Domain dpsystem.com.br
Brazil
RedeHost Internet Ltda.
Ubuntu
Software information
nginx 1.18.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-13 13:00
Last seen 2026-02-02 01:51
Open for 111 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d6ac28e1a2c3a3e0f1b107fe13bae40b6bPublic Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/balance/{id} GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /discounts GET /discounts/{id} GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /recurrent-transactions POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/payment/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /discounts/approve/{id} PUT /discounts/reject/{id} PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /unity/profit-margin PUT /users/{id}/emailFound on 2026-02-02 01:51 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52be9fea70caPublic Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /discounts GET /discounts/{id} GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /recurrent-transactions POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/payment/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /discounts/approve/{id} PUT /discounts/reject/{id} PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /unity/profit-margin PUT /users/{id}/emailFound on 2026-01-15 21:05 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bebf54d204Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /recurrent-transactions POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/payment/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /unity/profit-margin PUT /users/{id}/emailFound on 2026-01-09 13:41 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52beb36ae9aaPublic Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/payment/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /unity/profit-margin PUT /users/{id}/emailFound on 2025-12-22 07:32 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52be6072de12Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /unity/profit-margin PUT /users/{id}/emailFound on 2025-12-16 07:02 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bed088c187Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /users/{id}/emailFound on 2025-12-14 04:31 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bee8d846d9Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /users/{id}/emailFound on 2025-10-23 12:14
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-13 13:00
Last seen 2026-01-15 23:18
Open for 94 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52be9fea70caPublic Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /discounts GET /discounts/{id} GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /recurrent-transactions POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/payment/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /discounts/approve/{id} PUT /discounts/reject/{id} PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /unity/profit-margin PUT /users/{id}/emailFound on 2026-01-15 23:18 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bebf54d204Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /recurrent-transactions POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/payment/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /unity/profit-margin PUT /users/{id}/emailFound on 2026-01-08 22:37 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52beb36ae9aaPublic Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/payment/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /unity/profit-margin PUT /users/{id}/emailFound on 2025-12-22 18:31 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52be6072de12Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /unity/profit-margin PUT /users/{id}/emailFound on 2025-12-16 15:57 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bed088c187Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /users/{id}/emailFound on 2025-12-14 11:00 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bee8d846d9Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /users/{id}/emailFound on 2025-10-23 12:00
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 144.22.206.57
Domain: homolog.api.dpsystem.com.br
Port: 443
URL: https://homolog.api.dpsystem.com.brFirst seen 2025-10-23 02:54
Last seen 2026-01-16 21:54
Open for 85 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bebf54d204Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /recurrent-transactions POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/payment/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /unity/profit-margin PUT /users/{id}/emailFound on 2026-01-16 21:54 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bed088c187Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /users/{id}/emailFound on 2025-12-27 04:43
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 144.22.206.57
Domain: www.homolog.api.dpsystem.com.br
Port: 443
URL: https://www.homolog.api.dpsystem.com.brFirst seen 2025-10-23 02:54
