LeakIX - Host twincities.com

Domain twincities.com

United States

MICROSOFT-CORP-MSN-AS-BLOCK

Debian

Software information

Apache Apache 2.4.65

tcp/443 tcp/80

Microsoft-IIS 10.0

tcp/443 tcp/80

cloudflare

tcp/443 tcp/80 tcp/8443

nginx nginx

tcp/443 tcp/80

Apache server-status page is publicly available

The server-status page (usually /server-status) allows server administrators to find out how well their server is performing.

This is a HTML page that gives the current server statistics such as the server version, up time,cpu, ram, and information about requests made to the server.

This information can be very useful if the application is sent sensitive information as GET requests. If you monitor this page you might be able to find CSRF tokens, API keys, hidden paths, and other sensitive information being sent to the server.

https://medium.com/@ghostlulzhacks/apache-server-status-a70abed83f5a

IP: 34.86.161.6
Domain: analytics.twincities.com
Port: 443
URL: https://analytics.twincities.com

First seen 2022-07-20 02:13
Last seen 2023-01-17 06:44
Open for 181 days

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310f537fb50f537fb5a9256fee

Apache Status

Apache Server Status for analytics.twincities.com (via 127.0.0.1)

Server Version: Apache/2.4.54 () OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jun 30 2022 11:02:23

Current Time: Tuesday, 17-Jan-2023 06:44:48 UTC
Restart Time: Tuesday, 17-Jan-2023 02:29:33 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  4 hours 15 minutes 15 seconds
Server load: 0.67 1.76 1.52
Total accesses: 25246 - Total Traffic: 384.3 MB - Total Duration: 14057457
CPU Usage: u988.61 s289.51 cu302.45 cs4181.59 - 37.6% CPU load
1.65 requests/sec - 25.7 kB/second - 15.6 kB/request - 556.819 ms/request
3 requests currently being processed, 29 idle workers
_W______________K___________W___................................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-01450/869/869_
204.1892784083590.031.3831.38
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

1-01620/666/666W
95.48673502816200.03.273.27
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

2-01730/748/748_
188.56452743018610.031.8031.80
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

3-01790/789/789_
183.7537633377740.09.129.12
127.0.0.1http/1.1localhost:80GET /app/dash/instanceManagement/test_uptime HTTP/1.1

4-01850/974/974_
189.9034766526330.010.7510.75
127.0.0.1http/1.1localhost:80GET /app/fetcher/cron/fetchbyservicepartial/id/251 HTTP/1.1

5-01910/1019/1019_
183.11482785548950.012.2912.29
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

6-01970/621/621_
186.1449853307970.03.753.75
127.0.0.1http/1.1localhost:80GET /app/dash/instanceManagement/test_uptime HTTP/1.1

7-02030/750/750_
242.693928510905300.05.415.41
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

8-02090/860/860_
181.1202804137350.011.6711.67
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

9-02150/727/727_
180.469563904590.08.558.55
127.0.0.1http/1.1localhost:80GET /app/dash/instanceManagement/test_uptime HTTP/1.1

10-02210/739/739_
170.27422762985780.05.465.46
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

11-02270/985/985_
187.7247754152130.07.457.45
127.0.0.1http/1.1localhost:80GET /server/api/dash/widgets/plottypes/mapboxlayers HTTP/1.1

12-02330/692/692_
192.16703975600.06.176.17
127.0.0.1http/1.1localhost:80GET /.env.strider HTTP/1.1

13-02350/914/914_
180.051585415070.09.099.09
127.0.0.1http/1.1localhost:80GET /app/dash/instanceManagement/test_uptime HTTP/1.1

14-02450/966/966_
179.9132724670240.06.276.27
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

15-02510/916/916_
182.19226564788370.014.3214.32
127.0.0.1http/1.1localhost:80GET /server/api/categories/49/data/21?aggregate=true&daterange=

16-02911/769/769K
173.611544749891.618.9618.96
127.0.0.1http/1.1localhost:80GET /app/dash/instanceManagement/test_uptime HTTP/1.1

17-07190/746/746_
175.48152763861220.03.223.22
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

18-010660/847/847_
174.52122703459030.012.5312.53
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

19-011130/845/845_
193.80182924160700.028.8828.88
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

20-020500/757/757_
178.59302734357710.018.2918.29
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

21-050970/690/690_
296.512127913722840.017.4017.40
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

22-061850/818/818_
177.2181194043220.026.2626.26
127.0.0.1http/1.1localhost:80GET /server/api/services/33/data/trafficsources?aggregate=false

23-062020/915/915_
177.53242783859450.015.0015.00
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

24-062080/875/875_
176.49362973682710.019.5119.51
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

25-0236360/749/749_
158.2862732958440.04.604.60
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

26-0236780/612/612_
165.161202588520.02.452.45
127.0.0.1http/1.1localhost:80GET /.env.dev.local HTTP/1.1

27-0236840/641/641_
165.05272734087680.021.6021.60
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

28-0237128/645/645W
155.060030176219.83.443.44
127.0.0.1http/1.1localhost:80GET /server-status HTTP/1.1

29-0237180/686/686_
162.26161742629970.09.269.26
127.0.0.1http/1.1localhost:80POST /server/api/pubsub/auth HTTP/1.1

30-0237240/862/862_
161.2616883154650.04.364.36
127.0.0.1http/1.1localhost:80GET /server/api/dash/widgets/values/set?fields=type HTTP/1.1

31-0237300/554/554_
143.04332752626910.01.831.83
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1


  
 SrvChild Server number - generation
 PIDOS process ID
 AccNumber of accesses this connection / this child / this slot
 MMode of operation
CPUCPU usage, number of seconds
SSSeconds since beginning of most recent request
 ReqMilliseconds required to process most recent request
 DurSum of milliseconds required to process all requests
 ConnKilobytes transferred this connection
 ChildMegabytes transferred this child
 SlotTotal megabytes transferred this slot
 



