LeakIX - Host 13.69.68.4

Host 13.69.68.4

The Netherlands

MICROSOFT-CORP-MSN-AS-BLOCK

Debian

Software information

Apache Apache

tcp/443 tcp/80

Apache Apache 2.4.65

tcp/443

Kestrel Kestrel

tcp/443 tcp/80

gunicorn

tcp/443

nginx nginx 1.28.0

tcp/443 tcp/80

nginx nginx 1.27.2

tcp/443

nginx nginx 1.29.3

tcp/443

nginx nginx

tcp/443

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.69.68.4
Domain: samanax.com
Port: 443
URL: https://samanax.com

First seen 2025-11-27 12:57
Last seen 2026-02-09 22:50
Open for 74 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fe627c8138d443b242547736025477360
```
Found 3 files trough .DS_Store spidering:

/wp-content
/wp-content/themes
/wp-content/themes/redwood
```
  Found on 2026-02-09 22:50
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: astana-api.memosapps.eu
Port: 443
URL: https://astana-api.memosapps.eu

First seen 2025-10-20 20:24
Last seen 2026-02-09 21:08
Open for 112 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 21:08
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: teamorgchart.com
Port: 443
URL: https://teamorgchart.com

First seen 2025-10-29 18:22
Last seen 2026-02-09 20:28
Open for 103 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549ba82dbf87747113cad136d2ea47cc34d8ade2dce
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/v{version}/remappings/{chartId}/{remappingId}
GET /api/v{version}/charts
GET /api/v{version}/charts/{chartId}
GET /api/v{version}/data/chartview/{chartId}
GET /api/v{version}/data/{chartId}
GET /api/v{version}/data/{chartId}/item
GET /api/v{version}/positions/additional/{chartId}
GET /api/v{version}/positions/additional/{chartId}/position
GET /api/v{version}/positions/{chartId}
GET /api/v{version}/positions/{chartId}/position
GET /api/v{version}/remappings/{chartId}
POST /api/v{version}/data/{chartId}/bulk
POST /api/v{version}/data/{chartId}/bulk2
POST /api/v{version}/images/{chartId}/{uniqueId}
POST /api/v{version}/positions/additional/{chartId}/bulk
```
  Found on 2026-02-09 20:28
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: api-analyzer.qeedio.com
Port: 443
URL: https://api-analyzer.qeedio.com

First seen 2026-01-09 02:15
Last seen 2026-02-09 18:46
Open for 31 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d606e0ed7099e866a55642ec943e98e70fcf1b100b6
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /v1/History
GET /v1/Process
GET /v1/ProcessStep
GET /v1/ProcessTagging
GET /v1/Suggestions
GET /v1/WebAnalyzer/ErrorTemplates
GET /v1/WebAnalyzer/Process
GET /v1/WebAnalyzer/ProcessRunAggregation
GET /v1/WebAnalyzer/ProcessRunErrorAggregation
GET /v1/WebAnalyzer/ProcessTagging
```
  Found on 2026-02-09 18:46
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: nema-api.mly.explorance.ai
Port: 443
URL: https://nema-api.mly.explorance.ai

First seen 2026-01-11 13:59
Last seen 2026-02-09 18:12
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 18:12
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: test.insight360.world
Port: 443
URL: https://test.insight360.world

First seen 2025-10-31 19:14
Last seen 2026-02-09 16:47
Open for 100 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035493b3b73504043c671384ca348384ca348384ca348
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /
GET /health
GET /protos/voiceauth
```
  Found on 2026-02-09 16:47
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: api.operio.co
Port: 443
URL: https://api.operio.co

First seen 2025-11-05 12:06
Last seen 2026-02-09 15:15
Open for 96 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 15:15
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: tavleboka-api-test.cappelendamm.no
Port: 443
URL: https://tavleboka-api-test.cappelendamm.no

First seen 2026-01-06 06:18
Last seen 2026-02-09 14:36
Open for 34 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549abe25e6c125540baff2d0d92e6da2ba8087d6900
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/UserPageElement/DeleteByPageNumber/{pageNumber}
GET /api/Book/{publicId}
GET /api/UserPageElement
GET /api/UserPageElement/{id}
GET /api/UserPageFavorite
GET /api/UserPageFavorite/{id}
GET /api/UserPageNote
GET /api/UserPageNote/{id}
GET /api/UserPageUrl
GET /api/UserPageUrl/{id}
GET /api/gettoken
GET /api/loginsaml
GET /api/logout
GET /api/validate-auth
POST /api/logintoken
```
  Found on 2026-02-09 14:36
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: demobackend.findustrial.io
Port: 443
URL: https://demobackend.findustrial.io

First seen 2026-01-05 06:39
Last seen 2026-02-09 14:35
Open for 35 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 14:35
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: planner.kx-digital.com
Port: 80
URL: http://planner.kx-digital.com

First seen 2025-12-29 15:07
Last seen 2026-02-09 10:21
Open for 41 days

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb40e9964ec472beb3a9e126c7a1d0dc43a70f93a52

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /api/AntiForgery/token
GET /api/Consultants
GET /api/GrowthStages
GET /api/Products
GET /api/Products/sprayplan
GET /api/Products/used
GET /api/Products/user
GET /api/Products/user/{id}
GET /api/SprayplanApplicationProducts/{id}
GET /api/SprayplanApplications/{id}
GET /api/SprayplanApplications/{id}/images
GET /api/SprayplanGrowthStageProducts/{id}
GET /api/SprayplanGrowthStages/{id}
GET /api/Sprayplans
GET /api/Sprayplans/suggested
GET /api/Sprayplans/user
GET /api/Sprayplans/user/exists
GET /api/Sprayplans/user/years
GET /api/Sprayplans/user/{id}
GET /api/Sprayplans/{id}
GET /api/Users
GET /api/Users/current
GET /api/Users/email
GET /api/Users/settings
GET /api/Varieties
GET /api/Varieties/cultures
GET /api/Varieties/template
GET /api/Varieties/used
GET /api/users/login
GET /api/users/login-internal
GET /api/users/logout
POST /api/Products/own
POST /api/Reports/ProductList
POST /api/Reports/Sprayplan
POST /api/SprayplanApplications/{id}/product
POST /api/SprayplanGrowthStages/{id}/products
POST /api/Sprayplans/user/{id}/application
POST /api/Sprayplans/user/{id}/duplicate
POST /api/Sprayplans/user/{id}/send
POST /api/Sprayplans/{id}/duplicate
POST /api/Sprayplans/{id}/growth-stage
POST /api/Stations
PUT /api/Products/user/purchase-amount
PUT /api/SprayplanApplicationProducts/{id}/reset
PUT /api/SprayplanApplications/{id}/active
PUT /api/SprayplanApplications/{id}/done
PUT /api/SprayplanApplications/{id}/leafwallHeight
PUT /api/SprayplanApplications/{id}/reset
PUT /api/SprayplanApplications/{id}/waterAmount
PUT /api/SprayplanGrowthStageProducts/{id}/dosage
PUT /api/SprayplanGrowthStages/{id}/leafwall-height
PUT /api/SprayplanGrowthStages/{id}/recommended
PUT /api/SprayplanGrowthStages/{id}/water-amount
PUT /api/Sprayplans/exists
PUT /api/Sprayplans/{id}/active

Found on 2026-02-09 10:21

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb40e9964ec472beb3a9e126c7a1d0dc43a92298376

