Domain dev-api.studly.co
United States
Software information
Heroku
tcp/443 tcp/80
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-29 01:08
Last seen 2026-01-09 17:01
Open for 72 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109Public Swagger UI/API detected at path: /api-docs/swagger.json
Found on 2026-01-09 17:01
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-29 01:08
Last seen 2026-01-09 04:48
Open for 72 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109Public Swagger UI/API detected at path: /api-docs/swagger.json
Found on 2026-01-09 04:48
-
-
Open service 15.197.149.68:443 · dev-api.studly.co
2026-01-09 17:01
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Fri, 09 Jan 2026 17:01:56 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 99 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Tjf2TjYpTBQE84FL%2BuCbeCKo4E1pgzk6Bkx5RZrlfGA%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767978116"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Tjf2TjYpTBQE84FL%2BuCbeCKo4E1pgzk6Bkx5RZrlfGA%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767978116" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2026-01-09 by HttpPluginCreate report
-
Open service 13.248.213.92:80 · dev-api.studly.co
2026-01-09 04:48
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Fri, 09 Jan 2026 04:49:26 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 99 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=5F0NMrxWfIUdmWR9WqiVlVSxFZurynxRae87KeIeX8g%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767934166"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=5F0NMrxWfIUdmWR9WqiVlVSxFZurynxRae87KeIeX8g%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767934166" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2026-01-09 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · dev-api.studly.co
2026-01-02 23:35
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Fri, 02 Jan 2026 23:35:53 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 99 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=%2FXSXv%2BlslduQgUDeWR7Aa4bR%2F8qKVPlEAWaNazV2oGI%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767396953"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=%2FXSXv%2BlslduQgUDeWR7Aa4bR%2F8qKVPlEAWaNazV2oGI%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767396953" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2026-01-02 by HttpPluginCreate report
-
Open service 13.248.213.92:80 · dev-api.studly.co
2026-01-02 02:20
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Fri, 02 Jan 2026 02:20:39 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 98 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=lYB0lLTzTGzbjXTp1oRcR4O3fTEKMI3VV6xHkjklQtA%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767320439"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=lYB0lLTzTGzbjXTp1oRcR4O3fTEKMI3VV6xHkjklQtA%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767320439" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2026-01-02 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · dev-api.studly.co
2025-12-30 09:27
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Tue, 30 Dec 2025 09:27:33 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 99 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=8OH7mN%2FRshK%2FrJ6dOf8r9LWlq7teHihlylDlQzHu9x4%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767086853"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=8OH7mN%2FRshK%2FrJ6dOf8r9LWlq7teHihlylDlQzHu9x4%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767086853" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2025-12-30 by HttpPluginCreate report
-
Open service 13.248.213.92:80 · dev-api.studly.co
2025-12-30 09:27
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Tue, 30 Dec 2025 09:27:36 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 99 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=oprbeL10BF4RHSXu8Xx2iUeadfAILizocVsEcqZEaSs%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767086856"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=oprbeL10BF4RHSXu8Xx2iUeadfAILizocVsEcqZEaSs%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767086856" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2025-12-30 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · dev-api.studly.co
2025-12-23 07:51
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Tue, 23 Dec 2025 07:51:50 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 99 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=%2FrzsCuBIi3S5n9qrs9lGJihiujFYmwRey3Zepqd%2FCdg%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766476310"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=%2FrzsCuBIi3S5n9qrs9lGJihiujFYmwRey3Zepqd%2FCdg%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766476310" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2025-12-23 by HttpPluginCreate report
-
Open service 13.248.213.92:80 · dev-api.studly.co
2025-12-23 02:19
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Tue, 23 Dec 2025 02:19:59 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 99 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=OSXARdcrQESACbPhP4cOrqaNckr1Ckw3cU7vAFbJFFs%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766456399"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=OSXARdcrQESACbPhP4cOrqaNckr1Ckw3cU7vAFbJFFs%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766456399" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2025-12-23 by HttpPluginCreate report
-
Open service 13.248.213.92:80 · dev-api.studly.co
2025-12-21 08:31
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Sun, 21 Dec 2025 08:31:25 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 99 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=YtWRXC6O%2Ber8Im5rDfb8er9KnJu0RKWBGFbyVJOUI54%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766305885"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=YtWRXC6O%2Ber8Im5rDfb8er9KnJu0RKWBGFbyVJOUI54%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766305885" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2025-12-21 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · dev-api.studly.co
2025-12-21 05:11
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Sun, 21 Dec 2025 05:11:06 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 99 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=%2FgL%2B70bvxW%2BlaAwIyTLcXrgRQ%2FBUwPJavapqdDYcZoQ%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766293866"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=%2FgL%2B70bvxW%2BlaAwIyTLcXrgRQ%2FBUwPJavapqdDYcZoQ%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766293866" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2025-12-21 by HttpPluginCreate report
-
Open service 13.248.213.92:80 · dev-api.studly.co
2025-12-19 05:32
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Fri, 19 Dec 2025 05:32:35 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 99 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=EMiv2CXgHVyzadED9jT8rGSmTAqkgmc08IMzKYIxawA%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766122355"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=EMiv2CXgHVyzadED9jT8rGSmTAqkgmc08IMzKYIxawA%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766122355" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2025-12-19 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · dev-api.studly.co
2025-12-19 04:48
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Content-Length: 139 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Fri, 19 Dec 2025 04:48:43 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 100 Ratelimit-Policy: 100;w=900 Ratelimit-Remaining: 99 Ratelimit-Reset: 900 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=kK2vZ1zLZ5n8COOfLHnk%2FGyGMKy%2FFHLWEWcaRX8GveI%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766119723"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=kK2vZ1zLZ5n8COOfLHnk%2FGyGMKy%2FFHLWEWcaRX8GveI%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766119723" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Cannot GET /</pre> </body> </html>Found 2025-12-19 by HttpPluginCreate report