Domain api.homesluxera.com
United States
Software information
Vercel
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-17 01:12
Last seen 2026-01-08 18:56
Open for 52 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43fd7da91f46a2a7261345d7e932bdd13f3425da66Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /api/conversations GET /api/conversations/search GET /api/properties POST /api/auth/login POST /api/auth/logout POST /api/auth/reset-password POST /api/auth/signup POST /api/auth/verify-email POST /api/chat POST /api/chat/rate PUT /api/conversations/{id}Found on 2026-01-08 18:56
-
-
Open service 66.33.60.35:443 · api.homesluxera.com
2026-01-08 18:56
HTTP/1.1 302 Found Access-Control-Allow-Origin: * Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 31 Content-Type: text/plain; charset=utf-8 Date: Thu, 08 Jan 2026 18:56:15 GMT Location: /api-docs Server: Vercel Strict-Transport-Security: max-age=63072000 Vary: Accept X-Powered-By: Express X-Vercel-Cache: MISS X-Vercel-Id: iad1::iad1::jjk4s-1767898575216-9010e2b4eeea Connection: close Found. Redirecting to /api-docs
Found 2026-01-08 by HttpPluginCreate report
-
Open service 66.33.60.35:443 · api.homesluxera.com
2026-01-01 19:27
HTTP/1.1 302 Found Access-Control-Allow-Origin: * Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 31 Content-Type: text/plain; charset=utf-8 Date: Thu, 01 Jan 2026 19:27:06 GMT Location: /api-docs Server: Vercel Strict-Transport-Security: max-age=63072000 Vary: Accept X-Powered-By: Express X-Vercel-Cache: MISS X-Vercel-Id: fra1::iad1::tx26g-1767295624044-0aaaae54333b Connection: close Found. Redirecting to /api-docs
Found 2026-01-01 by HttpPluginCreate report
-
Open service 66.33.60.35:443 · api.homesluxera.com
2025-12-30 03:59
HTTP/1.1 302 Found Access-Control-Allow-Origin: * Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 31 Content-Type: text/plain; charset=utf-8 Date: Tue, 30 Dec 2025 03:59:31 GMT Location: /api-docs Server: Vercel Strict-Transport-Security: max-age=63072000 Vary: Accept X-Powered-By: Express X-Vercel-Cache: MISS X-Vercel-Id: iad1::iad1::vl9k2-1767067169294-b8aec97be5da Connection: close Found. Redirecting to /api-docs
Found 2025-12-30 by HttpPluginCreate report
-
Open service 66.33.60.35:443 · api.homesluxera.com
2025-12-22 04:43
HTTP/1.1 302 Found Access-Control-Allow-Origin: * Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 31 Content-Type: text/plain; charset=utf-8 Date: Mon, 22 Dec 2025 04:43:23 GMT Location: /api-docs Server: Vercel Strict-Transport-Security: max-age=63072000 Vary: Accept X-Powered-By: Express X-Vercel-Cache: MISS X-Vercel-Id: fra1::iad1::rnnq5-1766378601339-644f07007075 Connection: close Found. Redirecting to /api-docs
Found 2025-12-22 by HttpPluginCreate report
-
Open service 66.33.60.35:443 · api.homesluxera.com
2025-12-20 04:40
HTTP/1.1 302 Found Access-Control-Allow-Origin: * Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 31 Content-Type: text/plain; charset=utf-8 Date: Sat, 20 Dec 2025 04:40:28 GMT Location: /api-docs Server: Vercel Strict-Transport-Security: max-age=63072000 Vary: Accept X-Powered-By: Express X-Vercel-Cache: MISS X-Vercel-Id: sfo1::iad1::zlf4b-1766205626527-f8c6482fa7f4 Connection: close Found. Redirecting to /api-docs
Found 2025-12-20 by HttpPluginCreate report