SSL/TLS Session Cache Status:


cache type: SHMCB, shared memory: 512000 bytes, current entries: 0subcaches: 32, indexes per subcache: 88index usage: 0%, cache usage: 0%total entries stored since starting: 0total entries replaced since starting: 0total entries expired since starting: 0total (pre-expiry) entries scrolled out of the cache: 0total retrieves since starting: 0 hit, 0 misstotal removes since starting: 0 hit, 0 miss

Found on 2023-01-17 06:44

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310f537fb50f537fb5ae178c55

Apache Status

Apache Server Status for analytics.twincities.com (via 127.0.0.1)

Server Version: Apache/2.4.54 () OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jun 30 2022 11:02:23

Current Time: Thursday, 17-Nov-2022 22:44:30 UTC
Restart Time: Wednesday, 16-Nov-2022 13:29:42 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 9 hours 14 minutes 48 seconds
Server load: 0.91 4.37 3.52
Total accesses: 521542 - Total Traffic: 4.6 GB - Total Duration: 795349174
CPU Usage: u6892.12 s1886.1 cu41039.5 cs42318.4 - 77% CPU load
4.36 requests/sec - 40.6 kB/second - 9.3 kB/request - 1525 ms/request
6 requests currently being processed, 27 idle workers
K_K____________W._.._K..___.._K..____.._._._._K.................
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-022446701/147/13260K
29.730118166608964.30.53114.99
127.0.0.1http/1.1localhost:80GET /server/api/importwizard?metadata=true&summary=true&active=

1-021836470/647/12873_
113.233365197621010.03.0286.98
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

2-0204816413/1748/13878K
300.8001011830478577.724.22114.90
127.0.0.1http/1.1localhost:80POST /server/api/pubsub/auth HTTP/1.1

3-020481700/1479/13578_
260.7118380224593280.09.39198.90
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

4-018819410/3014/14558_
539.3712368197591260.020.40106.79
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

5-020483000/2238/15034_
352.112893271443540.023.35147.35
127.0.0.1http/1.1localhost:80GET /server/api/enums/themes/colors HTTP/1.1

6-021836870/710/14631_
116.58152307174903850.03.9483.32
127.0.0.1http/1.1localhost:80GET /app/iotool/tasks/activeTaskAssignmentsForQueue?clusterIds%

7-020977310/1513/11925_
225.3939377215519090.07.1591.43
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

8-021306900/984/12843_
164.48381637205824400.010.81126.62
127.0.0.1http/1.1localhost:80GET /server/api/services/72/data/cgnad?aggregate=false&datatabl

9-02170/16808/16808_
2773.8836368216511400.0139.02139.02
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

10-021836930/554/8896_
248.8827370400149150.018.5571.99
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

11-021336860/1046/13386_
170.441175159412050.05.4696.70
127.0.0.1http/1.1localhost:80GET /server/api/services/1000026/data/cgn?aggregate=false&datat

12-017887570/2978/10443_
566.451283137206810.020.8079.35
127.0.0.1http/1.1localhost:80GET /app/iotool/tasks/openTaskAssignmentsForLineItem?lineItemId

13-022447180/202/14274_
27.7221372219397290.01.19113.54
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

14-012115130/7470/11295_
1230.9633388166786330.084.93114.48
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

15-0224472415/134/14691W
26.74001455695839.71.4797.35
127.0.0.1http/1.1localhost:80GET /server-status HTTP/1.1

16-0-0/0/11384.
0.0039230130007240.00.00128.90
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

17-021307490/1212/11302_
185.543271160810700.010.89101.26
127.0.0.1http/1.1localhost:80GET /app/iotool/form/taskFormFieldGroups?taskId=49 HTTP/1.1

18-0-0/0/12968.
0.0038830216588100.00.00144.17
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

19-0-0/0/12072.
0.0039070200865090.00.00133.96
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

20-015611470/5060/11784_
871.25381097159317650.052.18117.91
127.0.0.1http/1.1localhost:80GET /server/api/categories/58/data/37?aggregate=false&datatable

21-022002624/681/8880K
96.05412644569059579.04.37127.57
127.0.0.1http/1.1localhost:80GET /server/api/categories/55/data/50?aggregate=true&daterange=

22-0-0/0/9296.
0.0038950162217680.00.0088.54
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

23-0-0/0/12054.
0.0038860177194610.00.00111.60
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

24-021337440/1038/6448_
188.0424366165025120.08.4147.95
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

25-021307830/1145/6078_
182.882014681188160.038.1190.47
127.0.0.1http/1.1localhost:80GET /server/api/services/282/data/adgroup?limit=1000&daterange=

26-021337500/750/7803_
165.8515372121986590.06.6273.52
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

27-0-0/0/8834.
0.0039190119762080.00.0083.68
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

28-0-0/0/13998.
0.0039170193025910.00.00188.73
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

29-017103680/4403/6963_
752.8838116697227590.033.1190.57
127.0.0.1http/1.1localhost:80GET /server/api/categories/58/data/37?aggregate=true&daterange=

30-046954822/12281/13293K
1989.450016945086220.799.09105.12
127.0.0.1http/1.1localhost:80GET /.DS_Store HTTP/1.1

31-0-0/0/10087.
0.0039180127458760.00.0075.50
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

32-0-0/0/9879.
0.0039150131224550.00.0073.93
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

33-017103740/4375/6862_
727.32937197552230.030.1542.87
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

34-017104360/3988/5557_
664.332814474685400.029.3679.34
127.0.0.1http/1.1localhost:80GET /app/fetcher/cron/relaunch_fetch/id/34/ HTTP/1.1

35-021337620/1159/4595_
197.29287058249000.08.7131.34
127.0.0.1http/1.1localhost:80GET /app/fetcher/cron/relaunch_fetch/id/39/ HTTP/1.1

36-020392010/2222/2661_
332.693038047168020.013.8422.29
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

37-0-0/0/7345.
0.003906076709500.00.0055.79
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

