varnish (Varnish/6.3)
section-io-cache: Miss
section-io-id: 675106397cb636b9e83e0bf629f82243

Page title: 403 Forbidden

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
</body>
</html>

Found 2025-12-31 by HttpPlugin

Create report

Open service 45.154.183.183:80 · aba-practice.com

2025-12-31 23:10

HTTP/1.1 403 Forbidden
Date: Wed, 31 Dec 2025 23:10:24 GMT
Content-Type: text/html
Content-Length: 118
Connection: close
X-Varnish: 50014429
Age: 0
Via: 1.1 varnish (Varnish/6.3)
section-io-cache: Miss
section-io-id: 8dba64e698be6284df59539b2c2a4ec8

Page title: 403 Forbidden

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
</body>
</html>

Found 2025-12-31 by HttpPlugin

Create report

Open service 45.154.183.183:443 · aba-practice.com

2025-12-22 08:45

HTTP/1.1 403 Forbidden
Date: Mon, 22 Dec 2025 08:45:51 GMT
Content-Type: text/html
Content-Length: 118
Connection: close
X-Varnish: 21799596
Age: 0
Via: 1.1 varnish (Varnish/6.3)
section-io-cache: Miss
section-io-id: bd7f79f494334fe601e890e113a12bd1

Page title: 403 Forbidden

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
</body>
</html>

Found 2025-12-22 by HttpPlugin

Create report

Open service 207.120.36.166:443 · www.aba-practice.com

2025-12-22 08:45

HTTP/1.1 403 Forbidden
Date: Mon, 22 Dec 2025 08:45:50 GMT
Content-Type: text/html
Content-Length: 118
Connection: close
X-Varnish: 8622855
Age: 0
Via: 1.1 varnish (Varnish/6.3)
section-io-cache: Miss
section-io-id: 7e6bf80dc63b3f5cc27427293f4396ca

Page title: 403 Forbidden

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
</body>
</html>

Found 2025-12-22 by HttpPlugin

Create report

Open service 45.154.183.183:443 · aba-practice.com

2025-12-20 09:27

HTTP/1.1 403 Forbidden
Date: Sat, 20 Dec 2025 09:27:09 GMT
Content-Type: text/html
Content-Length: 118
Connection: close
X-Varnish: 19837000
Age: 0
Via: 1.1 varnish (Varnish/6.3)
section-io-cache: Miss
section-io-id: 662ba7a8b09a46a8c1c922d80947f421

Page title: 403 Forbidden

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
</body>
</html>

Found 2025-12-20 by HttpPlugin

Create report

Open service 207.120.36.166:443 · www.aba-practice.com

2025-12-20 09:27

HTTP/1.1 403 Forbidden
Date: Sat, 20 Dec 2025 09:27:07 GMT
Content-Type: text/html
Content-Length: 118
Connection: close
X-Varnish: 4959626
Age: 0
Via: 1.1 varnish (Varnish/6.3)
section-io-cache: Miss
section-io-id: 05a442f308e15e6cd05242d92ec84d8f

Page title: 403 Forbidden

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
</body>
</html>

Found 2025-12-20 by HttpPlugin

Create report

aba-practice.com

Fingerprint:

fd3becf077604437a14842dd36d6e2fb4f363322841026a46c5e9dc0185481ce

CN:

aba-practice.com

Key:

RSA-2048

Issuer:

R13

Not before:

2025-12-27 18:03

Not after:

2026-03-27 18:03

aba-practice.com

Fingerprint:

e3bd51ad95ed746e895d16f26c63c4f4165d06712d1632af67f4b0e27cecf16f

CN:

aba-practice.com

Key:

RSA-2048

Issuer:

R12

Not before:

2025-10-28 18:51

Not after:

2026-01-26 18:51

www.aba-practice.com

Fingerprint:

846f2f373987267dfdb2210506cce4cbb7d76f7e43eb72ec41c9bdec07cbcb13

CN:

www.aba-practice.com

Key:

RSA-2048

Issuer:

R12

Not before:

2025-10-28 19:15

Not after:

2026-01-26 19:15

Domain summary

aba-practice.com 4 www.aba-practice.com 2

2 recorded

IP summary

45.154.183.183 2 207.120.36.166 2

2 recorded

Domain aba-practice.com

United States

Swagger API description is publicly available

Swagger API description is publicly available

Create report

Create report

Create report

Create report

Create report

Create report

aba-practice.com

aba-practice.com

www.aba-practice.com

Domain summary

IP summary