LeakIX - Host pawsomechoice.com

Domain pawsomechoice.com

United States

AMAZON-02

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 18.66.192.54
Domain: pawsomechoice.com
Port: 443
URL: https://pawsomechoice.com

First seen 2025-10-16 11:41
Last seen 2025-10-17 01:01

Severity: medium
Fingerprint: c2db3a1c40d490db84e0e3507c9f920fe465341d22354bb127d73c0f7b3bf2b3

GraphQL introspection enabled at /api
Types: 261 (by kind: ENUM: 12, INPUT_OBJECT: 93, OBJECT: 133, SCALAR: 15, UNION: 8)
Operations:
- Query: Query | fields: i18NLocale, i18NLocales_connection, uploadFile, uploadFiles, uploadFiles_connection
- Mutation: Mutation | fields: createReviewWorkflowsWorkflow, createReviewWorkflowsWorkflowStage, deleteReviewWorkflowsWorkflow, updateReviewWorkflowsWorkflow, updateReviewWorkflowsWorkflowStage
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0

Found on 2025-10-17 01:01

469.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db84e0e3507c9f920fe465341d22354bb127d73c0fea7f53f7

GraphQL introspection enabled at /api
Types: 261 (by kind: ENUM: 12, INPUT_OBJECT: 93, OBJECT: 133, SCALAR: 15, UNION: 8)
Operations:
- Query: Query | fields: i18NLocale, i18NLocales_connection, uploadFile, uploadFiles, uploadFiles_connection
- Mutation: Mutation | fields: createReviewWorkflowsWorkflow, createReviewWorkflowsWorkflowStage, deleteReviewWorkflowsWorkflow, updateReviewWorkflowsWorkflow, updateReviewWorkflowsWorkflowStage
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-10-17 01:01

469.0 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.161.82.8
Domain: pawsomechoice.com
Port: 443
URL: https://pawsomechoice.com

First seen 2025-01-01 18:23
Last seen 2026-01-02 16:34
Open for 365 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2026-01-02 16:34
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.161.82.76
Domain: www.pawsomechoice.com
Port: 443
URL: https://www.pawsomechoice.com

First seen 2025-02-09 15:41
Last seen 2025-02-12 02:59
Open for 2 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2025-02-12 02:59
Create report

Open service 3.161.82.8:443 · pawsomechoice.com

2026-01-09 20:55

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
X-Amz-Cf-Pop: FRA56-P13
Date: Fri, 09 Jan 2026 20:55:53 GMT
x-content-type-options: nosniff
cloudfront-viewer-country: *
Cache-Control: s-maxage=10
x-middleware-rewrite: /en
Link: </_next/static/media/83afe278b6a6bb3c.p.3a6ba036.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://media.pawsomechoice.com/logo_86de4506c2.svg>; rel=preload; as="image"
x-powered-by: Next.js
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Via: 1.1 f83dbfb0fedcf4135c2e4ba4b6ef2dc2.cloudfront.net (CloudFront), 1.1 7b33e91c10f2279399751cc4de05f400.cloudfront.net (CloudFront)
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
X-Amz-Cf-Pop: FRA56-P10
X-Amz-Cf-Id: uoNWNCB8sKaH98Y7s0ai-6c_-KCF9enUOXigeW7SvYp9KAQgUFZ9ug==
Age: 2

Found 2026-01-09 by HttpPlugin

Create report

Open service 3.161.82.8:443 · pawsomechoice.com

2026-01-02 16:34

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Via: 1.1 22071b16ebfda9a38c5d5316f5b9ce82.cloudfront.net (CloudFront), 1.1 b61ff825a3ca0ff851caf7741034ca52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA56-P13
Date: Fri, 02 Jan 2026 16:34:41 GMT
x-content-type-options: nosniff
cloudfront-viewer-country: *
Cache-Control: s-maxage=10
x-middleware-rewrite: /en
Link: </_next/static/media/83afe278b6a6bb3c.p.3a6ba036.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", </_next/static/chunks/52774beafd56bb4a.css>; rel=preload; as="style"
x-powered-by: Next.js
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
X-Amz-Cf-Pop: FRA56-P10
X-Amz-Cf-Id: HsZ4XNsBMst-t755QRZjB08Uo_RGZymmz-OmcI1sUi7HxrXBHCn3lw==

Found 2026-01-02 by HttpPlugin

Create report

Open service 3.161.82.8:443 · pawsomechoice.com

2025-12-23 06:11

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Via: 1.1 7b921af2d8563da7f429361b2f7dc3d4.cloudfront.net (CloudFront), 1.1 59d552fe007f8133d3f016164f2c79aa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA56-P13
Date: Tue, 23 Dec 2025 06:11:18 GMT
x-content-type-options: nosniff
cloudfront-viewer-country: *
Cache-Control: s-maxage=10
x-middleware-rewrite: /en
Link: </_next/static/media/83afe278b6a6bb3c.p.3a6ba036.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", </_next/static/chunks/52774beafd56bb4a.css>; rel=preload; as="style"
x-powered-by: Next.js
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: FRA56-P10
X-Amz-Cf-Id: Lw9rTaR-QemQAeY2Ag20eB71fgC_TVWYctu9loRA_wvM28SSwKF2pg==

Found 2025-12-23 by HttpPlugin

Create report

Open service 3.161.82.8:443 · pawsomechoice.com

2025-12-19 00:55

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Via: 1.1 f7d063966b06905209f8790f5fd607e2.cloudfront.net (CloudFront), 1.1 a2fcaa589cf2ad79b72da94df54baac6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA56-P5
Date: Fri, 19 Dec 2025 00:55:11 GMT
x-content-type-options: nosniff
cloudfront-viewer-country: *
Cache-Control: public, max-age=31536000, immutable
x-middleware-rewrite: /en
Link: </_next/static/media/83afe278b6a6bb3c.p.3a6ba036.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", </_next/static/chunks/477f56d27f89081e.css>; rel=preload; as="style"
x-powered-by: Next.js
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: FRA56-P10
X-Amz-Cf-Id: Ya22BeC0sUcFyU6u8-4G6Do_mO-RmYSHRZ3QAknrFilmvVOTDU0cpg==

Found 2025-12-19 by HttpPlugin

Create report

pawsomechoice.compawsomechoice.sewww.pawsomechoice.comwww.pawsomechoice.se

Fingerprint:

e0f5145d507b0095d83cf3deb00176b41662697cf9b4034bdba236fd0a49e79f

CN:

pawsomechoice.com

Key:

RSA-2048

Issuer:

Amazon RSA 2048 M04

Not before:

2025-10-17 00:00

Not after:

2026-11-15 23:59

Domain summary

pawsomechoice.com 6 www.pawsomechoice.com 1

2 recorded

IP summary

3.161.82.8 2 18.66.192.54 1 3.161.82.76 1

3 recorded

Domain pawsomechoice.com

United States

GraphQL introspection is enabled.

MacOS file listing through .DS_Store file

MacOS file listing through .DS_Store file

Create report

Create report

Create report

Create report

pawsomechoice.compawsomechoice.sewww.pawsomechoice.comwww.pawsomechoice.se

Domain summary

IP summary