Domain api.bailfundapp.org
United States
Software information
Heroku
tcp/443 tcp/80
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
First seen 2025-11-10 01:41
Last seen 2026-01-02 03:01
Open for 53 days-
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ba4c71803ae89744cb11c09ff196c30fa663c3d3GraphQL introspection enabled at /graphql Types: 117 (by kind: ENUM: 15, INPUT_OBJECT: 45, OBJECT: 51, SCALAR: 6) Operations: - Query: Queries | fields: documents, duplicateQueryResults, listUsers, organization, userInfo - Mutation: Mutations | fields: createView, deleteView, updateFlags, updateUserData, updateView Directives: include, skip (total: 2)
Found on 2026-01-02 03:01125.8 kBytes -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3GraphQL introspection enabled at /graphql
Found on 2025-11-12 04:36
-
-
Open service 99.83.220.108:80 · api.bailfundapp.org
2026-01-10 00:45
HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=utf-8 Date: Sat, 10 Jan 2026 00:46:15 GMT Location: https://api.bailfundapp.org/ Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=GWED%2FxYndtoEz3J8nJvvvUAPWycKm1pcp2zzt3o7UNc%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768005975"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=GWED%2FxYndtoEz3J8nJvvvUAPWycKm1pcp2zzt3o7UNc%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768005975" Server: Heroku Vary: Origin Via: 1.1 heroku-router Content-Length: 0 Connection: closeFound 3 days ago by HttpPluginCreate report
-
Open service 75.2.60.68:443 · api.bailfundapp.org
2026-01-10 00:45
HTTP/1.1 404 Not Found Content-Length: 77 Content-Type: text/html Date: Sat, 10 Jan 2026 00:45:14 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=OVhvGgwxPfh6MwQ5JDgKoVbHTt2xAOtr0zk3A0%2B7IBM%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768005914"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=OVhvGgwxPfh6MwQ5JDgKoVbHTt2xAOtr0zk3A0%2B7IBM%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768005914" Server: Heroku Strict-Transport-Security: max-age=15768000; includeSubDomains Vary: Cookie, Origin Via: 1.1 heroku-router X-Frame-Options: SAMEORIGIN X-Source-Version: ae6aee40 Connection: close <h1>Not Found</h1><p>The requested resource was not found on this server.</p>Found 3 days ago by HttpPluginCreate report
-
Open service 35.71.179.82:80 · api.bailfundapp.org
2026-01-10 00:45
HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=utf-8 Date: Sat, 10 Jan 2026 00:46:15 GMT Location: https://api.bailfundapp.org/ Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=GWED%2FxYndtoEz3J8nJvvvUAPWycKm1pcp2zzt3o7UNc%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768005975"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=GWED%2FxYndtoEz3J8nJvvvUAPWycKm1pcp2zzt3o7UNc%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768005975" Server: Heroku Vary: Origin Via: 1.1 heroku-router Content-Length: 0 Connection: closeFound 3 days ago by HttpPluginCreate report
-
Open service 35.71.179.82:443 · api.bailfundapp.org
2026-01-10 00:45
HTTP/1.1 404 Not Found Content-Length: 77 Content-Type: text/html Date: Sat, 10 Jan 2026 00:45:14 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=OVhvGgwxPfh6MwQ5JDgKoVbHTt2xAOtr0zk3A0%2B7IBM%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768005914"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=OVhvGgwxPfh6MwQ5JDgKoVbHTt2xAOtr0zk3A0%2B7IBM%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768005914" Server: Heroku Strict-Transport-Security: max-age=15768000; includeSubDomains Vary: Cookie, Origin Via: 1.1 heroku-router X-Frame-Options: SAMEORIGIN X-Source-Version: ae6aee40 Connection: close <h1>Not Found</h1><p>The requested resource was not found on this server.</p>Found 3 days ago by HttpPluginCreate report
-
Open service 75.2.60.68:80 · api.bailfundapp.org
2026-01-10 00:45
HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=utf-8 Date: Sat, 10 Jan 2026 00:46:15 GMT Location: https://api.bailfundapp.org/ Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=GWED%2FxYndtoEz3J8nJvvvUAPWycKm1pcp2zzt3o7UNc%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768005975"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=GWED%2FxYndtoEz3J8nJvvvUAPWycKm1pcp2zzt3o7UNc%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768005975" Server: Heroku Vary: Origin Via: 1.1 heroku-router Content-Length: 0 Connection: closeFound 3 days ago by HttpPluginCreate report
-
Open service 99.83.220.108:443 · api.bailfundapp.org
2026-01-10 00:45
HTTP/1.1 404 Not Found Content-Length: 77 Content-Type: text/html Date: Sat, 10 Jan 2026 00:45:14 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=OVhvGgwxPfh6MwQ5JDgKoVbHTt2xAOtr0zk3A0%2B7IBM%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768005914"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=OVhvGgwxPfh6MwQ5JDgKoVbHTt2xAOtr0zk3A0%2B7IBM%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768005914" Server: Heroku Strict-Transport-Security: max-age=15768000; includeSubDomains Vary: Cookie, Origin Via: 1.1 heroku-router X-Frame-Options: SAMEORIGIN X-Source-Version: ae6aee40 Connection: close <h1>Not Found</h1><p>The requested resource was not found on this server.</p>Found 3 days ago by HttpPluginCreate report
