LeakIX - Host cms-prod.slhs.org

Domain cms-prod.slhs.org

CLOUDFLARENET

Software information

cloudflare

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 104.18.40.82
Domain: cms-prod.slhs.org
Port: 443
URL: https://cms-prod.slhs.org

First seen 2025-11-09 23:02
Last seen 2026-02-09 18:38
Open for 91 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 18:38
Create report

Open service 104.18.40.82:443 · cms-prod.slhs.org

2026-01-23 12:49

HTTP/1.1 404 Not Found
Date: Fri, 23 Jan 2026 12:49:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
CF-RAY: 9c2768cd5963f473-BLR
Cache-Control: no-store,no-cache
Pragma: no-cache
Set-Cookie: EPiStateMarker=true; path=/; secure
Set-Cookie: EPiNumberOfVisits=1%2C2026-01-23T12%3A49%3A09; expires=Sat, 23 Jan 2027 12:49:09 GMT; path=/; secure; httponly
Set-Cookie: ARRAffinity=2de6172267cd69958a0653f2b7436ec66dd0877c2a38b4c9672bb6e901c35e17;Path=/;HttpOnly;Secure;Domain=cms-prod.slhs.org
Set-Cookie: ARRAffinitySameSite=2de6172267cd69958a0653f2b7436ec66dd0877c2a38b4c9672bb6e901c35e17;Path=/;HttpOnly;SameSite=None;Secure;Domain=cms-prod.slhs.org
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:030646f3-5ada-41b3-ad03-85b95720d4c6
cf-cache-status: DYNAMIC
Server: cloudflare
alt-svc: h3=":443"; ma=86400

Page title: Resource Not Found



<!DOCTYPE html>
<html lang="en">
<head>
    <title>Resource Not Found</title>
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <link type="image/x-icon" rel="shortcut icon" href="/Util/images/favicon.ico" />
    <link type="text/css" rel="stylesheet" href="/Util/styles/errorpage.css" />
</head>
<body class="epi-workspace">
    <div class="error-wrapper">
        <div class="friendly-error">
            <h1 class="fiendly-error-header">Resource Not Found</h1>
            <p class="fiendly-error-content">Unfortunately, the resource you’re looking for couldn’t be found or does not exist anymore.</p>
        </div>
    </div>
</body>
</html>

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.18.40.82:443 · cms-prod.slhs.org

2026-01-10 02:16

HTTP/1.1 404 Not Found
Date: Sat, 10 Jan 2026 02:16:48 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
CF-RAY: 9bb8aca5eb22fd3c-SIN
Cache-Control: no-store,no-cache
Pragma: no-cache
Set-Cookie: EPiStateMarker=true; path=/; secure
Set-Cookie: EPiNumberOfVisits=1%2C2026-01-10T02%3A16%3A48; expires=Sun, 10 Jan 2027 02:16:48 GMT; path=/; secure; httponly
Set-Cookie: ARRAffinity=dee5477508926249a980c10155488605fd6a38ee03c084bf575706d6d2e04ad5;Path=/;HttpOnly;Secure;Domain=cms-prod.slhs.org
Set-Cookie: ARRAffinitySameSite=dee5477508926249a980c10155488605fd6a38ee03c084bf575706d6d2e04ad5;Path=/;HttpOnly;SameSite=None;Secure;Domain=cms-prod.slhs.org
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:030646f3-5ada-41b3-ad03-85b95720d4c6
cf-cache-status: DYNAMIC
Server: cloudflare
alt-svc: h3=":443"; ma=86400

Page title: Resource Not Found



<!DOCTYPE html>
<html lang="en">
<head>
    <title>Resource Not Found</title>
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <link type="image/x-icon" rel="shortcut icon" href="/Util/images/favicon.ico" />
    <link type="text/css" rel="stylesheet" href="/Util/styles/errorpage.css" />
</head>
<body class="epi-workspace">
    <div class="error-wrapper">
        <div class="friendly-error">
            <h1 class="fiendly-error-header">Resource Not Found</h1>
            <p class="fiendly-error-content">Unfortunately, the resource you’re looking for couldn’t be found or does not exist anymore.</p>
        </div>
    </div>
</body>
</html>

Found 2026-01-10 by HttpPlugin

Create report

cms-prod.slhs.org

Fingerprint:

fc43d89582e5b2cbfc1a45334be48cf6da5583b067c36f29e370ca69b0d1df9b

CN:

cms-prod.slhs.org

Key:

ECDSA-256

Issuer:

Not before:

2026-01-07 21:15

Not after:

2026-04-07 21:15

Domain summary

cms-prod.slhs.org 2

1 recorded

IP summary

104.18.40.82 2

1 recorded

Domain cms-prod.slhs.org

Software information

Swagger API description is publicly available

Create report

Create report

cms-prod.slhs.org

Domain summary

IP summary