Domain monitor-transfer-api.mottu.cloud
United States
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 35.238.232.9
Domain: monitor-transfer-api.mottu.cloud
Port: 443
URL: https://monitor-transfer-api.mottu.cloudFirst seen 2025-11-27 17:09
Last seen 2026-01-16 09:48
Open for 49 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354957e7046dc57bb9450c4724b6560de67a6247a4b4Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /api/v1/table-auditing GET /api/v1/table-auditing/{id} GET /api/v1/transfer-orders/for-admin GET /api/v1/transfer-orders/for-operator GET /api/v1/transfer-orders/vehicle-models GET /api/v1/transfer-orders/{id} GET /api/v1/transfer-orders/{transferOrderId}/tracking-map GET /api/v1/transport-companies GET /api/v1/transport-companies/{id} GET /api/v1/vehicles-for-transfer/{transferOrderId} PATCH /api/v1/transfer-orders/{transferOrderId}/cancel PATCH /api/v1/transfer-orders/{transferOrderId}/destination-branch PATCH /api/v1/transfer-orders/{transferOrderId}/remove-vehicle/{vehicleId} PATCH /api/v1/transfer-orders/{transferOrderId}/vehicle-quantity PATCH /api/v1/vehicles-for-transfer/add-vehicle PATCH /api/v1/vehicles-for-transfer/confirm-batch-transfer PATCH /api/v1/vehicles-for-transfer/receive PATCH /api/v1/vehicles-for-transfer/remove POST /api/v1/transfer-ordersFound on 2026-01-16 09:48 -
Severity: info
Fingerprint: 5733ddf49ff49cd1aad0354957e7046dc57bb9450c4724b6560de67a48eb32f8Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /api/v1/table-auditing GET /api/v1/table-auditing/{id} GET /api/v1/transfer-orders/for-admin GET /api/v1/transfer-orders/for-operator GET /api/v1/transfer-orders/vehicle-models GET /api/v1/transfer-orders/{id} GET /api/v1/transfer-orders/{transferOrderId}/tracking-map GET /api/v1/transport-companies GET /api/v1/transport-companies/{id} GET /api/v1/vehicles-for-transfer/{transferOrderId} PATCH /api/v1/transfer-orders/{transferOrderId}/cancel PATCH /api/v1/transfer-orders/{transferOrderId}/destination-branch PATCH /api/v1/transfer-orders/{transferOrderId}/vehicle-quantity PATCH /api/v1/vehicles-for-transfer/add-vehicle PATCH /api/v1/vehicles-for-transfer/confirm-batch-transfer PATCH /api/v1/vehicles-for-transfer/receive PATCH /api/v1/vehicles-for-transfer/remove POST /api/v1/transfer-ordersFound on 2025-12-14 11:41
-