LeakIX - Host backendlearningexperience.metatalent.ai

Domain backendlearningexperience.metatalent.ai

United States

AMAZON-02

Software information

Vercel

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 216.198.79.1
Domain: www.backendlearningexperience.metatalent.ai
Port: 443
URL: https://www.backendlearningexperience.metatalent.ai

First seen 2025-11-20 08:21
Last seen 2026-01-09 18:48
Open for 50 days

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863cfa75507c8b102c2a3cce35d1756a529058dc46c2

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
DELETE /api/v1/announcement/delete/{id}
DELETE /api/v1/settings/account
GET /
GET /api/v1/analytics/assessments/
GET /api/v1/analytics/courses/
GET /api/v1/analytics/learning-progress/overall
GET /api/v1/analytics/learning-progress/time-series/
GET /api/v1/analytics/performance-metrics/
GET /api/v1/announcement/get-announcements
GET /api/v1/notification/get-notifications
GET /api/v1/settings/
GET /api/v1/skill/generateReport/{skillId}
GET /api/v1/skill/getInviteUsers/{id}
GET /api/v1/users/details
GET /api/v1/users/getDashboardData
GET /api/v1/users/getDetails
GET /api/v1/users/usersToInvite/{courseId}
POST /api/v1/announcement/post/{userId}
POST /api/v1/courses/create-new-course
POST /api/v1/notification/update-status
POST /api/v1/settings/2fa
POST /api/v1/skill/getEnrolled
POST /api/v1/users/getAnalyticsData
POST /api/v1/users/getenrolledStudents
POST /api/v1/users/login
POST /api/v1/users/register
POST /api/v1/users/register-google-user
POST /api/v1/users/register-microsoft-user
POST /api/v1/users/request-otp
POST /api/v1/utility/file-parse/upload
PUT /api/v1/notification/update-visibility/{id}
PUT /api/v1/skill/assignSkill
PUT /api/v1/skill/submitResult
PUT /api/v1/users/changepassword
PUT /api/v1/users/update
PUT /api/v1/users/updateAssignments
PUT /api/v1/users/updateCourseScore
PUT /api/v1/users/updateCourses
PUT /api/v1/users/updateLessons
PUT /api/v1/users/updateModules
PUT /api/v1/users/updatePreferences
PUT /api/v1/users/updateQuiz
PUT /api/v1/users/updateUser

Found on 2026-01-09 18:48

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 64.29.17.65
Domain: backendlearningexperience.metatalent.ai
Port: 443
URL: https://backendlearningexperience.metatalent.ai

First seen 2025-11-17 13:39
Last seen 2026-01-09 12:16
Open for 52 days

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863cfa75507c8b102c2a3cce35d1756a529058dc46c2

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
DELETE /api/v1/announcement/delete/{id}
DELETE /api/v1/settings/account
GET /
GET /api/v1/analytics/assessments/
GET /api/v1/analytics/courses/
GET /api/v1/analytics/learning-progress/overall
GET /api/v1/analytics/learning-progress/time-series/
GET /api/v1/analytics/performance-metrics/
GET /api/v1/announcement/get-announcements
GET /api/v1/notification/get-notifications
GET /api/v1/settings/
GET /api/v1/skill/generateReport/{skillId}
GET /api/v1/skill/getInviteUsers/{id}
GET /api/v1/users/details
GET /api/v1/users/getDashboardData
GET /api/v1/users/getDetails
GET /api/v1/users/usersToInvite/{courseId}
POST /api/v1/announcement/post/{userId}
POST /api/v1/courses/create-new-course
POST /api/v1/notification/update-status
POST /api/v1/settings/2fa
POST /api/v1/skill/getEnrolled
POST /api/v1/users/getAnalyticsData
POST /api/v1/users/getenrolledStudents
POST /api/v1/users/login
POST /api/v1/users/register
POST /api/v1/users/register-google-user
POST /api/v1/users/register-microsoft-user
POST /api/v1/users/request-otp
POST /api/v1/utility/file-parse/upload
PUT /api/v1/notification/update-visibility/{id}
PUT /api/v1/skill/assignSkill
PUT /api/v1/skill/submitResult
PUT /api/v1/users/changepassword
PUT /api/v1/users/update
PUT /api/v1/users/updateAssignments
PUT /api/v1/users/updateCourseScore
PUT /api/v1/users/updateCourses
PUT /api/v1/users/updateLessons
PUT /api/v1/users/updateModules
PUT /api/v1/users/updatePreferences
PUT /api/v1/users/updateQuiz
PUT /api/v1/users/updateUser

Found on 2026-01-09 12:16

Create report

Open service 216.198.79.1:443 · www.backendlearningexperience.metatalent.ai

2026-01-09 18:48

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://learningexperience.metatalent.ai,http://localhost:3000,https://testlearningexperience.vercel.app
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 19
Content-Type: text/html; charset=utf-8
Date: Fri, 09 Jan 2026 18:48:34 GMT
Etag: W/"13-PbUXN2uIOHf9WRmiZ3NBCVnKstM"
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
X-Powered-By: Express
X-Vercel-Cache: MISS
X-Vercel-Id: fra1::iad1::srjkl-1767984509861-d1ce6df55eb8
Connection: close


Backend is running!

