Domain quote.ebeweb.com.mx
United States
Software information
Microsoft-IIS 10.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2026-01-12 01:16
Last seen 2026-01-22 21:35
Open for 10 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d602d296e96f2bcd836cdb4a964d89e06fa7acfa37bPublic Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths: GET /api/Activity/GetProductClassByCodeServicesAndDestiny GET /api/Activity/GetZonesServiceByCompany GET /api/Flight/GetAvailability GET /api/Flight/GetAvailabilityHotelFlight GET /api/Hotel/GetAvailability GET /api/Hotel/GetAvailabilityHotelFlight GET /api/Packages/GetAllSearchDataResponse GET /api/Packages/GetAutocompleteZonesByComp GET /api/Packages/GetAvailability GET /api/Packages/GetAvailabilitySingle GET /api/Packages/GetBasicSearchData GET /api/Packages/GetDaysToInitQuote GET /api/Packages/GetDepartureDatesDurPackageOrDes GET /api/Packages/GetFeauredPackages GET /api/Packages/GetFinalCost GET /api/Packages/GetOriginZonesPackagesByJunDestination GET /api/Packages/GetPackageChange GET /api/Packages/GetParticipantTypesByOrDes GET /api/Packages/GetParticipantTypesByProdClass GET /api/Packages/ValidateCompanyPromotionCode GET /api/Transfer/GetAllDestinations GET /api/Transfer/GetAllOrigins GET /api/Transfer/GetAvailability POST /api/HotelFlight/GetAvailability POST /api/Packages/GetCircuitEbeSimulator POST /api/Packages/GetListServicesByPackage POST /api/Packages/GetPackageChangeToUrlString POST /api/Packages/GetPackageServicesChange
Found on 2026-01-22 21:35
-
-
Open service 20.119.0.26:443 · quote.ebeweb.com.mx
2026-01-22 21:35
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Thu, 22 Jan 2026 21:36:21 GMT Server: Microsoft-IIS/10.0 Location: index.html Set-Cookie: ARRAffinity=99762e18ad891432b0e579f71a2040bd889a4bf21332d81e853060cf05a42d65;Path=/;HttpOnly;Secure;Domain=quote.ebeweb.com.mx Set-Cookie: ARRAffinitySameSite=99762e18ad891432b0e579f71a2040bd889a4bf21332d81e853060cf05a42d65;Path=/;HttpOnly;SameSite=None;Secure;Domain=quote.ebeweb.com.mx X-Powered-By: ASP.NET
Found 2026-01-22 by HttpPluginCreate report
-
Open service 20.119.0.26:443 · quote.ebeweb.com.mx
2026-01-12 01:16
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Mon, 12 Jan 2026 01:17:03 GMT Server: Microsoft-IIS/10.0 Location: index.html Set-Cookie: ARRAffinity=2812c5c67be4f8f7d1c83601f8f825c241a5bebfd05acb5ea3949f35ddecacdc;Path=/;HttpOnly;Secure;Domain=quote.ebeweb.com.mx Set-Cookie: ARRAffinitySameSite=2812c5c67be4f8f7d1c83601f8f825c241a5bebfd05acb5ea3949f35ddecacdc;Path=/;HttpOnly;SameSite=None;Secure;Domain=quote.ebeweb.com.mx X-Powered-By: ASP.NET
Found 2026-01-12 by HttpPluginCreate report
-
Open service 20.119.0.26:80 · quote.ebeweb.com.mx
2026-01-12 01:16
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Mon, 12 Jan 2026 01:17:05 GMT Location: https://quote.ebeweb.com.mx/
Found 2026-01-12 by HttpPluginCreate report