Domain horizon-api.it.elemis.com
United Kingdom
Fic Shareco Limited
  • GraphQL introspection is enabled.
    First seen 2025-10-26 13:08
    Last seen 2026-01-02 17:11
    Open for 68 days

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa3a311618f5ec24e9d90efa5db469c8013969e270c

      GraphQL introspection enabled at /graphql
Types: 583 (by kind: ENUM: 64, INPUT_OBJECT: 71, INTERFACE: 3, OBJECT: 411, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)
      Found on 2026-01-02 17:11
      1.0 MBytes

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa3676ae273502c2ff12b668e8771d8f24770ad3660

      GraphQL introspection enabled at /graphql
Types: 582 (by kind: ENUM: 63, INPUT_OBJECT: 71, INTERFACE: 3, OBJECT: 411, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)
      Found on 2025-12-18 13:14
      1.0 MBytes

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa32bbedf6cbed9f7f0e2ea791c185768708d356c87

      GraphQL introspection enabled at /graphql
Types: 580 (by kind: ENUM: 63, INPUT_OBJECT: 71, INTERFACE: 3, OBJECT: 409, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)
      Found on 2025-12-16 09:03
      1.0 MBytes

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3

      GraphQL introspection enabled at /graphql
      Found on 2025-12-10 14:40

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa39ccfcbbfeb4d8f0d088f330b5236aae3d5876c9c

      GraphQL introspection enabled at /graphql
Types: 577 (by kind: ENUM: 63, INPUT_OBJECT: 71, INTERFACE: 3, OBJECT: 406, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)
      Found on 2025-11-23 15:25
      1.0 MBytes

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa3a765db2ba7327b69144cd2efe767045f2e872f28

      GraphQL introspection enabled at /graphql
Types: 575 (by kind: ENUM: 63, INPUT_OBJECT: 71, INTERFACE: 3, OBJECT: 404, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)
      Found on 2025-11-16 22:25
      993.0 kBytes
    Create report

  • Open service 31.177.19.30:443 · horizon-api.it.elemis.com

    2026-01-09 17:30 

    HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 31.177.19.30:443 · horizon-api.it.elemis.com

    2026-01-02 17:11 

    HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 31.177.19.30:443 · horizon-api.it.elemis.com

    2025-12-30 12:04 

    HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>
    Found 2025-12-30 by HttpPlugin
    Create report

  • Open service 185.217.107.30:443 · horizon-api.it.elemis.com

    2025-12-23 13:16 

    HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>
    Found 2025-12-23 by HttpPlugin
    Create report

  • Open service 31.177.19.30:443 · horizon-api.it.elemis.com

    2025-12-22 13:18 

    HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>
    Found 2025-12-22 by HttpPlugin
    Create report

  • Open service 31.177.19.30:443 · horizon-api.it.elemis.com

    2025-12-20 12:51 

    HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>
    Found 2025-12-20 by HttpPlugin
    Create report
horizon-api.it.elemis.com
Fingerprint:
3d8ba143dd064292cec9272006e2200e621548fef8f98d83abf4bcc49cb6517e
CN:
horizon-api.it.elemis.com
Key:
RSA-2048
Issuer:
R13
Not before:
2025-12-23 12:18
Not after:
2026-03-23 12:18
horizon-api.it.elemis.com
Fingerprint:
2fa39ff23b2423d0596db0e7fc32199fc04fa48061a870e2e8cfe960fe7bf4d0
CN:
horizon-api.it.elemis.com
Key:
RSA-2048
Issuer:
R12
Not before:
2025-10-26 15:04
Not after:
2026-01-24 15:04
horizon-api.it.elemis.com
Fingerprint:
99ea11f2b834a33a0f52309dd6854acf2c6592804240427c8ab2acdb5594d7fa
CN:
horizon-api.it.elemis.com
Key:
RSA-2048
Issuer:
R13
Not before:
2025-10-26 12:09
Not after:
2026-01-24 12:09
Domain summary

horizon-api.it.elemis.com 11

1 recorded
IP summary

31.177.19.30 2 185.217.107.30 1

2 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice