LeakIX - Host kdxconnect-api-check.traxia.net

Domain kdxconnect-api-check.traxia.net

Indonesia

PT Jala Lintas Media

Software information

Microsoft-IIS 10.0

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 103.108.131.19
Domain: kdxconnect-api-check.traxia.net
Port: 443
URL: https://kdxconnect-api-check.traxia.net

First seen 2025-10-29 03:24
Last seen 2026-02-02 06:02
Open for 96 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354985979bf61abd8e1456ea1979ab4d2ae55f8fe095

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/Article/Retrieve
GET /api/Authentication/ReturnTokenStatus
GET /api/Crop/ListType
GET /api/Crop/ListTypeWithOAuth
GET /api/Crop/ListVariety
GET /api/Home/ReturnState
GET /api/Plot/Delete
GET /api/Plot/Retrieve
GET /api/PremiumService/Retrieve
GET /api/User/Retrieve
GET /api/WeatherForecast/Retrieve
GET /api/v2/Authentication/ReturnTokenStatus
GET /api/v2/Plot/List
POST /api/Article/Like
POST /api/Article/List
POST /api/Article/NewsList
POST /api/Article/View
POST /api/Authentication/FarmerDataChallenge
POST /api/Authentication/OTPChallenge
POST /api/Authentication/OTPEmailChallenge
POST /api/Authentication/OTPResetPasswordChallenge
POST /api/Authentication/PhoneNumberChallenge
POST /api/Authentication/RequestEmailVerification
POST /api/Authentication/ResetEmailAddressChallenge
POST /api/Authentication/ResetPasswordChallenge
POST /api/Cultivation/Create
POST /api/Cultivation/Update
POST /api/District/List
POST /api/District/ListWithOAuth
POST /api/Feedback/Create
POST /api/Oauth/Link
POST /api/Oauth/Unlink
POST /api/Oauth/ValidateFirebaseLogin
POST /api/Oauth/ValidateFirebaseSignUp
POST /api/Oauth/ValidateLineLogin
POST /api/Oauth/ValidateLineSignUp
POST /api/Plot/Create
POST /api/Plot/List
POST /api/Plot/Update
POST /api/PremiumService/Create
POST /api/Province/List
POST /api/Province/ListWithOAuth
POST /api/PushNotification/Read
POST /api/SecretQuestion/List
POST /api/SubDistrict/List
POST /api/SubDistrict/ListWithOAuth
POST /api/User/Delete
POST /api/User/List
POST /api/User/OAuthSignUp
POST /api/User/SendOTPSignUp
POST /api/User/SignUp
POST /api/User/UpdateDismissTimeStamp
POST /api/User/UpdateFCMRegID
POST /api/User/UpdateNewEmailAddress
POST /api/User/UpdateNewPhoneNumber
POST /api/User/UpdatePassword
POST /api/User/UpdateProfile
POST /api/WeatherForecast/List
POST /api/v2/Authentication/FarmerDataChallenge
POST /api/v2/Authentication/OTPChallenge
POST /api/v2/Authentication/OTPEmailChallenge
POST /api/v2/Authentication/OTPResetPasswordChallenge
POST /api/v2/Authentication/PhoneNumberChallenge
POST /api/v2/Authentication/RequestEmailVerification
POST /api/v2/Authentication/ResetEmailAddressChallenge
POST /api/v2/Authentication/ResetPasswordChallenge
POST /api/v2/User/SignUp
POST /api/v2/User/UpdateProfile

Found on 2026-02-02 06:02

Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d6048396e693e610ea95c90e670d4b15fcaae9c9482

Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /api/Article/Retrieve
GET /api/Authentication/ReturnTokenStatus
GET /api/Crop/ListType
GET /api/Crop/ListTypeWithOAuth
GET /api/Crop/ListVariety
GET /api/Home/ReturnState
GET /api/Plot/Delete
GET /api/Plot/Retrieve
GET /api/PremiumService/Retrieve
GET /api/User/Retrieve
GET /api/WeatherForecast/Retrieve
GET /api/v2/Authentication/ReturnTokenStatus
GET /api/v2/Plot/List
POST /api/Article/Like
POST /api/Article/List
POST /api/Article/NewsList
POST /api/Article/View
POST /api/Authentication/FarmerDataChallenge
POST /api/Authentication/OTPChallenge
POST /api/Authentication/OTPEmailChallenge
POST /api/Authentication/OTPResetPasswordChallenge
POST /api/Authentication/PhoneNumberChallenge
POST /api/Authentication/RequestEmailVerification
POST /api/Authentication/ResetEmailAddressChallenge
POST /api/Authentication/ResetPasswordChallenge
POST /api/Cultivation/Create
POST /api/Cultivation/Update
POST /api/District/List
POST /api/District/ListWithOAuth
POST /api/Feedback/Create
POST /api/Oauth/Link
POST /api/Oauth/Unlink
POST /api/Oauth/ValidateFirebaseLogin
POST /api/Oauth/ValidateFirebaseSignUp
POST /api/Oauth/ValidateLineLogin
POST /api/Oauth/ValidateLineSignUp
POST /api/Plot/Create
POST /api/Plot/List
POST /api/Plot/Update
POST /api/PremiumService/Create
POST /api/Province/List
POST /api/Province/ListWithOAuth
POST /api/PushNotification/Read
POST /api/SecretQuestion/List
POST /api/SubDistrict/List
POST /api/SubDistrict/ListWithOAuth
POST /api/User/Delete
POST /api/User/List
POST /api/User/OAuthSignUp
POST /api/User/SendOTPSignUp
POST /api/User/SignUp
POST /api/User/UpdateDismissTimeStamp
POST /api/User/UpdateFCMRegID
POST /api/User/UpdateNewEmailAddress
POST /api/User/UpdateNewPhoneNumber
POST /api/User/UpdatePassword
POST /api/User/UpdateProfile
POST /api/WeatherForecast/List
POST /api/v2/Authentication/FarmerDataChallenge
POST /api/v2/Authentication/OTPChallenge
POST /api/v2/Authentication/OTPEmailChallenge
POST /api/v2/Authentication/OTPResetPasswordChallenge
POST /api/v2/Authentication/PhoneNumberChallenge
POST /api/v2/Authentication/RequestEmailVerification
POST /api/v2/Authentication/ResetEmailAddressChallenge
POST /api/v2/Authentication/ResetPasswordChallenge
POST /api/v2/User/SignUp
POST /api/v2/User/UpdateProfile

Found on 2025-12-25 08:00

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2025-12-10 08:28

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 103.108.131.19
Domain: kdxconnect-api-check.traxia.net
Port: 80
URL: http://kdxconnect-api-check.traxia.net

First seen 2025-10-29 03:24
Last seen 2026-02-09 05:11
Open for 103 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354985979bf61abd8e1456ea1979ab4d2ae55f8fe095