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /api/AntiForgery/token
GET /api/Consultants
GET /api/GrowthStages
GET /api/Products
GET /api/Products/sprayplan
GET /api/Products/used
GET /api/Products/user
GET /api/Products/user/{id}
GET /api/SprayplanApplicationProducts/{id}
GET /api/SprayplanApplications/{id}
GET /api/SprayplanApplications/{id}/images
GET /api/SprayplanGrowthStageProducts/{id}
GET /api/SprayplanGrowthStages/{id}
GET /api/Sprayplans
GET /api/Sprayplans/suggested
GET /api/Sprayplans/user
GET /api/Sprayplans/user/exists
GET /api/Sprayplans/user/years
GET /api/Sprayplans/user/{id}
GET /api/Sprayplans/{id}
GET /api/Users
GET /api/Users/current
GET /api/Users/email
GET /api/Users/settings
GET /api/Varieties
GET /api/Varieties/cultures
GET /api/Varieties/template
GET /api/Varieties/used
GET /api/users/login
GET /api/users/login-internal
GET /api/users/logout
POST /api/Products/own
POST /api/Reports/ProductList
POST /api/Reports/Sprayplan
POST /api/SprayplanApplications/{id}/product
POST /api/SprayplanGrowthStages/{id}/products
POST /api/Sprayplans/user/{id}/application
POST /api/Sprayplans/user/{id}/duplicate
POST /api/Sprayplans/user/{id}/send
POST /api/Sprayplans/{id}/duplicate
POST /api/Sprayplans/{id}/growth-stage
POST /api/Stations
PUT /api/Products/user/purchase-amount
PUT /api/SprayplanApplicationProducts/{id}/reset
PUT /api/SprayplanApplications/{id}/active
PUT /api/SprayplanApplications/{id}/done
PUT /api/SprayplanApplications/{id}/leafwallHeight
PUT /api/SprayplanApplications/{id}/reset
PUT /api/SprayplanApplications/{id}/waterAmount
PUT /api/SprayplanGrowthStageProducts/{id}/dosage
PUT /api/SprayplanGrowthStages/{id}/leafwall-height
PUT /api/SprayplanGrowthStages/{id}/recommended
PUT /api/Sprayplans/exists
PUT /api/Sprayplans/{id}/active

Found on 2026-02-02 11:54

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: demo-projectb.service2muuv.eu
Port: 80
URL: http://demo-projectb.service2muuv.eu

First seen 2026-01-11 08:10
Last seen 2026-02-09 09:11
Open for 29 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035494ba680ea521615473b1e48cb6574b7f7b5a2e337

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/AppConfiguration
GET /api/AppConfiguration/translations/{language}
GET /api/Auth/GetUser
GET /api/Auth/ValidateToken
GET /api/MasterData/GetCurrentEntityValue
GET /api/MasterData/ReadAdminOptionsWithMaster
GET /api/MasterData/ReadAllEnumSelectedByTenant
GET /api/MasterData/ReadAllEnumsByTenant
GET /api/MasterData/ReadEnumsByTenantAndId
GET /api/Partner/ReadAllMarketTenantParties/{market}
GET /api/Partner/ReadAllTenantParties
GET /api/Settings/ReadColumnSetting/{userId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItem/{id}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByProductItemId/{productItemId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByTradeId/{tradeId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByTransactionId/{transactionId}/{tenantId}
GET /api/Store/ReadAllCatalogs
GET /api/Store/ReadAllMarkets
GET /api/Store/ReadAllProductsByManufacturer
GET /api/Store/ReadAllStores
GET /api/Store/ReadAllTaxes
GET /api/Store/ReadCatalogsByMarket
GET /api/Store/ReadMarket
GET /api/Store/ReadProduct
GET /api/Store/ReadProductByType
GET /api/Trade/GetSalePrice
POST /api/Auth/ChangePassword
POST /api/Auth/DoLogin
POST /api/Auth/GetUserParty
POST /api/Document/UploadDocuments/{userId}/{tenantId}
POST /api/Integra/MapProductItemFromIntegraObject
POST /api/MasterData/UpdateEnum
POST /api/Notification
POST /api/ServiceProduct/ApplyMarketDefaultServiceProductToTenant/{market}/{tenantId}
POST /api/ServiceProduct/CreateServiceProduct
POST /api/ServiceProduct/DeleteServiceProductByProductId
POST /api/ServiceProduct/ReadAllNotDealerServicesFromView
POST /api/ServiceProduct/ReadAllServicesFromView
POST /api/ServiceProduct/UpdateServiceProduct
POST /api/ServiceProduct/UpdateServiceofTenants
POST /api/Settings/InsertColumnSettings
POST /api/Settings/UpdateColumnSettings
POST /api/SmallFleetService/CopyBrokeredVehicleServiceItem
POST /api/SmallFleetService/CreateNewBrokeredVehicleServiceItem
POST /api/Store/ReadTax
POST /api/Trade/CalculatePrices
POST /api/Trade/GetGrossPrice
POST /api/Trade/GetNetPrice
POST /api/TradeServices

