Domain develop.akronnewsreporter.com
United States
Software information
nginx
tcp/443 tcp/80
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
IP: 192.0.66.42
Domain: develop.akronnewsreporter.com
Port: 443
URL: https://develop.akronnewsreporter.comFirst seen 2025-11-12 00:51
Last seen 2026-02-09 22:32
Open for 89 days-
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3GraphQL introspection enabled at /graphql
Found on 2026-02-09 22:32 -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa323e1784e266288be80cee482031cf69a2380f1daGraphQL introspection enabled at /graphql Types: 924 (by kind: ENUM: 58, INPUT_OBJECT: 217, INTERFACE: 118, OBJECT: 524, SCALAR: 5, UNION: 2) Operations: - Query: RootQuery | fields: allGroupSubscriptions, allSettings, authors, categories, category - Mutation: RootMutation | fields: addPostSubscription, addSubscriberSite, createAuthor, createCategory, createComment Directives: deprecated, include, skip (total: 3)
Found on 2025-12-01 02:521.7 MBytes
-
-
Open service 192.0.66.42:443 · develop.akronnewsreporter.com
2026-01-23 13:01
HTTP/1.1 200 OK Server: nginx Date: Fri, 23 Jan 2026 13:01:20 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding Content-Security-Policy: default-src data: 'unsafe-inline' 'unsafe-eval' https:; script-src data: 'unsafe-inline' 'unsafe-eval' https: blob: *.visualwebsiteoptimizer.com; style-src 'unsafe-inline' https: *.visualwebsiteoptimizer.com app.vwo.com; img-src data: https: blob: *.visualwebsiteoptimizer.com app.vwo.com useruploads.vwo.io; font-src data: https:; connect-src https: data: blob: *.visualwebsiteoptimizer.com app.vwo.com; media-src blob: data: https:; object-src https:; child-src https: data: blob: 'self' *.visualwebsiteoptimizer.com app.vwo.com; upgrade-insecure-requests; block-all-mixed-content; Link: <https://develop.akronnewsreporter.com/wp-json/>; rel="https://api.w.org/" Link: <https://wp.me/aMjGr>; rel=shortlink x-cache: HIT x-rq: hhn1 0 20 9980 cache-control: max-age=300, must-revalidate accept-ranges: bytes Strict-Transport-Security: max-age=31536000;includeSubdomains
Found 2026-01-23 by HttpPluginCreate report
-
Open service 2a04:fa87:fffd::c000:422a:80 · develop.akronnewsreporter.com
2026-01-12 23:52
HTTP/1.1 301 Moved Permanently Server: nginx Date: Mon, 12 Jan 2026 23:52:38 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://develop.akronnewsreporter.com/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>
Found 2026-01-12 by HttpPluginCreate report
-
Open service 2a04:fa87:fffd::c000:422a:443 · develop.akronnewsreporter.com
2026-01-12 23:52
HTTP/1.1 200 OK Server: nginx Date: Mon, 12 Jan 2026 23:52:39 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding Content-Security-Policy: default-src data: 'unsafe-inline' 'unsafe-eval' https:; script-src data: 'unsafe-inline' 'unsafe-eval' https: blob: *.visualwebsiteoptimizer.com; style-src 'unsafe-inline' https: *.visualwebsiteoptimizer.com app.vwo.com; img-src data: https: blob: *.visualwebsiteoptimizer.com app.vwo.com useruploads.vwo.io; font-src data: https:; connect-src https: data: blob: *.visualwebsiteoptimizer.com app.vwo.com; media-src blob: data: https:; object-src https:; child-src https: data: blob: 'self' *.visualwebsiteoptimizer.com app.vwo.com; upgrade-insecure-requests; block-all-mixed-content; X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header. X-Powered-By: WordPress VIP <https://wpvip.com> Host-Header: a9130478a60e5f9135f765b23f26593b X-Robots-Tag: noindex, nofollow Link: <https://develop.akronnewsreporter.com/wp-json/>; rel="https://api.w.org/" Link: <https://wp.me/aMjGr>; rel=shortlink cache-control: max-age=300, must-revalidate accept-ranges: bytes x-cache: HIT x-rq: hhn1 0 20 9980 Strict-Transport-Security: max-age=31536000;includeSubdomains
