Domain dzp.simplyparking.eu
Sweden
Software information
nginx 1.18.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-18 11:14
Last seen 2026-02-01 22:35
Open for 106 days-
Severity: info
Fingerprint: 5733ddf49ff49cd110a331ecdeba7a39c9405a4755fdb6b6d176405417bf7c49Public Swagger UI/API detected at path: /v2/api-docs - sample paths: GET /api/rest/parking-permit/permit GET /api/rest/parking/check/{licensePlate}/{zoneId} GET /api/rest/parking/checkgroup/{licensePlate}/{group} GET /api/rest/parking/checksimple/{licensePlate}/{zoneId} GET /api/rest/parking/checkstreet/{licensePlate}/{streetId} GET /api/rest/parking/getlist/{zoneId} POST /api/rest/guest-tablet/getTabletConfig POST /api/rest/guest-tablet/registerParking POST /api/rest/guest-tablet/registerTablet POST /api/rest/p24/notification POST /api/rest/parking-guest/entry/create POST /api/rest/parking-guest/entry/createauto POST /api/rest/parking-guest/entry/createcomplete POST /api/rest/parking-permit/setup/{clientId}/update POST /api/rest/parking-permit/{clientId}/document-link POST /api/rest/parking-permit/{clientId}/updateFound on 2026-02-01 22:35
-
-
Open service 13.51.122.10:443 · dzp.simplyparking.eu
2026-01-23 08:56
HTTP/1.1 200 Server: nginx/1.18.0 (Ubuntu) Date: Fri, 23 Jan 2026 08:56:19 GMT Content-Type: text/html;charset=utf-8 Content-Length: 1562 Connection: close Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, PUT, OPTIONS, POST, DELETE, HEAD, PATCH Access-Control-Allow-Headers: Content-Type, Accept, Remember-Me Access-Control-Max-Age: 3600 Access-Control-Expose-Headers: Remember-Me Set-Cookie: JSESSIONID=F63A4F7C8AFB6981288899D7CE7190F2; Path=/; HttpOnly X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY <!doctype html> <!-- This file is auto-generated by Vaadin. --> <html lang="en" class="notranslate" translate="no"> <head><script initial="">if (!('ResizeObserver' in window)) { window.location.search='v-r=oldbrowser';}</script><script initial="">window.Vaadin = window.Vaadin || {};window.Vaadin.TypeScript= {};</script><meta name="_csrf_parameter" content="_csrf"><meta name="_csrf_header" content="X-CSRF-TOKEN"><meta name="_csrf" content="ca573847-0906-437c-b633-9a11375efe1d"><base href="."><script type="text/javascript">window.JSCompiler_renameProperty = function(a) { return a;}</script> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta name="google" content="notranslate"> <style> body, #outlet { height: 100vh; width: 100%; margin: 0; } </style> <!-- index.ts is included here automatically (either by the dev server or during the build) --> <script type="module" crossorigin src="./VAADIN/build/indexhtml.eb6933e5.js"></script> <style>.v-reconnect-dialog,.v-system-error {position: absolute;color: black;background: white;top: 1em;right: 1em;border: 1px solid black;padding: 1em;z-index: 10000;max-width: calc(100vw - 4em);max-height: calc(100vh - 4em);overflow: auto;} .v-system-error {color: indianred;pointer-events: auto;} .v-system-error h3, .v-system-error b {color: red;}</style><style>[hidden] { display: none !important; }</style></head> <body> <!-- This outlet div is where the views are rendered --> <div id="outlet"></div> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 13.51.122.10:443 · dzp.simplyparking.eu
2026-01-09 09:44
HTTP/1.1 200 Server: nginx/1.18.0 (Ubuntu) Date: Fri, 09 Jan 2026 09:44:15 GMT Content-Type: text/html;charset=utf-8 Content-Length: 1562 Connection: close Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, PUT, OPTIONS, POST, DELETE, HEAD, PATCH Access-Control-Allow-Headers: Content-Type, Accept, Remember-Me Access-Control-Max-Age: 3600 Access-Control-Expose-Headers: Remember-Me Set-Cookie: JSESSIONID=C2DC1DE4F9CA0F43246AD6615186B4F6; Path=/; HttpOnly X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY <!doctype html> <!-- This file is auto-generated by Vaadin. --> <html lang="en" class="notranslate" translate="no"> <head><script initial="">if (!('ResizeObserver' in window)) { window.location.search='v-r=oldbrowser';}</script><script initial="">window.Vaadin = window.Vaadin || {};window.Vaadin.TypeScript= {};</script><meta name="_csrf_parameter" content="_csrf"><meta name="_csrf_header" content="X-CSRF-TOKEN"><meta name="_csrf" content="5f2be5d2-cddd-432d-adcf-dbd51e8b2093"><base href="."><script type="text/javascript">window.JSCompiler_renameProperty = function(a) { return a;}</script> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta name="google" content="notranslate"> <style> body, #outlet { height: 100vh; width: 100%; margin: 0; } </style> <!-- index.ts is included here automatically (either by the dev server or during the build) --> <script type="module" crossorigin src="./VAADIN/build/indexhtml.eb6933e5.js"></script> <style>.v-reconnect-dialog,.v-system-error {position: absolute;color: black;background: white;top: 1em;right: 1em;border: 1px solid black;padding: 1em;z-index: 10000;max-width: calc(100vw - 4em);max-height: calc(100vh - 4em);overflow: auto;} .v-system-error {color: indianred;pointer-events: auto;} .v-system-error h3, .v-system-error b {color: red;}</style><style>[hidden] { display: none !important; }</style></head> <body> <!-- This outlet div is where the views are rendered --> <div id="outlet"></div> </body> </html>Found 2026-01-09 by HttpPluginCreate report
