Domain staging-active.api.sonik.fm
United States
Software information
Heroku
tcp/443 tcp/80
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 3.33.241.96
Domain: staging-active.api.sonik.fm
Port: 80
URL: http://staging-active.api.sonik.fmFirst seen 2025-11-13 02:24
Last seen 2025-12-26 21:09
Open for 43 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109Public Swagger UI/API detected at path: /api-docs/swagger.json
Found on 2025-12-26 21:09
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 15.197.149.68
Domain: staging-active.api.sonik.fm
Port: 443
URL: https://staging-active.api.sonik.fmFirst seen 2025-11-13 02:24
Last seen 2025-12-26 12:18
Open for 43 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109Public Swagger UI/API detected at path: /api-docs/swagger.json
Found on 2025-12-26 12:18
-
-
Open service 15.197.149.68:443 · staging-active.api.sonik.fm
2026-01-09 03:20
HTTP/1.1 503 Service Unavailable Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=4b901xa%2FUkh%2FJPVdDbWpAbQr95lhdxlikW96f3SOylw%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767928812"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=4b901xa%2FUkh%2FJPVdDbWpAbQr95lhdxlikW96f3SOylw%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767928812" Server: Heroku Via: 1.1 heroku-router Date: Fri, 09 Jan 2026 03:20:16 GMT Content-Length: 567 Connection: close Page title: Application Error <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>Application Error</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="https://www.herokucdn.com/error-pages/application-error.html"></iframe> </body> </html>Found 2026-01-09 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · staging-active.api.sonik.fm
2026-01-02 02:51
HTTP/1.1 503 Service Unavailable Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=f24FDeQOj%2BdLmN%2BE%2BgsUeLBLuXOicexOgjN2e2STD94%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767322279"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=f24FDeQOj%2BdLmN%2BE%2BgsUeLBLuXOicexOgjN2e2STD94%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767322279" Server: Heroku Via: 1.1 heroku-router Date: Fri, 02 Jan 2026 02:51:23 GMT Content-Length: 567 Connection: close Page title: Application Error <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>Application Error</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="https://www.herokucdn.com/error-pages/application-error.html"></iframe> </body> </html>Found 2026-01-02 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · staging-active.api.sonik.fm
2025-12-30 14:54
HTTP/1.1 503 Service Unavailable Cache-Control: no-cache, no-store Content-Type: text/html; charset=utf-8 Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Vk9TUpuOPuaex44uVupVwjzlOJPM0k1uKOCLvdL5xUU%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1767106474"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Vk9TUpuOPuaex44uVupVwjzlOJPM0k1uKOCLvdL5xUU%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1767106474" Server: Heroku Via: 1.1 heroku-router Date: Tue, 30 Dec 2025 14:54:38 GMT Content-Length: 567 Connection: close Page title: Application Error <!DOCTYPE html> <html> <head> <meta name="viewport" content="width=device-width, initial-scale=1"> <meta charset="utf-8"> <title>Application Error</title> <style media="screen"> html,body,iframe { margin: 0; padding: 0; } html,body { height: 100%; overflow: hidden; } iframe { width: 100%; height: 100%; border: 0; } </style> </head> <body> <iframe src="https://www.herokucdn.com/error-pages/application-error.html"></iframe> </body> </html>Found 2025-12-30 by HttpPluginCreate report
-
Open service 3.33.241.96:80 · staging-active.api.sonik.fm
2025-12-22 18:48
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Access-Control-Expose-Headers: Set-Cookie Content-Length: 204 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Mon, 22 Dec 2025 18:48:58 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 1000 Ratelimit-Policy: 1000;w=60 Ratelimit-Remaining: 998 Ratelimit-Reset: 5 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Qtqm2A%2BLmPcW5BAvd9MyZL%2B3oSPZH9x4WLsTSSSInhQ%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766429338"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Qtqm2A%2BLmPcW5BAvd9MyZL%2B3oSPZH9x4WLsTSSSInhQ%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766429338" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Error: ENOENT: no such file or directory, stat '/app/dist/index.html'</pre> </body> </html>Found 2025-12-22 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · staging-active.api.sonik.fm
2025-12-22 09:56
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Access-Control-Expose-Headers: Set-Cookie Content-Length: 204 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Mon, 22 Dec 2025 09:56:46 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 1000 Ratelimit-Policy: 1000;w=60 Ratelimit-Remaining: 998 Ratelimit-Reset: 17 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=PDGFqhfb4Y24seq%2F6v%2B9%2Be42BPS%2BE%2FTuCuyiAdUEClk%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766397406"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=PDGFqhfb4Y24seq%2F6v%2B9%2Be42BPS%2BE%2FTuCuyiAdUEClk%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766397406" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Error: ENOENT: no such file or directory, stat '/app/dist/index.html'</pre> </body> </html>Found 2025-12-22 by HttpPluginCreate report
-
Open service 15.197.149.68:443 · staging-active.api.sonik.fm
2025-12-20 08:14
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Access-Control-Expose-Headers: Set-Cookie Content-Length: 204 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Sat, 20 Dec 2025 08:14:07 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 1000 Ratelimit-Policy: 1000;w=60 Ratelimit-Remaining: 998 Ratelimit-Reset: 8 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=Z0PjF4hQUy5vRT27pEG3%2FLjSoolvgwCCWYxxO2wEYqw%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766218447"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=Z0PjF4hQUy5vRT27pEG3%2FLjSoolvgwCCWYxxO2wEYqw%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766218447" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Error: ENOENT: no such file or directory, stat '/app/dist/index.html'</pre> </body> </html>Found 2025-12-20 by HttpPluginCreate report
-
Open service 3.33.241.96:80 · staging-active.api.sonik.fm
2025-12-19 02:48
HTTP/1.1 404 Not Found Access-Control-Allow-Credentials: true Access-Control-Expose-Headers: Set-Cookie Content-Length: 204 Content-Security-Policy: default-src 'none' Content-Type: text/html; charset=utf-8 Date: Fri, 19 Dec 2025 02:48:41 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Ratelimit-Limit: 1000 Ratelimit-Policy: 1000;w=60 Ratelimit-Remaining: 998 Ratelimit-Reset: 39 Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=zXrQNmRrCfZ7DcZp7cfobJaP%2FT9SzZDDfuPKNMJ6XLM%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1766112521"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=zXrQNmRrCfZ7DcZp7cfobJaP%2FT9SzZDDfuPKNMJ6XLM%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1766112521" Server: Heroku Vary: Origin Via: 1.1 heroku-router X-Content-Type-Options: nosniff X-Powered-By: Express Connection: close Page title: Error <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>Error</title> </head> <body> <pre>Error: ENOENT: no such file or directory, stat '/app/dist/index.html'</pre> </body> </html>Found 2025-12-19 by HttpPluginCreate report