Domain developers.smartinnovationsystems.com
United States
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 98.82.230.34
Domain: www.developers.smartinnovationsystems.com
Port: 8443
URL: http://www.developers.smartinnovationsystems.com:8443First seen 2025-11-20 19:26
Last seen 2026-01-09 07:21
Open for 49 days-
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b19dbd6694d065d230345f8b278f0ba7d5e367c76Public Swagger UI/API detected at path: /v3/api-docs - sample paths: DELETE /api/companies/{companyId}/address/{addressId} DELETE /api/companies/{companyId}/contact/{contactId} DELETE /api/companies/{companyId}/sucursales/{sucursalId}/address/{addressId} DELETE /api/companies/{companyId}/sucursales/{sucursalId}/contact/{contactId} DELETE /api/customers/{customerId}/address/{addressId} DELETE /api/customers/{customerId}/contact/{contactId} DELETE /api/projects/{projectId}/address/{addressId} DELETE /api/sessions/{userId} DELETE /api/suppliers/{supplierId}/account/{accountId} DELETE /api/suppliers/{supplierId}/address/{addressId} DELETE /api/suppliers/{supplierId}/contact/{contactId} GET /api/access GET /api/access/jobposition/{positionId} GET /api/banks GET /api/catalogs/accounttype GET /api/catalogs/addresstype GET /api/catalogs/disbursementtype GET /api/catalogs/neighborhoods/zip-code/{zipCode} GET /api/catalogs/persontype GET /api/catalogs/phonetype GET /api/catalogs/purchasetype GET /api/catalogs/states GET /api/catalogs/states/{stateId} GET /api/catalogs/states/{stateId}/towns GET /api/catalogs/states/{stateId}/towns/{townId} GET /api/catalogs/states/{stateId}/towns/{townId}/neighborhoods GET /api/catalogs/states/{stateId}/towns/{townId}/neighborhoods/{neighId} GET /api/catalogs/unitmeasure GET /api/companies GET /api/companies/{companyId} GET /api/companies/{companyId}/sucursales GET /api/companies/{companyId}/sucursales/{sucursalId} GET /api/customers GET /api/customers/phone/{phoneNumber} GET /api/customers/searchby GET /api/customers/{customerId} GET /api/integrations/n8n/customer/phone/{phoneNumber} GET /api/jobpositions GET /api/jobpositions/{jobId} GET /api/material GET /api/projects GET /api/projects/{projectId} GET /api/purchase GET /api/purchase/{purchaseId} GET /api/sessions GET /api/suppliers GET /api/suppliers/{supplierId} GET /api/tag-description GET /api/users GET /api/users/{id} POST /api/auth/refreshtoken POST /api/auth/signin POST /api/auth/signout POST /api/auth/signup POST /api/companies/{companyId}/contact POST /api/companies/{companyId}/sucursales/{sucursalId}/address POST /api/companies/{companyId}/sucursales/{sucursalId}/contact POST /api/companies/{companyId}/sucursales/{sucursalId}/enabled POST /api/customers/{customerId}/address POST /api/customers/{customerId}/contact POST /api/customers/{customerId}/enabled POST /api/jobpositions/{jobId}/enabled POST /api/projects/{projectId}/address POST /api/projects/{projectId}/enabled POST /api/sendmail POST /api/suppliers/{supplierId}/account POST /api/suppliers/{supplierId}/address POST /api/suppliers/{supplierId}/contact POST /api/suppliers/{supplierId}/enabled POST /api/suppliers/{supplierId}/tag-description PUT /api/companies/{companyId}/address PUT /api/companies/{companyId}/data PUT /api/companies/{companyId}/enabled PUT /api/companies/{companyId}/sucursales/{sucursalId}/data PUT /api/customers/{customerId}/data PUT /api/suppliers/{supplierId}/data PUT /api/users/{id}/data PUT /api/users/{userId}/email PUT /api/users/{userId}/enabled PUT /api/users/{userId}/jobposition PUT /api/users/{userId}/passwordFound on 2026-01-09 07:21 -
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b19dbd6694d065d230345f8b278f0ba7dd743554ePublic Swagger UI/API detected at path: /v3/api-docs - sample paths: DELETE /api/companies/{companyId}/address/{addressId} DELETE /api/companies/{companyId}/contact/{contactId} DELETE /api/companies/{companyId}/sucursales/{sucursalId}/address/{addressId} DELETE /api/companies/{companyId}/sucursales/{sucursalId}/contact/{contactId} DELETE /api/customers/{customerId}/address/{addressId} DELETE /api/customers/{customerId}/contact/{contactId} DELETE /api/projects/{projectId}/address/{addressId} DELETE /api/sessions/{userId} DELETE /api/suppliers/{supplierId}/account/{accountId} DELETE /api/suppliers/{supplierId}/address/{addressId} DELETE /api/suppliers/{supplierId}/contact/{contactId} GET /api/access GET /api/access/jobposition/{positionId} GET /api/banks GET /api/catalogs/accounttype GET /api/catalogs/addresstype GET /api/catalogs/disbursementtype GET /api/catalogs/neighborhoods/zip-code/{zipCode} GET /api/catalogs/persontype GET /api/catalogs/phonetype GET /api/catalogs/purchasetype GET /api/catalogs/states GET /api/catalogs/states/{stateId} GET /api/catalogs/states/{stateId}/towns GET /api/catalogs/states/{stateId}/towns/{townId} GET /api/catalogs/states/{stateId}/towns/{townId}/neighborhoods GET /api/catalogs/states/{stateId}/towns/{townId}/neighborhoods/{neighId} GET /api/catalogs/unitmeasure GET /api/companies GET /api/companies/{companyId} GET /api/companies/{companyId}/sucursales GET /api/companies/{companyId}/sucursales/{sucursalId} GET /api/customers GET /api/customers/searchby GET /api/customers/{customerId} GET /api/jobpositions GET /api/jobpositions/{jobId} GET /api/material GET /api/projects GET /api/projects/{projectId} GET /api/purchase GET /api/purchase/{purchaseId} GET /api/sessions GET /api/suppliers GET /api/suppliers/{supplierId} GET /api/tag-description GET /api/users GET /api/users/{id} POST /api/auth/refreshtoken POST /api/auth/signin POST /api/auth/signout POST /api/auth/signup POST /api/companies/{companyId}/contact POST /api/companies/{companyId}/sucursales/{sucursalId}/address POST /api/companies/{companyId}/sucursales/{sucursalId}/contact POST /api/companies/{companyId}/sucursales/{sucursalId}/enabled POST /api/customers/{customerId}/address POST /api/customers/{customerId}/contact POST /api/customers/{customerId}/enabled POST /api/jobpositions/{jobId}/enabled POST /api/projects/{projectId}/address POST /api/projects/{projectId}/enabled POST /api/sendmail POST /api/suppliers/{supplierId}/account POST /api/suppliers/{supplierId}/address POST /api/suppliers/{supplierId}/contact POST /api/suppliers/{supplierId}/enabled POST /api/suppliers/{supplierId}/tag-description PUT /api/companies/{companyId}/address PUT /api/companies/{companyId}/data PUT /api/companies/{companyId}/enabled PUT /api/companies/{companyId}/sucursales/{sucursalId}/data PUT /api/customers/{customerId}/data PUT /api/suppliers/{supplierId}/data PUT /api/users/{id}/data PUT /api/users/{userId}/email PUT /api/users/{userId}/enabled PUT /api/users/{userId}/jobposition PUT /api/users/{userId}/passwordFound on 2025-12-12 15:49
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 98.82.230.34
Domain: developers.smartinnovationsystems.com
Port: 8443
URL: http://developers.smartinnovationsystems.com:8443First seen 2025-11-20 19:27
Last seen 2025-12-27 03:46
Open for 36 days-
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b19dbd6694d065d230345f8b278f0ba7d5e367c76Public Swagger UI/API detected at path: /v3/api-docs - sample paths: DELETE /api/companies/{companyId}/address/{addressId} DELETE /api/companies/{companyId}/contact/{contactId} DELETE /api/companies/{companyId}/sucursales/{sucursalId}/address/{addressId} DELETE /api/companies/{companyId}/sucursales/{sucursalId}/contact/{contactId} DELETE /api/customers/{customerId}/address/{addressId} DELETE /api/customers/{customerId}/contact/{contactId} DELETE /api/projects/{projectId}/address/{addressId} DELETE /api/sessions/{userId} DELETE /api/suppliers/{supplierId}/account/{accountId} DELETE /api/suppliers/{supplierId}/address/{addressId} DELETE /api/suppliers/{supplierId}/contact/{contactId} GET /api/access GET /api/access/jobposition/{positionId} GET /api/banks GET /api/catalogs/accounttype GET /api/catalogs/addresstype GET /api/catalogs/disbursementtype GET /api/catalogs/neighborhoods/zip-code/{zipCode} GET /api/catalogs/persontype GET /api/catalogs/phonetype GET /api/catalogs/purchasetype GET /api/catalogs/states GET /api/catalogs/states/{stateId} GET /api/catalogs/states/{stateId}/towns GET /api/catalogs/states/{stateId}/towns/{townId} GET /api/catalogs/states/{stateId}/towns/{townId}/neighborhoods GET /api/catalogs/states/{stateId}/towns/{townId}/neighborhoods/{neighId} GET /api/catalogs/unitmeasure GET /api/companies GET /api/companies/{companyId} GET /api/companies/{companyId}/sucursales GET /api/companies/{companyId}/sucursales/{sucursalId} GET /api/customers GET /api/customers/phone/{phoneNumber} GET /api/customers/searchby GET /api/customers/{customerId} GET /api/integrations/n8n/customer/phone/{phoneNumber} GET /api/jobpositions GET /api/jobpositions/{jobId} GET /api/material GET /api/projects GET /api/projects/{projectId} GET /api/purchase GET /api/purchase/{purchaseId} GET /api/sessions GET /api/suppliers GET /api/suppliers/{supplierId} GET /api/tag-description GET /api/users GET /api/users/{id} POST /api/auth/refreshtoken POST /api/auth/signin POST /api/auth/signout POST /api/auth/signup POST /api/companies/{companyId}/contact POST /api/companies/{companyId}/sucursales/{sucursalId}/address POST /api/companies/{companyId}/sucursales/{sucursalId}/contact POST /api/companies/{companyId}/sucursales/{sucursalId}/enabled POST /api/customers/{customerId}/address POST /api/customers/{customerId}/contact POST /api/customers/{customerId}/enabled POST /api/jobpositions/{jobId}/enabled POST /api/projects/{projectId}/address POST /api/projects/{projectId}/enabled POST /api/sendmail POST /api/suppliers/{supplierId}/account POST /api/suppliers/{supplierId}/address POST /api/suppliers/{supplierId}/contact POST /api/suppliers/{supplierId}/enabled POST /api/suppliers/{supplierId}/tag-description PUT /api/companies/{companyId}/address PUT /api/companies/{companyId}/data PUT /api/companies/{companyId}/enabled PUT /api/companies/{companyId}/sucursales/{sucursalId}/data PUT /api/customers/{customerId}/data PUT /api/suppliers/{supplierId}/data PUT /api/users/{id}/data PUT /api/users/{userId}/email PUT /api/users/{userId}/enabled PUT /api/users/{userId}/jobposition PUT /api/users/{userId}/passwordFound on 2025-12-27 03:46 -
Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b19dbd6694d065d230345f8b278f0ba7dd743554ePublic Swagger UI/API detected at path: /v3/api-docs - sample paths: DELETE /api/companies/{companyId}/address/{addressId} DELETE /api/companies/{companyId}/contact/{contactId} DELETE /api/companies/{companyId}/sucursales/{sucursalId}/address/{addressId} DELETE /api/companies/{companyId}/sucursales/{sucursalId}/contact/{contactId} DELETE /api/customers/{customerId}/address/{addressId} DELETE /api/customers/{customerId}/contact/{contactId} DELETE /api/projects/{projectId}/address/{addressId} DELETE /api/sessions/{userId} DELETE /api/suppliers/{supplierId}/account/{accountId} DELETE /api/suppliers/{supplierId}/address/{addressId} DELETE /api/suppliers/{supplierId}/contact/{contactId} GET /api/access GET /api/access/jobposition/{positionId} GET /api/banks GET /api/catalogs/accounttype GET /api/catalogs/addresstype GET /api/catalogs/disbursementtype GET /api/catalogs/neighborhoods/zip-code/{zipCode} GET /api/catalogs/persontype GET /api/catalogs/phonetype GET /api/catalogs/purchasetype GET /api/catalogs/states GET /api/catalogs/states/{stateId} GET /api/catalogs/states/{stateId}/towns GET /api/catalogs/states/{stateId}/towns/{townId} GET /api/catalogs/states/{stateId}/towns/{townId}/neighborhoods GET /api/catalogs/states/{stateId}/towns/{townId}/neighborhoods/{neighId} GET /api/catalogs/unitmeasure GET /api/companies GET /api/companies/{companyId} GET /api/companies/{companyId}/sucursales GET /api/companies/{companyId}/sucursales/{sucursalId} GET /api/customers GET /api/customers/searchby GET /api/customers/{customerId} GET /api/jobpositions GET /api/jobpositions/{jobId} GET /api/material GET /api/projects GET /api/projects/{projectId} GET /api/purchase GET /api/purchase/{purchaseId} GET /api/sessions GET /api/suppliers GET /api/suppliers/{supplierId} GET /api/tag-description GET /api/users GET /api/users/{id} POST /api/auth/refreshtoken POST /api/auth/signin POST /api/auth/signout POST /api/auth/signup POST /api/companies/{companyId}/contact POST /api/companies/{companyId}/sucursales/{sucursalId}/address POST /api/companies/{companyId}/sucursales/{sucursalId}/contact POST /api/companies/{companyId}/sucursales/{sucursalId}/enabled POST /api/customers/{customerId}/address POST /api/customers/{customerId}/contact POST /api/customers/{customerId}/enabled POST /api/jobpositions/{jobId}/enabled POST /api/projects/{projectId}/address POST /api/projects/{projectId}/enabled POST /api/sendmail POST /api/suppliers/{supplierId}/account POST /api/suppliers/{supplierId}/address POST /api/suppliers/{supplierId}/contact POST /api/suppliers/{supplierId}/enabled POST /api/suppliers/{supplierId}/tag-description PUT /api/companies/{companyId}/address PUT /api/companies/{companyId}/data PUT /api/companies/{companyId}/enabled PUT /api/companies/{companyId}/sucursales/{sucursalId}/data PUT /api/customers/{customerId}/data PUT /api/suppliers/{supplierId}/data PUT /api/users/{id}/data PUT /api/users/{userId}/email PUT /api/users/{userId}/enabled PUT /api/users/{userId}/jobposition PUT /api/users/{userId}/passwordFound on 2025-12-13 14:50
-
-
Open service 98.82.230.34:8443 · www.developers.smartinnovationsystems.com
2026-01-09 07:21
HTTP/1.1 401 Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers X-Content-Type-Options: nosniff X-XSS-Protection: 0 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY Content-Type: application/json Content-Length: 116 Date: Fri, 09 Jan 2026 07:21:36 GMT Connection: close {"path":"/","error":"Unauthorized","message":"Full authentication is required to access this resource","status":401}Found 2026-01-09 by HttpPluginCreate report
-
Open service 98.82.230.34:8443 · www.developers.smartinnovationsystems.com
2026-01-02 14:28
HTTP/1.1 401 Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers X-Content-Type-Options: nosniff X-XSS-Protection: 0 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY Content-Type: application/json Content-Length: 116 Date: Fri, 02 Jan 2026 14:28:40 GMT Connection: close {"path":"/","error":"Unauthorized","message":"Full authentication is required to access this resource","status":401}Found 2026-01-02 by HttpPluginCreate report
-
Open service 98.82.230.34:8443 · www.developers.smartinnovationsystems.com
2025-12-23 02:37
HTTP/1.1 401 Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers X-Content-Type-Options: nosniff X-XSS-Protection: 0 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY Content-Type: application/json Content-Length: 116 Date: Tue, 23 Dec 2025 02:37:14 GMT Connection: close {"path":"/","error":"Unauthorized","message":"Full authentication is required to access this resource","status":401}Found 2025-12-23 by HttpPluginCreate report
-
Open service 98.82.230.34:8443 · developers.smartinnovationsystems.com
2025-12-23 02:01
HTTP/1.1 401 Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers X-Content-Type-Options: nosniff X-XSS-Protection: 0 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY Content-Type: application/json Content-Length: 116 Date: Tue, 23 Dec 2025 02:01:04 GMT Connection: close {"path":"/","error":"Unauthorized","message":"Full authentication is required to access this resource","status":401}Found 2025-12-23 by HttpPluginCreate report
-
Open service 98.82.230.34:8443 · www.developers.smartinnovationsystems.com
2025-12-20 13:42
HTTP/1.1 401 Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers X-Content-Type-Options: nosniff X-XSS-Protection: 0 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY Content-Type: application/json Content-Length: 116 Date: Sat, 20 Dec 2025 13:42:41 GMT Connection: close {"path":"/","error":"Unauthorized","message":"Full authentication is required to access this resource","status":401}Found 2025-12-20 by HttpPluginCreate report
-
Open service 98.82.230.34:8443 · developers.smartinnovationsystems.com
2025-12-20 10:30
HTTP/1.1 401 Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers X-Content-Type-Options: nosniff X-XSS-Protection: 0 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY Content-Type: application/json Content-Length: 116 Date: Sat, 20 Dec 2025 10:30:29 GMT Connection: close {"path":"/","error":"Unauthorized","message":"Full authentication is required to access this resource","status":401}Found 2025-12-20 by HttpPluginCreate report
-
Open service 98.82.230.34:8443 · developers.smartinnovationsystems.com
2025-12-19 10:46
HTTP/1.1 401 Vary: Origin Vary: Access-Control-Request-Method Vary: Access-Control-Request-Headers X-Content-Type-Options: nosniff X-XSS-Protection: 0 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY Content-Type: application/json Content-Length: 116 Date: Fri, 19 Dec 2025 10:46:10 GMT Connection: close {"path":"/","error":"Unauthorized","message":"Full authentication is required to access this resource","status":401}Found 2025-12-19 by HttpPluginCreate report