LeakIX - Host api.orelo.software

Domain api.orelo.software

United States

AMAZON-02

Software information

Heroku

tcp/443

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.248.132.87
Domain: api.orelo.software
Port: 443
URL: https://api.orelo.software

First seen 2025-10-21 14:13
Last seen 2026-01-02 04:47
Open for 72 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
  Found on 2026-01-02 04:47
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d61ea4f17fa371134d9272981617241c5cf2a27976
```
GraphQL introspection enabled at /api/graphql
Types: 4700 (by kind: ENUM: 103, INPUT_OBJECT: 592, OBJECT: 3996, SCALAR: 8, UNION: 1)
Operations:
- Query: Query | fields: Staff, allStaff, docAccessStaff, initializedStaff, meStaff
- Mutation: Mutation | fields: createStaff, deleteStaff, logoutStaff, refreshTokenStaff, updateStaff
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2025-12-01 10:25
  
  3.0 MBytes
Create report

Open service 13.248.132.87:443 · api.orelo.software

2026-01-09 05:50

HTTP/1.1 302 Found
Content-Length: 28
Content-Type: text/plain; charset=utf-8
Date: Fri, 09 Jan 2026 05:50:10 GMT
Location: /admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=7%2B%2FnqN6UmqZ98r4YdtstUjVlkiA0EIR5k1m9wyt7JBs%3D\u0026sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add\u0026ts=1767937810"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=7%2B%2FnqN6UmqZ98r4YdtstUjVlkiA0EIR5k1m9wyt7JBs%3D&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&ts=1767937810"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


Found. Redirecting to /admin

Found 2026-01-09 by HttpPlugin

Create report

Open service 13.248.132.87:443 · api.orelo.software

2026-01-02 04:47

HTTP/1.1 302 Found
Content-Length: 28
Content-Type: text/plain; charset=utf-8
Date: Fri, 02 Jan 2026 04:47:26 GMT
Location: /admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=8bH62BljXqIsNojRagTQCcLbZaPE4uYxju1CwVe%2Bph8%3D\u0026sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add\u0026ts=1767329246"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=8bH62BljXqIsNojRagTQCcLbZaPE4uYxju1CwVe%2Bph8%3D&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&ts=1767329246"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


Found. Redirecting to /admin

Found 2026-01-02 by HttpPlugin

Create report

Open service 13.248.132.87:443 · api.orelo.software

2025-12-22 18:21

HTTP/1.1 302 Found
Content-Length: 28
Content-Type: text/plain; charset=utf-8
Date: Mon, 22 Dec 2025 18:21:11 GMT
Location: /admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=17TyWXQckNw%2BNoEtVoFRuqxGuTucB1RO7XVVuoY3uzg%3D\u0026sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add\u0026ts=1766427671"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=17TyWXQckNw%2BNoEtVoFRuqxGuTucB1RO7XVVuoY3uzg%3D&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&ts=1766427671"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


Found. Redirecting to /admin

Found 2025-12-22 by HttpPlugin

Create report

Open service 13.248.132.87:443 · api.orelo.software

2025-12-20 21:24

HTTP/1.1 302 Found
Content-Length: 28
Content-Type: text/plain; charset=utf-8
Date: Sat, 20 Dec 2025 21:24:56 GMT
Location: /admin
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=OcQs8Oq1sGepGWtXDPVF3IPd4eJhOKrEzC7k9IjLbq4%3D\u0026sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add\u0026ts=1766265896"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=OcQs8Oq1sGepGWtXDPVF3IPd4eJhOKrEzC7k9IjLbq4%3D&sid=c46efe9b-d3d2-4a0c-8c76-bfafa16c5add&ts=1766265896"
Server: Heroku
Vary: Accept
Via: 1.1 heroku-router
X-Powered-By: Express
Connection: close


Found. Redirecting to /admin

Found 2025-12-20 by HttpPlugin

Create report

api.orelo.software

Fingerprint:

d0c345c47d37fc5c951ba74d6049e55547399f7d9a4bff28fa3ee9cf0b71c4d1

CN:

api.orelo.software

Key:

RSA-2048

Issuer:

R12

Not before:

2025-11-22 01:05

Not after:

2026-02-20 01:05

Domain summary

api.orelo.software 5

1 recorded

IP summary

13.248.132.87 2

1 recorded

Domain api.orelo.software

United States

Software information

GraphQL introspection is enabled.

Create report

Create report

Create report

Create report

api.orelo.software

Domain summary

IP summary