LeakIX - Host api.navabeghjavan.com

Domain api.navabeghjavan.com

CLOUDFLARENET

Ubuntu

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 212.33.198.173
Domain: api.navabeghjavan.com
Port: 443
URL: https://api.navabeghjavan.com

First seen 2025-12-01 08:18
Last seen 2026-01-30 12:48
Open for 60 days

Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d6053b66a0660cc7e3b9f38e3c8ad766965f5428477

Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
DELETE /api/v1/membership/deleteCompanySignatory
DELETE /api/v1/membership/deleteMembership
GET /GetConferenceRoomSlotAvailability
GET /GetInPersonDeskSlotAvailability
GET /GetMeetingRoomSlotAvailability
GET /api/v1/account/getUserMenu
GET /api/v1/certification/getRandomText
GET /api/v1/certification/isVerifykyc
GET /api/v1/common/cityList
GET /api/v1/common/getBankType
GET /api/v1/common/getGenderList
GET /api/v1/common/getIdeaStatusList
GET /api/v1/common/getIdeaStepList
GET /api/v1/common/getMembershipStatus
GET /api/v1/common/getReservationTypeList
GET /api/v1/common/getServices
GET /api/v1/common/getSettlementType
GET /api/v1/common/getTicketStatusList
GET /api/v1/common/getTicketTypeList
GET /api/v1/common/healthCheck
GET /api/v1/common/postalCodeInquiry
GET /api/v1/common/provinceList
GET /api/v1/idea/getIdea
GET /api/v1/idea/getIdeaList
GET /api/v1/membership/getMembership
GET /api/v1/membership/getMembershipChequeList
GET /api/v1/membership/getMembershipDocumentList
GET /api/v1/membership/getMembershipList
GET /api/v1/membership/getServiceList
GET /api/v1/payment/getMembershipFactor
GET /api/v1/profile/getProfile
GET /api/v1/reservation/getConferenceRoomPageData
GET /api/v1/reservation/getInPersonDeskPageData
GET /api/v1/reservation/getMeetingRoomPageData
GET /api/v1/reservation/getReservation
GET /api/v1/reservation/getReservationList
GET /api/v1/ticket/getTicket
GET /api/v1/ticket/getTicketList
GET /api/v1/workSpace/getSummaryWorkSpaceList
GET /api/v1/workSpace/getWorkSpace
GET /api/v1/workSpace/getWorkSpaceList
GET /api/v1/workSpace/getWorkSpaceServiceList
GET /getConferenceRoomCalendarByDate
GET /getInPersonDeskCalendarByDate
GET /getMeetingRoomCalendarByDate
GET /searchConferenceRoomAvailability
GET /searchInPersonDeskAvailability
GET /searchMeetingRoomAvailability
POST /api/v1/account/changePassword
POST /api/v1/account/forgetpassword
POST /api/v1/account/forgetpasswordVerify
POST /api/v1/account/login
POST /api/v1/account/loginByRefreshToken
POST /api/v1/account/loginOtp
POST /api/v1/account/logout
POST /api/v1/account/register
POST /api/v1/account/registerVerify
POST /api/v1/account/resetPassword
POST /api/v1/account/sendOtp
POST /api/v1/certification/kycRequest
POST /api/v1/certification/saveSelfieImage
POST /api/v1/certification/saveSelfieVideo
POST /api/v1/certification/saveSignature
POST /api/v1/idea/insertIdea
POST /api/v1/membership/generateMembershipContract
POST /api/v1/membership/insertMembershipCheque
POST /api/v1/membership/insertMembershipMedia
POST /api/v1/membership/signContract
POST /api/v1/membership/upsertMembership
POST /api/v1/payment/membershipPaymentRequest
POST /api/v1/reservation/conferenceRoomReservationRequest
POST /api/v1/reservation/inPersonDeskReservationRequest
POST /api/v1/reservation/meetingRoomReservationRequest
POST /api/v1/ticket/insertTicket
PUT /api/v1/membership/calculateServiceAmount
PUT /api/v1/membership/confirmMembershipSubmission
PUT /api/v1/membership/confirmMembershipSubmissionForChequeReview
PUT /api/v1/profile/identificationInquiry

