Domain api.evogro.dev
United States
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-12-07 14:26
Last seen 2026-01-08 21:20
Open for 32 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
Found on 2026-01-08 21:20
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-12-07 14:26
Last seen 2026-01-02 16:51
Open for 26 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
Found on 2026-01-02 16:51
-
-
Open service 172.217.208.121:443 · api.evogro.dev
2026-01-08 21:20
HTTP/1.1 200 OK vary: Origin vary: Access-Control-Request-Method vary: Access-Control-Request-Headers last-modified: Tue, 01 Jan 1980 00:00:01 GMT accept-ranges: bytes x-content-type-options: nosniff x-xss-protection: 0 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: 0 strict-transport-security: max-age=31536000 ; includeSubDomains x-frame-options: DENY content-type: text/html;charset=UTF-8 content-language: en-US x-cloud-trace-context: cee65c81727ccbb27652633c2691b891 date: Thu, 08 Jan 2026 21:21:00 GMT server: Google Frontend Content-Length: 244 Connection: close Page title: Evogro API <!DOCTYPE html> <html> <head> <meta charset="UTF-8"> <title>Evogro API</title> </head> <body> You have reached the Evogro API. You probably don't want to be here. Try <a href="http://my.evogro.com">my.evogro.com</a> instead. </body> </html>
Found 2026-01-08 by HttpPluginCreate report
-
Open service 172.217.208.121:80 · api.evogro.dev
2026-01-02 16:51
HTTP/1.1 200 OK vary: Origin vary: Access-Control-Request-Method vary: Access-Control-Request-Headers last-modified: Tue, 01 Jan 1980 00:00:01 GMT accept-ranges: bytes x-content-type-options: nosniff x-xss-protection: 0 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: 0 x-frame-options: DENY content-type: text/html;charset=UTF-8 content-language: en-US x-cloud-trace-context: 35d7acdc01727b558ce4321b955d15c7 date: Fri, 02 Jan 2026 16:51:33 GMT server: Google Frontend Content-Length: 244 Connection: close Page title: Evogro API <!DOCTYPE html> <html> <head> <meta charset="UTF-8"> <title>Evogro API</title> </head> <body> You have reached the Evogro API. You probably don't want to be here. Try <a href="http://my.evogro.com">my.evogro.com</a> instead. </body> </html>
Found 2026-01-02 by HttpPluginCreate report
-
Open service 172.217.208.121:443 · api.evogro.dev
2026-01-01 21:03
Found 2026-01-01 by HttpPluginCreate report
-
Open service 172.217.208.121:443 · api.evogro.dev
2025-12-30 04:33
HTTP/1.1 200 OK vary: Origin vary: Access-Control-Request-Method vary: Access-Control-Request-Headers last-modified: Tue, 01 Jan 1980 00:00:01 GMT accept-ranges: bytes x-content-type-options: nosniff x-xss-protection: 0 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: 0 strict-transport-security: max-age=31536000 ; includeSubDomains x-frame-options: DENY content-type: text/html;charset=UTF-8 content-language: en-US x-cloud-trace-context: a1ea8a044151b7d519a5f389c0c1e0ba date: Tue, 30 Dec 2025 04:34:07 GMT server: Google Frontend Content-Length: 244 Connection: close Page title: Evogro API <!DOCTYPE html> <html> <head> <meta charset="UTF-8"> <title>Evogro API</title> </head> <body> You have reached the Evogro API. You probably don't want to be here. Try <a href="http://my.evogro.com">my.evogro.com</a> instead. </body> </html>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 172.217.208.121:443 · api.evogro.dev
2025-12-22 05:23
Found 2025-12-22 by HttpPluginCreate report
-
Open service 172.217.208.121:443 · api.evogro.dev
2025-12-20 05:30
Found 2025-12-20 by HttpPluginCreate report
-
Open service 172.217.208.121:80 · api.evogro.dev
2025-12-19 00:19
HTTP/1.1 200 OK vary: Origin vary: Access-Control-Request-Method vary: Access-Control-Request-Headers last-modified: Tue, 01 Jan 1980 00:00:01 GMT accept-ranges: bytes x-content-type-options: nosniff x-xss-protection: 0 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: 0 x-frame-options: DENY content-type: text/html;charset=UTF-8 content-language: en-US x-cloud-trace-context: a094e94d1b038cf3914e8f1d9f5c8e32 date: Fri, 19 Dec 2025 00:19:57 GMT server: Google Frontend Content-Length: 244 Connection: close Page title: Evogro API <!DOCTYPE html> <html> <head> <meta charset="UTF-8"> <title>Evogro API</title> </head> <body> You have reached the Evogro API. You probably don't want to be here. Try <a href="http://my.evogro.com">my.evogro.com</a> instead. </body> </html>
Found 2025-12-19 by HttpPluginCreate report