nginx
tcp/443
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
GraphQL introspection enabled at /graphql
Open service 122.188.44.139:443 ยท res.ilut.cn
2026-01-23 01:03
HTTP/1.1 200 OK Server: nginx Date: Fri, 23 Jan 2026 01:04:15 GMT Content-Type: text/html; charset=UTF-8 Set-Cookie: PHPSESSID=73mald1180kmk50chtj8bf39lb; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Set-Cookie: pll_language=zh; expires=Sat, 23 Jan 2027 01:04:15 GMT; Max-Age=31536000; path=/; domain=.ilut.cn; secure; SameSite=Lax Link: <https://sodos.ilut.cn/wp-json/>; rel="https://api.w.org/" Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, POST, OPTIONS, PUT, DELETE Access-Control-Allow-Headers: Authorization,Content-Type,Accept,Origin,User-Agent,DNT,Cache-Control,X-Mx-ReqToken,Keep-Alive,X-Requested-With,If-Modified-Since,X-WP-Nonce X-Cache-Lookup: Cache Miss X-Cache-Lookup: Hit From Upstream Cluster X-Cache-Lookup: Hit From Inner Cluster Cache-Control: must-revalidate, no-cache, no-store Transfer-Encoding: chunked X-NWS-LOG-UUID: 7984585626356621279 Connection: close X-Cache-Lookup: Cache Miss Strict-Transport-Security: max-age=2592000;