Domain jdscshopapi.554488.com
China
Software information
nginx
tcp/80
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-12-09 13:36
Last seen 2026-02-09 23:51
Open for 62 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354990533d9c6f7da37badaea4aff667bb1dc3de9534Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /VipCardAPI/VipCardService/ApplyPlusMembershipByFree GET /VipCardAPI/VipCardService/ApplyPlusMembershipByPay GET /VipCardAPI/VipCardService/DoVipCardActivityPoints GET /VipCardAPI/VipCardService/GetCardInfo GET /VipCardAPI/VipCardService/GetVipCardActivityPointsList GET /VipCardAPI/VipCardService/GetVipStatus GET /api/PaydoWX/PayDo GET /api/PaydoWX/refundPayDo GET /api/PaydoZfb/PayDo GET /api/WxOpen/ShareAppWxPageCode GET /api/WxOpen/ShareAppWxQrCode GET /api/WxOpen/ShareAppWxSpQrCode GET /api/WxOpen/WxLoginout GET /api/WxOpen/WxReceive GET /sAppAPI/AppInfo/CheckUpdate GET /sAppAPI/AppInfo/CheckUpdateIos GET /sAppAPI/Area/GetSpikeBanner GET /sAppAPI/Area/GetTuangouBanner GET /sAppAPI/Cart/CartList GET /sAppAPI/Cart/CartLists GET /sAppAPI/Category/GetCategoryList GET /sAppAPI/Good/GetBrandList GET /sAppAPI/Good/GetGoodSpecList GET /sAppAPI/Good/GetGoodSpecList_TuanGou GET /sAppAPI/Good/GetKeyWords GET /sAppAPI/Good/GetPriceList GET /sAppAPI/Home/DailySign GET /sAppAPI/Home/GetBalanceDetails GET /sAppAPI/Home/GetExclusiveDetails GET /sAppAPI/Home/GetGoldDetails GET /sAppAPI/Home/GetMemberInfo GET /sAppAPI/Home/GetMyshare GET /sAppAPI/Home/GetMyshareList GET /sAppAPI/Home/GetPointsDetails GET /sAppAPI/Home/GetUserCouponList GET /sAppAPI/Home/GetVipMoneyDetails GET /sAppAPI/Home/MyCollectionList GET /sAppAPI/Home/MyFanliRecord GET /sAppAPI/Index/IndexBlockPic GET /sAppAPI/Index/check_app_time GET /sAppAPI/IntegralMall/GetBannerList GET /sAppAPI/IntegralMall/GetCategoryList GET /sAppAPI/IntegralMall/GetGoodsDetail GET /sAppAPI/OrderHome/OperateOrderCancel GET /sAppAPI/OrderHome/Order_Pay GET /sAppAPI/OrderHome/Order_wuliu GET /sAppAPI/OrderHome/refun_reasonList GET /sAppAPI/OrderHome/refund_applySubmit GET /sAppAPI/Pay/CouponSearch GET /sAppAPI/Pay/DoOrderPay GET /sAppAPI/Pay/GetOrderSumMoney GET /sAppAPI/ServiceCenter/GetServiceList GET /sAppAPI/Shop/GetCustomerService GET /sAppAPI/Shop/GetHomeNavIcon GET /sAppAPI/Shop/GetShopCartList GET /sAppAPI/Shop/GetShopGoodsList GET /sAppAPI/Shop/GetShopGoodsSear GET /sAppAPI/Shop/GetShopIndex GET /sAppAPI/Shop/GetShopInfo GET /sAppAPI/Shop/GetShopSortList POST /VipCardAPI/VipCardService/CancelVipCardActivity POST /VipCardAPI/VipCardService/CancelVipCardActivityPoints POST /VipCardAPI/VipCardService/Coupon_Check POST /VipCardAPI/VipCardService/Coupon_Use POST /VipCardAPI/VipCardService/Coupon_return POST /VipCardAPI/VipCardService/Coupon_return_confirm POST /VipCardAPI/VipCardService/DoVipCardActivity POST /VipCardAPI/VipCardService/DoVipCardShareCode POST /VipCardAPI/VipCardService/GetVipCardActivityList POST /VipCardAPI/VipCardService/UpdateVipCardInfo POST /api/WxOpen/ImgWxUpload POST /api/WxOpen/WxGetSetUserInfo POST /api/WxOpen/WxMobileCodeRegister POST /api/WxOpen/WxOpenSignature POST /api/WxOpen/WxSendCode