Domain core.api.test.rapp.nl
United States
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
First seen 2025-10-21 15:32
Last seen 2026-01-02 04:42
Open for 72 days-
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3909eda029125239290cdb5662c3cd265b7ce1331GraphQL introspection enabled at /graphql Types: 452 (by kind: ENUM: 67, INPUT_OBJECT: 177, OBJECT: 198, SCALAR: 8, UNION: 2) Operations: - Query: Query | fields: status, team, teamMember, teamMembers, teams - Mutation: Mutation | fields: activateTeamMembership, addTeamMember, addTeamMembers, createTeam, deactivateTeamMembership Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
Found on 2026-01-02 04:42560.1 kBytes -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa38171ec8725162f354876ce3735f02a846482e1a4GraphQL introspection enabled at /graphql Types: 449 (by kind: ENUM: 67, INPUT_OBJECT: 177, OBJECT: 195, SCALAR: 8, UNION: 2) Operations: - Query: Query | fields: status, team, teamMember, teamMembers, teams - Mutation: Mutation | fields: activateTeamMembership, addTeamMember, addTeamMembers, createTeam, deactivateTeamMembership Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
Found on 2025-12-16 08:18555.5 kBytes -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39dc9401bf845cd5913a682db5789c628bb135548GraphQL introspection enabled at /graphql Types: 447 (by kind: ENUM: 67, INPUT_OBJECT: 177, OBJECT: 193, SCALAR: 8, UNION: 2) Operations: - Query: Query | fields: status, team, teamMember, teamMembers, teams - Mutation: Mutation | fields: activateTeamMembership, addTeamMember, addTeamMembers, createTeam, deactivateTeamMembership Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
Found on 2025-12-12 12:05550.5 kBytes -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa35a04e5070332acb5078566b7b1b7a704dafe2624GraphQL introspection enabled at /graphql Types: 438 (by kind: ENUM: 65, INPUT_OBJECT: 178, OBJECT: 185, SCALAR: 8, UNION: 2) Operations: - Query: Query | fields: status, team, teamMember, teamMembers, teams - Mutation: Mutation | fields: activateTeamMembership, addTeamMember, addTeamMembers, createTeam, deactivateTeamMembership Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
Found on 2025-12-08 18:52536.5 kBytes -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f05c833702a7aea529326a6743414cf482107614GraphQL introspection enabled at /graphql Types: 435 (by kind: ENUM: 63, INPUT_OBJECT: 179, OBJECT: 183, SCALAR: 8, UNION: 2) Operations: - Query: Query | fields: status, team, teamMember, teamMembers, teams - Mutation: Mutation | fields: activateTeamMembership, addTeamMember, addTeamMembers, createTeam, deactivateTeamMembership Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
Found on 2025-11-30 16:50528.2 kBytes -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37a3108b3eeb673b1454fc6831861f06038857690GraphQL introspection enabled at /graphql Types: 365 (by kind: ENUM: 50, INPUT_OBJECT: 150, OBJECT: 156, SCALAR: 7, UNION: 2) Operations: - Query: Query | fields: status, team, teamMember, teamMembers, teams - Mutation: Mutation | fields: activateTeamMembership, addTeamMember, addTeamMembers, createTeam, deactivateTeamMembership Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
Found on 2025-11-26 13:44437.2 kBytes
-
-
Open service 172.217.208.121:443 · core.api.test.rapp.nl
2026-01-09 01:17
HTTP/1.1 403 Forbidden x-powered-by: Express vary: Origin access-control-allow-credentials: true content-type: application/json; charset=utf-8 etag: W/"45-MZJWZc+Y+RUbHpnhz2B2Vipii24" x-cloud-trace-context: 8bb08c6bface570dcc3a3bf280445184 date: Fri, 09 Jan 2026 01:17:27 GMT server: Google Frontend Content-Length: 69 Connection: close {"message":"Forbidden resource","error":"Forbidden","statusCode":403}Found 2026-01-09 by HttpPluginCreate report
-
Open service 172.217.208.121:443 · core.api.test.rapp.nl
2026-01-02 04:42
HTTP/1.1 403 Forbidden x-powered-by: Express vary: Origin access-control-allow-credentials: true content-type: application/json; charset=utf-8 etag: W/"45-MZJWZc+Y+RUbHpnhz2B2Vipii24" x-cloud-trace-context: cabfc263c91c1dc44244c07588d4dd20 date: Fri, 02 Jan 2026 04:42:14 GMT server: Google Frontend Content-Length: 69 Connection: close {"message":"Forbidden resource","error":"Forbidden","statusCode":403}Found 2026-01-02 by HttpPluginCreate report
-
Open service 172.217.208.121:443 · core.api.test.rapp.nl
2025-12-30 06:47
HTTP/1.1 403 Forbidden x-powered-by: Express vary: Origin access-control-allow-credentials: true content-type: application/json; charset=utf-8 etag: W/"45-MZJWZc+Y+RUbHpnhz2B2Vipii24" x-cloud-trace-context: 283811ab966f53eaaa99fbc58da529a0 date: Tue, 30 Dec 2025 06:47:59 GMT server: Google Frontend Content-Length: 69 Connection: close {"message":"Forbidden resource","error":"Forbidden","statusCode":403}Found 2025-12-30 by HttpPluginCreate report
-
Open service 172.217.208.121:443 · core.api.test.rapp.nl
2025-12-22 08:04
HTTP/1.1 403 Forbidden x-powered-by: Express vary: Origin access-control-allow-credentials: true content-type: application/json; charset=utf-8 etag: W/"45-MZJWZc+Y+RUbHpnhz2B2Vipii24" x-cloud-trace-context: 5c035e1242cf3e411dac4fda2d7d3eb5 date: Mon, 22 Dec 2025 08:04:50 GMT server: Google Frontend Content-Length: 69 Connection: close {"message":"Forbidden resource","error":"Forbidden","statusCode":403}Found 2025-12-22 by HttpPluginCreate report
-
Open service 172.217.208.121:443 · core.api.test.rapp.nl
2025-12-20 09:13
HTTP/1.1 403 Forbidden x-powered-by: Express vary: Origin access-control-allow-credentials: true content-type: application/json; charset=utf-8 etag: W/"45-MZJWZc+Y+RUbHpnhz2B2Vipii24" x-cloud-trace-context: f2dc8562add4beec6ad19ba827a93be5 date: Sat, 20 Dec 2025 09:13:02 GMT server: Google Frontend Content-Length: 69 Connection: close {"message":"Forbidden resource","error":"Forbidden","statusCode":403}Found 2025-12-20 by HttpPluginCreate report