38-0-0/0/7336.
0.003679099551430.00.0049.35
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

39-022004520/442/4144_
83.01339556740650.02.3836.74
127.0.0.1http/1.1localhost:80GET /server/api/nav/menu HTTP/1.1

40-0-0/0/2682.
0.00960027916900.00.0015.76
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

41-021308310/1217/11974_
185.8817170135535370.05.7496.97
127.0.0.1http/1.1localhost:80GET /app/iotool/orders/order?id=4735 HTTP/1.1

42-0-0/0/1969.
0.001374023438120.00.009.38
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

43-022004580/721/2763_
95.37037536607060.04.3517.13
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

44-0-0/0/5011.
0.001438074512010.00.0029.85
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

45-022004970/556/1082_
86.74638711534830.03.076.49
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

46-022005032/615/5583K
93.65090686501945.65.3570.47
127.0.0.1http/1.1localhost:80GET /app/iotool/tasks HTTP/1.1

47-0-0/0/807.
0.003908016179900.00.005.85
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

48-0-0/0/10156.
0.009580140196840.00.0076.58
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

49-0-0/0/1833.
0.0084463020098330.00.0014.13
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

50-0-0/0/5.
0.0084472015160.00.000.00
127.0.0.1http/1.1localhost:80OPTIONS * HTT

Found on 2022-11-17 22:44

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310f537fb50f537fb5a5cbfac2

Apache Status

Apache Server Status for analytics.twincities.com (via 127.0.0.1)

Server Version: Apache/2.4.54 () OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jun 30 2022 11:02:23

Current Time: Sunday, 18-Sep-2022 02:43:49 UTC
Restart Time: Saturday, 17-Sep-2022 02:06:03 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 37 minutes 46 seconds
Server load: 0.20 0.20 0.25
Total accesses: 198106 - Total Traffic: 1.7 GB - Total Duration: 107535694
CPU Usage: u3321.96 s1469.91 cu5004.93 cs26018.9 - 40.4% CPU load
2.23 requests/sec - 20.6 kB/second - 9.2 kB/request - 542.819 ms/request
3 requests currently being processed, 29 idle workers
_.._.W_.__..K________.__._.K_...._.___....__._._.._.._....._._..
................................................................
................................................................
................................................................

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-08223870/1475/2879_
387.026134613711260.020.6927.41
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

1-0-0/0/5438.
0.0010465032481190.00.0031.00
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

2-0-0/0/5390.
0.0010312026157550.00.0025.49
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

3-01770/6738/6738_
1130.856434828976120.0104.02104.02
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

4-0-0/0/5619.
0.0010462024723680.00.0055.50
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

5-01890/6710/6710W
1111.280029493850.034.5334.53
127.0.0.1http/1.1localhost:80GET /server-status HTTP/1.1

6-011304950/444/5217_
123.182910922920500.01.4730.65
127.0.0.1http/1.1localhost:80GET /app/fetcher/cron/fetchbyservicepartial/id/251 HTTP/1.1

7-0-0/0/4999.
0.0010442018844320.00.0040.13
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

8-02070/5964/5964_
1145.385837430164220.029.2229.22
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

9-02130/6332/6332_
1143.422413327073820.050.1350.13
127.0.0.1http/1.1localhost:80POST /server/api/pubsub/auth HTTP/1.1

10-0-0/0/6759.
0.0010461046332530.00.0032.07
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

11-0-0/0/4872.
0.0010447037239980.00.0044.78
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

12-02316/6475/6475K
1136.344813664483104.540.8440.84
127.0.0.1http/1.1localhost:80GET /app/dash/instanceManagement/test_uptime HTTP/1.1

13-02370/7067/7067_
1152.78434529362210.0112.67112.67
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

14-02430/6126/6126_
1225.654635132827850.032.3932.39
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

15-02490/6634/6634_
1134.444036327328470.027.8227.82
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

16-08225400/1418/2760_
374.46735314480860.03.4712.11
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

17-015280/6569/6569_
1149.534335027437510.035.4035.40
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

18-019130/6286/6286_
1175.933134963591850.0124.95124.95
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

19-019500/5374/5374_
1127.555233727617900.037.1337.13
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

20-011305820/389/1542_
121.49223446647410.00.736.16
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

21-0-0/0/1546.
0.0010466011103120.00.007.53
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

22-08228480/1319/3217_
363.804514214807070.02.8912.94
127.0.0.1http/1.1localhost:80GET /app/dash/instanceManagement/test_uptime HTTP/1.1

23-0123120/5931/5931_
1147.8528627716010.0111.14111.14
127.0.0.1http/1.1localhost:80GET /app/dash/instanceManagement/test_uptime HTTP/1.1

24-0-0/0/5516.
0.0010464033875870.00.0021.76
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

25-0123770/6318/6318_
1147.861936528015950.038.7538.75
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

26-0-0/0/6324.
0.0010444031949310.00.0092.92
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

27-08228542/1304/2610K
438.43331146925119.011.4620.73
127.0.0.1http/1.1localhost:80GET /app/assets/custom/light_logo_cluster-37-dfmadtaximng.png?1

28-02533060/4851/4851_
875.673734627367040.024.7624.76
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

29-0-0/0/4019.
0.0010463025262950.00.00128.38
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

30-0-0/0/3499.
0.0010484014116380.00.0023.50
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

31-0-0/0/4505.
0.0010460020149540.00.0085.25
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

32-0-0/0/3928.
0.0010483016501770.00.0019.03
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

33-02541890/5159/5159_
895.481034924410990.041.4541.45
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

34-0-0/0/3673.
0.0010458014182850.00.0040.19
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

35-011306400/438/4203_
106.891338023817120.00.9725.33
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

36-02542380/4838/4838_
989.89134070695100.047.7247.72
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

37-02542440/4987/4987_
902.414938227791300.045.8945.89
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

38-0-0/0/3.
0.001048203110.00.000.00
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

