Domain connect.vantagem.plus
The Netherlands
Software information
Microsoft-IIS 10.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-09 08:03
Last seen 2026-02-02 06:17
Open for 84 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354911861931f5a5c01e6812a0d8000e346770715f48Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /api/Authentication/CreateToken GET /api/Authentication/GetCard/{id} GET /api/Authentication/GetCards GET /api/Authentication/GetDependentCards GET /api/Authentication/readProfile GET /api/Beneficiary GET /api/ClaimExpenses/CountApproved GET /api/ClaimExpenses/CountApprovedByApprovalDate GET /api/ClaimExpenses/CountApprovedByPaymentEmmissionDate GET /api/ClaimExpenses/CountPayed GET /api/ClaimExpenses/GetApproved GET /api/ClaimExpenses/GetApprovedByApprovalDate GET /api/ClaimExpenses/GetApprovedByPaymentEmissionDate GET /api/ClaimExpenses/GetAsClient GET /api/ClaimExpenses/GetDependentRefunds GET /api/ClaimExpenses/GetPayed GET /api/ClaimExpenses/GetRefunds GET /api/ClaimExpenses/ReadPlafondSpent GET /api/Client GET /api/Client/GetByBI GET /api/Client/GetByNIF GET /api/Client/GetByTelephone GET /api/Client/{id} GET /api/Coverage/GetAsClient GET /api/CoverageStandard GET /api/CoverageStandard/{id} GET /api/Dropdown/GetActivePolicies GET /api/Dropdown/GetActivePolicyDependents GET /api/Dropdown/GetClinics GET /api/Dropdown/GetInsurers GET /api/Dropdown/GetMedicalSpecialties GET /api/Dropdown/GetVideoConsultationReasons GET /api/Dropdown/getDiagnostics GET /api/Dropdown/getMedicalProcedures/{networkId} GET /api/Dropdown/getMedicalProceduresAuthorization GET /api/Dropdown/getMedicalProceduresAuthorizationCount GET /api/Payment GET /api/Plan/GetPolicyPlans GET /api/Plan/GetProductPlans GET /api/Plan/{id} GET /api/Policy GET /api/Policy/{id} GET /api/Product GET /api/Product/{id} GET /api/Provider GET /api/Provider/GetAll GET /api/Provider/GetByNIF GET /api/Provider/GetClinicsByIds GET /api/Provider/{id} POST /api/Authentication/ChangePassword POST /api/Authentication/Logout POST /api/Authentication/authenticate POST /api/Authentication/forgotpassword POST /api/Beneficiary/SynchronizeBeneficiaries POST /api/ClaimExpenses/BulkUpload POST /api/ClaimExpenses/RefundRequest POST /api/Messaging/SendProviderWelcomeLetter POST /api/Payment/SynchronizePayments POST /api/VideoConsultation/SendVideoConsultationRequestFound on 2026-02-02 06:17
-
-
Open service 20.126.135.158:443 · connect.vantagem.plus
2026-01-23 00:06
HTTP/1.1 404 Not Found Transfer-Encoding: chunked Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Fri, 23 Jan 2026 00:06:43 GMT Connection: close {"isError":false,"message":"Request successful.","result":"","statusCode":404}Found 2026-01-23 by HttpPluginCreate report
-
Open service 20.126.135.158:443 · connect.vantagem.plus
2026-01-09 11:50
HTTP/1.1 404 Not Found Transfer-Encoding: chunked Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Fri, 09 Jan 2026 11:50:44 GMT Connection: close {"isError":false,"message":"Request successful.","result":"","statusCode":404}Found 2026-01-09 by HttpPluginCreate report
-
Open service 20.126.135.158:443 · connect.vantagem.plus
2026-01-03 08:04
HTTP/1.1 404 Not Found Transfer-Encoding: chunked Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Sat, 03 Jan 2026 08:04:57 GMT Connection: close {"isError":false,"message":"Request successful.","result":"","statusCode":404}Found 2026-01-03 by HttpPluginCreate report
-
Open service 20.126.135.158:443 · connect.vantagem.plus
2026-01-02 19:36
HTTP/1.1 404 Not Found Transfer-Encoding: chunked Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Fri, 02 Jan 2026 19:36:53 GMT Connection: close {"isError":false,"message":"Request successful.","result":"","statusCode":404}Found 2026-01-02 by HttpPluginCreate report
-
Open service 20.126.135.158:443 · connect.vantagem.plus
2025-12-23 09:14
HTTP/1.1 404 Not Found Transfer-Encoding: chunked Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Tue, 23 Dec 2025 09:14:19 GMT Connection: close {"isError":false,"message":"Request successful.","result":"","statusCode":404}Found 2025-12-23 by HttpPluginCreate report