Domain api.venugopalpudur.com
United States
Software information
Vercel
tcp/443 tcp/80
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-03 09:34
Last seen 2026-01-08 20:27
Open for 66 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109Public Swagger UI/API detected at path: /api-docs/swagger.json
Found on 2026-01-08 20:27
-
-
Open service 216.198.79.1:443 · api.venugopalpudur.com
2026-01-08 20:27
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 58 Content-Security-Policy: default-src 'self';img-src 'self' data: https:;script-src 'self' 'unsafe-inline';style-src 'self' 'unsafe-inline';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests Content-Type: text/html; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Thu, 08 Jan 2026 20:27:22 GMT Etag: W/"3a-TOJbYaSZuwzOw6vEdheCVsmTqq4" Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Server: Vercel Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Vary: Origin X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Vercel-Cache: MISS X-Vercel-Id: fra1::iad1::8jq5r-1767904041913-45c8e74a5862 X-Xss-Protection: 0 Connection: close Welcome to your GraphQL API! Access /graphql for GraphiQL.
Found 2026-01-08 by HttpPluginCreate report
-
Open service 64.29.17.65:443 · api.venugopalpudur.com
2026-01-04 14:18
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 58 Content-Security-Policy: default-src 'self';img-src 'self' data: https:;script-src 'self' 'unsafe-inline';style-src 'self' 'unsafe-inline';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests Content-Type: text/html; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Sun, 04 Jan 2026 14:18:59 GMT Etag: W/"3a-TOJbYaSZuwzOw6vEdheCVsmTqq4" Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Server: Vercel Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Vary: Origin X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Vercel-Cache: MISS X-Vercel-Id: iad1::iad1::s4gkv-1767536339373-0ae1a2cab977 X-Xss-Protection: 0 Connection: close Welcome to your GraphQL API! Access /graphql for GraphiQL.
Found 2026-01-04 by HttpPluginCreate report
-
Open service 216.198.79.65:443 · api.venugopalpudur.com
2026-01-04 14:18
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 58 Content-Security-Policy: default-src 'self';img-src 'self' data: https:;script-src 'self' 'unsafe-inline';style-src 'self' 'unsafe-inline';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests Content-Type: text/html; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Sun, 04 Jan 2026 14:19:01 GMT Etag: W/"3a-TOJbYaSZuwzOw6vEdheCVsmTqq4" Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Server: Vercel Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Vary: Origin X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Vercel-Cache: MISS X-Vercel-Id: iad1::iad1::trdfn-1767536339184-64b2e874c03a X-Xss-Protection: 0 Connection: close Welcome to your GraphQL API! Access /graphql for GraphiQL.
Found 2026-01-04 by HttpPluginCreate report
-
Open service 64.29.17.65:80 · api.venugopalpudur.com
2026-01-04 14:18
HTTP/1.0 308 Permanent Redirect Content-Type: text/plain Location: https://api.venugopalpudur.com/ Refresh: 0;url=https://api.venugopalpudur.com/ server: Vercel Redirecting...
Found 2026-01-04 by HttpPluginCreate report
-
Open service 216.198.79.65:80 · api.venugopalpudur.com
2026-01-04 14:18
HTTP/1.0 308 Permanent Redirect Content-Type: text/plain Location: https://api.venugopalpudur.com/ Refresh: 0;url=https://api.venugopalpudur.com/ server: Vercel Redirecting...
Found 2026-01-04 by HttpPluginCreate report
-
Open service 216.198.79.1:443 · api.venugopalpudur.com
2026-01-01 23:55
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 58 Content-Security-Policy: default-src 'self';img-src 'self' data: https:;script-src 'self' 'unsafe-inline';style-src 'self' 'unsafe-inline';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests Content-Type: text/html; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Thu, 01 Jan 2026 23:55:19 GMT Etag: W/"3a-TOJbYaSZuwzOw6vEdheCVsmTqq4" Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Server: Vercel Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Vary: Origin X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Vercel-Cache: MISS X-Vercel-Id: iad1::iad1::hlmvk-1767311717437-732a4c9b2a17 X-Xss-Protection: 0 Connection: close Welcome to your GraphQL API! Access /graphql for GraphiQL.
Found 2026-01-01 by HttpPluginCreate report
-
Open service 216.198.79.1:443 · api.venugopalpudur.com
2025-12-30 10:18
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 58 Content-Security-Policy: default-src 'self';img-src 'self' data: https:;script-src 'self' 'unsafe-inline';style-src 'self' 'unsafe-inline';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests Content-Type: text/html; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Tue, 30 Dec 2025 10:18:03 GMT Etag: W/"3a-TOJbYaSZuwzOw6vEdheCVsmTqq4" Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Server: Vercel Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Vary: Origin X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Vercel-Cache: MISS X-Vercel-Id: iad1::iad1::b7jmq-1767089881308-05b319df55c8 X-Xss-Protection: 0 Connection: close Welcome to your GraphQL API! Access /graphql for GraphiQL.
Found 2025-12-30 by HttpPluginCreate report
-
Open service 216.198.79.1:443 · api.venugopalpudur.com
2025-12-22 06:52
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 58 Content-Security-Policy: default-src 'self';img-src 'self' data: https:;script-src 'self' 'unsafe-inline';style-src 'self' 'unsafe-inline';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests Content-Type: text/html; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Mon, 22 Dec 2025 06:52:47 GMT Etag: W/"3a-TOJbYaSZuwzOw6vEdheCVsmTqq4" Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Server: Vercel Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Vary: Origin X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Vercel-Cache: MISS X-Vercel-Id: fra1::iad1::5kssz-1766386365587-ede33c88e2e5 X-Xss-Protection: 0 Connection: close Welcome to your GraphQL API! Access /graphql for GraphiQL.
Found 2025-12-22 by HttpPluginCreate report
-
Open service 216.198.79.1:443 · api.venugopalpudur.com
2025-12-20 13:31
HTTP/1.1 200 OK Access-Control-Allow-Credentials: true Age: 0 Cache-Control: public, max-age=0, must-revalidate Content-Length: 58 Content-Security-Policy: default-src 'self';img-src 'self' data: https:;script-src 'self' 'unsafe-inline';style-src 'self' 'unsafe-inline';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests Content-Type: text/html; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Sat, 20 Dec 2025 13:31:22 GMT Etag: W/"3a-TOJbYaSZuwzOw6vEdheCVsmTqq4" Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Server: Vercel Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Vary: Origin X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Vercel-Cache: MISS X-Vercel-Id: iad1::iad1::wfbpg-1766237480679-e413dcc8c488 X-Xss-Protection: 0 Connection: close Welcome to your GraphQL API! Access /graphql for GraphiQL.
Found 2025-12-20 by HttpPluginCreate report