LeakIX - Host api.cauze.com

Domain api.cauze.com

United States

AMAZON-02

Software information

Heroku

tcp/443 tcp/80

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.161.45
Domain: api.cauze.com
Port: 443
URL: https://api.cauze.com

First seen 2025-11-07 01:06
Last seen 2026-01-02 11:49
Open for 56 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33f7968935d18fad116cafbdfe1a30cb3964b5aff

GraphQL introspection enabled at /graphql
Types: 142 (by kind: ENUM: 29, INPUT_OBJECT: 7, INTERFACE: 1, OBJECT: 98, SCALAR: 7)
Operations:
- Query: RootQueryType | fields: authorized, getSuggestedEntities, mobileAppVersion, parseLocation, users
- Mutation: RootMutationType | fields: emailAnnualReceipt, revokeUserToken, setVerified, updateCompany, updatePlannedEvent
Directives: include, skip (total: 2)

Found on 2026-01-02 11:49

339.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33f7968935d18fad1c6ebb506a505b961269e0bc5

GraphQL introspection enabled at /graphql
Types: 142 (by kind: ENUM: 29, INPUT_OBJECT: 7, INTERFACE: 1, OBJECT: 98, SCALAR: 7)
Operations:
- Query: RootQueryType | fields: checkoutDetails, companyById, companyUsersById, listGiftsForUser, listSearchHistory
- Mutation: RootMutationType | fields: checkEmail, completeGiftCheckout, createPlannedEvent, setVerified, unfollow
Directives: include, skip (total: 2)

Found on 2025-12-01 01:06

339.8 kBytes

Create report

Open service 3.33.161.45:443 · api.cauze.com

2026-01-09 08:09

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: null
Access-Control-Expose-Headers: 
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 21
Content-Type: application/json; charset=utf-8
Cross-Origin-Window-Policy: deny
Date: Fri, 09 Jan 2026 08:09:22 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Y0PdGr70BhEwBEiVPmOrjYDt8QvssLoQVUbHTCSnkzk%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1767946163"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Y0PdGr70BhEwBEiVPmOrjYDt8QvssLoQVUbHTCSnkzk%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1767946163"
Server: Heroku
Strict-Transport-Security: max-age=31536000
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 98790de9-c65a-9ea7-9ffa-097f86938364
X-Xss-Protection: 1; mode=block
Connection: close


{"health-check":"UP"}

Found 2026-01-09 by HttpPlugin

Create report

Open service 3.33.161.45:443 · api.cauze.com

2026-01-07 00:03

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: null
Access-Control-Expose-Headers: 
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 21
Content-Type: application/json; charset=utf-8
Cross-Origin-Window-Policy: deny
Date: Wed, 07 Jan 2026 00:03:56 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=MKW7Pvhg7reaUx6UHKyj%2FMtVuzbCl3dsgljnovFrCdA%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1767744237"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=MKW7Pvhg7reaUx6UHKyj%2FMtVuzbCl3dsgljnovFrCdA%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1767744237"
Server: Heroku
Strict-Transport-Security: max-age=31536000
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 13106daa-8db9-6eb5-8820-128d3fb75b70
X-Xss-Protection: 1; mode=block
Connection: close


{"health-check":"UP"}

Found 2026-01-07 by HttpPlugin

Create report

Open service 35.71.150.51:443 · api.cauze.com

2026-01-07 00:03

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: null
Access-Control-Expose-Headers: 
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 21
Content-Type: application/json; charset=utf-8
Cross-Origin-Window-Policy: deny
Date: Wed, 07 Jan 2026 00:03:56 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=AHaWQgGwhv8S8g9e12ULGuTVdhPpQQ2flPql8ZrKR10%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1767744236"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=AHaWQgGwhv8S8g9e12ULGuTVdhPpQQ2flPql8ZrKR10%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1767744236"
Server: Heroku
Strict-Transport-Security: max-age=31536000
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: c91966e5-2ed8-96f4-fb24-98a1652b156f
X-Xss-Protection: 1; mode=block
Connection: close