Found 2026-01-09 by HttpPlugin

Create report

Open service 64.29.17.65:443 · backendlearningexperience.metatalent.ai

2026-01-09 12:16

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://learningexperience.metatalent.ai,http://localhost:3000,https://testlearningexperience.vercel.app
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 19
Content-Type: text/html; charset=utf-8
Date: Fri, 09 Jan 2026 12:16:35 GMT
Etag: W/"13-PbUXN2uIOHf9WRmiZ3NBCVnKstM"
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
X-Powered-By: Express
X-Vercel-Cache: MISS
X-Vercel-Id: iad1::iad1::pt5k6-1767960991019-a622f659e44c
Connection: close


Backend is running!

Found 2026-01-09 by HttpPlugin

Create report

Open service 216.198.79.1:443 · www.backendlearningexperience.metatalent.ai

2026-01-02 20:07

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://learningexperience.metatalent.ai,http://localhost:3000,https://testlearningexperience.vercel.app
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 19
Content-Type: text/html; charset=utf-8
Date: Fri, 02 Jan 2026 20:07:55 GMT
Etag: W/"13-PbUXN2uIOHf9WRmiZ3NBCVnKstM"
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
X-Powered-By: Express
X-Vercel-Cache: MISS
X-Vercel-Id: fra1::iad1::pf9qp-1767384472109-170b8370f25a
Connection: close


Backend is running!

Found 2026-01-02 by HttpPlugin

Create report

Open service 64.29.17.65:443 · backendlearningexperience.metatalent.ai

2026-01-02 15:38

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://learningexperience.metatalent.ai,http://localhost:3000,https://testlearningexperience.vercel.app
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 19
Content-Type: text/html; charset=utf-8
Date: Fri, 02 Jan 2026 15:39:01 GMT
Etag: W/"13-PbUXN2uIOHf9WRmiZ3NBCVnKstM"
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
X-Powered-By: Express
X-Vercel-Cache: MISS
X-Vercel-Id: fra1::iad1::k5v5q-1767368337006-eccb5b5e4df1
Connection: close


Backend is running!

Found 2026-01-02 by HttpPlugin

Create report

Open service 64.29.17.65:443 · backendlearningexperience.metatalent.ai

2025-12-23 01:05

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://learningexperience.metatalent.ai,http://localhost:3000,https://testlearningexperience.vercel.app
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 19
Content-Type: text/html; charset=utf-8
Date: Tue, 23 Dec 2025 01:05:35 GMT
Etag: W/"13-PbUXN2uIOHf9WRmiZ3NBCVnKstM"
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
X-Powered-By: Express
X-Vercel-Cache: MISS
X-Vercel-Id: fra1::iad1::tm8fk-1766451931137-9ffe0a682346
Connection: close


Backend is running!

Found 2025-12-23 by HttpPlugin

Create report

Open service 216.198.79.1:443 · www.backendlearningexperience.metatalent.ai

2025-12-22 20:46

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://learningexperience.metatalent.ai,http://localhost:3000,https://testlearningexperience.vercel.app
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 19
Content-Type: text/html; charset=utf-8
Date: Mon, 22 Dec 2025 20:46:57 GMT
Etag: W/"13-PbUXN2uIOHf9WRmiZ3NBCVnKstM"
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
X-Powered-By: Express
X-Vercel-Cache: MISS
X-Vercel-Id: iad1::iad1::98rbk-1766436413971-e113db601468
Connection: close


Backend is running!

Found 2025-12-22 by HttpPlugin

Create report

Open service 64.29.17.65:443 · backendlearningexperience.metatalent.ai

2025-12-21 09:20

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://learningexperience.metatalent.ai,http://localhost:3000,https://testlearningexperience.vercel.app
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 19
Content-Type: text/html; charset=utf-8
Date: Sun, 21 Dec 2025 09:20:15 GMT
Etag: W/"13-PbUXN2uIOHf9WRmiZ3NBCVnKstM"
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
X-Powered-By: Express
X-Vercel-Cache: MISS
X-Vercel-Id: iad1::iad1::2qcgg-1766308812018-5de9553bc1c2
Connection: close


Backend is running!

Found 2025-12-21 by HttpPlugin

Create report

Open service 64.29.17.65:443 · backendlearningexperience.metatalent.ai

2025-12-19 01:52

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://learningexperience.metatalent.ai,http://localhost:3000,https://testlearningexperience.vercel.app
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 19
Content-Type: text/html; charset=utf-8
Date: Fri, 19 Dec 2025 01:52:10 GMT
Etag: W/"13-PbUXN2uIOHf9WRmiZ3NBCVnKstM"
Server: Vercel
Strict-Transport-Security: max-age=63072000
Vary: Origin
X-Powered-By: Express
X-Vercel-Cache: MISS
X-Vercel-Id: fra1::iad1::5z984-1766109126654-a923886f650b
Connection: close


Backend is running!

Found 2025-12-19 by HttpPlugin

Create report

www.backendlearningexperience.metatalent.ai

Fingerprint:

1ce1c2b326c0db46125d217ce712d19842c57f3ee0e9ac7dfafa23df5476fea2

CN:

www.backendlearningexperience.metatalent.ai

Key:

RSA-2048

Issuer:

R12

Not before:

2025-11-04 08:51

Not after:

2026-02-02 08:51

backendlearningexperience.metatalent.ai

Fingerprint:

3d5464e2016a6665272500292aee350e8155b645aa9649b747bd71ca09a2895e

CN:

backendlearningexperience.metatalent.ai

Key:

RSA-2048

Issuer:

R13

Not before:

2025-11-04 08:52

Not after:

2026-02-02 08:52

Domain summary

www.backendlearningexperience.metatalent.ai 3 backendlearningexperience.metatalent.ai 5

2 recorded

IP summary

216.198.79.1 2 64.29.17.65 2

2 recorded