LeakIX - Host hk.gskapp.com

Domain hk.gskapp.com

Germany

Akamai International B.V.

Software information

Apache Apache

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 2.16.183.102
Domain: www.hk.gskapp.com
Port: 443
URL: https://www.hk.gskapp.com

First seen 2025-10-15 07:36
Last seen 2025-11-22 15:43
Open for 38 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656
```
Public Swagger UI/API detected at path: /swagger-ui.html
```
  Found on 2025-11-22 15:43
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 34.107.181.171
Domain: wwwnewgds.hk.gskapp.com
Port: 443
URL: https://wwwnewgds.hk.gskapp.com

First seen 2025-10-23 06:54
Last seen 2025-11-28 21:12
Open for 36 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656
```
Public Swagger UI/API detected at path: /swagger-ui.html
```
  Found on 2025-11-28 21:12
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 2.16.183.102
Domain: hk.gskapp.com
Port: 443
URL: https://hk.gskapp.com

First seen 2025-10-15 07:36
Last seen 2025-11-24 12:58
Open for 40 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656
```
Public Swagger UI/API detected at path: /swagger-ui.html
```
  Found on 2025-11-24 12:58
Create report

Open service 2a02:26f0:3500:18::1724:a29c:443 · www.hk.gskapp.com

2026-02-02 17:58

HTTP/1.1 500 Internal Server Error
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-policy: same-origin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: application/json
Content-Length: 83
Date: Mon, 02 Feb 2026 17:58:15 GMT
Connection: close
Alt-Svc: h3=":443"; ma=93600


{"timestamp":1770055095304,"status":500,"error":"Internal Server Error","path":"/"}

Found 2026-02-02 by HttpPlugin

Create report

Open service 34.107.181.171:443 · wwwnewgds.hk.gskapp.com

2026-01-08 20:05

HTTP/1.1 500 Internal Server Error
Date: Thu, 08 Jan 2026 20:05:25 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-policy: same-origin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: application/json
Via: 1.1 google
Set-Cookie: GCLB=CJL_76G9hOHHRBAD; path=/; HttpOnly; expires=Fri, 09-Jan-2026 20:05:25 GMT
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Connection: close
Transfer-Encoding: chunked


{"timestamp":1767902726166,"status":500,"error":"Internal Server Error","path":"/"}

Found 2026-01-08 by HttpPlugin

Create report

Open service 2a02:26f0:2780:67::217:e39c:443 · www.hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 500 Internal Server Error
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-policy: same-origin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: application/json
Content-Length: 83
Date: Fri, 02 Jan 2026 07:50:17 GMT
Connection: close
Alt-Svc: h3=":443"; ma=93600


{"timestamp":1767340217256,"status":500,"error":"Internal Server Error","path":"/"}

Found 2026-01-02 by HttpPlugin

Create report

Open service 2.16.204.141:80 · hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://hk.gskapp.com/
Date: Fri, 02 Jan 2026 07:50:20 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 2a02:26f0:2780:67::217:e39c:80 · hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://hk.gskapp.com/
Date: Fri, 02 Jan 2026 07:50:20 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 2a02:26f0:2780:67::217:e391:80 · www.hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://www.hk.gskapp.com/
Date: Fri, 02 Jan 2026 07:50:20 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 2.16.204.144:80 · www.hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://www.hk.gskapp.com/
Date: Fri, 02 Jan 2026 07:50:20 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 2.16.204.141:443 · www.hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 500 Internal Server Error
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-policy: same-origin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: application/json
Content-Length: 83
Date: Fri, 02 Jan 2026 07:50:17 GMT
Connection: close
Alt-Svc: h3=":443"; ma=93600


{"timestamp":1767340217237,"status":500,"error":"Internal Server Error","path":"/"}

Found 2026-01-02 by HttpPlugin

Create report

Open service 2a02:26f0:2780:67::217:e391:443 · www.hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 500 Internal Server Error
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-policy: same-origin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: application/json
Content-Length: 83
Date: Fri, 02 Jan 2026 07:50:17 GMT
Connection: close
Alt-Svc: h3=":443"; ma=93600


{"timestamp":1767340217256,"status":500,"error":"Internal Server Error","path":"/"}

Found 2026-01-02 by HttpPlugin

Create report

Open service 2.16.204.144:443 · www.hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 500 Internal Server Error
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-policy: same-origin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: application/json
Content-Length: 83
Date: Fri, 02 Jan 2026 07:50:18 GMT
Connection: close
Alt-Svc: h3=":443"; ma=93600


{"timestamp":1767340217682,"status":500,"error":"Internal Server Error","path":"/"}

Found 2026-01-02 by HttpPlugin

Create report

Open service 2a02:26f0:2780:67::217:e39c:80 · www.hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://www.hk.gskapp.com/
Date: Fri, 02 Jan 2026 07:50:20 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 2a02:26f0:2780:67::217:e391:80 · hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://hk.gskapp.com/
Date: Fri, 02 Jan 2026 07:50:19 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 2.16.204.141:80 · www.hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://www.hk.gskapp.com/
Date: Fri, 02 Jan 2026 07:50:20 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 2.16.204.141:443 · hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 500 Internal Server Error
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-policy: same-origin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: application/json
Content-Length: 83
Date: Fri, 02 Jan 2026 07:50:17 GMT
Connection: close
Alt-Svc: h3=":443"; ma=93600