Found on 2026-01-30 12:48

Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d6053b66a0660cc7e3b92203ddb8e0d5160c1993c66

Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
DELETE /api/v1/membership/deleteCompanySignatory
DELETE /api/v1/membership/deleteMembership
GET /api/v1/account/getUserMenu
GET /api/v1/certification/getRandomText
GET /api/v1/certification/isVerifykyc
GET /api/v1/common/cityList
GET /api/v1/common/getBankType
GET /api/v1/common/getGenderList
GET /api/v1/common/getIdeaStatusList
GET /api/v1/common/getIdeaStepList
GET /api/v1/common/getMembershipStatus
GET /api/v1/common/getSettlementType
GET /api/v1/common/getTicketStatusList
GET /api/v1/common/getTicketTypeList
GET /api/v1/common/healthCheck
GET /api/v1/common/postalCodeInquiry
GET /api/v1/common/provinceList
GET /api/v1/idea/getIdea
GET /api/v1/idea/getIdeaList
GET /api/v1/membership/getMembership
GET /api/v1/membership/getMembershipChequeList
GET /api/v1/membership/getMembershipDocumentList
GET /api/v1/membership/getMembershipList
GET /api/v1/membership/getServiceList
GET /api/v1/payment/getMembershipFactor
GET /api/v1/profile/getProfile
GET /api/v1/ticket/getTicket
GET /api/v1/ticket/getTicketList
GET /api/v1/workSpace/getWorkSpaceList
POST /api/v1/account/changePassword
POST /api/v1/account/login
POST /api/v1/account/loginByRefreshToken
POST /api/v1/account/loginOtp
POST /api/v1/account/logout
POST /api/v1/account/register
POST /api/v1/account/registerVerify
POST /api/v1/account/sendOtp
POST /api/v1/certification/kycRequest
POST /api/v1/certification/saveSelfieImage
POST /api/v1/certification/saveSelfieVideo
POST /api/v1/certification/saveSignature
POST /api/v1/idea/insertIdea
POST /api/v1/membership/generateMembershipContract
POST /api/v1/membership/insertMembershipCheque
POST /api/v1/membership/insertMembershipMedia
POST /api/v1/membership/signContract
POST /api/v1/membership/upsertMembership
POST /api/v1/payment/membershipPaymentRequest
POST /api/v1/ticket/insertTicket
PUT /api/v1/membership/calculateServiceAmount
PUT /api/v1/membership/confirmMembershipSubmission
PUT /api/v1/membership/confirmMembershipSubmissionForChequeReview
PUT /api/v1/profile/identificationInquiry

Found on 2026-01-02 03:49

Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d6053b66a0660cc7e3bd7f5a806b3235e7f92273655

Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
DELETE /api/v1/membership/deleteCompanySignatory
DELETE /api/v1/membership/deleteMembership
GET /api/v1/account/getProfile
GET /api/v1/common/cityList
GET /api/v1/common/getGenderList
GET /api/v1/common/getMembershipStatus
GET /api/v1/common/getTicketStatusList
GET /api/v1/common/getTicketTypeList
GET /api/v1/common/healthCheck
GET /api/v1/common/provinceList
GET /api/v1/membership/calculateServiceAmount
GET /api/v1/membership/getMembership
GET /api/v1/membership/getMembershipDocumentList
GET /api/v1/membership/getMembershipList
GET /api/v1/membership/getServiceList
GET /api/v1/workSpace/getWorkSpaceList
POST /api/v1/account/changePassword
POST /api/v1/account/login
POST /api/v1/account/loginByRefreshToken
POST /api/v1/account/loginOtp
POST /api/v1/account/logout
POST /api/v1/account/register
POST /api/v1/account/registerVerify
POST /api/v1/account/sendOtp
POST /api/v1/membership/insertMembershipMedia
POST /api/v1/membership/upsertMembership
PUT /api/v1/membership/confirmMembershipSubmission

Found on 2025-12-14 09:49

Create report

Domain summary

api.navabeghjavan.com 3

1 recorded

IP summary

212.33.198.173 1 104.21.55.181 1

2 recorded