Domain api.gamgychannel.com
United States
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-20 03:07
Last seen 2026-01-09 17:46
Open for 81 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109Public Swagger UI/API detected at path: /api-docs/swagger.json
Found on 2026-01-09 17:46
-
-
Open service 142.250.186.115:443 · api.gamgychannel.com
2026-01-09 17:46
HTTP/1.1 404 Not Found access-control-allow-origin: * access-control-allow-credentials: true access-control-expose-headers: x-access-token content-security-policy: default-src 'none' cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15552000; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 access-control-allow-headers: x-access-token, Origin, Content-Type, Accept content-type: text/html; charset=utf-8 x-cloud-trace-context: 2fe79dfcc302c2cebc912f9dde47224d date: Fri, 09 Jan 2026 17:46:19 GMT server: Google Frontend Content-Length: 139 Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>
Found 2026-01-09 by HttpPluginCreate report
-
Open service 142.250.186.115:443 · api.gamgychannel.com
2026-01-08 08:22
HTTP/1.1 404 Not Found access-control-allow-origin: * access-control-allow-credentials: true access-control-expose-headers: x-access-token content-security-policy: default-src 'none' cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15552000; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 access-control-allow-headers: x-access-token, Origin, Content-Type, Accept content-type: text/html; charset=utf-8 x-cloud-trace-context: 12b2c58076290d3f2c846a4ca687bf3b date: Thu, 08 Jan 2026 08:23:03 GMT server: Google Frontend Content-Length: 139 Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>
Found 2026-01-08 by HttpPluginCreate report
-
Open service 2a00:1450:4001:810::2013:80 · api.gamgychannel.com
2026-01-08 08:22
HTTP/1.1 302 Found location: https://api.gamgychannel.com/ x-cloud-trace-context: 4923c2ee8e66a37b123e35915de54a7b;o=1 date: Thu, 08 Jan 2026 08:24:01 GMT content-type: text/html server: Google Frontend Content-Length: 0 Connection: close
Found 2026-01-08 by HttpPluginCreate report
-
Open service 2a00:1450:4001:810::2013:443 · api.gamgychannel.com
2026-01-08 08:22
HTTP/1.1 404 Not Found access-control-allow-origin: * access-control-allow-credentials: true access-control-expose-headers: x-access-token content-security-policy: default-src 'none' cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15552000; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 access-control-allow-headers: x-access-token, Origin, Content-Type, Accept content-type: text/html; charset=utf-8 x-cloud-trace-context: 2ae4b2ac95826a22c596b1bf1b2ebc18 date: Thu, 08 Jan 2026 08:23:02 GMT server: Google Frontend Content-Length: 139 Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>
Found 2026-01-08 by HttpPluginCreate report
-
Open service 142.250.186.115:443 · api.gamgychannel.com
2026-01-02 08:59
HTTP/1.1 404 Not Found access-control-allow-origin: * access-control-allow-credentials: true access-control-expose-headers: x-access-token content-security-policy: default-src 'none' cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15552000; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 access-control-allow-headers: x-access-token, Origin, Content-Type, Accept content-type: text/html; charset=utf-8 x-cloud-trace-context: dda7857c443838f6fde2f66c93805615 date: Fri, 02 Jan 2026 08:59:59 GMT server: Google Frontend Content-Length: 139 Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>
Found 2026-01-02 by HttpPluginCreate report
-
Open service 142.250.186.115:443 · api.gamgychannel.com
2025-12-22 17:07
HTTP/1.1 404 Not Found access-control-allow-origin: * access-control-allow-credentials: true access-control-expose-headers: x-access-token content-security-policy: default-src 'none' cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15552000; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 access-control-allow-headers: x-access-token, Origin, Content-Type, Accept content-type: text/html; charset=utf-8 x-cloud-trace-context: 8c274b119dd0b19baeed7292efb520dd date: Mon, 22 Dec 2025 17:07:24 GMT server: Google Frontend Content-Length: 139 Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>
Found 2025-12-22 by HttpPluginCreate report
-
Open service 142.250.186.115:443 · api.gamgychannel.com
2025-12-20 14:19
HTTP/1.1 404 Not Found access-control-allow-origin: * access-control-allow-credentials: true access-control-expose-headers: x-access-token content-security-policy: default-src 'none' cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN strict-transport-security: max-age=15552000; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 access-control-allow-headers: x-access-token, Origin, Content-Type, Accept content-type: text/html; charset=utf-8 x-cloud-trace-context: 3cab25547b4c662a72275ed205b69e83 date: Sat, 20 Dec 2025 14:19:45 GMT server: Google Frontend Content-Length: 139 Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>
Found 2025-12-20 by HttpPluginCreate report