{"timestamp":1767340217259,"status":500,"error":"Internal Server Error","path":"/"}

Found 2026-01-02 by HttpPlugin

Create report

Open service 2a02:26f0:2780:67::217:e391:443 · hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 500 Internal Server Error
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-policy: same-origin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: application/json
Content-Length: 83
Date: Fri, 02 Jan 2026 07:50:17 GMT
Connection: close
Alt-Svc: h3=":443"; ma=93600


{"timestamp":1767340217259,"status":500,"error":"Internal Server Error","path":"/"}

Found 2026-01-02 by HttpPlugin

Create report

Open service 2.16.204.144:80 · hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Location: https://hk.gskapp.com/
Date: Fri, 02 Jan 2026 07:50:20 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 2.16.204.144:443 · hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 500 Internal Server Error
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-policy: same-origin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: application/json
Content-Length: 83
Date: Fri, 02 Jan 2026 07:50:17 GMT
Connection: close
Alt-Svc: h3=":443"; ma=93600


{"timestamp":1767340217259,"status":500,"error":"Internal Server Error","path":"/"}

Found 2026-01-02 by HttpPlugin

Create report

Open service 2a02:26f0:2780:67::217:e39c:443 · hk.gskapp.com

2026-01-02 07:50

HTTP/1.1 500 Internal Server Error
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-policy: same-origin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: application/json
Content-Length: 83
Date: Fri, 02 Jan 2026 07:50:17 GMT
Connection: close
Alt-Svc: h3=":443"; ma=93600


{"timestamp":1767340217254,"status":500,"error":"Internal Server Error","path":"/"}

Found 2026-01-02 by HttpPlugin

Create report

Open service 34.107.181.171:443 · wwwnewgds.hk.gskapp.com

2026-01-01 20:34

HTTP/1.1 500 Internal Server Error
Date: Thu, 01 Jan 2026 20:34:21 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-policy: same-origin
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
Vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Content-Type: application/json
Via: 1.1 google
Set-Cookie: GCLB=CPnG0q_t8M37AxAD; path=/; HttpOnly; expires=Fri, 02-Jan-2026 20:34:21 GMT
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Connection: close
Transfer-Encoding: chunked


{"timestamp":1767299661649,"status":500,"error":"Internal Server Error","path":"/"}

Found 2026-01-01 by HttpPlugin

Create report

api.gsk-on.com.brarexvy.krassets.gskstatic.comasthmasingapore.comblenrep.cacasapsp.com.brclinicalsupporthd.gsk.comcpsiagsk.comdv044.gskinternet.comedgesuite.gskstatic.comedott.itellipta.co.nzformularycoverage.gsk.comgsk-kompendium.atgsk.aigskkompendium.czhcp.maint.gsk.comhk.gskapp.comideal.gsk.co.ukilmiorespiro.itinmunologiaconlina.eskeishuku.jplaprevenzionenonhaeta.itmaint.gsk.commaint.gskinternet.commaterials-library.gsk.commedfusion.gsk.commeningokoky.czparked.gsk.comparticipathivosgsk.com.brpharmacy.gsk.co.ukplus.gsk.co.ukpolpasiecstop.plpresentations.gsk.comrsvirus.jpscas.gsk.comshingles.com.hksuperv.essvsc.ittaijouhoushin-yobou.jptiemngua.comvideos.gskstatic.comwaki-ase.jpwith-sle.jpwomencare.itworkday.gsk.comwww.api.gsk-on.com.brwww.arexvy.krwww.asthmasingapore.comwww.blenrep.cawww.casapsp.com.brwww.clinicalsupporthd.gsk.comwww.cpsiagsk.comwww.edott.itwww.ellipta.co.nzwww.formularycoverage.gsk.comwww.gsk-kompendium.atwww.gsk.aiwww.gskkompendium.czwww.hk.gskapp.comwww.ideal.gsk.co.ukwww.ilmiorespiro.itwww.inmunologiaconlina.eswww.keishuku.jpwww.laprevenzionenonhaeta.itwww.medfusion.gsk.comwww.meningokoky.czwww.participathivosgsk.com.brwww.pharmacy.gsk.co.ukwww.plus.gsk.co.ukwww.polpasiecstop.plwww.presentations.gsk.comwww.rsvirus.jpwww.scas.gsk.comwww.shingles.com.hkwww.superv.eswww.svsc.itwww.tateemhayah.comwww.tiemngua.comwww.waki-ase.jpwww.with-sle.jpwww.womencare.itwww.wyprzedzmeningokoki.plwww.zorgvoorjemond.nlwww.zwp-3z.gsk.comwww.zwp-dev.gsk.comwww.zwp-uat.gsk.comwww.zwp.gsk.comwww.zyban.comwww.zyban.iewww.zyban.nlwyprzedzmeningokoki.plzorgvoorjemond.nlzwp-3z.gsk.comzwp-dev.gsk.comzwp-uat.gsk.comzwp.gsk.comzyban.comzyban.iezyban.nl

