LeakIX - Host 104.238.34.252

Host 104.238.34.252

United States

Gwy It Pty Ltd

SSH is potenitally vulnerable

WARNING: This plugin will generate false positive and is purely informative:

regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems (CVE-2024-6387)

IP: 104.238.34.252
Port: 22

First seen 2025-07-02 17:03
Last seen 2026-02-15 12:19
Open for 227 days
- Severity: info
  Fingerprint: 3f43e0ebb5dce37ab8b59eb581e37d9a6fcdf7e36fcdf7e36fcdf7e36fcdf7e3
```
Found potentially vulnerable SSH version:
SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.11
WARNING, RISK IS ESTIMATED FALSE POSITIVE ARE LIKELY
```
  Found on 2026-02-15 12:19
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 104.238.34.252
Domain: chat.sagheavyequipment.com
Port: 443
URL: https://chat.sagheavyequipment.com

First seen 2025-12-07 23:59
Last seen 2026-02-06 11:36
Open for 60 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-02-06 11:36
Create report

Open service 104.238.34.252:443 · chat.sagheavyequipment.com

2026-01-23 11:30

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Security-Policy: default-src 'self' ; connect-src *; font-src 'self'  data:; frame-src *; img-src * data: blob:; media-src * data:; script-src 'self' 'unsafe-eval' 'sha256-jqxtvDkBbRAl9Hpqv68WdNOieepg8tJSYu1xIy7zT34=' 'sha256-aui5xYk3Lu1dQcnsPlNZI+qDTdfzdUv3fzsw80VLJgw='  ; style-src 'self' 'unsafe-inline'
Content-Type: text/html; charset=utf-8
Date: Fri, 23 Jan 2026 11:30:51 GMT
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Instance-Id: ff9be730-1023-4f03-a7fa-c721db3201d7
X-Powered-By: Express
X-Xss-Protection: 1
Connection: close
Transfer-Encoding: chunked

Found 2026-01-23 by HttpPlugin

Create report

Open service 104.238.34.252:22

2026-01-22 14:29
Found 2026-01-22 by SSHOpenPlugin
Create report

chat.sagheavyequipment.com

Fingerprint:

9f9a9abeeea6b0b0a299fcdf666d0df302c4079795c272647b904f407416895f

CN:

chat.sagheavyequipment.com

Key:

RSA-4096

Issuer:

R13

Not before:

2025-12-07 22:59

Not after:

2026-03-07 22:59

Domain summary

chat.sagheavyequipment.com 1

1 recorded

Host 104.238.34.252

United States

SSH is potenitally vulnerable

Swagger API description is publicly available

Create report

Create report

chat.sagheavyequipment.com

Domain summary