39-0-0/0/5.
0.001048006730.00.000.01
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

40-0-0/0/3.
0.001048106950.00.000.00
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

41-0-0/0/3.
0.001047906850.00.000.00
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

42-08228920/1383/1383_
355.81283346316300.033.3833.38
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

43-011306610/410/412_
126.561901522920.00.910.91
localhosthttp/1.1localhost:80GET /server-status/?auto HTTP/1.1

44-0-0/0/3.
0.001047807290.00.000.00
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

45-08229050/1306/1306_
439.633438112304550.015.1915.19
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

46-0-0/0/1037.
0.001045905161790.00.001.95
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

47-08229220/1348/1348_
360.6524947191200.05.455.45
127.0.0.1http/1.1localhost:80GET /app/dash/instanceManagement/test_uptime HTTP/1.1

48-0-0/0/1.
0.0010471000.00.000.00
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

49-0-0/0/1.
0.0010477000.00.000.00
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

50-011307770/374/374_
123.91553441996960.02.392.39
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

51-0-0/0/1.
0.0010474000.00.000.00
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

52-0-0/0/1.
0.0010470000.00.000.00
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

53-0<

Found on 2022-09-18 02:43

Severity: medium
Fingerprint: ee80c6706842d3ef6842d3ef6325bb316325bb310f537fb50f537fb54039c83b

Apache Status

Apache Server Status for analytics.twincities.com (via 127.0.0.1)

Server Version: Apache/2.4.54 () OpenSSL/1.0.2k-fips
Server MPM: prefork
Server Built: Jun 30 2022 11:02:23

Current Time: Wednesday, 20-Jul-2022 02:13:24 UTC
Restart Time: Tuesday, 19-Jul-2022 01:40:12 UTC
Parent Server Config. Generation: 1
Parent Server MPM Generation: 0
Server uptime:  1 day 33 minutes 12 seconds
Server load: 0.51 0.53 0.87
Total accesses: 354537 - Total Traffic: 4.1 GB - Total Duration: 748340562
CPU Usage: u1492.31 s517.97 cu34971.8 cs32004.5 - 78% CPU load
4.01 requests/sec - 48.1 kB/second - 12.0 kB/request - 2110.75 ms/request
7 requests currently being processed, 29 idle workers
_W.._........W.....__..._..W..W....._..W....__......._._........
..W................._._......._........._..........._...........
......._...._.......__................................_.._......
..._...........K..._.............._.._..._....___...............

Scoreboard Key:
"_" Waiting for Connection, 
"S" Starting up, 
"R" Reading Request,
"W" Sending Reply, 
"K" Keepalive (read), 
"D" DNS Lookup,
"C" Closing connection, 
"L" Logging, 
"G" Gracefully finishing, 
"I" Idle cleanup of worker, 
"." Open slot with no current process



SrvPIDAccMCPU
SSReqDurConnChildSlotClientProtocolVHostRequest

0-016631870/540/8029_
107.6648331256972620.02.12126.16
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

1-017458372/135/9316W
39.0014020169876154.10.60135.56
127.0.0.1http/1.1localhost:80GET /app/iotool/cron/run?group=EntercomMonthlyJob HTTP/1.1

2-0-0/0/7882.
0.00106680182715980.00.0054.01
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

3-0-0/0/8024.
0.00106660199034350.00.00109.18
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

4-015397640/673/7928_
193.26451133365500.07.41118.42
localhosthttp/1.1localhost:80GET /server-status/?auto HTTP/1.1

5-0-0/0/6773.
0.00106950174890040.00.0073.38
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

6-0-0/0/7356.
0.00108660109818450.00.0061.51
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

7-0-0/0/8868.
0.00108610134771570.00.0095.59
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

8-0-0/0/7122.
0.00107210118703610.00.0065.91
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

9-0-0/0/7988.
0.00106670141387340.00.0064.16
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

10-0-0/0/8714.
0.00107430117501580.00.00123.08
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

11-0-0/0/7678.
0.00107410209649540.00.0065.96
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

12-0-0/0/7599.
0.00107610122097000.00.0074.03
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

13-0161784818/627/8834W
144.56001401094736.46.9560.96
127.0.0.1http/1.1localhost:80GET /server/api/services/137/data/cgn?aggregate=true&daterange=

14-0-0/0/6761.
0.00107870127849040.00.0051.42
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

15-0-0/0/7894.
0.00107840105394160.00.0085.64
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

16-0-0/0/7662.
0.00108640134240740.00.0062.66
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

17-0-0/0/8382.
0.00107790129424610.00.0081.51
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

18-0-0/0/8512.
0.00107990182357990.00.0077.51
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

19-016178620/519/7914_
141.4321331108701400.01.7167.61
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

20-016179030/605/7606_
138.4532357118205550.02.4549.45
127.0.0.1http/1.1localhost:80GET /app/dash/leadRecorder/record_facebook_lead?page_id=5212983

21-0-0/0/8438.
0.00107150145519510.00.0096.30
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

22-0-0/0/7642.
0.00108000116303300.00.0069.64
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

23-0-0/0/4805.
0.00108230102142160.00.0040.24
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

24-013864960/2111/8026_
376.0242403156306850.013.0970.49
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

25-0-0/0/5736.
0.0010798077757550.00.0055.82
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

26-0-0/0/6670.
0.0010749089980430.00.0047.22
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

27-016180160/566/6729W
154.1200112951000.05.79118.42
127.0.0.1http/1.1localhost:80GET /server-status HTTP/1.1

28-0-0/0/5275.
0.0010690081358540.00.00102.49
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

29-0-0/0/4658.
0.0010790074479310.00.0028.17
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

30-05680111/202/1948W
28.4050494012123341.51.989.33
127.0.0.1http/1.1localhost:80GET /server/api/services/39/data/adgroupcgn?datatable=0&timegro

31-0-0/0/6036.
0.00108570106130830.00.0034.93
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

32-0-0/0/5536.
0.00107670124932420.00.00138.62
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