-
Open service 13.51.122.10:443 · dzp.simplyparking.eu
2026-01-02 16:09
HTTP/1.1 200 Server: nginx/1.18.0 (Ubuntu) Date: Fri, 02 Jan 2026 16:09:53 GMT Content-Type: text/html;charset=utf-8 Content-Length: 1562 Connection: close Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, PUT, OPTIONS, POST, DELETE, HEAD, PATCH Access-Control-Allow-Headers: Content-Type, Accept, Remember-Me Access-Control-Max-Age: 3600 Access-Control-Expose-Headers: Remember-Me Set-Cookie: JSESSIONID=E67D8A6A3BFAFA6CB0A71DF31D9B6023; Path=/; HttpOnly X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY <!doctype html> <!-- This file is auto-generated by Vaadin. --> <html lang="en" class="notranslate" translate="no"> <head><script initial="">if (!('ResizeObserver' in window)) { window.location.search='v-r=oldbrowser';}</script><script initial="">window.Vaadin = window.Vaadin || {};window.Vaadin.TypeScript= {};</script><meta name="_csrf_parameter" content="_csrf"><meta name="_csrf_header" content="X-CSRF-TOKEN"><meta name="_csrf" content="7cebc451-7452-4740-a0c2-e0418e51dc93"><base href="."><script type="text/javascript">window.JSCompiler_renameProperty = function(a) { return a;}</script> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta name="google" content="notranslate"> <style> body, #outlet { height: 100vh; width: 100%; margin: 0; } </style> <!-- index.ts is included here automatically (either by the dev server or during the build) --> <script type="module" crossorigin src="./VAADIN/build/indexhtml.eb6933e5.js"></script> <style>.v-reconnect-dialog,.v-system-error {position: absolute;color: black;background: white;top: 1em;right: 1em;border: 1px solid black;padding: 1em;z-index: 10000;max-width: calc(100vw - 4em);max-height: calc(100vh - 4em);overflow: auto;} .v-system-error {color: indianred;pointer-events: auto;} .v-system-error h3, .v-system-error b {color: red;}</style><style>[hidden] { display: none !important; }</style></head> <body> <!-- This outlet div is where the views are rendered --> <div id="outlet"></div> </body> </html>Found 2026-01-02 by HttpPluginCreate report
-
Open service 13.51.122.10:443 · dzp.simplyparking.eu
2025-12-22 10:06
HTTP/1.1 200 Server: nginx/1.18.0 (Ubuntu) Date: Mon, 22 Dec 2025 10:06:02 GMT Content-Type: text/html;charset=utf-8 Content-Length: 1562 Connection: close Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, PUT, OPTIONS, POST, DELETE, HEAD, PATCH Access-Control-Allow-Headers: Content-Type, Accept, Remember-Me Access-Control-Max-Age: 3600 Access-Control-Expose-Headers: Remember-Me Set-Cookie: JSESSIONID=67AF64458085CB4B22B986AADE54711D; Path=/; HttpOnly X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY <!doctype html> <!-- This file is auto-generated by Vaadin. --> <html lang="en" class="notranslate" translate="no"> <head><script initial="">if (!('ResizeObserver' in window)) { window.location.search='v-r=oldbrowser';}</script><script initial="">window.Vaadin = window.Vaadin || {};window.Vaadin.TypeScript= {};</script><meta name="_csrf_parameter" content="_csrf"><meta name="_csrf_header" content="X-CSRF-TOKEN"><meta name="_csrf" content="9fc9f22d-8b86-44e4-ac62-e8a26b80f66a"><base href="."><script type="text/javascript">window.JSCompiler_renameProperty = function(a) { return a;}</script> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta name="google" content="notranslate"> <style> body, #outlet { height: 100vh; width: 100%; margin: 0; } </style> <!-- index.ts is included here automatically (either by the dev server or during the build) --> <script type="module" crossorigin src="./VAADIN/build/indexhtml.eb6933e5.js"></script> <style>.v-reconnect-dialog,.v-system-error {position: absolute;color: black;background: white;top: 1em;right: 1em;border: 1px solid black;padding: 1em;z-index: 10000;max-width: calc(100vw - 4em);max-height: calc(100vh - 4em);overflow: auto;} .v-system-error {color: indianred;pointer-events: auto;} .v-system-error h3, .v-system-error b {color: red;}</style><style>[hidden] { display: none !important; }</style></head> <body> <!-- This outlet div is where the views are rendered --> <div id="outlet"></div> </body> </html>Found 2025-12-22 by HttpPluginCreate report