Last seen 2026-02-02 03:19
Open for 102 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bebf54d204Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /recurrent-transactions POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/payment/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /unity/profit-margin PUT /users/{id}/emailFound on 2026-02-02 03:19 -
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bed088c187Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /users/{id}/emailFound on 2026-01-01 21:36
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-12-09 13:02
Last seen 2026-02-09 19:15
Open for 62 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bed088c187Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /users/{id}/emailFound on 2026-02-09 19:15
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 167.234.238.55
Domain: www.dev.api.dpsystem.com.br
Port: 443
URL: https://www.dev.api.dpsystem.com.brFirst seen 2025-12-09 13:02
Last seen 2026-01-16 02:24
Open for 37 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43b460a1d61a258f3dbef50b57129c52bed088c187Public Swagger UI/API detected at path: /swagger.json - sample paths: GET /accounts GET /accounts/{id} GET /activities GET /activities/archived GET /activities/await GET /activities/await/counts GET /activities/client/{client_id} GET /activities/counts GET /activities/not-payments GET /activities/pending GET /activities/prof/{prof_id} GET /activities/sessions GET /activities/sessions/counts GET /activities/today GET /activities/warnings GET /activities/{id} GET /admin/script GET /admin/unities GET /admin/users GET /admin/users/inactives GET /admin/users/profs GET /admin/users/unity GET /categories GET /categories/{id} GET /census GET /census/activities-by-days-month GET /census/activities-prof-by-prof GET /census/health-insurance GET /census/idleness-by-prof GET /census/payments GET /census/payments-by-form GET /census/payments-by-partner GET /census/payments-by-prof GET /census/payments-participation GET /census/revenues-activities GET /clients GET /clients/verify/client GET /clients/{id} GET /clients/{id}/form-answers GET /cookie-auth/validate GET /cost-centers GET /cost-centers/{id} GET /counts/accounts GET /counts/categories GET /counts/clients GET /counts/cost-centers GET /counts/financial-categories GET /counts/forms GET /counts/health-insurances GET /counts/partners GET /counts/procedures GET /counts/recurrent-transactions GET /counts/stocks GET /counts/suppliers GET /counts/transactions GET /default-config GET /expenses/due-soon GET /expenses/due-today GET /expenses/overdue GET /expenses/paid GET /expenses/transactions GET /file/client-model GET /file/transaction-model GET /financial-accountants GET /financial-categories GET /financial-categories/by-prof GET /financial-categories/with-groups GET /financial-categories/{id} GET /financial-items GET /financial-items/{id} GET /forms GET /forms/{id} GET /health-insurances GET /health-insurances/{id} GET /holidays GET /logs GET /logs/{id} GET /medical-certificates GET /medical-certificates/inactives GET /medical-certificates/{id} GET /partners GET /partners/{id} GET /payment-participations GET /permissions/{id} GET /pictures/{filename} GET /prescriptions GET /prescriptions/inactives GET /prescriptions/{id} GET /procedures GET /procedures/{id} GET /procedures/{id}/{health_insurance_id} GET /profile GET /profs GET /profs/{id} GET /recurrent-transactions GET /revenues GET /revenues/minimum GET /schedule-block GET /schedule-block/{id} GET /schedule/{id} GET /secs GET /stocks GET /stocks/{id} GET /suppliers GET /suppliers/{id} GET /transactions GET /transactions/dre GET /transactions/group/{group_id} GET /transactions/symbols GET /transactions/{id} GET /unity GET /unity/picture GET /unity/profile GET /unity/{email} GET /unity/{id} GET /users GET /users/{id} PATCH /health-insurances/status/{id} PATCH /procedures/status/{id} PATCH /profs/{id}/active PATCH /stocks/active/{id} PATCH /suppliers/status/{id} POST /accounts/transfer-between POST /activities/await/mark POST /activities/confirm-appointment POST /activities/recurrent POST /admin POST /clients/many POST /clients/{id}/credits POST /cookie-auth/logout POST /cookie-auth/sign-in POST /emails/activation/{id} POST /financial-items/prof/{prof_id} POST /procedures/{id}/products POST /redis/clear POST /refunds/expenses/{transaction_id} POST /refunds/revenues/{transaction_id} POST /send-recovery-email POST /sessions POST /transactions/double-audit POST /transactions/import PUT /accounts/balance/{id} PUT /accounts/deposit/{id} PUT /accounts/withdrawal/{id} PUT /accounts/{id}/active PUT /activities/attendance/cancel/{id} PUT /activities/attendance/finished_at/{id} PUT /activities/attendance/started_at/{id} PUT /activities/status/{id} PUT /activities/{id}/archive PUT /admin/unities/{unity_id}/expiration PUT /categories/{id}/status PUT /clients/{id}/status PUT /cost-centers/{id}/status PUT /financial-categories/{id}/status PUT /forms/{id}/status PUT /medical-certificates/{id}/status PUT /payment-participations/{id} PUT /procedures/{id}/products/{product_id} PUT /profs/schedule-config PUT /revenues/desirable PUT /scheduled-config/{id} PUT /transactions/bank-reconciliation PUT /transactions/{group_id}/status PUT /transactions/{id}/pay PUT /users/{id}/emailFound on 2026-01-16 02:24