33-0-0/0/6906.
0.00107550119260710.00.0074.07
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

34-0-0/0/3969.
0.0010845091177530.00.0032.01
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

35-0-0/0/2743.
0.00107270139130950.00.0025.59
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

36-012767690/1298/2698_
235.7757327330797100.07.4926.08
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

37-0-0/0/2875.
0.0010708058491690.00.0067.17
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

38-0-0/0/3651.
0.0010700057655980.00.0019.37
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

39-011400668/624/1714W
101.052603802686059167.34.6116.08
127.0.0.1http/1.1localhost:80GET /server/api/categories/60/data/50?aggregate=false&datatable

40-0-0/0/3129.
0.0010722067324360.00.0051.40
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

41-0-0/0/4472.
0.0010846078935270.00.0025.37
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

42-0-0/0/2180.
0.0010774037849720.00.0022.61
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

43-0-0/0/2718.
0.0010681051563850.00.0048.78
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

44-014965190/1074/3613_
247.211234360155270.05.6420.61
127.0.0.1http/1.1localhost:80GET /get_version.php HTTP/1.1

45-014201650/1800/3841_
347.904612872687530.073.29111.93
127.0.0.1http/1.1localhost:80GET /app/dash/instanceManagement/test_uptime HTTP/1.1

46-0-0/0/2663.
0.0010807046599290.00.0048.07
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

47-0-0/0/4651.
0.0010859090563060.00.0052.22
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

48-0-0/0/1797.
0.0010760034823180.00.0017.81
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

49-0-0/0/3346.
0.0010809059657410.00.0048.86
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

50-0-0/0/1918.
0.0010622038145510.00.0040.96
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

51-0-0/0/1288.
0.0010808022440790.00.007.89
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

52-0-0/0/2904.
0.0010818055935160.00.0061.22
127.0.0.1http/1.1localhost:80OPTIONS * HTTP/1.0

53-016183990/564/1594_
142.532433930976890.09.6815

Found on 2022-07-20 02:13

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 192.0.66.2
Domain: www.twincities.com
Port: 443
URL: https://www.twincities.com

First seen 2025-11-12 05:37
Last seen 2026-01-02 20:34
Open for 51 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 20:34
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3ef5b0d3c0dcd3a0053dc8554a145b5a5f5290565
```
GraphQL introspection enabled at /graphql
Types: 967 (by kind: ENUM: 60, INPUT_OBJECT: 225, INTERFACE: 124, OBJECT: 551, SCALAR: 5, UNION: 2)
Operations:
- Query: RootQuery | fields: aiLog, aiLogBy, aiLogs, allGroupSubscriptions, allSettings
- Mutation: RootMutation | fields: addPostSubscription, addSubscriberSite, createAiLog, createAuthor, createCategory
Directives: deprecated, include, skip (total: 3)
```
  Found on 2025-11-30 17:29
  
  1.8 MBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 192.0.66.70
Domain: staging.twincities.com
Port: 443
URL: https://staging.twincities.com

First seen 2025-11-18 10:27
Last seen 2026-01-02 19:57
Open for 45 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 19:57
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa32c44595d9da02e3ff20744d14c91a5ac7ce31d14
```
GraphQL introspection enabled at /graphql
Types: 929 (by kind: ENUM: 60, INPUT_OBJECT: 219, INTERFACE: 124, OBJECT: 519, SCALAR: 5, UNION: 2)
Operations:
- Query: RootQuery | fields: aiLog, aiLogBy, aiLogs, allGroupSubscriptions, allSettings
- Mutation: RootMutation | fields: addPostSubscription, addSubscriberSite, createAiLog, createAuthor, createCategory
Directives: deprecated, include, skip (total: 3)
```
  Found on 2025-11-29 12:41
  
  1.7 MBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 192.0.66.60
Domain: develop.twincities.com
Port: 443
URL: https://develop.twincities.com

First seen 2025-11-09 22:26
Last seen 2026-01-02 13:03
Open for 53 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 13:03
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3c8930ee732811bd56e04c0ad7c34249516af0e75
```
GraphQL introspection enabled at /graphql
Types: 945 (by kind: ENUM: 59, INPUT_OBJECT: 221, INTERFACE: 121, OBJECT: 537, SCALAR: 5, UNION: 2)
Operations:
- Query: RootQuery | fields: allGroupSubscriptions, allSettings, authors, categories, category
- Mutation: RootMutation | fields: addPostSubscription, addSubscriberSite, createAuthor, createCategory, createComment
Directives: deprecated, include, skip (total: 3)
```
  Found on 2025-12-01 11:12
  
  1.7 MBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 192.0.66.2
Domain: twincities.com
Port: 443
URL: https://twincities.com

First seen 2025-11-12 05:37
Last seen 2026-01-02 08:44
Open for 51 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 08:44
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3ef5b0d3c0dcd3a0053dc8554a145b5a5f5290565
```
GraphQL introspection enabled at /graphql
Types: 967 (by kind: ENUM: 60, INPUT_OBJECT: 225, INTERFACE: 124, OBJECT: 551, SCALAR: 5, UNION: 2)
Operations:
- Query: RootQuery | fields: aiLog, aiLogBy, aiLogs, allGroupSubscriptions, allSettings
- Mutation: RootMutation | fields: addPostSubscription, addSubscriberSite, createAiLog, createAuthor, createCategory
Directives: deprecated, include, skip (total: 3)
```
  Found on 2025-12-01 11:46
  
  1.8 MBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 192.0.66.39
Domain: preprod.twincities.com
Port: 443
URL: https://preprod.twincities.com

