LeakIX - Host cloud.evaeld.com

Domain cloud.evaeld.com

CLOUDFLARENET

Software information

cloudflare

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 172.67.197.231
Domain: cloud.evaeld.com
Port: 443
URL: https://cloud.evaeld.com

First seen 2025-11-19 11:59
Last seen 2026-01-23 07:56
Open for 64 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b3f0e8317abbc919b34177f3e89cf2c6b4200ec38

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /api/v0/company
GET /api/v0/devices/eld
GET /api/v0/devices/gps
GET /api/v0/driverProfiles
GET /api/v0/fuel/purchases/{id}
GET /api/v0/groups
GET /api/v0/groups/exportDetailed
GET /api/v0/groups/exportSimple
GET /api/v0/groups/{id}
GET /api/v0/locations
GET /api/v0/locations/{vehicleId}
GET /api/v0/maintenance/dvir/{vehicleId}
GET /api/v0/maintenance/dvir/{vehicleId}/{dvirId}
GET /api/v0/maintenance/fault-codes/{vehicleId}
GET /api/v0/notifications
GET /api/v0/trailer
GET /api/v0/trailer-locations
GET /api/v0/trailer-locations/{trailerId}
GET /api/v0/trailer/{id}
GET /api/v0/trailers
GET /api/v0/users/drivers
GET /api/v0/users/drivers/export
GET /api/v0/users/drivers/{id}
GET /api/v0/users/fleetManagers
GET /api/v0/users/fleetManagers/export
GET /api/v0/users/fleetManagers/{id}
GET /api/v0/vehicle
GET /api/v0/vehicle/{id}
GET /api/v0/vehicles
GET /api/v0/vehicles/ifta
GET /api/v0/vehicles/ifta/{id}
PUT /api/v0/notifications/{id}

Found on 2026-01-23 07:56

Create report

Open service 172.67.197.231:443 · cloud.evaeld.com

2026-01-23 07:56

HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 07:56:08 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: close
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Tue, 30 Dec 2025 13:19:44 GMT
Cache-Control: no-store
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: ALLOW-FROM https://cloud.evaeld.com/
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=SuUIWCldYpgxZOuxE14UeGm%2FF2%2FdD0jHn3QjjBuXKwa0kh4dfpRzYLWrRDSdOw9n9hCHzPSH0KqPgrqgSK0Wuw2bNj%2BWWbbQwxclXU0VSGc%3D"}]}
content-language: en
access-control-allow-origin: https://cloud.evaeld.com
Server: cloudflare
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-cache-status: DYNAMIC
CF-RAY: 9c25bb994c72e247-AMS
alt-svc: h3=":443"; ma=86400

Found 2026-01-23 by HttpPlugin

Create report

evaeld.com*.evaeld.com

Fingerprint:

36d895c155ff8bd5388f859d7995548bcbceab17728c66a374e76dce79966f86

CN:

evaeld.com

Key:

ECDSA-256

Issuer:

WE1

Not before:

2025-12-04 16:40

Not after:

2026-03-04 17:39

Domain summary

cloud.evaeld.com 1

1 recorded

IP summary

172.67.197.231 2

1 recorded