-
-
Open service 144.22.206.57:443 · homolog.api.dpsystem.com.br
2026-01-23 15:00
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Fri, 23 Jan 2026 15:00:35 GMT Content-Type: application/json; charset=utf-8 Content-Length: 22 Connection: close Content-Security-Policy: default-src 'self';style-src 'self' 'unsafe-inline';font-src 'self' data: https:;img-src 'self' data: https:;script-src 'self';connect-src 'self';media-src 'self';object-src 'none';manifest-src 'self';worker-src 'self';frame-src 'none';upgrade-insecure-requests x-dns-prefetch-control: on x-frame-options: DENY strict-transport-security: max-age=15552000000; includeSubDomains x-content-type-options: nosniff set-cookie: dpsystem-session=s%3AeyJtZXNzYWdlIjoiY21rcjBjb2g4MDAzaWptMDdmcnRnMDQ2YSIsInB1cnBvc2UiOiJkcHN5c3RlbS1zZXNzaW9uIn0.NeOm3fjK86vCUi9YCkJi4GsfLYA0skSKw03uJrgUUPE; Max-Age=7200; Path=/; HttpOnly; Secure; Partitioned; SameSite=None set-cookie: cmkr0coh8003ijm07frtg046a=e%3AZAh1VySI8crGuKypcE0tuhAA_mjuXV4nHVJffZp_GI8_fwzZsxstnnch7M2BzkqtYzGithhqO94N-iWxcLDIsA.R3J6TGlPRWJvOE5zdWk5eA.yxynzllt5PYy23CkHYZVmG8rexBQX3hgl5nfKNSvpYU; Max-Age=7200; Path=/; HttpOnly; Secure; Partitioned; SameSite=None {"version":"1.28.6.2"}Found 2026-01-23 by HttpPluginCreate report
-
Open service 167.234.238.55:443 · dev.api.dpsystem.com.br
2026-01-23 13:33
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Fri, 23 Jan 2026 13:33:50 GMT Content-Type: application/json; charset=utf-8 Content-Length: 20 Connection: close Content-Security-Policy: default-src 'self';style-src 'self' 'unsafe-inline';font-src 'self' data: https:;img-src 'self' data: https:;script-src 'self';connect-src 'self';media-src 'self';object-src 'none';manifest-src 'self';worker-src 'self';frame-src 'none';upgrade-insecure-requests x-dns-prefetch-control: on x-frame-options: DENY strict-transport-security: max-age=15552000000; includeSubDomains x-content-type-options: nosniff set-cookie: dpsystem-session=s%3AeyJtZXNzYWdlIjoiY21rcXg5NGs2MDA0M2ljbTI4OG4xMW02bCIsInB1cnBvc2UiOiJkcHN5c3RlbS1zZXNzaW9uIn0.g9NI8DpTH_Au-P0hkD4KiTgFbKcwfR4NoACZHIcffFE; Max-Age=7200; Domain=.dpsystem.com.br; Path=/; HttpOnly; Secure; SameSite=Lax set-cookie: cmkqx94k60043icm288n11m6l=e%3AJ9diXJC98o2NkLxPWj1pS7LfFx8Nl9jLzDSlyfNrxo6CKvOewg1gfl_dPetOOjuHsaU7dbRCXk0HFBfrXw4EvA.WHVaTmxiSUVmZ3FMQTlHdQ.p5cABVRts0R_5AA2wWYlMlZ1AYPiSIhu_FuV-bAhRts; Max-Age=7200; Domain=.dpsystem.com.br; Path=/; HttpOnly; Secure; SameSite=Lax {"version":"1.25.1"}Found 2026-01-23 by HttpPluginCreate report
-
Open service 177.55.111.8:443 · dpsystem.com.br
2026-01-23 07:48
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 07:48:56 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Vary: Accept-Encoding,Cookie,X-Proxy-Provider Cache-Control: max-age=3, must-revalidate Cache-Control: max-age=0, no-cache, no-store, must-revalidate Expires: Wed, 11 Jan 1984 05:00:00 GMT
Found 2026-01-23 by HttpPluginCreate report
-
Open service 167.234.238.55:443 · dev.api.dpsystem.com.br
2026-01-10 01:38
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 10 Jan 2026 01:38:56 GMT Content-Type: application/json; charset=utf-8 Content-Length: 20 Connection: close Content-Security-Policy: default-src 'self';style-src 'self' 'unsafe-inline';font-src 'self' data: https:;img-src 'self' data: https:;script-src 'self';connect-src 'self';media-src 'self';object-src 'none';manifest-src 'self';worker-src 'self';frame-src 'none';upgrade-insecure-requests x-dns-prefetch-control: on x-frame-options: DENY strict-transport-security: max-age=15552000000; includeSubDomains x-content-type-options: nosniff set-cookie: dpsystem-session=s%3AeyJtZXNzYWdlIjoiY21rN216b3dxMDAxaTg5bTIxdTdzOHEzMiIsInB1cnBvc2UiOiJkcHN5c3RlbS1zZXNzaW9uIn0.fSSV0dpZXmQqV59R6xzTPBrpOX-v0j4oVfSxsloV1rY; Max-Age=7200; Domain=.dpsystem.com.br; Path=/; HttpOnly; Secure; SameSite=Lax set-cookie: cmk7mzowq001i89m21u7s8q32=e%3AilKFZ9mc7ukSuohJRLcLueXvJgC8GElizC46GI3Cv_1DmjPXGx5iGKpoe5Yz7sj3wMQJ2bShaaPS6OIgemMH7g.c0N3QjJfWDZEbzBDSHpmZQ.kUkaOW_9B10iTKxVv5H4NH87Kp0MDsjKlAyybRHCYqQ; Max-Age=7200; Domain=.dpsystem.com.br; Path=/; HttpOnly; Secure; SameSite=Lax {"version":"1.25.1"}Found 2026-01-10 by HttpPluginCreate report
homolog.api.dpsystem.com.brwww.homolog.api.dpsystem.com.br
CN:
homolog.api.dpsystem.com.br
Not before:
2025-12-21 10:48
Not after:
2026-03-21 10:48
dev.api.dpsystem.com.brwww.dev.api.dpsystem.com.br
CN:
dev.api.dpsystem.com.br
Not before:
2025-12-09 12:03
Not after:
2026-03-09 12:03
dpsystem.com.brwww.dpsystem.com.br
CN:
dpsystem.com.br
Not before:
2026-01-19 06:05
Not after:
2026-04-19 06:05