cloudflare
tcp/443 tcp/8443
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
Public Swagger UI/API detected at path: /swagger/index.html
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
Public Swagger UI/API detected at path: /swagger/index.html
Open service 162.159.36.5:443 · jpntt.lxc.jjfly.cloud
2026-01-23 14:44
HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 14:44:20 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 440
Connection: close
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=JPeo080civGC2bfA1PWksy5JrL6IVw94amsKQ1dNEh83YwlGzvJOTFqlqmmFuDFXh2jaa9hCPnUUT1h55WHQLqEY1WdDCy6PschCN6b4yhD5YlX3kQ%3D%3D"}]}
Server: cloudflare
CF-RAY: 9c28117f2f57b908-AMS
alt-svc: h3=":443"; ma=86400
{"code":200,"msg":"success","data":{"arch":"amd64","author":"xkatld","description":"主流财务系统对接支持,提供完整的Web管理界面与RESTful API","distribution":"Debian GNU/Linux 11 (bullseye)","docs":"/swagger/index.html","kernel":"6.12.49-rt-x64v2-xanmod1","lxd_version":"Client version: 6.19\nServer version: 6.19","name":"lxdapi","os":"linux","project":"https://github.com/xkatld/lxdapi-web-server","version":"v2.0.2"}}
Open service 162.159.36.5:8443 · jpntt.lxc.jjfly.cloud
2026-01-22 20:21
HTTP/1.1 200 OK
Date: Thu, 22 Jan 2026 20:21:08 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 440
Connection: close
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=25,cfOrigin;dur=727
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=XDmVy1lUqqqQw%2B2xnVBU0YUkIUiCPvwAJGkk%2FS26Jv5Mb4OuePnFypBo3TSIXyT1OKVVInaiJanlnpafzfbwMZiZQ8c%2FAs%2Bqb1ZgejCWXe1VWUNnQA%3D%3D"}]}
Server: cloudflare
CF-RAY: 9c21c1828e7dabc7-YYZ
alt-svc: h3=":8443"; ma=86400
{"code":200,"msg":"success","data":{"arch":"amd64","author":"xkatld","description":"主流财务系统对接支持,提供完整的Web管理界面与RESTful API","distribution":"Debian GNU/Linux 11 (bullseye)","docs":"/swagger/index.html","kernel":"6.12.49-rt-x64v2-xanmod1","lxd_version":"Client version: 6.19\nServer version: 6.19","name":"lxdapi","os":"linux","project":"https://github.com/xkatld/lxdapi-web-server","version":"v2.0.2"}}