Host 103.225.62.154
India
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 103.225.62.154
Domain: payment-qa.economictimes.indiatimes.com
Port: 80
URL: http://payment-qa.economictimes.indiatimes.comFirst seen 2025-11-14 04:53
Last seen 2026-02-09 16:27
Open for 87 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656Public Swagger UI/API detected at path: /swagger-ui.html
Found on 2026-02-09 16:27
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-12-11 05:18
Last seen 2026-02-08 16:15
Open for 59 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656Public Swagger UI/API detected at path: /swagger-ui.html
Found on 2026-02-08 16:15
-
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
IP: 103.225.62.154
Domain: payment-qa.economictimes.indiatimes.com
Port: 443
URL: https://payment-qa.economictimes.indiatimes.comFirst seen 2025-11-14 04:53
Last seen 2026-02-02 10:33
Open for 80 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656Public Swagger UI/API detected at path: /swagger-ui.html
Found on 2026-02-02 10:33
-
-
Open service 103.225.62.154:80 · payment-qa.economictimes.indiatimes.com
2026-01-23 15:05
HTTP/1.1 405 Date: Fri, 23 Jan 2026 15:05:09 GMT Content-Type: application/problem+json Content-Length: 121 Connection: close Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH Vary: Origin Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,X-TICKET-ID,X-SSO-ID,X-TOKEN,X-OAUTH-ID,X-CLIENT-ID,X-DEVICE-ID,X-MERCHNAT-CODE,X-PRODUCT-CODE,G-TOKEN-ID Allow: POST {"type":"about:blank","title":"Method Not Allowed","status":405,"detail":"Method 'GET' is not supported.","instance":"/"}Found 2026-01-23 by HttpPluginCreate report
-
Open service 103.225.62.154:443 · payment-qa.economictimes.indiatimes.com
2026-01-23 07:20
HTTP/1.1 405 Date: Fri, 23 Jan 2026 07:20:03 GMT Content-Type: application/problem+json Content-Length: 121 Connection: close Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH Vary: Origin Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,X-TICKET-ID,X-SSO-ID,X-TOKEN,X-OAUTH-ID,X-CLIENT-ID,X-DEVICE-ID,X-MERCHNAT-CODE,X-PRODUCT-CODE,G-TOKEN-ID Allow: POST {"type":"about:blank","title":"Method Not Allowed","status":405,"detail":"Method 'GET' is not supported.","instance":"/"}Found 2026-01-23 by HttpPluginCreate report
-
Open service 103.225.62.154:80
2026-01-22 13:36
HTTP/1.1 405 Date: Thu, 22 Jan 2026 13:36:22 GMT Content-Type: application/problem+json Content-Length: 121 Connection: close Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH Vary: Origin Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,X-TICKET-ID,X-SSO-ID,X-TOKEN,X-OAUTH-ID,X-CLIENT-ID,X-DEVICE-ID,X-MERCHNAT-CODE,X-PRODUCT-CODE,G-TOKEN-ID Allow: POST {"type":"about:blank","title":"Method Not Allowed","status":405,"detail":"Method 'GET' is not supported.","instance":"/"}Found 2026-01-22 by HttpPluginCreate report
-
Open service 103.225.62.154:443 · payment-qa.economictimes.indiatimes.com
2026-01-09 22:17
HTTP/1.1 405 Date: Fri, 09 Jan 2026 22:17:28 GMT Content-Type: application/problem+json Content-Length: 121 Connection: close Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH Vary: Origin Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,X-TICKET-ID,X-SSO-ID,X-TOKEN,X-OAUTH-ID,X-CLIENT-ID,X-DEVICE-ID,X-MERCHNAT-CODE,X-PRODUCT-CODE,G-TOKEN-ID Allow: POST {"type":"about:blank","title":"Method Not Allowed","status":405,"detail":"Method 'GET' is not supported.","instance":"/"}Found 2026-01-09 by HttpPluginCreate report
-
Open service 103.225.62.154:80 · payment-qa.economictimes.indiatimes.com
2026-01-09 15:13
HTTP/1.1 405 Date: Fri, 09 Jan 2026 15:13:15 GMT Content-Type: application/problem+json Content-Length: 121 Connection: close Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH Vary: Origin Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,X-TICKET-ID,X-SSO-ID,X-TOKEN,X-OAUTH-ID,X-CLIENT-ID,X-DEVICE-ID,X-MERCHNAT-CODE,X-PRODUCT-CODE,G-TOKEN-ID Allow: POST {"type":"about:blank","title":"Method Not Allowed","status":405,"detail":"Method 'GET' is not supported.","instance":"/"}Found 2026-01-09 by HttpPluginCreate report
-
Open service 103.225.62.154:80
2026-01-08 17:57
HTTP/1.1 405 Date: Thu, 08 Jan 2026 17:57:58 GMT Content-Type: application/problem+json Content-Length: 121 Connection: close Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH Vary: Origin Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,X-TICKET-ID,X-SSO-ID,X-TOKEN,X-OAUTH-ID,X-CLIENT-ID,X-DEVICE-ID,X-MERCHNAT-CODE,X-PRODUCT-CODE,G-TOKEN-ID Allow: POST {"type":"about:blank","title":"Method Not Allowed","status":405,"detail":"Method 'GET' is not supported.","instance":"/"}Found 2026-01-08 by HttpPluginCreate report
-
Open service 103.225.62.154:80 · payment-qa.economictimes.indiatimes.com
2026-01-02 23:18
HTTP/1.1 405 Date: Fri, 02 Jan 2026 23:18:20 GMT Content-Type: application/problem+json Content-Length: 121 Connection: close Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH Vary: Origin Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,X-TICKET-ID,X-SSO-ID,X-TOKEN,X-OAUTH-ID,X-CLIENT-ID,X-DEVICE-ID,X-MERCHNAT-CODE,X-PRODUCT-CODE,G-TOKEN-ID Allow: POST {"type":"about:blank","title":"Method Not Allowed","status":405,"detail":"Method 'GET' is not supported.","instance":"/"}Found 2026-01-02 by HttpPluginCreate report
-
Open service 103.225.62.154:443 · payment-qa.economictimes.indiatimes.com
2026-01-02 15:57
HTTP/1.1 405 Date: Fri, 02 Jan 2026 15:57:14 GMT Content-Type: application/problem+json Content-Length: 121 Connection: close Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH Vary: Origin Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,X-TICKET-ID,X-SSO-ID,X-TOKEN,X-OAUTH-ID,X-CLIENT-ID,X-DEVICE-ID,X-MERCHNAT-CODE,X-PRODUCT-CODE,G-TOKEN-ID Allow: POST {"type":"about:blank","title":"Method Not Allowed","status":405,"detail":"Method 'GET' is not supported.","instance":"/"}Found 2026-01-02 by HttpPluginCreate report
-
Open service 103.225.62.154:80
2026-01-01 19:13
HTTP/1.1 405 Date: Thu, 01 Jan 2026 19:13:56 GMT Content-Type: application/problem+json Content-Length: 121 Connection: close Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH Vary: Origin Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,X-TICKET-ID,X-SSO-ID,X-TOKEN,X-OAUTH-ID,X-CLIENT-ID,X-DEVICE-ID,X-MERCHNAT-CODE,X-PRODUCT-CODE,G-TOKEN-ID Allow: POST {"type":"about:blank","title":"Method Not Allowed","status":405,"detail":"Method 'GET' is not supported.","instance":"/"}Found 2026-01-01 by HttpPluginCreate report
-
Open service 103.225.62.154:80 · payment-qa.economictimes.indiatimes.com
2025-12-23 05:15
HTTP/1.1 405 Date: Tue, 23 Dec 2025 05:15:31 GMT Content-Type: application/problem+json Content-Length: 121 Connection: close Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH Vary: Origin Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,X-TICKET-ID,X-SSO-ID,X-TOKEN,X-OAUTH-ID,X-CLIENT-ID,X-DEVICE-ID,X-MERCHNAT-CODE,X-PRODUCT-CODE Allow: POST {"type":"about:blank","title":"Method Not Allowed","status":405,"detail":"Method 'GET' is not supported.","instance":"/"}Found 2025-12-23 by HttpPluginCreate report
-
Open service 103.225.62.154:443 · payment-qa.economictimes.indiatimes.com
2025-12-22 22:17
HTTP/1.1 405 Date: Mon, 22 Dec 2025 22:17:47 GMT Content-Type: application/problem+json Content-Length: 121 Connection: close Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH Vary: Origin Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept,X-TICKET-ID,X-SSO-ID,X-TOKEN,X-OAUTH-ID,X-CLIENT-ID,X-DEVICE-ID,X-MERCHNAT-CODE,X-PRODUCT-CODE Allow: POST {"type":"about:blank","title":"Method Not Allowed","status":405,"detail":"Method 'GET' is not supported.","instance":"/"}Found 2025-12-22 by HttpPluginCreate report