LeakIX - Host admin-api.newoa.top

Domain admin-api.newoa.top

CLOUDFLARENET

Software information

cloudflare

tcp/443 tcp/80 tcp/8443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 188.114.96.12
Domain: admin-api.newoa.top
Port: 80
URL: http://admin-api.newoa.top

First seen 2025-11-05 03:42
Last seen 2026-01-09 21:50
Open for 65 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd110a331ec71f80af3976dcc26634f8d3f4dfc98aec83d259f
```
Public Swagger UI/API detected at path: /v2/api-docs - sample paths:
GET /dev-api/setting/get/{key}
GET /dev-api/test/user/list
GET /dev-api/test/user/{userId}
POST /dev-api/common/getAllSetting
POST /dev-api/test/user/save
PUT /dev-api/test/user/update
```
  Found on 2026-01-09 21:50
- Severity: info
  Fingerprint: 5733ddf49ff49cd151e75e4b1f378068601652e331ed9874f725ce7521d508be
```
Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /dev-api/setting/get/{key}
GET /dev-api/test/user/list
GET /dev-api/test/user/{userId}
POST /dev-api/common/getAllSetting
POST /dev-api/test/user/save
PUT /dev-api/test/user/update
```
  Found on 2025-12-18 12:36
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 188.114.96.12
Domain: admin-api.newoa.top
Port: 443
URL: https://admin-api.newoa.top

First seen 2025-11-05 03:42
Last seen 2026-01-09 11:29
Open for 65 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd110a331ec71f80af3976dcc26634f8d3f4dfc98aec83d259f
```
Public Swagger UI/API detected at path: /v2/api-docs - sample paths:
GET /dev-api/setting/get/{key}
GET /dev-api/test/user/list
GET /dev-api/test/user/{userId}
POST /dev-api/common/getAllSetting
POST /dev-api/test/user/save
PUT /dev-api/test/user/update
```
  Found on 2026-01-09 11:29
Create report

Open service 188.114.96.12:80 · admin-api.newoa.top

2026-01-09 21:50

HTTP/1.1 200 OK
Date: Fri, 09 Jan 2026 21:50:14 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 92
Connection: close
Server: cloudflare
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache
cf-cache-status: DYNAMIC
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=14,cfOrigin;dur=64
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=VrSkkZ3%2BKJ8N%2FChD3Psef2SXOe2T%2BWfdC00OwyUsMr998m9DmyB01ZFt%2F%2BEBmZsyQFphLEr59%2Ftyr%2FulIESV3Nx%2B%2Bz5KTFNpcCKpZm35kIBRrco%3D"}]}
CF-RAY: 9bb7262b8c5c8beb-SIN
alt-svc: h3=":443"; ma=86400


欢迎使用RuoYi后台管理框架，当前版本：v3.8.5，请通过前端地址访问。

Found 2026-01-09 by HttpPlugin

Create report

Open service 188.114.96.12:443 · admin-api.newoa.top

2026-01-09 11:29

HTTP/1.1 200 OK
Date: Fri, 09 Jan 2026 11:29:14 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 92
Connection: close
Server: cloudflare
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache
cf-cache-status: DYNAMIC
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=t9tYoXmsHUSgxWwI7XBJvs%2BAAJgfv5nCmkfYwRw4KBOOyF2ZMx4x5l%2BRSGXmMLEYuxox8mn%2F2vt%2B6GYcWe%2BcYcefC0BB1Rgm%2BPWusRt0ZfKwOm8%3D"}]}
CF-RAY: 9bb398703fd29290-FRA
alt-svc: h3=":443"; ma=86400


欢迎使用RuoYi后台管理框架，当前版本：v3.8.5，请通过前端地址访问。

Found 2026-01-09 by HttpPlugin

Create report

Open service 104.21.21.252:443 · admin-api.newoa.top

2026-01-09 03:10

HTTP/1.1 200 OK
Date: Fri, 09 Jan 2026 03:10:50 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 92
Connection: close
Server: cloudflare
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache
cf-cache-status: DYNAMIC
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=11,cfOrigin;dur=633
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CewI7UKONzEy0JjxHqC3eotfKxaMF0%2FGy%2BR5Qr8nIb%2FU%2FSJDOTwJaykQhc3Hbj9U8%2BleVlJdW3bal0bMKFSsIMtfsYwdsUj58L1Xj%2BuH1obS46A%3D"}]}
CF-RAY: 9bb0be691f70606a-EWR
alt-svc: h3=":443"; ma=86400


欢迎使用RuoYi后台管理框架，当前版本：v3.8.5，请通过前端地址访问。

Found 2026-01-09 by HttpPlugin