POST /api/WxOpen/WxSendMsg POST /api/WxOpen/getLivePlayerRoomDetail POST /api/WxOpen/getLivePlayerRoomList POST /sAppAPI/Area/GetSpikeGoodsList POST /sAppAPI/Area/GetTuangouGoodsList POST /sAppAPI/Cart/CartClearDo POST /sAppAPI/Cart/CartDeleteDo POST /sAppAPI/Cart/CartGoToBuy POST /sAppAPI/Cart/CartNumOperateDo POST /sAppAPI/Cart/CartSelectAllDo POST /sAppAPI/Cart/CartSelectDo POST /sAppAPI/Cart/GoodsGoToBuy POST /sAppAPI/Cart/ScoreGoToBuy POST /sAppAPI/DzOrder/GetAddressInfo POST /sAppAPI/DzOrder/GetCarGoodsList POST /sAppAPI/DzOrder/GetCity POST /sAppAPI/DzOrder/GetDefaultMobile POST /sAppAPI/DzOrder/GetGoodsMoneyAndJf POST /sAppAPI/DzOrder/GetJfDetail POST /sAppAPI/DzOrder/GetMyAddressList POST /sAppAPI/DzOrder/GetMyCheckedAddress POST /sAppAPI/DzOrder/GetYhqList POST /sAppAPI/DzOrder/SetAddAddress POST /sAppAPI/DzOrder/SetDefaultAddress POST /sAppAPI/DzOrder/SetDeleteAddress POST /sAppAPI/DzOrder/SetEditAddress POST /sAppAPI/DzOrder/SetOrderSubmit POST /sAppAPI/Good/GetAreaGoodslist POST /sAppAPI/Good/GetAreaGoodslistpg POST /sAppAPI/Good/GetGoodInfo POST /sAppAPI/Good/GetPingLunList POST /sAppAPI/Good/GetScoreGoodInfo POST /sAppAPI/Good/SearchGoods POST /sAppAPI/Good/SearchScoreGoods POST /sAppAPI/Good/collectDo POST /sAppAPI/Home/ImgUpload POST /sAppAPI/Home/UploadReviewImg POST /sAppAPI/Index/IndexGoodsList POST /sAppAPI/IntegralMall/GetGoodsList POST /sAppAPI/IntegralMall/GetOrderList POST /sAppAPI/IntegralMall/GuessYouLike POST /sAppAPI/News/Getfwbtxt POST /sAppAPI/Order/Activity_Select POST /sAppAPI/Order/Goods_Bus POST /sAppAPI/Order/Ji_Feng POST /sAppAPI/Order/Jin_Bi POST /sAppAPI/Order/Order_Submit POST /sAppAPI/Order/Shop_Add POST /sAppAPI/Order/Shop_All POST /sAppAPI/Order/Shop_Default POST /sAppAPI/Order/Shop_Delete POST /sAppAPI/Order/Shop_Detail POST /sAppAPI/Order/Shop_My POST /sAppAPI/Order/Shop_Time POST /sAppAPI/Order/WlJsd_UserAdreeAdd POST /sAppAPI/Order/WlJsd_UserAdreeDetle POST /sAppAPI/Order/WlJsd_UserAdreesList POST /sAppAPI/Order/Wl_JsdAdrees POST /sAppAPI/Order/Wl_JsdIfShow POST /sAppAPI/Order/Wl_JsdTimeList POST /sAppAPI/Order/Wl_YouFei POST /sAppAPI/Order/Yhq_List POST /sAppAPI/OrderHome/GetHomeOrderDetail POST /sAppAPI/OrderHome/GetHomeOrderList POST /sAppAPI/OrderHome/GetHomeOrderList_jifen POST /sAppAPI/OrderHome/GetRefundGoodsList POST /sAppAPI/OrderHome/operateOrderPingLun POST /sAppAPI/OrderHome/operateOrderShouHou POST /sAppAPI/OrderHome/pingLunInitialList POST /sAppAPI/OrderHome/shouHouInitialList POST /sAppAPI/Shop/GetShopOrderList POST /sAppAPI/Shop/ShopCartDeleteDo POST /sAppAPI/Shop/ShopCartNumOperateDo POST /sAppAPI/Shop/ShopGoodsGoToBuy
Found on 2026-02-09 23:51 -
Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
Found on 2025-12-09 13:36 -
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2025-12-09 13:36
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-12-09 13:36
Last seen 2026-02-07 00:45
