Domain managerapi.cloudshelf.ai
United Kingdom
MICROSOFT-CORP-MSN-AS-BLOCK
  • GraphQL introspection is enabled.
    First seen 2025-11-28 11:53
    Last seen 2026-01-14 01:07
    Open for 46 days

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa35dbae3f985cbb59b1e224fb2a54862d8681596b6

      GraphQL introspection enabled at /graphql
Types: 334 (by kind: ENUM: 75, INPUT_OBJECT: 61, OBJECT: 187, SCALAR: 9, UNION: 2)
Operations:
- Query: Query | fields: allIngestionStats, availablePDPBlocks, buyersGuide, canRegisterDevice, chartAverageSaleValueRecords
- Mutation: Mutation | fields: abortPaymentRequest, addProductsToProductGroup, aiGenerateBuyersGuide, aiGenerateBuyersGuideContext, aiGenerateBuyersGuideQuestions
- Subscription: Subscription | fields: buyersGuideAiGenerationStatusUpdated, buyersGuideContextStatusUpdated, buyersGuideProductTaggingStatusUpdated, buyersGuideQuestionsStatusUpdated, organisationSyncStatusUpdated
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
      Found on 2026-01-14 01:07
      535.9 kBytes

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa39b66b5d42f1cee18b7c58fa931eba92ffaee3761

      GraphQL introspection enabled at /graphql
Types: 336 (by kind: ENUM: 75, INPUT_OBJECT: 60, OBJECT: 190, SCALAR: 9, UNION: 2)
Operations:
- Query: Query | fields: allIngestionStats, availablePDPBlocks, buyersGuide, canRegisterDevice, chartAverageSaleValueRecords
- Mutation: Mutation | fields: abortPaymentRequest, addProductsToProductGroup, aiGenerateBuyersGuide, aiGenerateBuyersGuideContext, aiGenerateBuyersGuideQuestions
- Subscription: Subscription | fields: buyersGuideAiGenerationStatusUpdated, buyersGuideContextStatusUpdated, buyersGuideProductTaggingStatusUpdated, buyersGuideQuestionsStatusUpdated, organisationSyncStatusUpdated
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
      Found on 2026-01-02 16:37
      539.4 kBytes
    Create report

  • Open service 20.90.134.24:80 · development.managerapi.cloudshelf.ai

    2026-01-10 23:10 

    HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Sat, 10 Jan 2026 23:11:54 GMT
Location: https://development.managerapi.cloudshelf.ai/
    Found 2026-01-10 by HttpPlugin
    Create report

  • Open service 20.90.134.24:443 · development.managerapi.cloudshelf.ai

    2026-01-10 23:10 

    HTTP/1.1 404 Not Found
Content-Length: 63
Connection: close
Content-Type: application/json; charset=utf-8
Date: Sat, 10 Jan 2026 23:11:56 GMT
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: x-request-id,x-version-number
ETag: W/"3f-BunLb98SCK6azHy0RO08GDnFBek"
Vary: Origin, Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://*.apollographql.com https://unpkg.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com;img-src 'self' data: https:;connect-src 'self' https://*.lottiefiles.com;font-src 'self' https: data:;object-src 'none';media-src 'self';frame-src 'self' https://*.apollographql.com;base-uri 'self';form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
X-DNS-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Request-ID: gid://cloudshelf/Request/01KEN2WFWP0VZRTW1ZD19NGMX2
X-Version-Number: v3.195.2-development+0e58479 (development)


{"message":"Cannot GET /","error":"Not Found","statusCode":404}
    Found 2026-01-10 by HttpPlugin
    Create report

  • Open service 20.90.134.35:443 · managerapi.cloudshelf.ai

    2026-01-09 21:50 

    HTTP/1.1 404 Not Found
Content-Length: 63
Connection: close
Content-Type: application/json; charset=utf-8
Date: Fri, 09 Jan 2026 21:51:52 GMT
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: x-request-id,x-version-number
ETag: W/"3f-BunLb98SCK6azHy0RO08GDnFBek"
Vary: Origin, Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://*.apollographql.com https://unpkg.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com;img-src 'self' data: https:;connect-src 'self' https://*.lottiefiles.com;font-src 'self' https: data:;object-src 'none';media-src 'self';frame-src 'self' https://*.apollographql.com;base-uri 'self';form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
X-DNS-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Request-ID: gid://cloudshelf/Request/01KEJBX5EP7PJPZZWFGVSZ6FWW
X-Version-Number: v3.194.0 (production)


{"message":"Cannot GET /","error":"Not Found","statusCode":404}
    Found 2026-01-09 by HttpPlugin
    Create report

