Domain lmpatientmanager.green
The Netherlands
Software information
Kestrel
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-12-22 08:19
Last seen 2026-02-09 19:24
Open for 49 days-
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2026-02-09 19:24
-
-
Open service 13.69.68.21:443 ยท lmpatientmanager.green
2026-01-23 14:00
HTTP/1.1 200 OK Content-Length: 2180 Connection: close Content-Type: text/html Date: Fri, 23 Jan 2026 14:01:08 GMT Server: Kestrel Last-Modified: Wed, 17 Dec 2025 23:26:37 GMT Strict-Transport-Security: max-age=5184000; includeSubDomains; preload X-Frame-Options: DENY X-Content-Type-Options: nosniff Content-Security-Policy: default-src 'none'; manifest-src 'self'; connect-src https: wss:; script-src 'self' 'wasm-unsafe-eval'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' data: https://fonts.gstatic.com; object-src 'none'; worker-src 'self' blob:; img-src 'self' data: blob:; frame-src 'self' blob:; frame-ancestors 'none'; base-uri 'self'; form-action 'self'; Page title: LM Patient Manager <!doctype html> <html lang="en"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1" /> <meta name="theme-color" content="#000000" /> <meta name="description" content="LM Patient Manager - Sleep Lab Patient Management System" /> <link rel="apple-touch-icon" href="/logo192.png" /> <link rel="preconnect" href="https://fonts.gstatic.com" /> <link href="https://fonts.googleapis.com/css2?family=Montserrat:wght@400;500;600;700&display=swap" rel="stylesheet" /> <!-- manifest.json provides metadata used when your web app is installed on a user's mobile device or desktop. See https://developers.google.com/web/fundamentals/web-app-manifest/ --> <link rel="manifest" href="/manifest.json" /> <!-- Notice the use of %PUBLIC_URL% in the tags above. It will be replaced with the URL of the `public` folder during the build. Only files inside the `public` folder can be referenced from the HTML. Unlike "/favicon.ico" or "favicon.ico", "%PUBLIC_URL%/favicon.ico" will work correctly both with client-side routing and a non-root public URL. Learn how to configure a non-root public URL by running `npm run build`. --> <title>LM Patient Manager</title> <script src="/knockout_global.js"></script> <script type="module" crossorigin src="/assets/index-DL5y-4SI.js"></script> <link rel="modulepreload" crossorigin href="/assets/@mui-4rJ2PIP8.js"> <link rel="modulepreload" crossorigin href="/assets/lottie-web-BNH9Wz0o.js"> <link rel="stylesheet" crossorigin href="/assets/index-BtsmYU3z.css"> </head> <body> <noscript>You need to enable JavaScript to run this app.</noscript> <div id="root"></div> <!-- This HTML file is a template. If you open it directly in the browser, you will see an empty page. You can add webfonts, meta tags, or analytics to this file. The build step will place the bundled scripts into the <body> tag. To begin the development, run `npm start` or `yarn start`. To create a production bundle, use `npm run build` or `yarn build`. --> </body> </html>Found 2026-01-23 by HttpPluginCreate report