Domain www.api.textbasedadventures.com
United States
GOOGLE-CLOUD-PLATFORM
Software information

deno gcp-europe-west2

tcp/443

  • GraphQL introspection is enabled.
    First seen 2025-10-18 08:00
    Last seen 2026-02-11 16:25
    Open for 116 days

    • Severity: medium
      Fingerprint: c2db3a1c40d490db1a0bbaa3a3d27671a9660cf3d4f276dce602bf017e016d85

      GraphQL introspection enabled at /graphql
Types: 35 (by kind: ENUM: 8, OBJECT: 23, SCALAR: 4)
Operations:
- Query: Query | fields: adminData, adventure, currentUser, edge, instance
- Mutation: Mutation | fields: createAdventure, createEdge, createNode, deleteAdventure, deleteCurrentUser
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0
      Found on 2026-02-11 16:25
      47.8 kBytes

    • Severity: medium
      Fingerprint: c2db3a1c40d490db84e0e350ea72115ca13ed1e0f36600e39cfc8fd671f870d6

      GraphQL introspection enabled at /api
Types: 35 (by kind: ENUM: 8, OBJECT: 23, SCALAR: 4)
Operations:
- Query: Query | fields: adminData, adventure, currentUser, edge, instance
- Mutation: Mutation | fields: createAdventure, createEdge, createNode, deleteAdventure, deleteCurrentUser
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 0
      Found on 2025-11-01 03:39
      47.8 kBytes
    Create report

  • Open service 34.120.54.55:443 ยท www.api.textbasedadventures.com

    2026-01-23 06:35 

    HTTP/1.1 400 Bad Request
x-powered-by: Express
access-control-allow-origin: *
x-clerk-auth-reason: session-token-and-uat-missing
x-clerk-auth-status: signed-out
content-type: application/json; charset=utf-8
content-length: 1420
etag: W/"58c-ZzELaSM9oyh1LiWo/0kHSQMbFUQ"
vary: Accept-Encoding
connection: close
date: Fri, 23 Jan 2026 06:35:03 GMT
via: http/1.1 edgeproxy-h
server: deno/gcp-europe-west2


{"errors":[{"message":"This operation has been blocked as a potential Cross-Site Request Forgery (CSRF). Please either specify a 'content-type' header (with a type that is not one of application/x-www-form-urlencoded, multipart/form-data, text/plain) or provide a non-empty value for one of the following headers: x-apollo-operation-name, apollo-require-preflight\n","extensions":{"code":"BAD_REQUEST","stacktrace":["BadRequestError: This operation has been blocked as a potential Cross-Site Request Forgery (CSRF). Please either specify a 'content-type' header (with a type that is not one of application/x-www-form-urlencoded, multipart/form-data, text/plain) or provide a non-empty value for one of the following headers: x-apollo-operation-name, apollo-require-preflight","","    at new GraphQLErrorWithCode (file:///node_modules/.deno/@apollo+server@4.11.2/node_modules/@apollo/server/dist/esm/internalErrorClasses.js:7:9)","    at new BadRequestError (file:///node_modules/.deno/@apollo+server@4.11.2/node_modules/@apollo/server/dist/esm/internalErrorClasses.js:75:9)","    at preventCsrf (file:///node_modules/.deno/@apollo+server@4.11.2/node_modules/@apollo/server/dist/esm/preventCsrf.js:29:11)","    at ApolloServer.executeHTTPGraphQLRequest (file:///node_modules/.deno/@apollo+server@4.11.2/node_modules/@apollo/server/dist/esm/ApolloServer.js:507:17)","    at eventLoopTick (ext:core/01_core.js:178:7)"]}}]}
    Found 2026-01-23 by HttpPlugin
    Create report
www.api.textbasedadventures.com
Fingerprint:
628531c61c299a3da899b89e70aef2f427fc22eb563188d4de2eaa771c9bacd2
CN:
www.api.textbasedadventures.com
Key:
ECDSA-256
Issuer:
E8
Not before:
2025-12-13 15:28
Not after:
2026-03-13 15:28
Domain summary

www.api.textbasedadventures.com 2

1 recorded
IP summary

34.120.54.55 2

1 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice