cloudflare
tcp/443 tcp/8443
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
Public Swagger UI/API detected at path: /swagger/index.html
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
Public Swagger UI/API detected at path: /swagger/index.html
Open service 162.159.36.20:443 · vmuk.lxc.jjfly.cloud
2026-01-23 04:49
HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 04:49:39 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 420
Connection: close
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server-Timing: cfCacheStatus;desc="DYNAMIC"
Server-Timing: cfEdge;dur=8,cfOrigin;dur=337
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=8HLEcao3600nT7%2FcQWSC%2B2GgDbAmEpKjPXD4cq2sBykYl6qatv%2Bs%2BcyEFMB6q8C7BqHw5ruyNVdaxv3u57rKEtVxonjdh1EdW%2F0%2FktrwmqtInMI9"}]}
Server: cloudflare
CF-RAY: 9c24aa6898dee5b3-YYZ
alt-svc: h3=":443"; ma=86400
{"code":200,"msg":"success","data":{"arch":"amd64","author":"xkatld","description":"主流财务系统对接支持,提供完整的Web管理界面与RESTful API","distribution":"Alpine Linux v3.21","docs":"/swagger/index.html","kernel":"6.12.58-0-virt","lxd_version":"Client version: 6.0.4\nServer version: 6.0.4","name":"lxdapi","os":"linux","project":"https://github.com/xkatld/lxdapi-web-server","version":"v2.0.2"}}
Open service 162.159.36.5:8443 · vmuk.lxc.jjfly.cloud
2026-01-23 01:59
HTTP/1.1 200 OK
Date: Fri, 23 Jan 2026 01:59:39 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 420
Connection: close
cf-cache-status: DYNAMIC
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jEsiSKMQSTFoNuGuc%2BFJTiArc1E%2BcD1hP5%2BhLMs6ugk1aZHkTt9G1EFZ8eAvnwOXJmLFymrr1HL%2B8r3i9oUR4wXiI5vvf%2FSuyDkFse8U4HEkHYwS"}]}
Server: cloudflare
CF-RAY: 9c23b162787d15c9-LHR
alt-svc: h3=":8443"; ma=86400
{"code":200,"msg":"success","data":{"arch":"amd64","author":"xkatld","description":"主流财务系统对接支持,提供完整的Web管理界面与RESTful API","distribution":"Alpine Linux v3.21","docs":"/swagger/index.html","kernel":"6.12.58-0-virt","lxd_version":"Client version: 6.0.4\nServer version: 6.0.4","name":"lxdapi","os":"linux","project":"https://github.com/xkatld/lxdapi-web-server","version":"v2.0.2"}}