Domain link.shopxchange.com
United States
Software information
Kestrel
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-31 19:42
Last seen 2026-02-02 01:49
Open for 93 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354948ee7b5616bcc254276042be471a9fb664f2643fPublic Swagger UI/API detected at path: /swagger/index.html - sample paths: DELETE /Account/{id} DELETE /App/deleteApiKey DELETE /App/{id}/removeFromDomain DELETE /Domain/{id} DELETE /users/{userId}/roles/{roleId}/apps/{appId} DELETE /users/{userId}/roles/{roleId}/organizations/{organizationId} GET /.well-known/{path} GET /App/all GET /App/list GET /App/{id} GET /Domain GET /Domain/{id}/verify GET /Link/{id} GET /Link/{id}/{fileName} GET /Organization/all GET /Organization/list GET /Organization/{id} GET /Roles GET /StoreFingerprint/keys GET /Subscription/checkout GET /Subscription/list GET /Subscription/manage GET /Subscription/pricing GET /Subscription/update GET /User GET /User/list GET /users/{userId}/roles/apps GET /users/{userId}/roles/organizations POST /App POST /App/{id}/addToDomain POST /App/{id}/generateApiKey POST /App/{id}/removeUserFromApp POST /Docs/webhook POST /Domain/{id}/renew POST /Link POST /Link/checkdeferred POST /Organization POST /Organization/{id}/removeUserFromOrg POST /StoreFingerprint POST /StoreFingerprint/key/value POST /Subscription/webhook POST /User/invite POST /apps/{appId}/users/{userId}/roles/{roleId} POST /organizations/{organizationId}/users/{userId}/roles/{roleId} PUT /Roles/users/{userId}/apps/{appId} PUT /Roles/users/{userId}/organizations/{orgId}Found on 2026-02-02 01:49
-
-
Open service 40.119.12.13:443 · link.shopxchange.com
2026-01-09 15:16
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 09 Jan 2026 15:17:54 GMT Server: Kestrel Request-Context: appId=cid-v1:7c6ed08f-c0c7-4b7b-92f9-f5e0d4e66325 x-documentation-url: https://example.readme.com/logs/33a88aff-f5b7-4a9b-96c9-92bfa0e51f83
Found 2026-01-09 by HttpPluginCreate report
-
Open service 40.119.12.13:443 · link.shopxchange.com
2026-01-02 12:10
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 02 Jan 2026 12:10:19 GMT Server: Kestrel Request-Context: appId=cid-v1:7c6ed08f-c0c7-4b7b-92f9-f5e0d4e66325 x-documentation-url: https://example.readme.com/logs/a58683a1-00d1-45dc-ae6d-75a66748be87
Found 2026-01-02 by HttpPluginCreate report
-
Open service 40.119.12.13:443 · link.shopxchange.com
2025-12-23 02:10
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Tue, 23 Dec 2025 02:10:40 GMT Server: Kestrel Request-Context: appId=cid-v1:7c6ed08f-c0c7-4b7b-92f9-f5e0d4e66325 x-documentation-url: https://example.readme.com/logs/89c9cc43-f6dc-4250-a880-ac7c5e0b238d
Found 2025-12-23 by HttpPluginCreate report
-
Open service 40.119.12.13:443 · link.shopxchange.com
2025-12-20 21:46
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Sat, 20 Dec 2025 21:46:44 GMT Server: Kestrel Request-Context: appId=cid-v1:7c6ed08f-c0c7-4b7b-92f9-f5e0d4e66325 x-documentation-url: https://example.readme.com/logs/9a3436e9-4195-4df0-8207-f6e58de96ef2
Found 2025-12-20 by HttpPluginCreate report