Domain shop.natrailer.com
United States
Software information
nginx
tcp/443
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
First seen 2025-10-22 12:22
Last seen 2026-01-23 02:46
Open for 92 days-
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa374c2942e74c2942e74c2942e74c2942e74c2942eGraphQL introspection enabled at /graphql Detected: Magento
Found on 2026-01-23 02:46 -
Severity: medium
Fingerprint: c2db3a1c40d490dbf8cbe7e2df9b2641df9b2641df9b2641df9b2641df9b2641GraphQL introspection enabled at /graphql/api Detected: Magento
Found on 2026-01-03 01:46 -
Severity: medium
Fingerprint: c2db3a1c40d490dbf8cbe7e2f8cbe7e2f8cbe7e2f8cbe7e2f8cbe7e2f8cbe7e2GraphQL introspection enabled at /graphql/api
Found on 2025-12-01 07:29 -
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3GraphQL introspection enabled at /graphql
Found on 2025-11-16 16:43
-
-
Open service 18.173.187.111:443 ยท shop.natrailer.com
2026-01-23 02:46
HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Content-Length: 117902 Connection: close Server: nginx Date: Fri, 23 Jan 2026 02:46:06 GMT Cache-Control: no-store, no-cache, must-revalidate, max-age=0 Vary: Accept-Encoding Vary: Accept-Encoding Set-Cookie: PHPSESSID=08bbe86e03a5636bdbf323a5d058e433; expires=Fri, 30 Jan 2026 02:46:04 GMT; Max-Age=604800; path=/; domain=shop.natrailer.com; secure; HttpOnly; SameSite=Lax Set-Cookie: X-Magento-Vary=f08cb019826d09ad209787fdf017b7d7d15af7e726da80af39e5f56d12e581ec; expires=Fri, 30 Jan 2026 02:46:06 GMT; Max-Age=604800; path=/; secure; HttpOnly; SameSite=Lax Content-Security-Policy-Report-Only: font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com https://www.gstatic.com https://fonts.gstatic.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.authorize.net 'self' 'unsafe-inline'; frame-ancestors *.certcapture.com *.authorize.net 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com www.paypalobjects.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com *.certcapture.com https://www.google.com *.authorize.net 'self' 'unsafe-inline'; img-src data: assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com www.googleadservices.com *.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net *.analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com p.typekit.net *.paypal.com *.typekit.net *.gstatic.com validator.swagger.io *.certcapture.com *.bird.eu data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com *.commerce-payment-services.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ amcglobal.sc.omtrdc.net *.magento-ds.com use.typekit.net *.typekit.net google.com *.google.com *.cdn-apple.com *.braintreegateway.com *.certcapture.com https://www.google.com https://www.gstatic.com *.authorize.net 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com *.certcapture.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com *.certcapture.com *.authorize.net 'self' 'unsafe-inline'; child-src *.certcapture.com http: https: blob: 'self' 'unsafe-inline'; default-src 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block X-Frame-Options: CROSS-ORIGIN X-Live-Attribute: true Accept-Ranges: bytes Pragma: no-cache Expires: -1 X-Cache: Miss from cloudfront Via: 1.1 541abc390c35db77f7d121c96f0661ec.cloudfront.net (CloudFront) X-Amz-Cf-Pop: MUC50-P4 X-Amz-Cf-Id: SAAsgvJDKpVLlXWMxcSsRpuN7Lq372fW3rhgPRjAkIFYoBK68p8Uwg== Page title: Parts for Trucks & Trailers | Truck Parts in Stock | North American Trailer <!doctype html> <html lang="en"> <head > <script> var LOCALE = 'en\u002DUS'; var BASE_URL = 'https\u003A\u002F\u002Fshop.natrailer.com\u002F'; var require = { 'baseUrl': 'https\u003A\u002F\u002Fshop.natrailer.com\u002Fstatic\u002Fversion1768976810\u002Ffrontend\u002FPerrill\u002FNorthAmerican\u002Fen_US' };</script> <meta charset="utf-8"/> <meta name="title" content="Parts for Trucks & Trailers | Truck Parts in Stock | North American Trailer"/> <meta name="robots" content="INDEX,FOLLOW"/> <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0,user-scalable=0"/> <meta name="format-detection" content="telephone=no"/> <title>Parts for Trucks & Trailers | Truck Parts in Stock | North American Trailer</title> <link rel="stylesheet" type="text/css" media="all" href="https://shop.natrailer.com/static/version1768976810/_cache/merged/b746f76ddf489e7541027200e1c7c450.min.css" /> <link rel="stylesheet" type="text/css" media="screen and (min-width: 768px)" href="https://shop.natrailer.com/static/version1768976810/frontend/Perrill/NorthAmerican/en_US/css/styles-l.min.css" /> <link rel="stylesheet" type="text/css" media="print" href="https://shop.natrailer.com/static/version1768976810/frontend/Perrill/NorthAmerican/en_US/css/print.min.css" /> <script type="text/javascript" src="https://shop.natrailer.com/static/version1768976810/frontend/Perrill/NorthAmerican/en_US/requirejs/require.js"></script> <script type="text/javascript" src="https://shop.natrailer.com/static/version1768976810/frontend/Perrill/NorthAmerican/en_US/mage/requirejs/mixins.js"></script> <script type="text/javascript" src="https://shop.natrailer.com/static/version1768976810/frontend/Perrill/NorthAmerican/en_US/requirejs-config.js"></script> <script type="text/javascript" src="https://shop.natrailer.com/static/version1768976810/frontend/Perrill/NorthAmerican/en_US/js/vendors/background-srcsets.js"></script> <script type="text/javascript" src="https://shop.natrailer.com/static/version1768976810/frontend/Perrill/NorthAmerican/en_US/js/vendors/lazysizes.js"></script> <script type="text/javascript" src="https://shop.natrailer.com/static/version1768976810/frontend/Perrill/NorthAmerican/en_US/js/vendors/lazysizes-unveilhooks.js"></script> <script type="text/javascript" src="https://shop.natrailer.com/static/version1768976810/frontend/Perrill/NorthAmerican/en_US/js/fs-main.js"></script> <link rel="canonical" href="https://shop.natrailer.com/blaine-brothers" /> <link rel="icon" type="image/x-icon" href="https://shop.natrailer.com/media/favicon/websites/3/favicon.ico" /> <link rel="shortcut icon" type="image/x-icon" href="https://shop.natrailer.com/media/favicon/websites/3/favicon.ico" /> <!-- Google Tag Manager NAT --> <script>(function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start': new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0], j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src= 'https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f); })(window,document,'script','dataLayer','GTM-PWVKRTG');</script> <!-- End Google Tag Manager --> <script type="text/javascript" src="https://blainebrothers.com/kiosk/listener.js" async defer></script> <style> .stock-message {display:none; } </style> <!--APA base--> <script defer type="text/javascript" src="https://bbnam_ymm.apacatapult.com/assets/jquery/js/apa_angular.min.js"></script> <script defer type="text/javascript" src="https://bbnam_ymm.apacatapult.com/assets/jquery/js/apa_autocomplete.min.js?v=1.4.4"></script> <!--APA base--> <!-- BEGIN GOOGLE ANALYTICS CODE --> <script type="text/x-magento-init"> { "*": { "Magento_GoogleAnalytics/js/google-analytics": { "isCookieRestrictionModeEnabled": 0, "currentWebsite": 3, "cookieName": "user_allowed_save_cookie", "ordersTrackingData": [], "pageTrackingData": {"optPageUrl":"","isAnonymizedIpActive":false,"accountId":"UA-560722Found 2026-01-23 by HttpPluginCreate report