Domain app.jimmydore.com
Software information
cloudflare
tcp/443
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
First seen 2025-12-09 17:51
Last seen 2026-01-02 15:03
Open for 23 days-
Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d615a7ce47725a717528f1c71b2ca310f9c158c049GraphQL introspection enabled at /api/graphql Types: 183 (by kind: ENUM: 43, INPUT_OBJECT: 11, INTERFACE: 5, OBJECT: 116, SCALAR: 7, UNION: 1) Operations: - Query: Query | fields: config, featuredEntities, multiTenantConfig, multiTenantDomain, tenants - Mutation: Mutation | fields: createMultiTenantDomain, createNetworkRootUser, createTenant, deleteFeaturedEntity, storeFeaturedEntity Directives: deprecated, include, skip (total: 3)
Found on 2026-01-02 15:03256.9 kBytes -
Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6GraphQL introspection enabled at /api/graphql
Found on 2025-12-23 06:21
-
-
Open service 104.18.40.51:443 · app.jimmydore.com
2026-01-09 14:33
HTTP/1.1 200 OK Date: Fri, 09 Jan 2026 14:33:13 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close CF-RAY: 9bb4a600982ad285-FRA content-security-policy: default-src blob: 'self' *.minds.com; script-src blob: data: 'self' *.minds.com 'sha256-vVbHgirIBntVQFzMb5A2pHMuUeV4ODC0qhmiEQgVMo0='; style-src *.minds.com data: 'self' 'unsafe-inline'; frame-src *; connect-src data: 'self' *.minds.com *.cloudflarestream.com idgmyygwvm9a.objectstorage.us-ashburn-1.oci.customer-oci.com; img-src data: blob: 'self' *.minds.com; block-all-mixed-content; upgrade-insecure-requests; report-uri https://www.minds.com/p/contact; permissions-policy: autoplay=(), camera=(self), clipboard-read=(self), clipboard-write=(self), fullscreen=(self), geolocation=(self), microphone=(self), payment=(), picture-in-picture=(self); referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubdomains; preload vary: Accept-Encoding x-content-type-options: nosniff x-powered-by: Express cf-cache-status: DYNAMIC X-Frame-Options: SAMEORIGIN Server: cloudflare
Found 2026-01-09 by HttpPluginCreate report
-
Open service 104.18.40.51:443 · app.jimmydore.com
2026-01-02 15:03
HTTP/1.1 200 OK Date: Fri, 02 Jan 2026 15:03:19 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close CF-RAY: 9b7b247b6c79acd7-EWR content-security-policy: default-src blob: 'self' *.minds.com; script-src blob: data: 'self' *.minds.com 'sha256-vVbHgirIBntVQFzMb5A2pHMuUeV4ODC0qhmiEQgVMo0='; style-src *.minds.com data: 'self' 'unsafe-inline'; frame-src *; connect-src data: 'self' *.minds.com *.cloudflarestream.com idgmyygwvm9a.objectstorage.us-ashburn-1.oci.customer-oci.com; img-src data: blob: 'self' *.minds.com; block-all-mixed-content; upgrade-insecure-requests; report-uri https://www.minds.com/p/contact; permissions-policy: autoplay=(), camera=(self), clipboard-read=(self), clipboard-write=(self), fullscreen=(self), geolocation=(self), microphone=(self), payment=(), picture-in-picture=(self); referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubdomains; preload vary: Accept-Encoding x-content-type-options: nosniff x-powered-by: Express cf-cache-status: DYNAMIC X-Frame-Options: SAMEORIGIN Server: cloudflare
Found 2026-01-02 by HttpPluginCreate report
-
Open service 104.18.40.51:443 · app.jimmydore.com
2025-12-23 06:21
HTTP/1.1 200 OK Date: Tue, 23 Dec 2025 06:21:16 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close CF-RAY: 9b25c1fd4d4a0c97-SJC content-security-policy: default-src blob: 'self' *.minds.com; script-src blob: data: 'self' *.minds.com 'sha256-vVbHgirIBntVQFzMb5A2pHMuUeV4ODC0qhmiEQgVMo0='; style-src *.minds.com data: 'self' 'unsafe-inline'; frame-src *; connect-src data: 'self' *.minds.com *.cloudflarestream.com idgmyygwvm9a.objectstorage.us-ashburn-1.oci.customer-oci.com; img-src data: blob: 'self' *.minds.com; block-all-mixed-content; upgrade-insecure-requests; report-uri https://www.minds.com/p/contact; permissions-policy: autoplay=(), camera=(self), clipboard-read=(self), clipboard-write=(self), fullscreen=(self), geolocation=(self), microphone=(self), payment=(), picture-in-picture=(self); referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubdomains; preload vary: Accept-Encoding x-content-type-options: nosniff x-powered-by: Express cf-cache-status: DYNAMIC X-Frame-Options: SAMEORIGIN Server: cloudflare
Found 2025-12-23 by HttpPluginCreate report
-
Open service 104.18.40.51:443 · app.jimmydore.com
2025-12-21 02:48
