Domain dev.static.waterworks.com
United States
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
IP: 18.217.133.29
Domain: dev.static.waterworks.com
Port: 443
URL: https://dev.static.waterworks.comFirst seen 2025-12-24 23:40
Last seen 2026-01-23 09:57
Open for 29 days-
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa384f1b85148b4fa93157b58fcb82c6099104d49fcGraphQL introspection enabled at /graphql Types: 628 (by kind: ENUM: 46, INPUT_OBJECT: 149, INTERFACE: 28, OBJECT: 395, SCALAR: 5, UNION: 5) Operations: - Query: Query | fields: availableStores, cart, categories, category, categoryList - Mutation: Mutation | fields: addBundleProductsToCart, addConfigurableProductsToCart, addDownloadableProductsToCart, addGiftRegistryRegistrants, addProductsToCart Directives: deprecated, include, skip (total: 3) Detected: Magento
Found on 2026-01-23 09:57997.6 kBytes -
Severity: medium
Fingerprint: c2db3a1c40d490dbf8cbe7e2dbb5e0b0029887341363718760c0d0301c654c3fGraphQL introspection enabled at /graphql/api Types: 628 (by kind: ENUM: 46, INPUT_OBJECT: 149, INTERFACE: 28, OBJECT: 395, SCALAR: 5, UNION: 5) Operations: - Query: Query | fields: availableStores, cart, categories, category, categoryList - Mutation: Mutation | fields: addBundleProductsToCart, addConfigurableProductsToCart, addDownloadableProductsToCart, addGiftRegistryRegistrants, addProductsToCart Directives: deprecated, include, skip (total: 3) Detected: Magento
Found on 2026-01-16 13:13997.6 kBytes
-
-
Open service 18.217.133.29:443 · dev.static.waterworks.com
2026-01-23 09:57
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 09:57:54 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.1.33 Set-Cookie: PHPSESSID=35d2cda0713190a888e1756f22399e07; expires=Sat, 24-Jan-2026 09:57:54 GMT; Max-Age=86400; path=/; domain=dev.waterworks.com; secure; HttpOnly; SameSite=Lax Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Location: https://dev.waterworks.com/us_en/ Access-Control-Allow-Origin: *.waterworks.com Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2026-01-23 by HttpPluginCreate report
-
Open service 18.217.133.29:443 · dev.static.waterworks.com
2026-01-09 12:44
HTTP/1.1 301 Moved Permanently Date: Fri, 09 Jan 2026 12:44:11 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.1.33 Set-Cookie: PHPSESSID=856ec14f143d8573711c3f33382b6a20; expires=Sat, 10-Jan-2026 12:44:11 GMT; Max-Age=86400; path=/; domain=dev.waterworks.com; secure; HttpOnly; SameSite=Lax Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Location: https://dev.waterworks.com/us_en/ Access-Control-Allow-Origin: *.waterworks.com Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2026-01-09 by HttpPluginCreate report
-
Open service 18.217.133.29:443 · dev.static.waterworks.com
2026-01-02 20:16
HTTP/1.1 301 Moved Permanently Date: Fri, 02 Jan 2026 20:16:35 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/8.1.33 Set-Cookie: PHPSESSID=b173fa54e02729c58194e944ccc50f65; expires=Sat, 03-Jan-2026 20:16:35 GMT; Max-Age=86400; path=/; domain=dev.waterworks.com; secure; HttpOnly; SameSite=Lax Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Location: https://dev.waterworks.com/us_en/ Access-Control-Allow-Origin: *.waterworks.com Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2026-01-02 by HttpPluginCreate report