Domain procurementservice.egretail-test.cloud
The Netherlands
Software information
Microsoft-IIS 10.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 52.232.19.237
Domain: procurementservice.egretail-test.cloud
Port: 443
URL: https://procurementservice.egretail-test.cloudFirst seen 2026-01-02 17:00
Last seen 2026-02-16 19:20
Open for 45 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d60c9fd2c7e99a99bc9039c90623ec767cef1114a2fPublic Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths: GET /api/gateway/Deliveries/{storeNo}/itemDeliveries GET /api/gateway/Deliveries/{storeNo}/itemPlannedDeliveryDates GET /api/gateway/Packages/packagesPerStore/{storeNo} GET /api/gateway/PurchaseOrders/ordersPerStore/{storeNo} GET /api/gateway/PurchaseOrders/{storeNo}/orderedItemFound on 2026-02-16 19:20
-
-
Open service 52.232.19.237:443 · procurementservice.egretail-test.cloud
2026-01-23 14:03
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Fri, 23 Jan 2026 14:04:00 GMT Server: Microsoft-IIS/10.0 Location: index.html Set-Cookie: ARRAffinity=dab6317d12927f95a984092890bdf8d883b89a1829bd2edd351c319b04afd824;Path=/;HttpOnly;Secure;Domain=procurementservice.egretail-test.cloud Set-Cookie: ARRAffinitySameSite=dab6317d12927f95a984092890bdf8d883b89a1829bd2edd351c319b04afd824;Path=/;HttpOnly;SameSite=None;Secure;Domain=procurementservice.egretail-test.cloud Strict-Transport-Security: max-age=31536000 Request-Context: appId=cid-v1:7801e208-a6a3-499d-9fff-b539761ee1e0 X-Frame-Options: DENY X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Content-Security-Policy: style-src 'self' 'nonce-3zZgRIyDU/6zyQL1o3/xEwAczybWjxlS6yO+tgsKYFg='; script-src 'self' 'nonce-3zZgRIyDU/6zyQL1o3/xEwAczybWjxlS6yO+tgsKYFg='; default-src 'none'; img-src 'self' data:; connect-src 'self' X-Powered-By: ASP.NET
Found 2026-01-23 by HttpPluginCreate report
-
Open service 52.232.19.237:80 · procurementservice.egretail-test.cloud
2026-01-10 19:13
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Sat, 10 Jan 2026 19:14:57 GMT Location: https://procurementservice.egretail-test.cloud/
Found 2026-01-10 by HttpPluginCreate report
-
Open service 52.232.19.237:443 · procurementservice.egretail-test.cloud
2026-01-10 19:13
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Sat, 10 Jan 2026 19:14:57 GMT Server: Microsoft-IIS/10.0 Location: index.html Set-Cookie: ARRAffinity=fbb4eba32680e6cf5d183f1c3ecb0c33fb696cefc25dc7b1e847d702ee0bd87c;Path=/;HttpOnly;Secure;Domain=procurementservice.egretail-test.cloud Set-Cookie: ARRAffinitySameSite=fbb4eba32680e6cf5d183f1c3ecb0c33fb696cefc25dc7b1e847d702ee0bd87c;Path=/;HttpOnly;SameSite=None;Secure;Domain=procurementservice.egretail-test.cloud Strict-Transport-Security: max-age=31536000 Request-Context: appId=cid-v1:7801e208-a6a3-499d-9fff-b539761ee1e0 X-Frame-Options: DENY X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Content-Security-Policy: style-src 'self' 'nonce-n/43uHrX1N64LIFZi6HTAsfFBjhpCUpwVsu252ZwUFc='; script-src 'self' 'nonce-n/43uHrX1N64LIFZi6HTAsfFBjhpCUpwVsu252ZwUFc='; default-src 'none'; img-src 'self' data:; connect-src 'self' X-Powered-By: ASP.NET
Found 2026-01-10 by HttpPluginCreate report