Domain staging-admin-api.airpark.app
Ireland
Software information
Kestrel
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 20.50.64.5
Domain: staging-admin-api.airpark.app
Port: 443
URL: https://staging-admin-api.airpark.appFirst seen 2026-01-12 08:39
Last seen 2026-02-09 22:36
Open for 28 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad035493a4fd675bd96d908287a714e4553697c0ba592e2Public Swagger UI/API detected at path: /swagger/index.html - sample paths: DELETE /Admin/control-fee/{controlFeeExtId} GET /Admin/admins GET /Admin/airpasses GET /Admin/control-fee/{reportExtId} GET /Admin/control-fees GET /Admin/get-current-user-test-token GET /Admin/organizations GET /Admin/organizations/search/{searchString} GET /Admin/parking-area/{parkingAreaExtId} GET /Admin/parking-areas GET /Admin/unread-notifications GET /Admin/users/search/{searchString} GET /Kpi/get-kpi-bookings-and-amount-summary GET /Kpi/get-kpi-bookings-and-amount-summary-by-month GET /Kpi/get-kpi-summary POST /Admin/admins/{userExtId} POST /Admin/airpasses/{airPassExtId}/open POST /Admin/get-parking-area-bookings POST /Admin/mark-all-notifications-as-read/{notificationType} POST /Admin/mark-notification-as-read POST /Admin/mark-notification-as-unread POST /Admin/mark-pending-notifications-as-unread/{notificationType} POST /Admin/organizations/{organizationExtId}/users PUT /Admin/update-control-fee-status PUT /Admin/update-parking-area-status PUT /Admin/update-user-test-token PUT /Admin/users/anonymize/{userExtId}Found on 2026-02-09 22:36
-
-
Open service 20.50.64.5:443 · staging-admin-api.airpark.app
2026-01-23 09:09
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Fri, 23 Jan 2026 09:09:45 GMT Server: Kestrel Request-Context: appId=cid-v1:2f44a0c5-57c7-41d4-933d-4fc9a273b752
Found 2026-01-23 by HttpPluginCreate report
-
Open service 20.50.64.5:80 · staging-admin-api.airpark.app
2026-01-12 08:39
HTTP/1.1 301 Moved Permanently Content-Length: 0 Connection: close Date: Mon, 12 Jan 2026 08:40:08 GMT Location: https://staging-admin-api.airpark.app/
Found 2026-01-12 by HttpPluginCreate report
-
Open service 20.50.64.5:443 · staging-admin-api.airpark.app
2026-01-12 08:39
HTTP/1.1 404 Not Found Content-Length: 0 Connection: close Date: Mon, 12 Jan 2026 08:40:09 GMT Server: Kestrel Request-Context: appId=cid-v1:2f44a0c5-57c7-41d4-933d-4fc9a273b752
Found 2026-01-12 by HttpPluginCreate report