Domain cloverfinds.com
United States
Software information
heroku-router
tcp/80
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-29 00:48
Last seen 2025-11-22 07:01
Open for 24 days-
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4be5bf0e5ea670a5dee7bd0d9cad0beb6f2eb54dbePublic Swagger UI/API detected at path: /v3/api-docs - sample paths: GET /accounts GET /accounts/me GET /accounts/verify-role GET /accounts/{id} GET /accounts/{id}/seller GET /agents GET /agents/{id} GET /agents/{id}/accounts GET /api/cloudinary/files/{folder} GET /api/error GET /categories GET /categories/{id} GET /colors GET /colors/{id} GET /favorites GET /health GET /products GET /products/{id} GET /profile-picture GET /profile-picture/{id} GET /sizes GET /sizes/{id} PATCH /accounts/edit PATCH /accounts/{id}/freeze PATCH /accounts/{id}/role PATCH /accounts/{id}/unfreeze POST /accounts/picture POST /accounts/signin POST /accounts/signup POST /agents/assign POST /api/auth/2fa/disable POST /api/auth/2fa/setup POST /api/auth/2fa/verify POST /api/auth/2fa/verify-setup POST /api/validate-image POST /api/validate-image-quick POST /favorites/{productId} POST /products/images/upload POST /products/{id}/imagesFound on 2025-11-22 07:01
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-29 00:58
Last seen 2025-11-23 09:52
Open for 25 days-
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4be5bf0e5ea670a5dee7bd0d9cad0beb6f2eb54dbePublic Swagger UI/API detected at path: /v3/api-docs - sample paths: GET /accounts GET /accounts/me GET /accounts/verify-role GET /accounts/{id} GET /accounts/{id}/seller GET /agents GET /agents/{id} GET /agents/{id}/accounts GET /api/cloudinary/files/{folder} GET /api/error GET /categories GET /categories/{id} GET /colors GET /colors/{id} GET /favorites GET /health GET /products GET /products/{id} GET /profile-picture GET /profile-picture/{id} GET /sizes GET /sizes/{id} PATCH /accounts/edit PATCH /accounts/{id}/freeze PATCH /accounts/{id}/role PATCH /accounts/{id}/unfreeze POST /accounts/picture POST /accounts/signin POST /accounts/signup POST /agents/assign POST /api/auth/2fa/disable POST /api/auth/2fa/setup POST /api/auth/2fa/verify POST /api/auth/2fa/verify-setup POST /api/validate-image POST /api/validate-image-quick POST /favorites/{productId} POST /products/images/upload POST /products/{id}/imagesFound on 2025-11-23 09:52
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-29 00:48
Last seen 2025-11-23 04:04
Open for 25 days-
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4be5bf0e5ea670a5dee7bd0d9cad0beb6f2eb54dbePublic Swagger UI/API detected at path: /v3/api-docs - sample paths: GET /accounts GET /accounts/me GET /accounts/verify-role GET /accounts/{id} GET /accounts/{id}/seller GET /agents GET /agents/{id} GET /agents/{id}/accounts GET /api/cloudinary/files/{folder} GET /api/error GET /categories GET /categories/{id} GET /colors GET /colors/{id} GET /favorites GET /health GET /products GET /products/{id} GET /profile-picture GET /profile-picture/{id} GET /sizes GET /sizes/{id} PATCH /accounts/edit PATCH /accounts/{id}/freeze PATCH /accounts/{id}/role PATCH /accounts/{id}/unfreeze POST /accounts/picture POST /accounts/signin POST /accounts/signup POST /agents/assign POST /api/auth/2fa/disable POST /api/auth/2fa/setup POST /api/auth/2fa/verify POST /api/auth/2fa/verify-setup POST /api/validate-image POST /api/validate-image-quick POST /favorites/{productId} POST /products/images/upload POST /products/{id}/imagesFound on 2025-11-23 04:04
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-29 00:58
Last seen 2025-11-22 09:09
Open for 24 days-
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4be5bf0e5ea670a5dee7bd0d9cad0beb6f2eb54dbePublic Swagger UI/API detected at path: /v3/api-docs - sample paths: GET /accounts GET /accounts/me GET /accounts/verify-role GET /accounts/{id} GET /accounts/{id}/seller GET /agents GET /agents/{id} GET /agents/{id}/accounts GET /api/cloudinary/files/{folder} GET /api/error GET /categories GET /categories/{id} GET /colors GET /colors/{id} GET /favorites GET /health GET /products GET /products/{id} GET /profile-picture GET /profile-picture/{id} GET /sizes GET /sizes/{id} PATCH /accounts/edit PATCH /accounts/{id}/freeze PATCH /accounts/{id}/role PATCH /accounts/{id}/unfreeze POST /accounts/picture POST /accounts/signin POST /accounts/signup POST /agents/assign POST /api/auth/2fa/disable POST /api/auth/2fa/setup POST /api/auth/2fa/verify POST /api/auth/2fa/verify-setup POST /api/validate-image POST /api/validate-image-quick POST /favorites/{productId} POST /products/images/upload POST /products/{id}/imagesFound on 2025-11-22 09:09
