LeakIX - Host staging.eaze.de

Domain staging.eaze.de

United States

AMAZON-02

Software information

Heroku

tcp/443 tcp/80

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 52.223.53.203
Domain: staging.eaze.de
Port: 80
URL: http://staging.eaze.de

First seen 2025-11-28 00:38
Last seen 2026-01-02 14:47
Open for 35 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa372c6c7d4dd3af41801fa620ca069d5feac41b5ea
```
GraphQL introspection enabled at /graphql
Types: 54 (by kind: ENUM: 3, INPUT_OBJECT: 8, OBJECT: 35, SCALAR: 8)
Operations:
- Query: Query | fields: coach, exercise, exerciseTags, exercises, messages
- Mutation: Mutation | fields: logout, markMessagesRead, requestPhoneLogin, sendMessage, updatePushToken
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 14:47
  
  62.9 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 15.197.253.240
Domain: staging.eaze.de
Port: 443
URL: https://staging.eaze.de

First seen 2025-11-28 00:38
Last seen 2026-01-02 14:28
Open for 35 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa372c6c7d4dd3af41801fa620ca069d5feac41b5ea
```
GraphQL introspection enabled at /graphql
Types: 54 (by kind: ENUM: 3, INPUT_OBJECT: 8, OBJECT: 35, SCALAR: 8)
Operations:
- Query: Query | fields: coach, exercise, exerciseTags, exercises, messages
- Mutation: Mutation | fields: logout, markMessagesRead, requestPhoneLogin, sendMessage, updatePushToken
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 14:28
  
  62.9 kBytes
Create report

Open service 15.197.253.240:443 · staging.eaze.de

2026-01-09 15:09

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Location: https://staging.eaze.de/en
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=ECW%2F7BT6l2kkUeDJGWq0aQYv9pH6zKCz67dFBc47N4U%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767971396"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=ECW%2F7BT6l2kkUeDJGWq0aQYv9pH6zKCz67dFBc47N4U%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767971396"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: a5cecece-3166-4930-f21c-316c0a16e566
X-Runtime: 0.002615
X-Xss-Protection: 0
Date: Fri, 09 Jan 2026 15:09:56 GMT
Connection: close

Found 3 days ago by HttpPlugin

Create report

Open service 52.223.53.203:80 · staging.eaze.de

2026-01-09 10:05

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Location: http://staging.eaze.de/en
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=j0tffwV3Sn9albi6FgXX1Xmsw1DLSWO4d149zS6HPwk%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767953210"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=j0tffwV3Sn9albi6FgXX1Xmsw1DLSWO4d149zS6HPwk%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767953210"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 1f6385df-d071-b7db-614a-9d8f731284a9
X-Runtime: 0.002510
X-Xss-Protection: 0
Date: Fri, 09 Jan 2026 10:06:50 GMT
Connection: close

Found 3 days ago by HttpPlugin

Create report

Open service 52.223.53.203:80 · staging.eaze.de

2026-01-02 14:47

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Location: http://staging.eaze.de/en
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=ninKHROq4EAg4%2FhEPeg2U73Vxwqki3kCVxeIDwvWsUg%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767365265"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=ninKHROq4EAg4%2FhEPeg2U73Vxwqki3kCVxeIDwvWsUg%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767365265"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 8c5fbdea-d814-9447-5a86-bf56b699685f
X-Runtime: 0.003107
X-Xss-Protection: 0
Date: Fri, 02 Jan 2026 14:47:45 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 15.197.253.240:443 · staging.eaze.de

2026-01-02 14:28

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Location: https://staging.eaze.de/en
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=mZkqRoqd%2BoOZNX5%2F6HHsTvTGtua0clR43Zo392%2FeV7Q%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1767364139"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=mZkqRoqd%2BoOZNX5%2F6HHsTvTGtua0clR43Zo392%2FeV7Q%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1767364139"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: ad2eb795-8957-5445-851b-2db2320abbe2
X-Runtime: 0.003370
X-Xss-Protection: 0
Date: Fri, 02 Jan 2026 14:28:59 GMT
Connection: close

Found 2026-01-02 by HttpPlugin

Create report

Open service 15.197.253.240:443 · staging.eaze.de

2025-12-22 23:24

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Location: https://staging.eaze.de/en
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=AV6VUnAD4k5afveRNuphxp6kJ6Fin56Fo5u92JWACoU%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766445857"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=AV6VUnAD4k5afveRNuphxp6kJ6Fin56Fo5u92JWACoU%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766445857"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 7a00ccf6-f043-8fa5-edf9-faebdd55d015
X-Runtime: 0.002080
X-Xss-Protection: 0
Date: Mon, 22 Dec 2025 23:24:17 GMT
Connection: close

