Domain dev-standalone.vrcxp.com
France
Software information
nginx
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-08 23:07
Last seen 2026-01-17 00:45
Open for 69 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d60b2ea5f828fc0503d0d9f7319866afd6b2857e481Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths: GET /account/profile GET /auth/register GET /auth/rotate-secret GET /customlobby GET /device GET /experiences GET /experiences/{experienceId}/invitation GET /headsetcenters GET /langs GET /lobby/get-version GET /lobbycore GET /servicecore GET /setup/download/{id} GET /setup/get-last-version GET /videoplayer GET /videoplayer/get-download-url GET /videoplayer/get-last-version PATCH /experiences/{experienceId}/installed PATCH /experiences/{experienceId}/removed POST /auth/login POST /auth/refresh POST /experiences/session/{experienceId}/{experienceType}/started POST /experiences/session/{sessionId}/stopped POST /experiences/{experienceId}/notations POST /experiences/{experienceId}/notations/{notationId}/screenshotFound on 2026-01-17 00:45
-
-
Open service 85.208.144.202:443 · dev-standalone.vrcxp.com
2026-01-09 20:05
HTTP/1.1 301 Moved Permanently Server: nginx Date: Fri, 09 Jan 2026 20:05:16 GMT Content-Length: 0 Connection: close Location: index.html Strict-Transport-Security: max-age=63072000; includeSubDomains X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Referrer-Policy: same-origin X-Clacks-Overhead: GNU Terry Pratchett
Found 2026-01-09 by HttpPluginCreate report
-
Open service 85.208.144.202:443 · dev-standalone.vrcxp.com
2026-01-02 18:21
HTTP/1.1 301 Moved Permanently Server: nginx Date: Fri, 02 Jan 2026 18:21:07 GMT Content-Length: 0 Connection: close Location: index.html Strict-Transport-Security: max-age=63072000; includeSubDomains X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Referrer-Policy: same-origin X-Clacks-Overhead: GNU Terry Pratchett
Found 2026-01-02 by HttpPluginCreate report
-
Open service 85.208.144.202:443 · dev-standalone.vrcxp.com
2025-12-23 00:08
HTTP/1.1 301 Moved Permanently Server: nginx Date: Tue, 23 Dec 2025 00:08:33 GMT Content-Length: 0 Connection: close Location: index.html Strict-Transport-Security: max-age=63072000; includeSubDomains X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Referrer-Policy: same-origin X-Clacks-Overhead: GNU Terry Pratchett
Found 2025-12-23 by HttpPluginCreate report