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/Article/Retrieve
GET /api/Authentication/ReturnTokenStatus
GET /api/Crop/ListType
GET /api/Crop/ListTypeWithOAuth
GET /api/Crop/ListVariety
GET /api/Home/ReturnState
GET /api/Plot/Delete
GET /api/Plot/Retrieve
GET /api/PremiumService/Retrieve
GET /api/User/Retrieve
GET /api/WeatherForecast/Retrieve
GET /api/v2/Authentication/ReturnTokenStatus
GET /api/v2/Plot/List
POST /api/Article/Like
POST /api/Article/List
POST /api/Article/NewsList
POST /api/Article/View
POST /api/Authentication/FarmerDataChallenge
POST /api/Authentication/OTPChallenge
POST /api/Authentication/OTPEmailChallenge
POST /api/Authentication/OTPResetPasswordChallenge
POST /api/Authentication/PhoneNumberChallenge
POST /api/Authentication/RequestEmailVerification
POST /api/Authentication/ResetEmailAddressChallenge
POST /api/Authentication/ResetPasswordChallenge
POST /api/Cultivation/Create
POST /api/Cultivation/Update
POST /api/District/List
POST /api/District/ListWithOAuth
POST /api/Feedback/Create
POST /api/Oauth/Link
POST /api/Oauth/Unlink
POST /api/Oauth/ValidateFirebaseLogin
POST /api/Oauth/ValidateFirebaseSignUp
POST /api/Oauth/ValidateLineLogin
POST /api/Oauth/ValidateLineSignUp
POST /api/Plot/Create
POST /api/Plot/List
POST /api/Plot/Update
POST /api/PremiumService/Create
POST /api/Province/List
POST /api/Province/ListWithOAuth
POST /api/PushNotification/Read
POST /api/SecretQuestion/List
POST /api/SubDistrict/List
POST /api/SubDistrict/ListWithOAuth
POST /api/User/Delete
POST /api/User/List
POST /api/User/OAuthSignUp
POST /api/User/SendOTPSignUp
POST /api/User/SignUp
POST /api/User/UpdateDismissTimeStamp
POST /api/User/UpdateFCMRegID
POST /api/User/UpdateNewEmailAddress
POST /api/User/UpdateNewPhoneNumber
POST /api/User/UpdatePassword
POST /api/User/UpdateProfile
POST /api/WeatherForecast/List
POST /api/v2/Authentication/FarmerDataChallenge
POST /api/v2/Authentication/OTPChallenge
POST /api/v2/Authentication/OTPEmailChallenge
POST /api/v2/Authentication/OTPResetPasswordChallenge
POST /api/v2/Authentication/PhoneNumberChallenge
POST /api/v2/Authentication/RequestEmailVerification
POST /api/v2/Authentication/ResetEmailAddressChallenge
POST /api/v2/Authentication/ResetPasswordChallenge
POST /api/v2/User/SignUp
POST /api/v2/User/UpdateProfile

Found on 2026-02-09 05:11

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2025-12-24 05:52

Create report

Open service 103.108.131.19:443 · kdxconnect-api-check.traxia.net

2026-01-23 00:16

HTTP/1.1 204 No Content
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 23 Jan 2026 00:16:06 GMT
Connection: close

Found 2026-01-23 by HttpPlugin

Create report

Open service 103.108.131.19:80 · kdxconnect-api-check.traxia.net

2026-01-09 02:15

HTTP/1.1 204 No Content
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 09 Jan 2026 02:15:09 GMT
Connection: close

Found 2026-01-09 by HttpPlugin

Create report

Open service 103.108.131.19:443 · kdxconnect-api-check.traxia.net

2026-01-09 01:29

HTTP/1.1 204 No Content
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 09 Jan 2026 01:29:06 GMT
Connection: close

Found 2026-01-09 by HttpPlugin

Create report

Open service 103.108.131.19:443 · kdxconnect-api-check.traxia.net

2026-01-02 01:53

HTTP/1.1 204 No Content
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 02 Jan 2026 01:53:51 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 103.108.131.19:443 · kdxconnect-api-check.traxia.net

2025-12-23 09:38

HTTP/1.1 204 No Content
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Tue, 23 Dec 2025 09:38:07 GMT
Connection: close

Found 2025-12-23 by HttpPlugin

Create report

kdxconnect-api-check.traxia.net

Fingerprint:

a3d8387095725c97958962a86c66e86106ade29117b1265d836ba1b1e11248be

CN:

kdxconnect-api-check.traxia.net

Key:

RSA-3072

Issuer:

R13

Not before:

2025-12-24 04:53

Not after:

2026-03-24 04:53

kdxconnect-api-check.traxia.net

Fingerprint:

87776f09d03fad52870ec3afa00f20cb57be83b4ebb294d31d485a1a02af4641

CN:

kdxconnect-api-check.traxia.net

Key:

RSA-3072

Issuer:

R12

Not before:

2025-10-29 02:25

Not after:

2026-01-27 02:25

Domain summary

kdxconnect-api-check.traxia.net 9

1 recorded

IP summary

103.108.131.19 2

1 recorded