GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa36e0f6d4337ebccc1f6d7a5a1f108b783942b1d7e
GraphQL introspection enabled at /graphql Types: 414 (by kind: ENUM: 27, INPUT_OBJECT: 97, INTERFACE: 20, OBJECT: 265, SCALAR: 5) Operations: - Query: Query | fields: afterpayConfig, amGetSlider, amGetSliderWidget, amOrderList, amfeaturedWidget - Mutation: Mutation | fields: addBundleProductsToCart, addConfigurableProductsToCart, addDownloadableProductsToCart, addGiftMessageForOrderItems, addGiftMessageForWholeOrder Directives: deprecated, include, skip (total: 3) Detected: Magento
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa36e0f6d4337ebccc1f6d7a5a1f108b78354ccfb53
GraphQL introspection enabled at /graphql Types: 414 (by kind: ENUM: 27, INPUT_OBJECT: 97, INTERFACE: 20, OBJECT: 265, SCALAR: 5) Operations: - Query: Query | fields: afterpayConfig, amGetSlider, amGetSliderWidget, amOrderList, amfeaturedWidget - Mutation: Mutation | fields: addBundleProductsToCart, addConfigurableProductsToCart, addDownloadableProductsToCart, addGiftMessageForOrderItems, addGiftMessageForWholeOrder Directives: deprecated, include, skip (total: 3)
Open service 172.66.43.92:443 ยท indigenouspromotions.com.au
2026-01-23 02:21
HTTP/1.1 301 Moved Permanently Date: Fri, 23 Jan 2026 02:21:42 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close CF-RAY: 9c23d1af39493a80-FRA Set-Cookie: PHPSESSID=sfmo3rm84soh07ji4aotdpl2s5; expires=Fri, 23-Jan-2026 03:21:41 GMT; Max-Age=3600; path=/; domain=indigenouspromotions.com.au; secure; HttpOnly; SameSite=Lax Set-Cookie: _sbp=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.indigenouspromotions.com.au; secure; SameSite=Lax location: https://www.indigenouspromotions.com.au/ pragma: no-cache Cache-Control: max-age=0, must-revalidate, no-cache, no-store expires: Thu, 23 Jan 2025 02:21:41 GMT