Domain api.upubly.com
Software information
cloudflare
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-28 03:17
Last seen 2026-01-09 18:33
Open for 42 days-
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-01-09 18:33
-
-
Open service 104.21.90.235:443 ยท api.upubly.com
2026-01-09 18:33
HTTP/1.1 404 Not Found Date: Fri, 09 Jan 2026 18:33:19 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 19 Connection: close Server: cloudflare access-control-allow-credentials: true access-control-allow-headers: Accept, Authorization, Content-Type, X-CSRF-Token, X-Requested-With, Origin, Cache-Control, X-File-Name, X-Project-ID access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, PATCH access-control-expose-headers: Content-Length, Content-Range access-control-max-age: ๐ content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://unpkg.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https:; connect-src 'self' https:; frame-ancestors 'none'; base-uri 'self'; form-action 'self' permissions-policy: geolocation=(), microphone=(), camera=() referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff x-frame-options: DENY x-ratelimit-limit: 60 x-ratelimit-reset: 2026-01-09T18:33:19Z x-xss-protection: 1; mode=block cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=9,cfOrigin;dur=582 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=gXhmDXPGXSd6k3ZZR0rb%2BEmUVb3eQjQ2gpyjgwKYXyKUrCrO5AUH2mNMW4vUMfDwtLgXPD8QS0TA8XcvYcWb6FpIlWaLrcjkoDS3mYSM"}]} CF-RAY: 9bb605b6bad9ebeb-SJC alt-svc: h3=":443"; ma=86400 404 page not foundFound 2026-01-09 by HttpPluginCreate report
-
Open service 104.21.90.235:443 ยท api.upubly.com
2026-01-02 21:51
HTTP/1.1 404 Not Found Date: Fri, 02 Jan 2026 21:51:34 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 19 Connection: close Server: cloudflare access-control-allow-credentials: true access-control-allow-headers: Accept, Authorization, Content-Type, X-CSRF-Token, X-Requested-With, Origin, Cache-Control, X-File-Name, X-Project-ID access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, PATCH access-control-expose-headers: Content-Length, Content-Range access-control-max-age: ๐ content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://unpkg.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https:; connect-src 'self' https:; frame-ancestors 'none'; base-uri 'self'; form-action 'self' permissions-policy: geolocation=(), microphone=(), camera=() referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff x-frame-options: DENY x-ratelimit-limit: 60 x-ratelimit-reset: 2026-01-02T21:51:34Z x-xss-protection: 1; mode=block cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=isXRQJepyNZE2lblPndqBSB%2BkdgSut1ta48S9nuXyvzrlhMYosDTfOUvX76F%2BKRq6OmBGlgzTqfA8E3ROurSp1ooc7%2FfHcdQpkZ5Dv%2BS"}]} CF-RAY: 9b7d7a7d8cc4a0b2-LHR alt-svc: h3=":443"; ma=86400 404 page not foundFound 2026-01-02 by HttpPluginCreate report
-
Open service 104.21.90.235:443 ยท api.upubly.com
2025-12-23 04:26
HTTP/1.1 404 Not Found Date: Tue, 23 Dec 2025 04:26:04 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 19 Connection: close Server: cloudflare access-control-allow-credentials: true access-control-allow-headers: Accept, Authorization, Content-Type, X-CSRF-Token, X-Requested-With, Origin, Cache-Control, X-File-Name, X-Project-ID access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, PATCH access-control-expose-headers: Content-Length, Content-Range access-control-max-age: ๐ content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://unpkg.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https:; connect-src 'self' https:; frame-ancestors 'none'; base-uri 'self'; form-action 'self' permissions-policy: geolocation=(), microphone=(), camera=() referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff x-frame-options: DENY x-ratelimit-limit: 60 x-ratelimit-reset: 2025-12-23T04:26:04Z x-xss-protection: 1; mode=block cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=9,cfOrigin;dur=413 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=whEhi%2B9v0ivFMONQvcrrsK%2BMx6%2BN4z%2FREPkvGi3rgicPUO1FVNcfgHf6L1SAq%2BOo%2FbWNQAFDJM7L1g5aygQtzaPxokBjrK13FWzujS8c"}]} CF-RAY: 9b25193e38ecac81-YYZ alt-svc: h3=":443"; ma=86400 404 page not foundFound 2025-12-23 by HttpPluginCreate report
-
Open service 104.21.90.235:443 ยท api.upubly.com
2025-12-19 00:12
HTTP/1.1 404 Not Found Date: Fri, 19 Dec 2025 00:12:08 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 19 Connection: close Server: cloudflare access-control-allow-credentials: true access-control-allow-headers: Accept, Authorization, Content-Type, X-CSRF-Token, X-Requested-With, Origin, Cache-Control, X-File-Name, X-Project-ID access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, PATCH access-control-expose-headers: Content-Length, Content-Range access-control-max-age: ๐ content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://unpkg.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https:; connect-src 'self' https:; frame-ancestors 'none'; base-uri 'self'; form-action 'self' permissions-policy: geolocation=(), microphone=(), camera=() referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff x-frame-options: DENY x-ratelimit-limit: 60 x-ratelimit-reset: 2025-12-19T00:12:08Z x-xss-protection: 1; mode=block cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=8,cfOrigin;dur=894 Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=BYdakDZ6z0%2BcNF4EMJTOQOfIxAkIfbbDea0J0X1O%2B4DVChhFE0bfq%2BZ0efYzUax8s2u1B48CxQFdQ1Xq4bTQEPeG6aC3KCLmPDPHyqDM"}]} CF-RAY: 9b02afc34d2147dc-BOM alt-svc: h3=":443"; ma=86400 404 page not foundFound 2025-12-19 by HttpPluginCreate report