LeakIX - Host acecpbe.ace-gallagher.com

Domain acecpbe.ace-gallagher.com

Germany

Akamai International B.V.

Software information

AkamaiGHost

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 95.100.110.14
Domain: acecpbe.ace-gallagher.com
Port: 443
URL: https://acecpbe.ace-gallagher.com

First seen 2025-12-06 13:41
Last seen 2025-12-22 05:37
Open for 15 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354989a81d26552aa9655531d4b52248ce606672ed53

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /Branch/GetAllBranches
GET /Country/GetAllCountries
GET /Customer/GetAllCustomers
GET /Customer/GetCustomersPriviliges
GET /Policy/GetLOBs
GET /Request/GetRequestAttachmentBase64
GET /Request/GetRequestAttachments
GET /Request/GetRequestTypes
GET /api/Report/GetSOALevels
GET /api/User/GenerateAuthenticatorQrCode
GET /api/User/GetAllUsers
GET /api/User/GetLogs
GET /api/User/SendOTP
POST /Customer/InsertCustomers
POST /Email/SendEmail
POST /Home/GetCardCounts
POST /Logger/LogCritical
POST /Logger/LogError
POST /Logger/LogInformation
POST /Logger/LogWarning
POST /Policy/GetPoliciesAttachmentBase64
POST /Policy/GetPoliciesAttachments
POST /Policy/GetPoliciesByPrivileges
POST /Policy/GetPoliciesTreeView
POST /Policy/GetPolicyDetails
POST /Request/AddRequest
POST /Request/AddRequestAttachments
POST /Request/GetRequestTemplate
POST /Request/GetRequestsByPolicyId
POST /Request/GetRequestsByPrivileges
POST /api/Document/GetFinancialDocumentAttachment
POST /api/Document/GetFinancialDocumentsData
POST /api/Document/GetPortalDocumentAttachment
POST /api/Document/GetPortalDocumentsData
POST /api/Report/GetAttachmentBase64
POST /api/Report/GetInsurerInvoiceReportData
POST /api/Report/GetStatementOfAccountReportData
POST /api/User/Authenticate
POST /api/User/DeleteUser
POST /api/User/EnableTwoFactorAuth
POST /api/User/GetUsersByPrivileges
POST /api/User/LockUser
POST /api/User/Logout
POST /api/User/Refresh
POST /api/User/RegisterUser
POST /api/User/ResetAuthenticator
POST /api/User/ResetPassword
POST /api/User/SendResetPasswordEmail
POST /api/User/UnlockUser
POST /api/User/UpdateUser
POST /api/User/ValidateOTP
POST /api/User/VerifyTwoFactorCode

Found on 2025-12-22 05:37

Create report

Open service 95.100.110.14:443 · acecpbe.ace-gallagher.com

2026-01-08 21:29

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 383
Expires: Thu, 08 Jan 2026 21:29:25 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 08 Jan 2026 21:29:25 GMT
Connection: close
Strict-Transport-Security: max-age=15768000

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;acecpbe&#46;ace&#45;gallagher&#46;com&#47;" on this server.<P>
Reference&#32;&#35;18&#46;10d91102&#46;1767907765&#46;587586b5
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;10d91102&#46;1767907765&#46;587586b5</P>
</BODY>
</HTML>

Found 2026-01-08 by HttpPlugin

Create report

Open service 95.100.110.14:443 · acecpbe.ace-gallagher.com

2026-01-01 21:40

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 383
Expires: Thu, 01 Jan 2026 21:40:53 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 01 Jan 2026 21:40:53 GMT
Connection: close
Strict-Transport-Security: max-age=15768000

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;acecpbe&#46;ace&#45;gallagher&#46;com&#47;" on this server.<P>
Reference&#32;&#35;18&#46;10d91102&#46;1767303653&#46;e30339b1
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;10d91102&#46;1767303653&#46;e30339b1</P>
</BODY>
</HTML>

Found 2026-01-01 by HttpPlugin

Create report

ace-gallagher.comacecpbe.ace-gallagher.comadfs.ace-gallagher.comapi.ace-gallagher.comclientexperience.ace-gallagher.comconnect.ace-gallagher.comfiles.ace-gallagher.commy.ace-gallagher.commycard.ace-gallagher.comsalesapp-api.ace-gallagher.comsalesapp-ids.ace-gallagher.comuat-acecpbe.ace-gallagher.comuat-clientexperience.ace-gallagher.comuat-my.ace-gallagher.comuat-salesapp-api.ace-gallagher.comuat-salesapp-ids.ace-gallagher.comwww.ace-gallagher.com

Fingerprint:

82ba29e296d6bcee4c81df170f9fb4862efd7b2c6bfde7cbf1d46d51be85803b

CN:

ace-gallagher.com

Key:

RSA-2048

Issuer:

R12

Not before:

2025-12-06 12:42

Not after:

2026-03-06 12:42

Domain summary

acecpbe.ace-gallagher.com 2

1 recorded

IP summary

95.100.110.14 2

1 recorded