Found 2025-12-22 by HttpPlugin

Create report

Open service 52.223.53.203:80 · staging.eaze.de

2025-12-22 17:03

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Location: http://staging.eaze.de/en
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=V0cLyaMMQfE8BvvJkIAlBAu1ZlkWWpKSd7dapP5%2BQrA%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766423008"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=V0cLyaMMQfE8BvvJkIAlBAu1ZlkWWpKSd7dapP5%2BQrA%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766423008"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 943ca5ba-424a-c17a-420e-ca4cc06ec9fb
X-Runtime: 0.002318
X-Xss-Protection: 0
Date: Mon, 22 Dec 2025 17:03:28 GMT
Connection: close

Found 2025-12-22 by HttpPlugin

Create report

Open service 15.197.253.240:443 · staging.eaze.de

2025-12-21 07:47

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Location: https://staging.eaze.de/en
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=hyx9btRIYheCaWj%2BsMh%2FuzWs8LTTiDsPFyh9V0NvlUs%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766303229"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=hyx9btRIYheCaWj%2BsMh%2FuzWs8LTTiDsPFyh9V0NvlUs%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766303229"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 377c364f-3dc6-eda6-eeea-09c10854b42b
X-Runtime: 0.002768
X-Xss-Protection: 0
Date: Sun, 21 Dec 2025 07:47:09 GMT
Connection: close

Found 2025-12-21 by HttpPlugin

Create report

Open service 52.223.53.203:80 · staging.eaze.de

2025-12-20 17:31

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Location: http://staging.eaze.de/en
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=p55fpE3J60w5guRDZD0WXjk36LDJTngHl2O83pJoQOE%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766251905"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=p55fpE3J60w5guRDZD0WXjk36LDJTngHl2O83pJoQOE%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766251905"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 774593e5-933c-eab5-5ec7-062b46223ce8
X-Runtime: 0.002532
X-Xss-Protection: 0
Date: Sat, 20 Dec 2025 17:31:45 GMT
Connection: close

Found 2025-12-20 by HttpPlugin

Create report

Open service 15.197.253.240:443 · staging.eaze.de

2025-12-19 09:54

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Location: https://staging.eaze.de/en
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=WbfF0XtYq1oZl8tFucRuqoWSuaN3KHQ%2FK8I6MuC%2BYBk%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766138091"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=WbfF0XtYq1oZl8tFucRuqoWSuaN3KHQ%2FK8I6MuC%2BYBk%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766138091"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 665c36a2-6de9-e269-7115-578be0af8ae4
X-Runtime: 0.002494
X-Xss-Protection: 0
Date: Fri, 19 Dec 2025 09:54:51 GMT
Connection: close

Found 2025-12-19 by HttpPlugin

Create report

Open service 52.223.53.203:80 · staging.eaze.de

2025-12-19 06:34

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Length: 0
Content-Type: text/html; charset=utf-8
Location: http://staging.eaze.de/en
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Referrer-Policy: strict-origin-when-cross-origin
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=%2FIlqvWuLdrtKiZ36opIcVDuNG4i2XUpVsH8nrmZ8qIA%3D\u0026sid=812dcc77-0bd0-43b1-a5f1-b25750382959\u0026ts=1766126043"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=%2FIlqvWuLdrtKiZ36opIcVDuNG4i2XUpVsH8nrmZ8qIA%3D&sid=812dcc77-0bd0-43b1-a5f1-b25750382959&ts=1766126043"
Server: Heroku
Via: 1.1 heroku-router
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 4be69c0a-691f-0fd0-f21f-aaec27319675
X-Runtime: 0.002175
X-Xss-Protection: 0
Date: Fri, 19 Dec 2025 06:34:03 GMT
Connection: close

Found 2025-12-19 by HttpPlugin

Create report

staging.eaze.de

Fingerprint:

d97d13e9cd23f9dc6a393c2d44f9f60e44fd1b2d654bfdb4cd7de4fec01fc4eb

CN:

staging.eaze.de

Key:

RSA-2048

Issuer:

R13

Not before:

2025-11-27 23:39

Not after:

2026-02-25 23:39

Domain summary

staging.eaze.de 11

1 recorded

IP summary

15.197.253.240 1 52.223.53.203 1

2 recorded

Domain staging.eaze.de

United States

Software information

GraphQL introspection is enabled.

GraphQL introspection is enabled.

staging.eaze.de

Domain summary

IP summary