Open for 59 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354990533d9c6f7da37badaea4aff667bb1dc3de9534Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /VipCardAPI/VipCardService/ApplyPlusMembershipByFree GET /VipCardAPI/VipCardService/ApplyPlusMembershipByPay GET /VipCardAPI/VipCardService/DoVipCardActivityPoints GET /VipCardAPI/VipCardService/GetCardInfo GET /VipCardAPI/VipCardService/GetVipCardActivityPointsList GET /VipCardAPI/VipCardService/GetVipStatus GET /api/PaydoWX/PayDo GET /api/PaydoWX/refundPayDo GET /api/PaydoZfb/PayDo GET /api/WxOpen/ShareAppWxPageCode GET /api/WxOpen/ShareAppWxQrCode GET /api/WxOpen/ShareAppWxSpQrCode GET /api/WxOpen/WxLoginout GET /api/WxOpen/WxReceive GET /sAppAPI/AppInfo/CheckUpdate GET /sAppAPI/AppInfo/CheckUpdateIos GET /sAppAPI/Area/GetSpikeBanner GET /sAppAPI/Area/GetTuangouBanner GET /sAppAPI/Cart/CartList GET /sAppAPI/Cart/CartLists GET /sAppAPI/Category/GetCategoryList GET /sAppAPI/Good/GetBrandList GET /sAppAPI/Good/GetGoodSpecList GET /sAppAPI/Good/GetGoodSpecList_TuanGou GET /sAppAPI/Good/GetKeyWords GET /sAppAPI/Good/GetPriceList GET /sAppAPI/Home/DailySign GET /sAppAPI/Home/GetBalanceDetails GET /sAppAPI/Home/GetExclusiveDetails GET /sAppAPI/Home/GetGoldDetails GET /sAppAPI/Home/GetMemberInfo GET /sAppAPI/Home/GetMyshare GET /sAppAPI/Home/GetMyshareList GET /sAppAPI/Home/GetPointsDetails GET /sAppAPI/Home/GetUserCouponList GET /sAppAPI/Home/GetVipMoneyDetails GET /sAppAPI/Home/MyCollectionList GET /sAppAPI/Home/MyFanliRecord GET /sAppAPI/Index/IndexBlockPic GET /sAppAPI/Index/check_app_time GET /sAppAPI/IntegralMall/GetBannerList GET /sAppAPI/IntegralMall/GetCategoryList GET /sAppAPI/IntegralMall/GetGoodsDetail GET /sAppAPI/OrderHome/OperateOrderCancel GET /sAppAPI/OrderHome/Order_Pay GET /sAppAPI/OrderHome/Order_wuliu GET /sAppAPI/OrderHome/refun_reasonList GET /sAppAPI/OrderHome/refund_applySubmit GET /sAppAPI/Pay/CouponSearch GET /sAppAPI/Pay/DoOrderPay GET /sAppAPI/Pay/GetOrderSumMoney GET /sAppAPI/ServiceCenter/GetServiceList GET /sAppAPI/Shop/GetCustomerService GET /sAppAPI/Shop/GetHomeNavIcon GET /sAppAPI/Shop/GetShopCartList GET /sAppAPI/Shop/GetShopGoodsList GET /sAppAPI/Shop/GetShopGoodsSear GET /sAppAPI/Shop/GetShopIndex GET /sAppAPI/Shop/GetShopInfo GET /sAppAPI/Shop/GetShopSortList POST /VipCardAPI/VipCardService/CancelVipCardActivity POST /VipCardAPI/VipCardService/CancelVipCardActivityPoints POST /VipCardAPI/VipCardService/Coupon_Check POST /VipCardAPI/VipCardService/Coupon_Use POST /VipCardAPI/VipCardService/Coupon_return POST /VipCardAPI/VipCardService/Coupon_return_confirm POST /VipCardAPI/VipCardService/DoVipCardActivity POST /VipCardAPI/VipCardService/DoVipCardShareCode POST /VipCardAPI/VipCardService/GetVipCardActivityList POST /VipCardAPI/VipCardService/UpdateVipCardInfo POST /api/WxOpen/ImgWxUpload POST /api/WxOpen/WxGetSetUserInfo POST /api/WxOpen/WxMobileCodeRegister POST /api/WxOpen/WxOpenSignature POST /api/WxOpen/WxSendCode POST /api/WxOpen/WxSendMsg POST /api/WxOpen/getLivePlayerRoomDetail POST /api/WxOpen/getLivePlayerRoomList POST /sAppAPI/Area/GetSpikeGoodsList POST /sAppAPI/Area/GetTuangouGoodsList POST /sAppAPI/Cart/CartClearDo POST /sAppAPI/Cart/CartDeleteDo POST /sAppAPI/Cart/CartGoToBuy POST /sAppAPI/Cart/CartNumOperateDo POST /sAppAPI/Cart/CartSelectAllDo POST /sAppAPI/Cart/CartSelectDo