{"health-check":"UP"}

Found 2026-01-07 by HttpPlugin

Create report

Open service 3.33.161.45:80 · api.cauze.com

2026-01-07 00:03

HTTP/1.1 301 Moved Permanently
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 0
Date: Wed, 07 Jan 2026 00:04:57 GMT
Location: https://api.cauze.com/
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=iHKaRYUnyDANf2npsuCQgziKb6Wc%2FGZIb4WvpoKRhAY%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1767744297"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=iHKaRYUnyDANf2npsuCQgziKb6Wc%2FGZIb4WvpoKRhAY%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1767744297"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2026-01-07 by HttpPlugin

Create report

Open service 35.71.150.51:80 · api.cauze.com

2026-01-07 00:03

HTTP/1.1 301 Moved Permanently
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 0
Date: Wed, 07 Jan 2026 00:04:57 GMT
Location: https://api.cauze.com/
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=iHKaRYUnyDANf2npsuCQgziKb6Wc%2FGZIb4WvpoKRhAY%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1767744297"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=iHKaRYUnyDANf2npsuCQgziKb6Wc%2FGZIb4WvpoKRhAY%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1767744297"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2026-01-07 by HttpPlugin

Create report

Open service 13.248.131.213:443 · api.cauze.com

2026-01-07 00:03

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: null
Access-Control-Expose-Headers: 
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 21
Content-Type: application/json; charset=utf-8
Cross-Origin-Window-Policy: deny
Date: Wed, 07 Jan 2026 00:03:56 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=AHaWQgGwhv8S8g9e12ULGuTVdhPpQQ2flPql8ZrKR10%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1767744236"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=AHaWQgGwhv8S8g9e12ULGuTVdhPpQQ2flPql8ZrKR10%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1767744236"
Server: Heroku
Strict-Transport-Security: max-age=31536000
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 913618c8-6a74-4b48-eed1-458cc85b4d53
X-Xss-Protection: 1; mode=block
Connection: close


{"health-check":"UP"}

Found 2026-01-07 by HttpPlugin

Create report

Open service 13.248.131.213:80 · api.cauze.com

2026-01-07 00:03

HTTP/1.1 301 Moved Permanently
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 0
Date: Wed, 07 Jan 2026 00:04:57 GMT
Location: https://api.cauze.com/
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=iHKaRYUnyDANf2npsuCQgziKb6Wc%2FGZIb4WvpoKRhAY%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1767744297"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=iHKaRYUnyDANf2npsuCQgziKb6Wc%2FGZIb4WvpoKRhAY%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1767744297"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2026-01-07 by HttpPlugin

Create report

Open service 15.197.152.254:443 · api.cauze.com

2026-01-07 00:03

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: null
Access-Control-Expose-Headers: 
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 21
Content-Type: application/json; charset=utf-8
Cross-Origin-Window-Policy: deny
Date: Wed, 07 Jan 2026 00:03:56 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=AHaWQgGwhv8S8g9e12ULGuTVdhPpQQ2flPql8ZrKR10%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1767744236"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=AHaWQgGwhv8S8g9e12ULGuTVdhPpQQ2flPql8ZrKR10%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1767744236"
Server: Heroku
Strict-Transport-Security: max-age=31536000
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: f6f3a2b1-8803-f740-d53e-34c2f7c170b5
X-Xss-Protection: 1; mode=block
Connection: close


{"health-check":"UP"}

Found 2026-01-07 by HttpPlugin

Create report

Open service 15.197.152.254:80 · api.cauze.com

2026-01-07 00:03

HTTP/1.1 301 Moved Permanently
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 0
Date: Wed, 07 Jan 2026 00:04:56 GMT
Location: https://api.cauze.com/
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=iHKaRYUnyDANf2npsuCQgziKb6Wc%2FGZIb4WvpoKRhAY%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1767744297"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=iHKaRYUnyDANf2npsuCQgziKb6Wc%2FGZIb4WvpoKRhAY%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1767744297"
Server: Heroku
Via: 1.1 heroku-router
Connection: close

