Domain api.erminas.software
The Netherlands
Software information
Microsoft-IIS 10.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2026-01-06 06:54
Last seen 2026-02-01 23:23
Open for 26 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad035496ecd98eea27f273e303ab787f530b5dca84f7311Public Swagger UI/API detected at path: /swagger/index.html - sample paths: DELETE /api/user/{id}/{isHardDelete} GET /api/checkout/calculateprice GET /api/checkout/getcurrenttotalprice GET /api/checkout/paymentinformation GET /api/invoice GET /api/license GET /api/user GET /api/user/self GET /api/user/{id} POST /api/account/confirmemail POST /api/account/forgotpassword POST /api/account/register POST /api/account/resetpassword POST /api/checkout/finalizecheckout POST /api/checkout/sendsingleproductinformation POST /api/checkout/senduserinformation POST /api/contact/getmoreinformation POST /connect/tokenFound on 2026-02-01 23:23 -
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-01-22 12:03
-
-
Open service 13.69.68.16:443 · api.erminas.software
2026-01-22 12:03
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Thu, 22 Jan 2026 12:03:30 GMT Server: Microsoft-IIS/10.0 Set-Cookie: ARRAffinity=eeb6094a5fae607a467cc158d2089c5a2a462914c7f052b3c08251edbae95055;Path=/;HttpOnly;Secure;Domain=api.erminas.software Set-Cookie: ARRAffinitySameSite=eeb6094a5fae607a467cc158d2089c5a2a462914c7f052b3c08251edbae95055;Path=/;HttpOnly;SameSite=None;Secure;Domain=api.erminas.software Strict-Transport-Security: max-age=2592000 Request-Context: appId=cid-v1:07891c40-fe3d-422f-8e48-43897f9a19a2 X-Powered-By: ASP.NET
Found 2026-01-22 by HttpPluginCreate report
-
Open service 13.69.68.16:443 · api.erminas.software
2026-01-10 01:32
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Sat, 10 Jan 2026 01:33:14 GMT Server: Microsoft-IIS/10.0 Set-Cookie: ARRAffinity=eeb6094a5fae607a467cc158d2089c5a2a462914c7f052b3c08251edbae95055;Path=/;HttpOnly;Secure;Domain=api.erminas.software Set-Cookie: ARRAffinitySameSite=eeb6094a5fae607a467cc158d2089c5a2a462914c7f052b3c08251edbae95055;Path=/;HttpOnly;SameSite=None;Secure;Domain=api.erminas.software Strict-Transport-Security: max-age=2592000 Request-Context: appId=cid-v1:07891c40-fe3d-422f-8e48-43897f9a19a2 X-Powered-By: ASP.NET
Found 2026-01-10 by HttpPluginCreate report