Domain staging.grocerjy.com
Software information
cloudflare
tcp/443
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
First seen 2025-11-16 11:16
Last seen 2026-01-23 02:23
Open for 67 days-
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33eec59ce7cf0a93ea99c56b8512dffea0ff8a0caGraphQL introspection enabled at /graphql Types: 95 (by kind: ENUM: 29, INPUT_OBJECT: 1, OBJECT: 57, SCALAR: 8) Operations: - Query: Query | fields: dropLists, metadata, pages, slides, user - Mutation: Mutation | fields: userAuthenticate, userSendResetPasswordOtp, userSignIn, userSignUp, userUpdate Directives: deprecated, include, skip (total: 3)
Found on 2026-01-23 02:23161.1 kBytes
-
-
Open service 172.67.137.8:443 · staging.grocerjy.com
2026-01-23 02:23
HTTP/1.1 302 Found Date: Fri, 23 Jan 2026 02:23:31 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET,PUT,POST,DELETE,PATCH,OPTIONS Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization X-Content-Type-Options: nosniff Vary: Accept-Encoding Location: https://staging2.grocerjy.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=PDSp0u0ZoFwHCH2%2BFjhwgbUcEtJIi0KrCD313WUVP04AnSxp43lKP7JUqNHKLmltgF2bYgqsJcAREqFlxWK5hgD1x5hBtkgCduuUZJmzbauoLjJs"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Strict-Transport-Security: max-age=15552000; includeSubDomains; preload CF-RAY: 9c23d459791643bf-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-23 by HttpPluginCreate report
-
Open service 172.67.137.8:443 · staging.grocerjy.com
2026-01-09 12:28
HTTP/1.1 302 Found Date: Fri, 09 Jan 2026 12:28:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET,PUT,POST,DELETE,PATCH,OPTIONS Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization X-Content-Type-Options: nosniff Vary: Accept-Encoding Location: https://staging2.grocerjy.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=oEZv%2ByRZEnvGwYam3T%2FQ7TjsQfzfJMA8iQOuhkmQ8sABaItfmhkfqHq8U%2FkWBzXpaH3wAn8%2BcWLHthPhlIRMMqOJpbiVv4RNVi2Jt%2B2Xmz6i00nT"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Strict-Transport-Security: max-age=15552000; includeSubDomains; preload CF-RAY: 9bb3ef5f6d7c8eda-FRA alt-svc: h3=":443"; ma=86400Found 2026-01-09 by HttpPluginCreate report
-
Open service 172.67.137.8:443 · staging.grocerjy.com
2026-01-02 09:29
HTTP/1.1 302 Found Date: Fri, 02 Jan 2026 09:29:55 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET,PUT,POST,DELETE,PATCH,OPTIONS Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization X-Content-Type-Options: nosniff Vary: Accept-Encoding Location: https://staging2.grocerjy.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=JAUh0yF8OIY8UpJAlBGuhgBQndtxSDRDurj%2Bwp9ZSOk7DukbAaxXGM%2BN8DdWsUus6Gc1njHsuGOdkthjJsY9d%2B77H5BXtIthul3Uht7M2e6TYKiw"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Strict-Transport-Security: max-age=15552000; includeSubDomains; preload CF-RAY: 9b793c190d0342ab-EWR alt-svc: h3=":443"; ma=86400Found 2026-01-02 by HttpPluginCreate report
-
Open service 172.67.137.8:443 · staging.grocerjy.com
2025-12-22 18:02
HTTP/1.1 302 Found Date: Mon, 22 Dec 2025 18:02:49 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Server: cloudflare Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET,PUT,POST,DELETE,PATCH,OPTIONS Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization X-Content-Type-Options: nosniff Vary: Accept-Encoding Location: https://staging2.grocerjy.com/ Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=lT7S2YgFtfEh6IyIfuDZ3nM%2FlHT%2F3MpLKThkk1p2hoPtCLDhGSmQcqiFdoOMIq6ZeYPlE9WRpXHZZxeIbay4npvl959M%2B3nvipdH9Oh8mdlSMJMu"}]} Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800} cf-cache-status: DYNAMIC Strict-Transport-Security: max-age=15552000; includeSubDomains; preload CF-RAY: 9b218849bdf93671-FRA alt-svc: h3=":443"; ma=86400Found 2025-12-22 by HttpPluginCreate report