Found 2026-01-07 by HttpPlugin

Create report

Open service 3.33.161.45:443 · api.cauze.com

2026-01-02 11:49

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: null
Access-Control-Expose-Headers: 
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 21
Content-Type: application/json; charset=utf-8
Cross-Origin-Window-Policy: deny
Date: Fri, 02 Jan 2026 11:49:10 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=pROcJUVRbiyoNsh5JV6LTdB9i9Pb9zEmk2VoUzY%2Fjew%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1767354550"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=pROcJUVRbiyoNsh5JV6LTdB9i9Pb9zEmk2VoUzY%2Fjew%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1767354550"
Server: Heroku
Strict-Transport-Security: max-age=31536000
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 9b2013ac-2f5d-8293-effc-1ebb842ebbd3
X-Xss-Protection: 1; mode=block
Connection: close


{"health-check":"UP"}

Found 2026-01-02 by HttpPlugin

Create report

Open service 3.33.161.45:443 · api.cauze.com

2025-12-30 13:49

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: null
Access-Control-Expose-Headers: 
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 21
Content-Type: application/json; charset=utf-8
Cross-Origin-Window-Policy: deny
Date: Tue, 30 Dec 2025 13:49:04 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=dhRztTyM%2FBue01B%2FfKu2FVtqOjiqOsIskCklcQqzQVg%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1767102545"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=dhRztTyM%2FBue01B%2FfKu2FVtqOjiqOsIskCklcQqzQVg%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1767102545"
Server: Heroku
Strict-Transport-Security: max-age=31536000
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: ae61ad00-7000-72b0-4e45-96fd84fe0bf2
X-Xss-Protection: 1; mode=block
Connection: close


{"health-check":"UP"}

Found 2025-12-30 by HttpPlugin

Create report

Open service 3.33.161.45:443 · api.cauze.com

2025-12-22 08:20

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: null
Access-Control-Expose-Headers: 
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 21
Content-Type: application/json; charset=utf-8
Cross-Origin-Window-Policy: deny
Date: Mon, 22 Dec 2025 08:20:15 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=pFONtu9jYyw%2FCgwobM1hGYEGlPNrpQnu11V9eWIdygo%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1766391615"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=pFONtu9jYyw%2FCgwobM1hGYEGlPNrpQnu11V9eWIdygo%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1766391615"
Server: Heroku
Strict-Transport-Security: max-age=31536000
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: de9d4467-8a0c-7482-441e-6d7101b57029
X-Xss-Protection: 1; mode=block
Connection: close


{"health-check":"UP"}

Found 2025-12-22 by HttpPlugin

Create report

Open service 3.33.161.45:443 · api.cauze.com

2025-12-20 08:50

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: null
Access-Control-Expose-Headers: 
Cache-Control: max-age=0, private, must-revalidate
Content-Length: 21
Content-Type: application/json; charset=utf-8
Cross-Origin-Window-Policy: deny
Date: Sat, 20 Dec 2025 08:50:54 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Vya%2FzifgE0aYR%2BvQIdkArBCZiNuFQ9pMcVjxYqkvK94%3D\u0026sid=67ff5de4-ad2b-4112-9289-cf96be89efed\u0026ts=1766220655"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Vya%2FzifgE0aYR%2BvQIdkArBCZiNuFQ9pMcVjxYqkvK94%3D&sid=67ff5de4-ad2b-4112-9289-cf96be89efed&ts=1766220655"
Server: Heroku
Strict-Transport-Security: max-age=31536000
Vary: Origin
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 4458a1a1-4feb-c2c7-a7c8-12ad324fb4d4
X-Xss-Protection: 1; mode=block
Connection: close


{"health-check":"UP"}

Found 2025-12-20 by HttpPlugin

Create report

api.cauze.com

Fingerprint:

18f83223ce858adce1910c445c6a83d03af776cf882be620fd413815d0d5e136

CN:

api.cauze.com

Key:

RSA-2048

Issuer:

R13

Not before:

2026-01-06 23:04

Not after:

2026-04-06 23:04

api.cauze.com

Fingerprint:

0ed551125d360ce0fa14dc30657f17e89d51b90bcaead5c684f9681cd4e859ae

CN:

api.cauze.com

Key:

RSA-2048

Issuer:

R13

Not before:

2025-11-07 00:07

Not after:

2026-02-05 00:07

Domain summary

api.cauze.com 14

1 recorded

IP summary

3.33.161.45 2 35.71.150.51 1 13.248.131.213 1 15.197.152.254 1

4 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice