Domain api.longshortnow.com
United States
Software information
CloudFront
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-15 01:03
Last seen 2025-11-01 22:32
Open for 17 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
Found on 2025-11-01 22:32 -
Severity: info
Fingerprint: 5733ddf49ff49cd1a8bcc6e5e4d72281c43aa402153ef5434c787451b174308dPublic Swagger UI/API detected at path: /webjars/swagger-ui/index.html - sample paths: DELETE /api/service/redis/{key} DELETE /api/v1/app/account/unBlock/{yourAccountId} DELETE /api/v1/asset/search/favorite/all DELETE /api/v1/notification/removeFcmToken DELETE /api/v1/post/notice/pin/{noticePostId} GET /api/service/enableLogStatusList GET /api/service/healthCheck GET /api/v1/account/ban GET /api/v1/account/info GET /api/v1/account/loginId/availability GET /api/v1/account/nickname/availability GET /api/v1/account/signUp/validity/all GET /api/v1/account/signUp/validity/nickname GET /api/v1/app/account/blockList GET /api/v1/app/notification GET /api/v1/app/notification/hasNewNotification GET /api/v1/app/point/info GET /api/v1/asset/outlink/crypto GET /api/v1/asset/outlink/stock GET /api/v1/asset/search GET /api/v1/asset/search/favorite GET /api/v1/asset/search/favorite/info GET /api/v1/asset/vote/results GET /api/v1/asset/vote/results/cancel GET /api/v1/asset/vote/round GET /api/v1/asset/vote/round/all GET /api/v1/asset/vote/round/index GET /api/v1/asset/vote/round/intuition/bet GET /api/v1/asset/vote/round/price/bet GET /api/v1/auth/socialLoginRedirectUrl/{socialLoginAppType} GET /api/v1/auth/socialLoginUrl/{socialLoginType} GET /api/v1/comment/my GET /api/v1/market/global/info GET /api/v1/meta/appInfo GET /api/v1/post GET /api/v1/post/all GET /api/v1/post/all/popularity GET /api/v1/post/bookmark GET /api/v1/post/comment/sub-comment/{commentId} GET /api/v1/post/comment/{postId} GET /api/v1/post/myPost GET /api/v1/post/notice/pin GET /api/v1/post/notice/pin/info GET /api/v1/post/search/global GET /api/v1/post/user/{accountId} GET /api/v1/post/{postId} GET /api/v1/postPage/{postId} GET /api/v1/searchTop/assets GET /api/v1/setting GET /api/v1/sync/personal GET /api/v1/sync/public GET /api/v1/web/refresh/data POST /api/service/enableLogStatus POST /api/v1/account/email/loginId POST /api/v1/account/email/verification POST /api/v1/account/email/verificationCode POST /api/v1/account/password/reset/code POST /api/v1/account/password/reset/code/verification POST /api/v1/account/signUp POST /api/v1/account/socialLogin/signUp POST /api/v1/app/notification/checkAll POST /api/v1/app/notification/{notificationId}/check POST /api/v1/asset/vote/join/intuition POST /api/v1/asset/vote/join/price POST /api/v1/auth/accessToken POST /api/v1/auth/info/email/verificationCode POST /api/v1/auth/login POST /api/v1/auth/login/check POST /api/v1/auth/refreshToken POST /api/v1/auth/socialLogin/signIn POST /api/v1/auth/socialLogin/signIn/check POST /api/v1/blacklist/blacklistIP POST /api/v1/blacklist/blacklistIPToMonitoredIP POST /api/v1/blacklist/monitoredIP POST /api/v1/notification/addFcmToken POST /api/v1/post/comment POST /api/v1/stock/kis/properties POST /api/v1/upload/image PUT /api/v1/account/deactivate PUT /api/v1/account/email PUT /api/v1/account/email/subscriptionAgreement PUT /api/v1/account/nickname PUT /api/v1/account/password PUT /api/v1/account/password/reset PUT /api/v1/app/account/block/{yourAccountId} PUT /api/v1/app/account/nickname/check PUT /api/v1/app/account/nickname/reset PUT /api/v1/auth/logout/allDevices PUT /api/v1/post/bookmark/{postId} PUT /api/v1/post/comment/like/{commentId} PUT /api/v1/post/comment/{commentId} PUT /api/v1/post/like/{postId} PUT /api/v1/reportFound on 2025-10-23 07:25
-
-
Open service 18.173.154.6:443 · api.longshortnow.com
2025-12-30 06:32
HTTP/1.1 403 Forbidden Server: CloudFront Date: Tue, 30 Dec 2025 06:32:54 GMT Content-Type: text/html Content-Length: 919 Connection: close X-Cache: Error from cloudfront Via: 1.1 2dd902cd86ee8f22d66046533880d3e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P3 X-Amz-Cf-Id: WYPiAIbG3aL9AKnwJYGdxlFNT33svPfK9rX2ZIhVhW1TWWHkmgwhHA== Vary: Origin Page title: ERROR: The request could not be satisfied <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1"> <TITLE>ERROR: The request could not be satisfied</TITLE> </HEAD><BODY> <H1>403 ERROR</H1> <H2>The request could not be satisfied.</H2> <HR noshade size="1px"> Request blocked. We can't connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner. <BR clear="all"> If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation. <BR clear="all"> <HR noshade size="1px"> <PRE> Generated by cloudfront (CloudFront) Request ID: WYPiAIbG3aL9AKnwJYGdxlFNT33svPfK9rX2ZIhVhW1TWWHkmgwhHA== </PRE> <ADDRESS> </ADDRESS> </BODY></HTML>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 18.173.154.6:443 · api.longshortnow.com
2025-12-22 07:42
HTTP/1.1 403 Forbidden Server: CloudFront Date: Mon, 22 Dec 2025 07:42:20 GMT Content-Type: text/html Content-Length: 919 Connection: close X-Cache: Error from cloudfront Via: 1.1 5951b29f5460c0b6d21eb11bce7b8168.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P3 X-Amz-Cf-Id: F5G-tW6MHT2vJ2HQ40PeIgeH2ahJ7iqX5q4cVSFFMshKilj9wRwjrQ== Vary: Origin Page title: ERROR: The request could not be satisfied <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1"> <TITLE>ERROR: The request could not be satisfied</TITLE> </HEAD><BODY> <H1>403 ERROR</H1> <H2>The request could not be satisfied.</H2> <HR noshade size="1px"> Request blocked. We can't connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner. <BR clear="all"> If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation. <BR clear="all"> <HR noshade size="1px"> <PRE> Generated by cloudfront (CloudFront) Request ID: F5G-tW6MHT2vJ2HQ40PeIgeH2ahJ7iqX5q4cVSFFMshKilj9wRwjrQ== </PRE> <ADDRESS> </ADDRESS> </BODY></HTML>
Found 2025-12-22 by HttpPluginCreate report
-
Open service 18.173.154.6:443 · api.longshortnow.com
2025-12-20 08:08
HTTP/1.1 403 Forbidden Server: CloudFront Date: Sat, 20 Dec 2025 08:08:27 GMT Content-Type: text/html Content-Length: 919 Connection: close X-Cache: Error from cloudfront Via: 1.1 f4ef6af6f595152791fb5c57054106ea.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P3 X-Amz-Cf-Id: JmlD9_WTbkA8ZSkLdE9u_Ku2w0SgTraEY4bziXlzCks6vqg-_vyk-A== Vary: Origin Page title: ERROR: The request could not be satisfied <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1"> <TITLE>ERROR: The request could not be satisfied</TITLE> </HEAD><BODY> <H1>403 ERROR</H1> <H2>The request could not be satisfied.</H2> <HR noshade size="1px"> Request blocked. We can't connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner. <BR clear="all"> If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation. <BR clear="all"> <HR noshade size="1px"> <PRE> Generated by cloudfront (CloudFront) Request ID: JmlD9_WTbkA8ZSkLdE9u_Ku2w0SgTraEY4bziXlzCks6vqg-_vyk-A== </PRE> <ADDRESS> </ADDRESS> </BODY></HTML>
Found 2025-12-20 by HttpPluginCreate report