Domain server.pp.viabeez.com
United States
Software information
Heroku
tcp/443 tcp/80
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-28 01:00
Last seen 2026-01-08 22:34
Open for 72 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109Public Swagger UI/API detected at path: /api-docs/swagger.json
Found on 2026-01-08 22:34
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-10-28 01:00
Last seen 2026-01-09 23:39
Open for 73 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109Public Swagger UI/API detected at path: /api-docs/swagger.json
Found on 2026-01-09 23:39
-
-
Open service 15.197.129.158:443 · server.pp.viabeez.com
2026-01-09 23:39
HTTP/1.1 404 Not Found Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate Content-Length: 90 Content-Security-Policy: frame-ancestors 'none';default-src 'self';base-uri 'self';form-action 'self';script-src-attr 'none';upgrade-insecure-requests Content-Type: application/json; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Fri, 09 Jan 2026 23:39:32 GMT Etag: W/"5a-dwb+IlHt0EB4d/k8u0OxDdANOVI" Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=hOBVPjODaWfwOXu1qBNMA%2FnX1jBr7jdsSRb6zSroPl8%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1768001972"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=hOBVPjODaWfwOXu1qBNMA%2FnX1jBr7jdsSRb6zSroPl8%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1768001972" Server: Heroku Strict-Transport-Security: max-age=15552000; includeSubDomains Surrogate-Control: no-store Vary: Origin, Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Xss-Protection: 0 Connection: close {"errors":{"status":"error","message":"not_found"},"status":"error","message":"not_found"}Found 3 days ago by HttpPluginCreate report
-
Open service 76.223.11.49:80 · server.pp.viabeez.com
2026-01-08 22:34
HTTP/1.1 404 Not Found Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate Content-Length: 90 Content-Security-Policy: frame-ancestors 'none';default-src 'self';base-uri 'self';form-action 'self';script-src-attr 'none';upgrade-insecure-requests Content-Type: application/json; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Thu, 08 Jan 2026 22:35:37 GMT Etag: W/"5a-dwb+IlHt0EB4d/k8u0OxDdANOVI" Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=yFptmkrpIf5%2B9JsEyQQLs4iQNwKoMF6Vaej5POlMUU8%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767911737"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=yFptmkrpIf5%2B9JsEyQQLs4iQNwKoMF6Vaej5POlMUU8%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767911737" Server: Heroku Strict-Transport-Security: max-age=15552000; includeSubDomains Surrogate-Control: no-store Vary: Origin, Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Xss-Protection: 0 Connection: close {"errors":{"status":"error","message":"not_found"},"status":"error","message":"not_found"}Found 2026-01-08 by HttpPluginCreate report
-
Open service 76.223.11.49:80 · server.pp.viabeez.com
2026-01-01 21:19
HTTP/1.1 404 Not Found Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate Content-Length: 90 Content-Security-Policy: frame-ancestors 'none';default-src 'self';base-uri 'self';form-action 'self';script-src-attr 'none';upgrade-insecure-requests Content-Type: application/json; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Thu, 01 Jan 2026 21:19:37 GMT Etag: W/"5a-dwb+IlHt0EB4d/k8u0OxDdANOVI" Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=qIH0BfavLCLxXuffmOmSQcTbUlOZkPIG1LAexLVxKIk%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767302377"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=qIH0BfavLCLxXuffmOmSQcTbUlOZkPIG1LAexLVxKIk%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767302377" Server: Heroku Strict-Transport-Security: max-age=15552000; includeSubDomains Surrogate-Control: no-store Vary: Origin, Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Xss-Protection: 0 Connection: close {"errors":{"status":"error","message":"not_found"},"status":"error","message":"not_found"}Found 2026-01-01 by HttpPluginCreate report
-
Open service 15.197.129.158:443 · server.pp.viabeez.com
2025-12-30 09:39
HTTP/1.1 404 Not Found Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate Content-Length: 90 Content-Security-Policy: frame-ancestors 'none';default-src 'self';base-uri 'self';form-action 'self';script-src-attr 'none';upgrade-insecure-requests Content-Type: application/json; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Tue, 30 Dec 2025 09:39:22 GMT Etag: W/"5a-dwb+IlHt0EB4d/k8u0OxDdANOVI" Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=mN1qjx1mAcxpoOT99ARVKjccJICXMIJRPIip3AJMiL4%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1767087562"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=mN1qjx1mAcxpoOT99ARVKjccJICXMIJRPIip3AJMiL4%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1767087562" Server: Heroku Strict-Transport-Security: max-age=15552000; includeSubDomains Surrogate-Control: no-store Vary: Origin, Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Xss-Protection: 0 Connection: close {"errors":{"status":"error","message":"not_found"},"status":"error","message":"not_found"}Found 2025-12-30 by HttpPluginCreate report
-
Open service 15.197.129.158:443 · server.pp.viabeez.com
2025-12-23 07:56
HTTP/1.1 404 Not Found Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate Content-Length: 90 Content-Security-Policy: frame-ancestors 'none';default-src 'self';base-uri 'self';form-action 'self';script-src-attr 'none';upgrade-insecure-requests Content-Type: application/json; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Tue, 23 Dec 2025 07:56:28 GMT Etag: W/"5a-dwb+IlHt0EB4d/k8u0OxDdANOVI" Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=AfsEEz5eMI4SZnLCiZ0m%2BD6kAQ6ez6KtqNmrTbfurVM%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766476588"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=AfsEEz5eMI4SZnLCiZ0m%2BD6kAQ6ez6KtqNmrTbfurVM%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766476588" Server: Heroku Strict-Transport-Security: max-age=15552000; includeSubDomains Surrogate-Control: no-store Vary: Origin, Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Xss-Protection: 0 Connection: close {"errors":{"status":"error","message":"not_found"},"status":"error","message":"not_found"}Found 2025-12-23 by HttpPluginCreate report
-
Open service 76.223.11.49:80 · server.pp.viabeez.com
2025-12-22 07:53
HTTP/1.1 404 Not Found Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate Content-Length: 90 Content-Security-Policy: frame-ancestors 'none';default-src 'self';base-uri 'self';form-action 'self';script-src-attr 'none';upgrade-insecure-requests Content-Type: application/json; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Mon, 22 Dec 2025 07:53:46 GMT Etag: W/"5a-dwb+IlHt0EB4d/k8u0OxDdANOVI" Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=qzNhm8KM%2F8ZArw%2Bx0nsoYmqTYSjuh4bz3ihO7AGaA%2FI%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766390026"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=qzNhm8KM%2F8ZArw%2Bx0nsoYmqTYSjuh4bz3ihO7AGaA%2FI%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766390026" Server: Heroku Strict-Transport-Security: max-age=15552000; includeSubDomains Surrogate-Control: no-store Vary: Origin, Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Xss-Protection: 0 Connection: close {"errors":{"status":"error","message":"not_found"},"status":"error","message":"not_found"}Found 2025-12-22 by HttpPluginCreate report
-
Open service 15.197.129.158:443 · server.pp.viabeez.com
2025-12-21 05:01
HTTP/1.1 404 Not Found Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate Content-Length: 90 Content-Security-Policy: frame-ancestors 'none';default-src 'self';base-uri 'self';form-action 'self';script-src-attr 'none';upgrade-insecure-requests Content-Type: application/json; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Sun, 21 Dec 2025 05:01:44 GMT Etag: W/"5a-dwb+IlHt0EB4d/k8u0OxDdANOVI" Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=x%2FpitIMvlhAxQa1bW4fGeUnOkxMaV2avYKL336EdMz0%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766293304"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=x%2FpitIMvlhAxQa1bW4fGeUnOkxMaV2avYKL336EdMz0%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766293304" Server: Heroku Strict-Transport-Security: max-age=15552000; includeSubDomains Surrogate-Control: no-store Vary: Origin, Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Xss-Protection: 0 Connection: close {"errors":{"status":"error","message":"not_found"},"status":"error","message":"not_found"}Found 2025-12-21 by HttpPluginCreate report
-
Open service 76.223.11.49:80 · server.pp.viabeez.com
2025-12-20 07:03
HTTP/1.1 404 Not Found Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate Content-Length: 90 Content-Security-Policy: frame-ancestors 'none';default-src 'self';base-uri 'self';form-action 'self';script-src-attr 'none';upgrade-insecure-requests Content-Type: application/json; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Sat, 20 Dec 2025 07:03:30 GMT Etag: W/"5a-dwb+IlHt0EB4d/k8u0OxDdANOVI" Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=t%2FiKDsLo3cshqYZjtuPfbTdz%2Fbl5CdrG9RSvcJCv43Q%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766214210"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=t%2FiKDsLo3cshqYZjtuPfbTdz%2Fbl5CdrG9RSvcJCv43Q%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766214210" Server: Heroku Strict-Transport-Security: max-age=15552000; includeSubDomains Surrogate-Control: no-store Vary: Origin, Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Xss-Protection: 0 Connection: close {"errors":{"status":"error","message":"not_found"},"status":"error","message":"not_found"}Found 2025-12-20 by HttpPluginCreate report
-
Open service 15.197.129.158:443 · server.pp.viabeez.com
2025-12-19 06:19
HTTP/1.1 404 Not Found Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate Content-Length: 90 Content-Security-Policy: frame-ancestors 'none';default-src 'self';base-uri 'self';form-action 'self';script-src-attr 'none';upgrade-insecure-requests Content-Type: application/json; charset=utf-8 Cross-Origin-Opener-Policy: same-origin Cross-Origin-Resource-Policy: same-origin Date: Fri, 19 Dec 2025 06:19:22 GMT Etag: W/"5a-dwb+IlHt0EB4d/k8u0OxDdANOVI" Expires: 0 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Origin-Agent-Cluster: ?1 Referrer-Policy: no-referrer Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=hRGlr8zh%2FUY78s1oWRyImcvrLe6R9qZCJRYTs54H2nQ%3D\u0026sid=c4c9725f-1ab0-44d8-820f-430df2718e11\u0026ts=1766125162"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=hRGlr8zh%2FUY78s1oWRyImcvrLe6R9qZCJRYTs54H2nQ%3D&sid=c4c9725f-1ab0-44d8-820f-430df2718e11&ts=1766125162" Server: Heroku Strict-Transport-Security: max-age=15552000; includeSubDomains Surrogate-Control: no-store Vary: Origin, Accept-Encoding Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Dns-Prefetch-Control: off X-Download-Options: noopen X-Frame-Options: DENY X-Permitted-Cross-Domain-Policies: none X-Xss-Protection: 0 Connection: close {"errors":{"status":"error","message":"not_found"},"status":"error","message":"not_found"}Found 2025-12-19 by HttpPluginCreate report