Domain magento-api.dev.qop.stannah.cloud
United States
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
IP: 13.107.246.69
Domain: magento-api.dev.qop.stannah.cloud
Port: 443
URL: https://magento-api.dev.qop.stannah.cloudFirst seen 2025-10-22 23:11
Last seen 2026-02-09 14:12
Open for 109 days-
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3GraphQL introspection enabled at /graphql
Found on 2026-02-09 14:12 -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa374c2942e74c2942e74c2942e74c2942e74c2942eGraphQL introspection enabled at /graphql Detected: Magento
Found on 2026-01-23 05:09 -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c969c15b1b4dd7192e4c05461978f1cf1271faf7GraphQL introspection enabled at /graphql Types: 949 (by kind: ENUM: 91, INPUT_OBJECT: 240, INTERFACE: 40, OBJECT: 568, SCALAR: 5, UNION: 5) Operations: - Query: Query | fields: allAvailableStores, attributesForm, attributesList, attributesMetadata, availableStores - Mutation: Mutation | fields: acceptCompanyInvitation, acceptNegotiableQuoteTemplate, addBundleProductsToCart, addConfigurableProductsToCart, addDownloadableProductsToCart Directives: deprecated, include, oneOf, skip (total: 4)
Found on 2025-12-01 05:511.4 MBytes -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33522b08dad5364aff0f52e7ae86b2bd37e4da35bGraphQL introspection enabled at /graphql Types: 954 (by kind: ENUM: 92, INPUT_OBJECT: 240, INTERFACE: 40, OBJECT: 572, SCALAR: 5, UNION: 5) Operations: - Query: Query | fields: allAvailableStores, allCartRules, allCatalogRules, allCustomerGroups, allCustomerSegments - Mutation: Mutation | fields: acceptCompanyInvitation, acceptNegotiableQuoteTemplate, addBundleProductsToCart, addConfigurableProductsToCart, addDownloadableProductsToCart Directives: deprecated, include, oneOf, skip (total: 4)
Found on 2025-11-04 10:521.4 MBytes -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c4612d4e05156fbe072e8509d319253ce04ff1beGraphQL introspection enabled at /graphql Types: 930 (by kind: ENUM: 87, INPUT_OBJECT: 236, INTERFACE: 39, OBJECT: 558, SCALAR: 5, UNION: 5) Operations: - Query: Query | fields: allAvailableStores, attributesForm, attributesList, attributesMetadata, availableStores - Mutation: Mutation | fields: acceptCompanyInvitation, acceptNegotiableQuoteTemplate, addBundleProductsToCart, addConfigurableProductsToCart, addDownloadableProductsToCart Directives: deprecated, include, oneOf, skip (total: 4)
Found on 2025-11-02 15:551.4 MBytes
-
-
Open service 13.107.246.69:443 · magento-api.dev.qop.stannah.cloud
2026-01-23 05:09
HTTP/1.1 302 Found Date: Fri, 23 Jan 2026 05:09:06 GMT Content-Length: 0 Connection: close Cache-Control: max-age=0, must-revalidate, no-cache, no-store Pragma: no-cache Expires: Thu, 23 Jan 2025 05:09:06 GMT Location: https://partner.integration-5ojmyuq-lbicjnyilsz7m.eu-3.magentosite.cloud/customer/account/login/ Vary: Accept-Encoding bluesnap.com *.cardinalcommerce.com *.kaptcha.com *.sentry.io *.google.com *.gstatic.com google.com *.fontawesome.com https://fonts.bunny.net assets.braintreegateway.