-
-
Open service 76.223.57.73:80 · www.cloverfinds.com
2026-01-08 20:10
HTTP/1.1 404 Not Found Content-Length: 548 Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Date: 2026-01-08 20:11:08.302213735 +0000 UTC Server: heroku-router Page title: No such app <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>No such app</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe> </body> </html>Found 2026-01-08 by HttpPluginCreate report
-
Open service 15.197.149.68:80 · cloverfinds.com
2026-01-08 19:15
HTTP/1.1 404 Not Found Content-Length: 548 Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Date: 2026-01-08 19:16:40.115978753 +0000 UTC Server: heroku-router Page title: No such app <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>No such app</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe> </body> </html>Found 2026-01-08 by HttpPluginCreate report
-
Open service 76.223.57.73:80 · www.cloverfinds.com
2026-01-01 20:38
HTTP/1.1 404 Not Found Content-Length: 548 Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Date: 2026-01-01 20:38:36.019861653 +0000 UTC Server: heroku-router Page title: No such app <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>No such app</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe> </body> </html>Found 2026-01-01 by HttpPluginCreate report
-
Open service 15.197.149.68:80 · cloverfinds.com
2026-01-01 20:07
HTTP/1.1 404 Not Found Content-Length: 548 Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Date: 2026-01-01 20:07:44.532284866 +0000 UTC Server: heroku-router Page title: No such app <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>No such app</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe> </body> </html>Found 2026-01-01 by HttpPluginCreate report
-
Open service 76.223.57.73:80 · www.cloverfinds.com
2025-12-30 04:50
HTTP/1.1 404 Not Found Content-Length: 548 Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Date: 2025-12-30 04:50:22.572065629 +0000 UTC Server: heroku-router Page title: No such app <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>No such app</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe> </body> </html>Found 2025-12-30 by HttpPluginCreate report
-
Open service 15.197.149.68:80 · cloverfinds.com
2025-12-30 04:15
HTTP/1.1 404 Not Found Content-Length: 548 Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Date: 2025-12-30 04:15:16.753429702 +0000 UTC Server: heroku-router Page title: No such app <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>No such app</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe> </body> </html>Found 2025-12-30 by HttpPluginCreate report
-
Open service 76.223.57.73:80 · www.cloverfinds.com
2025-12-22 05:46
HTTP/1.1 404 Not Found Content-Length: 548 Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Date: 2025-12-22 05:46:55.586383771 +0000 UTC Server: heroku-router Page title: No such app <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>No such app</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe> </body> </html>Found 2025-12-22 by HttpPluginCreate report
-
Open service 15.197.149.68:80 · cloverfinds.com
2025-12-22 05:01
HTTP/1.1 404 Not Found Content-Length: 548 Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Date: 2025-12-22 05:01:58.732117458 +0000 UTC Server: heroku-router Page title: No such app <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>No such app</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe> </body> </html>Found 2025-12-22 by HttpPluginCreate report
-
Open service 76.223.57.73:80 · www.cloverfinds.com
2025-12-20 06:17
HTTP/1.1 404 Not Found Content-Length: 548 Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Date: 2025-12-20 06:17:04.617837187 +0000 UTC Server: heroku-router Page title: No such app <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>No such app</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe> </body> </html>Found 2025-12-20 by HttpPluginCreate report
-
Open service 15.197.149.68:80 · cloverfinds.com
2025-12-20 05:01
HTTP/1.1 404 Not Found Content-Length: 548 Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Date: 2025-12-20 05:01:34.403238359 +0000 UTC Server: heroku-router Page title: No such app <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>No such app</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="//www.herokucdn.com/error-pages/no-such-app.html"></iframe> </body> </html>Found 2025-12-20 by HttpPluginCreate report