POST /sAppAPI/Cart/GoodsGoToBuy POST /sAppAPI/Cart/ScoreGoToBuy POST /sAppAPI/DzOrder/GetAddressInfo POST /sAppAPI/DzOrder/GetCarGoodsList POST /sAppAPI/DzOrder/GetCity POST /sAppAPI/DzOrder/GetDefaultMobile POST /sAppAPI/DzOrder/GetGoodsMoneyAndJf POST /sAppAPI/DzOrder/GetJfDetail POST /sAppAPI/DzOrder/GetMyAddressList POST /sAppAPI/DzOrder/GetMyCheckedAddress POST /sAppAPI/DzOrder/GetYhqList POST /sAppAPI/DzOrder/SetAddAddress POST /sAppAPI/DzOrder/SetDefaultAddress POST /sAppAPI/DzOrder/SetDeleteAddress POST /sAppAPI/DzOrder/SetEditAddress POST /sAppAPI/DzOrder/SetOrderSubmit POST /sAppAPI/Good/GetAreaGoodslist POST /sAppAPI/Good/GetAreaGoodslistpg POST /sAppAPI/Good/GetGoodInfo POST /sAppAPI/Good/GetPingLunList POST /sAppAPI/Good/GetScoreGoodInfo POST /sAppAPI/Good/SearchGoods POST /sAppAPI/Good/SearchScoreGoods POST /sAppAPI/Good/collectDo POST /sAppAPI/Home/ImgUpload POST /sAppAPI/Home/UploadReviewImg POST /sAppAPI/Index/IndexGoodsList POST /sAppAPI/IntegralMall/GetGoodsList POST /sAppAPI/IntegralMall/GetOrderList POST /sAppAPI/IntegralMall/GuessYouLike POST /sAppAPI/News/Getfwbtxt POST /sAppAPI/Order/Activity_Select POST /sAppAPI/Order/Goods_Bus POST /sAppAPI/Order/Ji_Feng POST /sAppAPI/Order/Jin_Bi POST /sAppAPI/Order/Order_Submit POST /sAppAPI/Order/Shop_Add POST /sAppAPI/Order/Shop_All POST /sAppAPI/Order/Shop_Default POST /sAppAPI/Order/Shop_Delete POST /sAppAPI/Order/Shop_Detail POST /sAppAPI/Order/Shop_My POST /sAppAPI/Order/Shop_Time POST /sAppAPI/Order/WlJsd_UserAdreeAdd POST /sAppAPI/Order/WlJsd_UserAdreeDetle POST /sAppAPI/Order/WlJsd_UserAdreesList POST /sAppAPI/Order/Wl_JsdAdrees POST /sAppAPI/Order/Wl_JsdIfShow POST /sAppAPI/Order/Wl_JsdTimeList POST /sAppAPI/Order/Wl_YouFei POST /sAppAPI/Order/Yhq_List POST /sAppAPI/OrderHome/GetHomeOrderDetail POST /sAppAPI/OrderHome/GetHomeOrderList POST /sAppAPI/OrderHome/GetHomeOrderList_jifen POST /sAppAPI/OrderHome/GetRefundGoodsList POST /sAppAPI/OrderHome/operateOrderPingLun POST /sAppAPI/OrderHome/operateOrderShouHou POST /sAppAPI/OrderHome/pingLunInitialList POST /sAppAPI/OrderHome/shouHouInitialList POST /sAppAPI/Shop/GetShopOrderList POST /sAppAPI/Shop/ShopCartDeleteDo POST /sAppAPI/Shop/ShopCartNumOperateDo POST /sAppAPI/Shop/ShopGoodsGoToBuy
Found on 2026-02-07 00:45
-
-
Open service 116.131.57.65:80 · jdscshopapi.554488.com
2026-02-07 00:45
HTTP/1.1 301 Moved Permanently Server: nginx Date: Sat, 07 Feb 2026 00:46:02 GMT Location: index.html X-Powered-By: ASP.NET X-Cache-Lookup: Cache Miss X-Cache-Lookup: Hit From Upstream Cluster Transfer-Encoding: chunked X-NWS-LOG-UUID: 9259549645169876980 Connection: close X-Cache-Lookup: Cache Miss
Found 2026-02-07 by HttpPluginCreate report
-
Open service 42.56.64.131:80 · jdscshopapi.554488.com
2026-02-07 00:45
HTTP/1.1 301 Moved Permanently Server: nginx Date: Sat, 07 Feb 2026 00:46:02 GMT Location: index.html X-Powered-By: ASP.NET X-Cache-Lookup: Cache Miss X-Cache-Lookup: Hit From Upstream Cluster Transfer-Encoding: chunked X-NWS-LOG-UUID: 2843676848812042715 Connection: close X-Cache-Lookup: Cache Miss
Found 2026-02-07 by HttpPluginCreate report