LeakIX - Host cdp-api.nw18.com

Domain cdp-api.nw18.com

Germany

Akamai International B.V.

Software information

istio-envoy

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 2.16.206.139
Domain: cdp-api.nw18.com
Port: 443
URL: https://cdp-api.nw18.com

First seen 2025-10-20 12:11
Last seen 2026-01-10 00:33
Open for 81 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-10 00:33
Create report

Open service 2.16.206.139:443 · cdp-api.nw18.com

2026-01-10 00:33

HTTP/1.1 404 Not Found
x-powered-by: Express
Content-Security-Policy: default-src 'none'
x-content-type-options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
x-envoy-upstream-service-time: 36
Server: istio-envoy
Date: Sat, 10 Jan 2026 00:33:13 GMT
Connection: close
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2026-01-10 by HttpPlugin

Create report

Open service 2.16.206.139:443 · cdp-api.nw18.com

2026-01-02 20:11

HTTP/1.1 404 Not Found
x-powered-by: Express
Content-Security-Policy: default-src 'none'
x-content-type-options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
x-envoy-upstream-service-time: 41
Server: istio-envoy
Date: Fri, 02 Jan 2026 20:11:10 GMT
Connection: close
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2026-01-02 by HttpPlugin

Create report

Open service 2.16.206.139:443 · cdp-api.nw18.com

2025-12-22 20:34

HTTP/1.1 404 Not Found
x-powered-by: Express
Content-Security-Policy: default-src 'none'
x-content-type-options: nosniff
Content-Type: text/html; charset=utf-8
Content-Length: 139
x-envoy-upstream-service-time: 3
Server: istio-envoy
Date: Mon, 22 Dec 2025 20:34:09 GMT
Connection: close
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *

Page title: Error

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

Found 2025-12-22 by HttpPlugin

Create report

accounts.cnbctv18.comapi-beta-unified.cnbctv18.comapi-beta-unified.news18.comapi-pf-dev.nw18.comapi-pf.nw18.comapi.cnbctv18.comapi.platform.nw18.comauthgateway.cnbctv18.combeta-api.forbesindia.combeta-bff.forbesindia.combeta-cms-article.forbesindia.combeta-cms-blog.forbesindia.combeta-cms-richlist.forbesindia.combeta-cms-subs.forbesindia.combeta-en-access.cnbctv18.combeta-mt.forbesindia.combeta-subs.forbesindia.combetaassam-unified.news18.combetabengali-unified.news18.combetaencms-unified.cnbctv18.combetaeng-unified-cms.firstpost.combetaenglish-unified.news18.combetagujarati-unified.news18.combetahicms-unified.cnbctv18.combetahindi-unified.news18.combetaimages.forbesindia.combetakannada-unified.news18.combetalokmat-unified.news18.combetamalayalam-unified.news18.combetamarathi-unified.news18.combetaodia-unified.news18.combetapunjabi-unified.news18.combetatamil-unified.news18.combetatelugu-unified.news18.combetaurdu-unified.news18.comcdp-api.nw18.comcdp.nw18.comcms.payments.cnbctv18.comcomments.nw18.comdev-cdp-api.nw18.comdev-cdp.nw18.comdev-staticcdp.nw18.comfile18-cms-plugin.nw18.comgdpr.nw18.comms-staging.news18.comms.overdrive.inmscms.cnbctv18.commscms.firstpost.commscms.forbesindia.commscms.news18features.comnews18.compayments.cnbctv18.compre-prod-api-ops.nw18.compre-prod-df.nw18.compre-prod-file-api.nw18.compre-prod-ops.nw18.compre-prodfile18-cms-plugin.nw18.comstage-api-ops.nw18.comstage-ops.nw18.comstaticcdp.nw18.comstg-api-gu.cnbctv18.comstg-api.cnbctv18.comstg-api.forbesindia.comstg-cdp-api.nw18.comstg-cdp.nw18.comstg-elections-v4-api.news18.comstg-elections-v4-cms.news18.comstg-elections-v4-rut.news18.comstg-elections-v4.news18.comstg-en-access.cnbctv18.comstg-eshop.network18publishing.comstg-feeds.news18.comstg-mt.forbesindia.comstg-nw18videoupload-gcp.news18.comstg-staticcdp.nw18.comstg-video.nw18.comstg.forbesindia.comstg.local18.instgaccounts.cnbctv18.comstgauthgateway.cnbctv18.comstgcms-forbes.news18.comstgcms-media-service.nw18.comstgcms.nw18.comstgcms.payments.cnbctv18.comstgcore-components-storybook.nw18.comstgdevops-1234.news18.comstgencms-unified.cnbctv18.comstgeng-unified-cms.firstpost.comstgenglishcms-unified.news18.comstgfile18-cms-plugin.nw18.comstghicms-unified.cnbctv18.comstghindicms-unified.news18.comstgimages.forbesindia.comstgpayments.cnbctv18.comstgstrapicms.cnbctv18.comstgtechpickscms.moneycontrol.comtechpickscms.moneycontrol.comvideo-cms.nw18.comwww.gujarati.news18.comwww.news18marathi.com

Fingerprint:

5e6d58805e4d2355aa2ccdac464de6285b542f991d85011b909c5578316cda89

CN:

gdpr.nw18.com

Key:

RSA-2048

Issuer:

R12

Not before:

2025-11-11 05:47

Not after:

2026-02-09 05:47

Domain summary

cdp-api.nw18.com 3

1 recorded

IP summary

2.16.206.139 2

1 recorded

Domain cdp-api.nw18.com

Germany

Software information

Swagger API description is publicly available

Create report

Create report

Create report

Domain summary

IP summary