-
Open service 13.248.244.96:443 · api.bailfundapp.org
2026-01-10 00:45
HTTP/1.1 404 Not Found Content-Length: 77 Content-Type: text/html Date: Sat, 10 Jan 2026 00:45:14 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=OVhvGgwxPfh6MwQ5JDgKoVbHTt2xAOtr0zk3A0%2B7IBM%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768005914"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=OVhvGgwxPfh6MwQ5JDgKoVbHTt2xAOtr0zk3A0%2B7IBM%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768005914" Server: Heroku Strict-Transport-Security: max-age=15768000; includeSubDomains Vary: Cookie, Origin Via: 1.1 heroku-router X-Frame-Options: SAMEORIGIN X-Source-Version: ae6aee40 Connection: close <h1>Not Found</h1><p>The requested resource was not found on this server.</p>Found 3 days ago by HttpPluginCreate report
-
Open service 13.248.244.96:80 · api.bailfundapp.org
2026-01-10 00:45
HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=utf-8 Date: Sat, 10 Jan 2026 00:46:15 GMT Location: https://api.bailfundapp.org/ Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=GWED%2FxYndtoEz3J8nJvvvUAPWycKm1pcp2zzt3o7UNc%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1768005975"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=GWED%2FxYndtoEz3J8nJvvvUAPWycKm1pcp2zzt3o7UNc%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1768005975" Server: Heroku Vary: Origin Via: 1.1 heroku-router Content-Length: 0 Connection: closeFound 3 days ago by HttpPluginCreate report
-
Open service 35.71.179.82:443 · api.bailfundapp.org
2026-01-09 11:44
HTTP/1.1 404 Not Found Content-Length: 77 Content-Type: text/html Date: Fri, 09 Jan 2026 11:44:53 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=HU4kacKmVmllkH%2FnoV%2F3ohmto4Uy1cjgVHvdZzOQjow%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767959093"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=HU4kacKmVmllkH%2FnoV%2F3ohmto4Uy1cjgVHvdZzOQjow%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767959093" Server: Heroku Strict-Transport-Security: max-age=15768000; includeSubDomains Vary: Cookie, Origin Via: 1.1 heroku-router X-Frame-Options: SAMEORIGIN X-Source-Version: ae6aee40 Connection: close <h1>Not Found</h1><p>The requested resource was not found on this server.</p>Found 2026-01-09 by HttpPluginCreate report
-
Open service 35.71.179.82:443 · api.bailfundapp.org
2026-01-02 03:01
HTTP/1.1 404 Not Found Content-Length: 77 Content-Type: text/html Date: Fri, 02 Jan 2026 03:01:38 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Jlh8S7eQDWghxvBxCLIuJzNHo7xkmAFeud1dnxaKi%2BQ%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1767322898"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Jlh8S7eQDWghxvBxCLIuJzNHo7xkmAFeud1dnxaKi%2BQ%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1767322898" Server: Heroku Strict-Transport-Security: max-age=15768000; includeSubDomains Vary: Cookie, Origin Via: 1.1 heroku-router X-Frame-Options: SAMEORIGIN X-Source-Version: ae6aee40 Connection: close <h1>Not Found</h1><p>The requested resource was not found on this server.</p>Found 2026-01-02 by HttpPluginCreate report
-
Open service 35.71.179.82:443 · api.bailfundapp.org
2025-12-22 18:41
HTTP/1.1 404 Not Found Content-Length: 77 Content-Type: text/html Date: Mon, 22 Dec 2025 18:41:05 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=kqaRrIxWv8rR1VBkSWH1IBfq9Wr0IVVuH6tuvAfb%2FTg%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1766428865"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=kqaRrIxWv8rR1VBkSWH1IBfq9Wr0IVVuH6tuvAfb%2FTg%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1766428865" Server: Heroku Strict-Transport-Security: max-age=15768000; includeSubDomains Vary: Cookie, Origin Via: 1.1 heroku-router X-Frame-Options: SAMEORIGIN X-Source-Version: ae6aee40 Connection: close <h1>Not Found</h1><p>The requested resource was not found on this server.</p>Found 2025-12-22 by HttpPluginCreate report
-
Open service 35.71.179.82:443 · api.bailfundapp.org
2025-12-20 21:12
HTTP/1.1 404 Not Found Content-Length: 77 Content-Type: text/html Date: Sat, 20 Dec 2025 21:12:01 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=3%2Fyl3VZvlB240SbdautptmPtNyR9JcbI2pbOn1ew5zI%3D\u0026sid=1b10b0ff-8a76-4548-befa-353fc6c6c045\u0026ts=1766265121"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=3%2Fyl3VZvlB240SbdautptmPtNyR9JcbI2pbOn1ew5zI%3D&sid=1b10b0ff-8a76-4548-befa-353fc6c6c045&ts=1766265121" Server: Heroku Strict-Transport-Security: max-age=15768000; includeSubDomains Vary: Cookie, Origin Via: 1.1 heroku-router X-Frame-Options: SAMEORIGIN X-Source-Version: ae6aee40 Connection: close <h1>Not Found</h1><p>The requested resource was not found on this server.</p>Found 2025-12-20 by HttpPluginCreate report