Domain profitserver.ru
Russia
Software information
cloudflare
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-12-27 22:30
Last seen 2026-01-17 08:30
Open for 20 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109Public Swagger UI/API detected at path: /api-docs/swagger.json
Found on 2026-01-17 08:30
-
-
Open service 104.26.3.3:443 ยท profitserver.ru
2026-01-23 06:36
HTTP/1.1 200 OK Date: Fri, 23 Jan 2026 06:36:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare vary: Accept-Encoding strict-transport-security: max-age=63072000; includeSubdomains x-frame-options: DENY x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=NHmBPasbH31hHPErvN6xHrcwRoNeuE5Y9OrUIiptegXEEDM1pFc%2FnlHvKboajyriXHYvCVVAtCF0CDqv%2FqIdAvrYfT0EhjmgjZcXBOQm"}]} cf-cache-status: DYNAMIC Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} Server-Timing: cfCacheStatus;desc="DYNAMIC" Server-Timing: cfEdge;dur=8,cfOrigin;dur=26 CF-RAY: 9c254706ba4795ab-AMSFound 2026-01-23 by HttpPluginCreate report