First seen 2025-11-09 23:33
Last seen 2026-01-02 05:17
Open for 53 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 05:17
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3ef5b0d3c0dcd3a0053dc8554a145b5a5f5290565
```
GraphQL introspection enabled at /graphql
Types: 967 (by kind: ENUM: 60, INPUT_OBJECT: 225, INTERFACE: 124, OBJECT: 551, SCALAR: 5, UNION: 2)
Operations:
- Query: RootQuery | fields: aiLog, aiLogBy, aiLogs, allGroupSubscriptions, allSettings
- Mutation: RootMutation | fields: addPostSubscription, addSubscriberSite, createAiLog, createAuthor, createCategory
Directives: deprecated, include, skip (total: 3)
```
  Found on 2025-12-01 11:12
  
  1.8 MBytes
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 129.80.155.9
Domain: ss-advertising.twincities.com
Port: 80
URL: http://ss-advertising.twincities.com

First seen 2025-10-14 23:41
Last seen 2026-01-09 04:31
Open for 86 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549ce94c9101aeb2f1b2657ff9a3c4f579af95ac9c4

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/Orders/CancelOrder/{orderId}/{navigaOrderId}
DELETE /api/Orders/DeleteDraft/{orderId}
DELETE /api/Payment/deleteCard/{customerId}/{cardId}
DELETE /api/PhotoLibrary/DeletePhoto/{customerId}
DELETE /api/Template/DeleteTemplate
GET /api/Accounts/getCustomerDetails/{customerId}
GET /api/Accounts/states
GET /api/AdMaterial/GenerateAdTemplatePreview/{orderId}/{orderItemId}
GET /api/Auth/validateToken
GET /api/Classified/GenerateClassifiedTemplates
GET /api/Classified/GetAllCatalogFolderNames
GET /api/Classified/GetClassifiedAdditionalInfo/{packageId}/{templateId}/{categoryId}
GET /api/Classified/GetClassifiedCategories
GET /api/Classified/GetClassifiedEmblemsByFolder
GET /api/Classified/GetEmblemLogo
GET /api/Classified/GetMappedMetaDataDetails
GET /api/Classified/GetTemplateHTML/{orderId}/{templateId}
GET /api/Classified/GetTemplateImages/{packageId}
GET /api/Classified/IsMaterialGenerated
GET /api/IssueDates/getScheduleDates
GET /api/Market/getMarketCode/{domain}
GET /api/Market/getMarketSetting
GET /api/Market/getMarketThemeFooter/{domain}
GET /api/Market/getMarketThemeHeader/{domain}
GET /api/Orders/DraftReminder
GET /api/Orders/GetOrderMaterial/{orderId}
GET /api/Orders/GetSizesForRatecard/{ratecardId}
GET /api/Orders/PurgeDrafts
GET /api/Orders/generateAbandonedReport
GET /api/Orders/getCompleteCampaignDetails/{customerKey}/{orderId}
GET /api/Orders/getDraftDetails/{customerId}/{orderId}
GET /api/Orders/getDraftMetadata/{orderId}
GET /api/Orders/getOrderDetails/{customerId}/{orderId}
GET /api/Orders/getOrderStatus/{orderId}
GET /api/Orders/getOrders/filterById/{customerId}/{navigaOrderId}
GET /api/Orders/getPrintProof/{customerId}/{orderId}/{orderItemId}
GET /api/Payment/getStoredCards/{customerId}
GET /api/PhotoLibrary/GetBULogo/{BUCode}
GET /api/PhotoLibrary/GetImageByUrl/{customerId}/{fileName}
GET /api/PhotoLibrary/GetPhotosForUser/{customerId}
GET /api/PhotoLibrary/RotateImage/{customerId}/{fileName}
GET /api/PhotoLibrary/SearchPhotoByName/{customerId}/{fileName}
GET /api/PhotoLibrary/SortingPhotos/{customerId}
GET /api/Product/GetProductDeadLines
GET /api/Product/GetProductImpressions
GET /api/RateCard/GePositions/{productId}/{sectionId}
GET /api/RateCard/GetRateCards
GET /api/RateCard/GetRateLines/{ratecardId}
GET /api/RateCard/GetSections/{productId}
GET /api/Template/GetTemplateImages/{ratecardId}/{ratelineId}
GET /api/Theme/GetThemeSettings
GET /api/User/GetSiteVisibility
GET /api/User/auth0/callback
GET /api/User/auth0/login
GET /api/User/auth0/signup
GET /api/User/getCustomerKey/{customerId}
GET /api/User/logout
GET /api/User/verifyLogin
POST /api/AdMaterial/ConvertPdfTiffToImageBase64
POST /api/AdMaterial/GenerateAdTemplateMaterial
POST /api/AdMaterial/GetMaterialDetails/{orderId}/{orderItemId}
POST /api/AdMaterial/createDisplayAdMaterial/{customerId}/{orderId}/{orderItemId}
POST /api/AdMaterial/createDisplayTemplateMaterial/{customerId}/{orderId}/{orderItemId}
POST /api/AddressVerification/VerifyUserAddress
POST /api/Auth/getToken
POST /api/Classified/CreateClassifiedDraft/{packageId}/{categoryId}/{categoryTreeId}/{buCode}
POST /api/Classified/CreateClassifiedOrder/{customerId}/{orderId}
POST /api/Classified/GenerateClassifiedTemplate
POST /api/Classified/GetClassCodeForOrder/{orderId}
POST /api/Classified/RenewClassifiedOrder/{customerId}/{orderId}
POST /api/Classified/SetClassifiedAdditionalInfo
POST /api/Classified/SetClassifiedIssueDates
POST /api/Email/sendDraftExpirationEmail
POST /api/Email/sendOrderChangeConfirmationEmail
POST /api/Email/sendPurchaseConfirmationEmail
POST /api/Email/sendSaveDraftConfirmationEmail
POST /api/IssueDates/AvailableDates
POST /api/Market/createMarket
POST /api/Orders/AssignCustomerToLoggedInUser
POST /api/Orders/CancelMaterialChange
POST /api/Orders/CreateDigitalOrder/{customerId}/{adssorderId}/{adssorderitemId}
POST /api/Orders/CreateDisplayOrder/{customerId}/{adssorderId}/{adssorderitemId}
POST /api/Orders/GetOrderPrice/{orderId}
POST /api/Orders/RenewOrderDisplayDigital/{customerId}/{orderId}
POST /api/Orders/SaveUserMetrics/{orderId}
POST /api/Orders/SetAdSize
POST /api/Orders/SetAdditionalInfo
POST /api/Orders/SetIssueDates
POST /api/Orders/createDraft/{buCode}
POST /api/Orders/getDrafts/{customerId}
POST /api/Orders/getOrders/{customerId}
POST /api/Orders/saveDraft
POST /api/Payment/VerfyCreditCard
POST /api/Payment/addCreditCard/{customerId}
POST /api/Payment/orderRefund/{orderId}/{navigaOrderId}
POST /api/Payment/placeAnAd
POST /api/PhotoLibrary/DownloadImage/{customerId}
POST /api/PhotoLibrary/uploadPhoto/{customerId}
POST /api/Product/AddProduct
POST /api/Product/AddProductImpressions
POST /api/Product/CheckADLogin
POST /api/Template/AddTemplate
POST /api/Template/GetTemplateDetailsFromDB
POST /api/Template/GetTemplateHTML/{orderId}/{templateId}
POST /api/Theme/CreateTheme
PUT /api/Accounts/updateCustomerDetails/{customerId}
PUT /api/AdMaterial/UpdateMaterial/{customerId}/{orderId}/{orderItemId}
PUT /api/Market/updateMarketSetting/{marketId}
PUT /api/Orders/UpdateDigitalOrder/{orderId}/{orderItemId}/{navigaOrderId}
PUT /api/Orders/UpdateDisplayOrder/{orderId}/{orderItemId}/{navigaOrderId}
PUT /api/Payment/setPrimaryCard/{customerId}/{cardId}
PUT /api/Payment/updateCard/{customerId}/{cardId}
PUT /api/Product/UpdateProduct/{productId}
PUT /api/Product/UpdateProductImpressions
PUT /api/Template/UpdateTemplate
PUT /api/Theme/UpdateTheme/{buCode}