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com sandbox.bluesnap.com sandbox1.bluesnap.com sandbox2.bluesnap.com sandpay.bluesnap.com ws.bluesnap.com ws1.bluesnap.com ws2.bluesnap.com pay.bluesnap.com *.cardinalcommerce.com *.kaptcha.com *.gstatic.com *.amazonaws.com https://get.geojs.io *.avada.io api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; Traceresponse: 00-188d43f4aa1cb6fad552efe123e50994-07bb27caeb51d445-01 X-Content-Type-Options: nosniff X-Debug-Info: eyJyZXRyaWVzIjowfQ== X-Frame-Options: SAMEORIGIN X-Magento-Cloud-Cache: MISS X-Magento-Cloud-Cluster: lbicjnyilsz7m-integration-5ojmyuq X-Magento-Cloud-Processor: afgu2c6e7udirelzdc4falcnfq X-Magento-Cloud-Router: qvvvzob3d4yfnxqf3p2u7slyje X-Magento-Tags: FPC X-Robots-Tag: noindex,nofollow X-Xss-Protection: 1; mode=block Set-Cookie: PHPSESSID=0939cd41652fe80bbf5e1f46669cc08b; expires=Fri, 23 Jan 2026 06:09:06 GMT; Max-Age=3600; path=/; domain=partner.integration-5ojmyuq-lbicjnyilsz7m.eu-3.magentosite.cloud; HttpOnly; SameSite=Lax Request-Context: appId=cid-v1:01cd5221-c19e-40c9-8016-8290029829e8 set-cookie: ASLBSA=0003156be30cf4524eb7eed117295c4523ca16974ac2bf7ffa4c2049f12ff8e5aaab; Path=/; Secure; HttpOnly; set-cookie: ASLBSACORS=0003156be30cf4524eb7eed117295c4523ca16974ac2bf7ffa4c2049f12ff8e5aaab; SameSite=none; Path=/; Secure; HttpOnly; x-azure-ref: 20260123T050906Z-15865bd54cdhjxr2hC1ATL7zz000000019zg00000000abc6 X-Cache: CONFIG_NOCACHE
Found 2026-01-23 by HttpPluginCreate report
-
Open service 13.107.246.69:443 · magento-api.dev.qop.stannah.cloud
2026-01-09 13:27
HTTP/1.1 302 Found Date: Fri, 09 Jan 2026 13:27:18 GMT Content-Length: 0 Connection: close Cache-Control: max-age=0, must-revalidate, no-cache, no-store Pragma: no-cache Expires: Thu, 09 Jan 2025 13:27:18 GMT Location: https://partner.integration-5ojmyuq-lbicjnyilsz7m.eu-3.magentosite.cloud/customer/account/login/ Vary: Accept-Encoding bluesnap.com *.cardinalcommerce.com *.kaptcha.com *.sentry.io *.google.com *.gstatic.com google.com *.fontawesome.com https://fonts.bunny.net assets.braintreegateway.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com sandbox.bluesnap.com sandbox1.bluesnap.com sandbox2.bluesnap.com sandpay.bluesnap.com ws.bluesnap.com ws1.bluesnap.com ws2.bluesnap.com pay.bluesnap.com *.cardinalcommerce.com *.kaptcha.com *.gstatic.com *.amazonaws.com https://get.geojs.io *.avada.io api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; Traceresponse: 00-188913046c605f1b2361dba350a01623-2921f48b98dd5d2a-01 X-Content-Type-Options: nosniff X-Debug-Info: eyJyZXRyaWVzIjowfQ== X-Frame-Options: SAMEORIGIN X-Magento-Cloud-Cache: MISS X-Magento-Cloud-Cluster: lbicjnyilsz7m-integration-5ojmyuq X-Magento-Cloud-Processor: afgu2c6e7udirelzdc4falcnfq X-Magento-Cloud-Router: qvvvzob3d4yfnxqf3p2u7slyje X-Magento-Tags: FPC X-Robots-Tag: noindex,nofollow X-Xss-Protection: 1; mode=block Set-Cookie: PHPSESSID=ddc33b215f9978bab393dde02077154f; expires=Fri, 09 Jan 2026 14:27:18 GMT; Max-Age=3600; path=/; domain=partner.integration-5ojmyuq-lbicjnyilsz7m.eu-3.magentosite.cloud; HttpOnly; SameSite=Lax Request-Context: appId=cid-v1:01cd5221-c19e-40c9-8016-8290029829e8 set-cookie: ASLBSA=0003156be30cf4524eb7eed117295c4523ca16974ac2bf7ffa4c2049f12ff8e5aaab; Path=/; Secure; HttpOnly; set-cookie: ASLBSACORS=0003156be30cf4524eb7eed117295c4523ca16974ac2bf7ffa4c2049f12ff8e5aaab; SameSite=none; Path=/; Secure; HttpOnly; x-azure-ref: 20260109T132718Z-r17955489d5xldhkhC1FRA27pc00000008c000000000rqm8 X-Cache: CONFIG_NOCACHE
Found 2026-01-09 by HttpPluginCreate report
-
Open service 13.107.246.69:443 · magento-api.dev.qop.stannah.cloud
2026-01-02 07:19
