Kestrel
tcp/443
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549358af0ee56d9f951a635d1107be3dba707f666b1
Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /api/Health/Enviroments GET /api/Health/Get GET /api/Informationtransactions GET /api/Negotiation GET /api/NegotiationType GET /api/PointOfSale GET /api/Product GET /api/ProductEnrich GET /api/RetailerCategory GET /api/Retailertype GET /api/Salechannel POST /api/NegotiationProgress POST /api/ProductFile POST /api/Token
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
Public Swagger UI/API detected at path: /swagger/index.html
Open service 20.119.8.29:443 ยท retailertest.logycacolabora.com
2026-01-23 00:21
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 23 Jan 2026 00:22:17 GMT Server: Kestrel Set-Cookie: ARRAffinity=3876394f4dcbf2425104a98410d5d5d8ce7f8697a0a9debfc910ea9456abb593;Path=/;HttpOnly;Secure;Domain=retailertest.logycacolabora.com Set-Cookie: ARRAffinitySameSite=3876394f4dcbf2425104a98410d5d5d8ce7f8697a0a9debfc910ea9456abb593;Path=/;HttpOnly;SameSite=None;Secure;Domain=retailertest.logycacolabora.com x-ms-middleware-request-id: 00000000-0000-0000-0000-000000000000