HTTP/1.1 200 OK Date: Sun, 21 Dec 2025 02:48:58 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close CF-RAY: 9b141043081742ce-EWR content-security-policy: default-src blob: 'self' *.minds.com; script-src blob: data: 'self' *.minds.com 'sha256-vVbHgirIBntVQFzMb5A2pHMuUeV4ODC0qhmiEQgVMo0='; style-src *.minds.com data: 'self' 'unsafe-inline'; frame-src *; connect-src data: 'self' *.minds.com *.cloudflarestream.com idgmyygwvm9a.objectstorage.us-ashburn-1.oci.customer-oci.com; img-src data: blob: 'self' *.minds.com; block-all-mixed-content; upgrade-insecure-requests; report-uri https://www.minds.com/p/contact; permissions-policy: autoplay=(), camera=(self), clipboard-read=(self), clipboard-write=(self), fullscreen=(self), geolocation=(self), microphone=(self), payment=(), picture-in-picture=(self); referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=31536000; includeSubdomains; preload vary: Accept-Encoding x-content-type-options: nosniff x-powered-by: Express cf-cache-status: DYNAMIC X-Frame-Options: SAMEORIGIN Server: cloudflare
Found 2025-12-21 by HttpPluginCreate report
-
Open service 104.18.40.51:443 · app.jimmydore.com
2025-12-19 05:40
HTTP/1.1 200 OK Date: Fri, 19 Dec 2025 05:40:27 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: close CF-RAY: 9b049094fa62bd72-LHR Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0 last-modified: Fri, 19 Dec 2025 05:38:26 GMT vary: accept-encoding cf-cache-status: DYNAMIC X-Frame-Options: SAMEORIGIN Server: cloudflare Page title: Minds <html lang="en" dir="ltr"> <head> <base href="/static/en/"/> <meta charset="utf-8"/> <meta name="viewport" content="width=device-width, initial-scale=1,maximum-scale=1,user-scalable=no"/> <link rel="icon" type="image/svg" id="favicon" href="/static/en/assets/logos/bulb.svg"/> <link rel="apple-touch-icon" type="image/png" sizes="192x192" id="appleTouchIcon" href="/static/en/assets/logos/logo-ios.png"/> <link rel="icon" type="image/png" sizes="32x32" id="icon32" href="/static/en/assets/logos/bulb-32x32.png"/> <link rel="icon" type="image/png" sizes="16x16" id="icon16" href="/static/en/assets/logos/bulb-16x16.png"/> <link rel="preload" href="https://cdn-assets.minds.com/front/fonts/material-icons-v2.woff2" as="font" type="font/woff2" crossorigin=""/> <link rel="manifest" href="/manifest.webmanifest"/> <style type="text/css"> .m-app__loadingContainer { display: flex; justify-content: center; align-items: center; height: 100%; } .m-app__loadingContainer--fadeAnimated { animation: fadein 2s; animation-iteration-count: infinite; } .m-app__loadingLogo { max-width: 60px; } .m-app__genericLoadingSpinner { width: 40px; height: 40px; border-radius: 50%; border-width: 6px; border-style: solid; border-color: #000 #e8e8ea #e8e8ea #e8e8ea; animation: spin 1s linear infinite; -webkit-animation: spin 1s linear infinite; } @keyframes fadein { 0% { opacity: 0; } 50% { opacity: 1; } 100% { opacity: 0; } } @keyframes spin { 0% { transform: rotate(0deg); } 100% { transform: rotate(360deg); } } </style> <title>Minds</title> <link rel="stylesheet" href="styles.e9cbf231c8fff2a6.css"></head> <body class="m-theme__light"> <!-- The app component created in app.ts --> <m-app> <div class="m-app__loadingContainer m-app__loadingContainer--fadeAnimated" id="minds-loading-logo-container" style="display: none"> <img class="m-app__loadingLogo" src="/static/en/assets/logos/bulb.svg"/> </div> <div class="m-app__loadingContainer" id="generic-loading-logo-container" style="display: none"> <div class="m-app__genericLoadingSpinner"></div> </div> </m-app> <script> function module() {} // Fixes undefined module function in SystemJS bundle if (window.location.href.includes('www.minds.com')) { document.getElementById( 'generic-loading-logo-container' ).style.display = 'none'; document.getElementById('minds-loading-logo-container').style.display = 'flex'; } else { document.getElementById('minds-loading-logo-container').style.display = 'none'; document.getElementById( 'generic-loading-logo-container' ).style.display = 'flex'; } </script> <!-- shims:js --> <!-- endinject --> <noscript>Please enable JavaScript to continue using this application.</noscript> <script src="runtime.b4790431142123c0.js" type="module"></script><script src="polyfills.73dee22b4c6c0d3c.js" type="module"></script><script src="scripts.c00b4429494545b8.js" defer></script><script src="vendor.f9b0c26ef5b28024.js" type="module"></script><script src="main.a556d0fef094ba80.js" type="module"></script></body> </html>Found 2025-12-19 by HttpPluginCreate report