HTTP/1.1 302 Found Date: Fri, 02 Jan 2026 07:19:19 GMT Content-Length: 0 Connection: close Cache-Control: max-age=0, must-revalidate, no-cache, no-store Pragma: no-cache Expires: Thu, 02 Jan 2025 07:19:19 GMT Location: https://partner.integration-5ojmyuq-lbicjnyilsz7m.eu-3.magentosite.cloud/customer/account/login/ Vary: Accept-Encoding bluesnap.com *.cardinalcommerce.com *.kaptcha.com *.sentry.io *.google.com *.gstatic.com google.com *.fontawesome.com https://fonts.bunny.net assets.braintreegateway.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com sandbox.bluesnap.com sandbox1.bluesnap.com sandbox2.bluesnap.com sandpay.bluesnap.com ws.bluesnap.com ws1.bluesnap.com ws2.bluesnap.com pay.bluesnap.com *.cardinalcommerce.com *.kaptcha.com *.gstatic.com *.amazonaws.com https://get.geojs.io *.avada.io api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; Traceresponse: 00-1886d8dfc75b679f0f16262b8a4a015c-532078b4eb48c2aa-01 X-Content-Type-Options: nosniff X-Debug-Info: eyJyZXRyaWVzIjowfQ== X-Frame-Options: SAMEORIGIN X-Magento-Cloud-Cache: MISS X-Magento-Cloud-Cluster: lbicjnyilsz7m-integration-5ojmyuq X-Magento-Cloud-Processor: afgu2c6e7udirelzdc4falcnfq X-Magento-Cloud-Router: qvvvzob3d4yfnxqf3p2u7slyje X-Magento-Tags: FPC X-Robots-Tag: noindex,nofollow X-Xss-Protection: 1; mode=block Set-Cookie: PHPSESSID=c8a2c5bea04ed678c03ea1ab49e871e0; expires=Fri, 02 Jan 2026 08:19:19 GMT; Max-Age=3600; path=/; domain=partner.integration-5ojmyuq-lbicjnyilsz7m.eu-3.magentosite.cloud; HttpOnly; SameSite=Lax Request-Context: appId=cid-v1:01cd5221-c19e-40c9-8016-8290029829e8 set-cookie: ASLBSA=0003156be30cf4524eb7eed117295c4523ca16974ac2bf7ffa4c2049f12ff8e5aaab; Path=/; Secure; HttpOnly; set-cookie: ASLBSACORS=0003156be30cf4524eb7eed117295c4523ca16974ac2bf7ffa4c2049f12ff8e5aaab; SameSite=none; Path=/; Secure; HttpOnly; x-azure-ref: 20260102T071919Z-r1b65f586b9zkk8khC1YTOqtt80000002em000000000b24b X-Cache: CONFIG_NOCACHE
Found 2026-01-02 by HttpPluginCreate report
-
Open service 13.107.246.69:443 · magento-api.dev.qop.stannah.cloud
2025-12-23 01:52
HTTP/1.1 302 Found Date: Tue, 23 Dec 2025 01:52:35 GMT Content-Length: 0 Connection: close Cache-Control: max-age=0, must-revalidate, no-cache, no-store Pragma: no-cache Expires: Mon, 23 Dec 2024 01:52:35 GMT Location: https://partner.integration-5ojmyuq-lbicjnyilsz7m.eu-3.magentosite.cloud/customer/account/login/ Vary: Accept-Encoding bluesnap.com *.cardinalcommerce.com *.kaptcha.com *.sentry.io *.google.com *.gstatic.com google.com *.fontawesome.com https://fonts.bunny.net assets.braintreegateway.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com sandbox.bluesnap.com sandbox1.bluesnap.com sandbox2.bluesnap.com sandpay.bluesnap.com ws.bluesnap.com ws1.bluesnap.com ws2.bluesnap.com pay.bluesnap.com *.cardinalcommerce.com *.kaptcha.com *.gstatic.com *.amazonaws.com https://get.geojs.io *.avada.io api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; Traceresponse: 00-1883b53d96185189b9e5cfc8121514ec-f6e71eca28b96865-01 X-Content-Type-Options: nosniff X-Debug-Info: eyJyZXRyaWVzIjowfQ== X-Frame-Options: SAMEORIGIN X-Magento-Cloud-Cache: MISS X-Magento-Cloud-Cluster: lbicjnyilsz7m-integration-5ojmyuq X-Magento-Cloud-Processor: afgu2c6e7udirelzdc4falcnfq X-Magento-Cloud-Router: qvvvzob3d4yfnxqf3p2u7slyje X-Magento-Tags: FPC X-Robots-Tag: noindex,nofollow X-Xss-Protection: 1; mode=block Set-Cookie: PHPSESSID=2a6157939d4a69838b759493d7a278ac; expires=Tue, 23 Dec 2025 02:52:35 GMT; Max-Age=3600; path=/; domain=partner.integration-5ojmyuq-lbicjnyilsz7m.eu-3.magentosite.cloud; HttpOnly; SameSite=Lax Request-Context: appId=cid-v1:01cd5221-c19e-40c9-8016-8290029829e8 set-cookie: ASLBSA=0003156be30cf4524eb7eed117295c4523ca16974ac2bf7ffa4c2049f12ff8e5aaab; Path=/; Secure; HttpOnly; set-cookie: ASLBSACORS=0003156be30cf4524eb7eed117295c4523ca16974ac2bf7ffa4c2049f12ff8e5aaab; SameSite=none; Path=/; Secure; HttpOnly; x-azure-ref: 20251223T015234Z-1776d656d458gmbshC1BY1zp8w00000006m0000000005dpg X-Cache: CONFIG_NOCACHE
Found 2025-12-23 by HttpPluginCreate report