Fingerprint:

556533002b9f63cc1cfc01473e018869aab54e308e79e6f08d4c0efe3f47166d

CN:

dv044.gskinternet.com

Key:

RSA-2048

Issuer:

R12

Not before:

2026-01-02 06:50

Not after:

2026-04-02 06:50

*.softlaunch-tomcat.gskinternet.comhk.gskapp.comhkcms.gskapp.comhkweb.gsk.comphcms.gskapp.comvaccines.co.ukwebservices.peersinpractice.gsk.comwww.hk.gskapp.comwww.hkcms.gskapp.comwww.hkweb.gsk.comwww.phcms.gskapp.comwww.vaccines.co.ukwww.webservices.peersinpractice.gsk.comwwwnewgds.hk.gskapp.comwwwnewgds.ph.gskapp.com

Fingerprint:

81a90d92dea0ee43c42db21c206bca34b4464ff0e06e2160a3c5e0addeb069e1

CN:

*.softlaunch-tomcat.gskinternet.com

Key:

RSA-2048

Issuer:

Sectigo RSA Organization Validation Secure Server CA

Not before:

2024-12-24 00:00

Not after:

2025-12-24 23:59

api.gsk-on.com.brarexvy.krassets.gskstatic.comasthmasingapore.comblenrep.cacasapsp.com.brclinicalsupporthd.gsk.comcpsiagsk.comdv044.gskinternet.comedgesuite.gskstatic.comedott.itellipta.co.nzformularycoverage.gsk.comgsk-kompendium.atgsk.aigskkompendium.czhcp.maint.gsk.comhk.gskapp.comideal.gsk.co.ukilmiorespiro.itinmunologiaconlina.eskeishuku.jplaprevenzionenonhaeta.itmaint.gsk.commaint.gskinternet.commaterials-library.gsk.commedfusion.gsk.commeningokoky.czparked.gsk.comparticipathivosgsk.com.brpharmacy.gsk.co.ukplus.gsk.co.ukpolpasiecstop.plpresentations.gsk.comrsvirus.jpscas.gsk.comshingles.com.hksuperv.essvsc.ittaijouhoushin-yobou.jptiemngua.comvideos.gskstatic.comwaki-ase.jpwith-sle.jpwomencare.itworkday.gsk.comwww.api.gsk-on.com.brwww.arexvy.krwww.asthmasingapore.comwww.blenrep.cawww.casapsp.com.brwww.clinicalsupporthd.gsk.comwww.cpsiagsk.comwww.edott.itwww.ellipta.co.nzwww.formularycoverage.gsk.comwww.gsk-kompendium.atwww.gsk.aiwww.gskkompendium.czwww.hk.gskapp.comwww.ideal.gsk.co.ukwww.ilmiorespiro.itwww.inmunologiaconlina.eswww.keishuku.jpwww.laprevenzionenonhaeta.itwww.medfusion.gsk.comwww.meningokoky.czwww.participathivosgsk.com.brwww.pharmacy.gsk.co.ukwww.plus.gsk.co.ukwww.polpasiecstop.plwww.presentations.gsk.comwww.rsvirus.jpwww.scas.gsk.comwww.shingles.com.hkwww.superv.eswww.svsc.itwww.tateemhayah.comwww.tiemngua.comwww.waki-ase.jpwww.with-sle.jpwww.womencare.itwww.wyprzedzmeningokoki.plwww.zorgvoorjemond.nlwww.zwp-3z.gsk.comwww.zwp-dev.gsk.comwww.zwp-uat.gsk.comwww.zwp.gsk.comwww.zyban.comwww.zyban.iewww.zyban.nlwyprzedzmeningokoki.plzorgvoorjemond.nlzwp-3z.gsk.comzwp-dev.gsk.comzwp-uat.gsk.comzwp.gsk.comzyban.comzyban.iezyban.nl

Fingerprint:

a35cdbdf305bc1f1a9cb5ed3c944c05dc378ee7177887064d495961bd2b84ccf

CN:

dv044.gskinternet.com

Key:

RSA-2048

Issuer:

R13

Not before:

2025-10-15 06:38

Not after:

2026-01-13 06:38

Domain summary

www.hk.gskapp.com 9 wwwnewgds.hk.gskapp.com 2 hk.gskapp.com 8

3 recorded

IP summary

34.107.181.171 2 2a02:26f0:2780:67::217:e39c 2 2a02:26f0:3500:18::1724:a29c 1 2.16.204.141 1 2a02:26f0:2780:67::217:e391 1 2.16.204.144 1 2.16.183.102 1

7 recorded

Domain hk.gskapp.com

Germany

Software information

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Domain summary

IP summary