Found 2026-01-12 by HttpPluginCreate report
-
Open service 192.0.66.42:80 · develop.akronnewsreporter.com
2026-01-12 23:52
HTTP/1.1 301 Moved Permanently Server: nginx Date: Mon, 12 Jan 2026 23:52:38 GMT Content-Type: text/html Content-Length: 162 Connection: close Location: https://develop.akronnewsreporter.com/ Page title: 301 Moved Permanently <html> <head><title>301 Moved Permanently</title></head> <body> <center><h1>301 Moved Permanently</h1></center> <hr><center>nginx</center> </body> </html>
Found 2026-01-12 by HttpPluginCreate report
-
Open service 192.0.66.42:443 · develop.akronnewsreporter.com
2026-01-12 23:52
HTTP/1.1 200 OK Server: nginx Date: Mon, 12 Jan 2026 23:52:39 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding Content-Security-Policy: default-src data: 'unsafe-inline' 'unsafe-eval' https:; script-src data: 'unsafe-inline' 'unsafe-eval' https: blob: *.visualwebsiteoptimizer.com; style-src 'unsafe-inline' https: *.visualwebsiteoptimizer.com app.vwo.com; img-src data: https: blob: *.visualwebsiteoptimizer.com app.vwo.com useruploads.vwo.io; font-src data: https:; connect-src https: data: blob: *.visualwebsiteoptimizer.com app.vwo.com; media-src blob: data: https:; object-src https:; child-src https: data: blob: 'self' *.visualwebsiteoptimizer.com app.vwo.com; upgrade-insecure-requests; block-all-mixed-content; X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header. X-Powered-By: WordPress VIP <https://wpvip.com> Host-Header: a9130478a60e5f9135f765b23f26593b X-Robots-Tag: noindex, nofollow Link: <https://develop.akronnewsreporter.com/wp-json/>; rel="https://api.w.org/" Link: <https://wp.me/aMjGr>; rel=shortlink cache-control: max-age=300, must-revalidate x-rq: hhn1 0 20 9980 accept-ranges: bytes x-cache: HIT Strict-Transport-Security: max-age=31536000;includeSubdomains
Found 2026-01-12 by HttpPluginCreate report
-
Open service 192.0.66.42:443 · develop.akronnewsreporter.com
2026-01-10 01:39
HTTP/1.1 200 OK Server: nginx Date: Sat, 10 Jan 2026 01:39:13 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding Content-Security-Policy: default-src data: 'unsafe-inline' 'unsafe-eval' https:; script-src data: 'unsafe-inline' 'unsafe-eval' https: blob: *.visualwebsiteoptimizer.com; style-src 'unsafe-inline' https: *.visualwebsiteoptimizer.com app.vwo.com; img-src data: https: blob: *.visualwebsiteoptimizer.com app.vwo.com useruploads.vwo.io; font-src data: https:; connect-src https: data: blob: *.visualwebsiteoptimizer.com app.vwo.com; media-src blob: data: https:; object-src https:; child-src https: data: blob: 'self' *.visualwebsiteoptimizer.com app.vwo.com; upgrade-insecure-requests; block-all-mixed-content; X-hacker: If you're reading this, you should visit https://join.a8c.com/viphacker and apply to join the fun, mention this header. X-Powered-By: WordPress VIP <https://wpvip.com> Host-Header: a9130478a60e5f9135f765b23f26593b X-Robots-Tag: noindex, nofollow Link: <https://develop.akronnewsreporter.com/wp-json/>; rel="https://api.w.org/" Link: <https://wp.me/aMjGr>; rel=shortlink cache-control: max-age=300, must-revalidate x-rq: hhn1 0 20 9980 accept-ranges: bytes x-cache: HIT Strict-Transport-Security: max-age=31536000;includeSubdomains
Found 2026-01-10 by HttpPluginCreate report