  • Open service 20.90.134.35:443 · managerapi.cloudshelf.ai

    2026-01-02 16:37 

    HTTP/1.1 404 Not Found
Content-Length: 63
Connection: close
Content-Type: application/json; charset=utf-8
Date: Fri, 02 Jan 2026 16:37:14 GMT
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: x-request-id,x-version-number
ETag: W/"3f-BunLb98SCK6azHy0RO08GDnFBek"
Vary: Origin, Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://*.apollographql.com https://unpkg.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com;img-src 'self' data: https:;connect-src 'self' https://*.lottiefiles.com;font-src 'self' https: data:;object-src 'none';media-src 'self';frame-src 'self' https://*.apollographql.com;base-uri 'self';form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
X-DNS-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Request-ID: gid://cloudshelf/Request/01KDZS412YFH2ZV2B2Y196WBEB
X-Version-Number: v3.194.0 (production)


{"message":"Cannot GET /","error":"Not Found","statusCode":404}
    Found 2026-01-02 by HttpPlugin
    Create report

  • Open service 20.90.134.35:443 · managerapi.cloudshelf.ai

    2025-12-30 14:29 

    HTTP/1.1 404 Not Found
Content-Length: 63
Connection: close
Content-Type: application/json; charset=utf-8
Date: Tue, 30 Dec 2025 14:29:13 GMT
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: x-request-id,x-version-number
ETag: W/"3f-BunLb98SCK6azHy0RO08GDnFBek"
Vary: Origin, Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://*.apollographql.com https://unpkg.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com;img-src 'self' data: https:;connect-src 'self' https://*.lottiefiles.com;font-src 'self' https: data:;object-src 'none';media-src 'self';frame-src 'self' https://*.apollographql.com;base-uri 'self';form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
X-DNS-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Request-ID: gid://cloudshelf/Request/01KDQTKF3QH99B8ZF509VEFA23
X-Version-Number: v3.194.0 (production)


{"message":"Cannot GET /","error":"Not Found","statusCode":404}
    Found 2025-12-30 by HttpPlugin
    Create report

  • Open service 20.90.134.35:443 · managerapi.cloudshelf.ai

    2025-12-23 04:47 

    HTTP/1.1 404 Not Found
Content-Length: 63
Connection: close
Content-Type: application/json; charset=utf-8
Date: Tue, 23 Dec 2025 04:47:30 GMT
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: x-request-id,x-version-number
ETag: W/"3f-BunLb98SCK6azHy0RO08GDnFBek"
Vary: Origin, Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://*.apollographql.com https://unpkg.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com;img-src 'self' data: https:;connect-src 'self' https://*.lottiefiles.com;font-src 'self' https: data:;object-src 'none';media-src 'self';frame-src 'self' https://*.apollographql.com;base-uri 'self';form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
X-DNS-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Request-ID: gid://cloudshelf/Request/01KD4RH8PYBG7P8YTV7ANVW7C7
X-Version-Number: v3.192.4 (production)


{"message":"Cannot GET /","error":"Not Found","statusCode":404}
    Found 2025-12-23 by HttpPlugin
    Create report

  • Open service 20.90.134.35:443 · managerapi.cloudshelf.ai

    2025-12-20 15:52 

    HTTP/1.1 404 Not Found
Content-Length: 63
Connection: close
Content-Type: application/json; charset=utf-8
Date: Sat, 20 Dec 2025 15:52:24 GMT
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: x-request-id,x-version-number
ETag: W/"3f-BunLb98SCK6azHy0RO08GDnFBek"
Vary: Origin, Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' https://*.apollographql.com https://unpkg.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com;img-src 'self' data: https:;connect-src 'self' https://*.lottiefiles.com;font-src 'self' https: data:;object-src 'none';media-src 'self';frame-src 'self' https://*.apollographql.com;base-uri 'self';form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Referrer-Policy: strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
X-DNS-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 0
Permissions-Policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Request-ID: gid://cloudshelf/Request/01KCY7CK7Y1MN79R5V989M9HNA
X-Version-Number: v3.192.4 (production)


{"message":"Cannot GET /","error":"Not Found","statusCode":404}
    Found 2025-12-20 by HttpPlugin
    Create report
development.managerapi.cloudshelf.ai
Fingerprint:
afdc5a42c314cfaa9301ff9ebce05206569cac78380b77f7d2179a79c38746d7
CN:
development.managerapi.cloudshelf.ai
Key:
RSA-2048
Issuer:
GeoTrust Global TLS RSA4096 SHA256 2022 CA1
Not before:
2025-08-23 00:00
Not after:
2026-02-23 23:59
managerapi.cloudshelf.ai
Fingerprint:
d58bb4a5de0fb15b641ebba7a3f504bbc1c4ba2e41f5480ef447d1dec0a46e9d
CN:
managerapi.cloudshelf.ai
Key:
RSA-2048
Issuer:
GeoTrust Global TLS RSA4096 SHA256 2022 CA1
Not before:
2025-08-24 00:00
Not after:
2026-02-24 23:59
Domain summary

managerapi.cloudshelf.ai 6 development.managerapi.cloudshelf.ai 1

2 recorded
IP summary

20.90.134.24 2 20.90.134.35 2

2 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice