LeakIX - Host stag.app.solaflex.com

Domain stag.app.solaflex.com

The Netherlands

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Kestrel Kestrel

tcp/443

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 20.50.2.50
Domain: stag.app.solaflex.com
Port: 443
URL: https://stag.app.solaflex.com

First seen 2026-01-10 11:45
Last seen 2026-02-09 18:29
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 18:29
Create report

Open service 20.50.2.50:443 · stag.app.solaflex.com

2026-01-23 12:59

HTTP/1.1 302 Found
Content-Length: 0
Connection: close
Date: Fri, 23 Jan 2026 12:59:39 GMT
Server: Kestrel
Location: /index.html
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:adfdc904-ca84-4571-afde-99e02dd8f08c
Content-Security-Policy: frame-ancestors 'self' https://shop.ceraflex.at https://ceraflex.stag.interad.at https://ceraflex.test.interad.at
X-Correlation-Id: 8f74bdd60f31401a8e46127d542dea66

Found 2026-01-23 by HttpPlugin

Create report

Open service 20.50.2.50:443 · stag.app.solaflex.com

2026-01-10 11:45

HTTP/1.1 302 Found
Content-Length: 0
Connection: close
Date: Sat, 10 Jan 2026 11:46:21 GMT
Server: Kestrel
Location: /index.html
Strict-Transport-Security: max-age=2592000
Request-Context: appId=cid-v1:adfdc904-ca84-4571-afde-99e02dd8f08c
Content-Security-Policy: frame-ancestors 'self' https://shop.ceraflex.at https://ceraflex.stag.interad.at https://ceraflex.test.interad.at
X-Correlation-Id: f70f150caf54471b89089e0da39ee453

Found 2026-01-10 by HttpPlugin

Create report

Open service 20.50.2.50:80 · stag.app.solaflex.com

2026-01-10 11:45

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Date: Sat, 10 Jan 2026 11:46:21 GMT
Location: https://stag.app.solaflex.com/

Found 2026-01-10 by HttpPlugin

Create report

stag.app.solaflex.com

Fingerprint:

4edd0a8edd6c5e2c2c26f43930211430ac1d9475517d245d3011b822619b2dea

CN:

stag.app.solaflex.com

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2026-01-10 00:00

Not after:

2026-04-14 23:59

stag.app.solaflex.com

Fingerprint:

d6f6354f9527b53806b2ef8cf40be4f73634e4afbcde2ec627bde654d72c2f65

CN:

stag.app.solaflex.com

Key:

RSA-2048

Issuer:

GeoTrust Global TLS RSA4096 SHA256 2022 CA1

Not before:

2025-08-23 00:00

Not after:

2026-02-23 23:59

Domain summary

stag.app.solaflex.com 3

1 recorded

IP summary

20.50.2.50 2

1 recorded

Domain stag.app.solaflex.com

The Netherlands

Software information

Swagger API description is publicly available

Create report

Create report

Create report

stag.app.solaflex.com

stag.app.solaflex.com

Domain summary

IP summary