Found on 2026-01-09 04:31

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 129.80.155.9
Domain: ss-advertising.twincities.com
Port: 443
URL: https://ss-advertising.twincities.com

First seen 2025-10-15 04:22
Last seen 2026-01-15 22:04
Open for 92 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549ce94c9101aeb2f1b2657ff9a3c4f579af95ac9c4

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/Orders/CancelOrder/{orderId}/{navigaOrderId}
DELETE /api/Orders/DeleteDraft/{orderId}
DELETE /api/Payment/deleteCard/{customerId}/{cardId}
DELETE /api/PhotoLibrary/DeletePhoto/{customerId}
DELETE /api/Template/DeleteTemplate
GET /api/Accounts/getCustomerDetails/{customerId}
GET /api/Accounts/states
GET /api/AdMaterial/GenerateAdTemplatePreview/{orderId}/{orderItemId}
GET /api/Auth/validateToken
GET /api/Classified/GenerateClassifiedTemplates
GET /api/Classified/GetAllCatalogFolderNames
GET /api/Classified/GetClassifiedAdditionalInfo/{packageId}/{templateId}/{categoryId}
GET /api/Classified/GetClassifiedCategories
GET /api/Classified/GetClassifiedEmblemsByFolder
GET /api/Classified/GetEmblemLogo
GET /api/Classified/GetMappedMetaDataDetails
GET /api/Classified/GetTemplateHTML/{orderId}/{templateId}
GET /api/Classified/GetTemplateImages/{packageId}
GET /api/Classified/IsMaterialGenerated
GET /api/IssueDates/getScheduleDates
GET /api/Market/getMarketCode/{domain}
GET /api/Market/getMarketSetting
GET /api/Market/getMarketThemeFooter/{domain}
GET /api/Market/getMarketThemeHeader/{domain}
GET /api/Orders/DraftReminder
GET /api/Orders/GetOrderMaterial/{orderId}
GET /api/Orders/GetSizesForRatecard/{ratecardId}
GET /api/Orders/PurgeDrafts
GET /api/Orders/generateAbandonedReport
GET /api/Orders/getCompleteCampaignDetails/{customerKey}/{orderId}
GET /api/Orders/getDraftDetails/{customerId}/{orderId}
GET /api/Orders/getDraftMetadata/{orderId}
GET /api/Orders/getOrderDetails/{customerId}/{orderId}
GET /api/Orders/getOrderStatus/{orderId}
GET /api/Orders/getOrders/filterById/{customerId}/{navigaOrderId}
GET /api/Orders/getPrintProof/{customerId}/{orderId}/{orderItemId}
GET /api/Payment/getStoredCards/{customerId}
GET /api/PhotoLibrary/GetBULogo/{BUCode}
GET /api/PhotoLibrary/GetImageByUrl/{customerId}/{fileName}
GET /api/PhotoLibrary/GetPhotosForUser/{customerId}
GET /api/PhotoLibrary/RotateImage/{customerId}/{fileName}
GET /api/PhotoLibrary/SearchPhotoByName/{customerId}/{fileName}
GET /api/PhotoLibrary/SortingPhotos/{customerId}
GET /api/Product/GetProductDeadLines
GET /api/Product/GetProductImpressions
GET /api/RateCard/GePositions/{productId}/{sectionId}
GET /api/RateCard/GetRateCards
GET /api/RateCard/GetRateLines/{ratecardId}
GET /api/RateCard/GetSections/{productId}
GET /api/Template/GetTemplateImages/{ratecardId}/{ratelineId}
GET /api/Theme/GetThemeSettings
GET /api/User/GetSiteVisibility
GET /api/User/auth0/callback
GET /api/User/auth0/login
GET /api/User/auth0/signup
GET /api/User/getCustomerKey/{customerId}
GET /api/User/logout
GET /api/User/verifyLogin
POST /api/AdMaterial/ConvertPdfTiffToImageBase64
POST /api/AdMaterial/GenerateAdTemplateMaterial
POST /api/AdMaterial/GetMaterialDetails/{orderId}/{orderItemId}
POST /api/AdMaterial/createDisplayAdMaterial/{customerId}/{orderId}/{orderItemId}
POST /api/AdMaterial/createDisplayTemplateMaterial/{customerId}/{orderId}/{orderItemId}
POST /api/AddressVerification/VerifyUserAddress
POST /api/Auth/getToken
POST /api/Classified/CreateClassifiedDraft/{packageId}/{categoryId}/{categoryTreeId}/{buCode}
POST /api/Classified/CreateClassifiedOrder/{customerId}/{orderId}
POST /api/Classified/GenerateClassifiedTemplate
POST /api/Classified/GetClassCodeForOrder/{orderId}
POST /api/Classified/RenewClassifiedOrder/{customerId}/{orderId}
POST /api/Classified/SetClassifiedAdditionalInfo
POST /api/Classified/SetClassifiedIssueDates
POST /api/Email/sendDraftExpirationEmail
POST /api/Email/sendOrderChangeConfirmationEmail
POST /api/Email/sendPurchaseConfirmationEmail
POST /api/Email/sendSaveDraftConfirmationEmail
POST /api/IssueDates/AvailableDates
POST /api/Market/createMarket
POST /api/Orders/AssignCustomerToLoggedInUser
POST /api/Orders/CancelMaterialChange
POST /api/Orders/CreateDigitalOrder/{customerId}/{adssorderId}/{adssorderitemId}
POST /api/Orders/CreateDisplayOrder/{customerId}/{adssorderId}/{adssorderitemId}
POST /api/Orders/GetOrderPrice/{orderId}
POST /api/Orders/RenewOrderDisplayDigital/{customerId}/{orderId}
POST /api/Orders/SaveUserMetrics/{orderId}
POST /api/Orders/SetAdSize
POST /api/Orders/SetAdditionalInfo
POST /api/Orders/SetIssueDates
POST /api/Orders/createDraft/{buCode}
POST /api/Orders/getDrafts/{customerId}
POST /api/Orders/getOrders/{customerId}
POST /api/Orders/saveDraft
POST /api/Payment/VerfyCreditCard
POST /api/Payment/addCreditCard/{customerId}
POST /api/Payment/orderRefund/{orderId}/{navigaOrderId}
POST /api/Payment/placeAnAd
POST /api/PhotoLibrary/DownloadImage/{customerId}
POST /api/PhotoLibrary/uploadPhoto/{customerId}
POST /api/Product/AddProduct
POST /api/Product/AddProductImpressions
POST /api/Product/CheckADLogin
POST /api/Template/AddTemplate
POST /api/Template/GetTemplateDetailsFromDB
POST /api/Template/GetTemplateHTML/{orderId}/{templateId}
POST /api/Theme/CreateTheme
PUT /api/Accounts/updateCustomerDetails/{customerId}
PUT /api/AdMaterial/UpdateMaterial/{customerId}/{orderId}/{orderItemId}
PUT /api/Market/updateMarketSetting/{marketId}
PUT /api/Orders/UpdateDigitalOrder/{orderId}/{orderItemId}/{navigaOrderId}
PUT /api/Orders/UpdateDisplayOrder/{orderId}/{orderItemId}/{navigaOrderId}
PUT /api/Payment/setPrimaryCard/{customerId}/{cardId}
PUT /api/Payment/updateCard/{customerId}/{cardId}
PUT /api/Product/UpdateProduct/{productId}
PUT /api/Product/UpdateProductImpressions
PUT /api/Template/UpdateTemplate
PUT /api/Theme/UpdateTheme/{buCode}

Found on 2026-01-15 22:04

Create report

Open service 23.101.125.65:443 · mg2access.twincities.com

2026-01-12 09:56

HTTP/1.1 200 OK
Content-Length: 701
Connection: close
Content-Type: text/html; charset=utf-8
Date: Mon, 12 Jan 2026 09:57:02 GMT
Cache-Control: private
Set-Cookie: ARRAffinity=53f4a96b1c4fe0ee3118f9ad5503cc06fc63377ccfde033e0776e5f7ac42f04d;Path=/;HttpOnly;Secure;Domain=mg2access.twincities.com
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET


<!doctype html>
<html lang="en">
<head>
	<meta name="viewport" content="width=device-width, initial-scale=1" charset="utf-8">
	<base href="/">
	<meta name="viewport" content="width=device-width, initial-scale=1">
	<link rel="stylesheet" type="text/css" href=https://amp-connext-cdn.azureedge.net/prod/mng/1.3/plugin/ConnextAMP.min.css />
		<script type="text/javascript" src=https://amp-connext-cdn.azureedge.net/prod/mng/fp/fp.min.js></script>
</head>
<body style="overflow-wrap: break-word;">
	
	
	<script>
		window.useFp = true;
	</script>

	<script type="text/javascript" src=https://amp-connext-cdn.azureedge.net/prod/mng/1.3/plugin/ConnextAMP.min.js></script>
</body>
</html>

Found 2026-01-12 by HttpPlugin

Domain twincities.com

United States

Software information

Apache server-status page is publicly available

GraphQL introspection is enabled.

GraphQL introspection is enabled.

GraphQL introspection is enabled.

GraphQL introspection is enabled.

GraphQL introspection is enabled.

Swagger API description is publicly available

Swagger API description is publicly available

mg2access.twincities.com

fp.twincities.com

engage.twincities.com

g2i.twincities.com

preprod.twincities.com

develop.twincities.com

staging.twincities.com

twincities.comwww.twincities.com

develop.twincities.com

ss-advertising.twincities.comwww.ss-advertising.twincities.com

analytics.twincities.com

enews.twincities.com

ss-advertising.twincities.comwww.ss-advertising.twincities.com

advertising.twincities.comwww.advertising.twincities.com

Domain summary

IP summary