Found on 2026-02-09 09:11

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-01-11 08:10

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: demo-projectb.integra2drive.ch
Port: 80
URL: http://demo-projectb.integra2drive.ch

First seen 2026-01-09 01:27
Last seen 2026-02-09 06:35
Open for 31 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035494ba680ea521615473b1e48cb6574b7f7b5a2e337

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/AppConfiguration
GET /api/AppConfiguration/translations/{language}
GET /api/Auth/GetUser
GET /api/Auth/ValidateToken
GET /api/MasterData/GetCurrentEntityValue
GET /api/MasterData/ReadAdminOptionsWithMaster
GET /api/MasterData/ReadAllEnumSelectedByTenant
GET /api/MasterData/ReadAllEnumsByTenant
GET /api/MasterData/ReadEnumsByTenantAndId
GET /api/Partner/ReadAllMarketTenantParties/{market}
GET /api/Partner/ReadAllTenantParties
GET /api/Settings/ReadColumnSetting/{userId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItem/{id}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByProductItemId/{productItemId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByTradeId/{tradeId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByTransactionId/{transactionId}/{tenantId}
GET /api/Store/ReadAllCatalogs
GET /api/Store/ReadAllMarkets
GET /api/Store/ReadAllProductsByManufacturer
GET /api/Store/ReadAllStores
GET /api/Store/ReadAllTaxes
GET /api/Store/ReadCatalogsByMarket
GET /api/Store/ReadMarket
GET /api/Store/ReadProduct
GET /api/Store/ReadProductByType
GET /api/Trade/GetSalePrice
POST /api/Auth/ChangePassword
POST /api/Auth/DoLogin
POST /api/Auth/GetUserParty
POST /api/Document/UploadDocuments/{userId}/{tenantId}
POST /api/Integra/MapProductItemFromIntegraObject
POST /api/MasterData/UpdateEnum
POST /api/Notification
POST /api/ServiceProduct/ApplyMarketDefaultServiceProductToTenant/{market}/{tenantId}
POST /api/ServiceProduct/CreateServiceProduct
POST /api/ServiceProduct/DeleteServiceProductByProductId
POST /api/ServiceProduct/ReadAllNotDealerServicesFromView
POST /api/ServiceProduct/ReadAllServicesFromView
POST /api/ServiceProduct/UpdateServiceProduct
POST /api/ServiceProduct/UpdateServiceofTenants
POST /api/Settings/InsertColumnSettings
POST /api/Settings/UpdateColumnSettings
POST /api/SmallFleetService/CopyBrokeredVehicleServiceItem
POST /api/SmallFleetService/CreateNewBrokeredVehicleServiceItem
POST /api/Store/ReadTax
POST /api/Trade/CalculatePrices
POST /api/Trade/GetGrossPrice
POST /api/Trade/GetNetPrice
POST /api/TradeServices

Found on 2026-02-09 06:35

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-01-09 01:27

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: demobackend.findustrial.io
Port: 80
URL: http://demobackend.findustrial.io

First seen 2026-01-05 06:39
Last seen 2026-02-09 01:26
Open for 34 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 01:26
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: vehicle-consumption.ws.moviatrafik.dk
Port: 80
URL: http://vehicle-consumption.ws.moviatrafik.dk

First seen 2025-12-28 06:30
Last seen 2026-02-09 00:52
Open for 42 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d60adbd378be7762b4ae7762b4ae7762b4ae7762b4a
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
POST /DataLog/ElectricVehicle
POST /DataLog/ElectricVehicleBatch
```
  Found on 2026-02-09 00:52
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: appapi.equipaportugal.pt
Port: 443
URL: https://appapi.equipaportugal.pt

First seen 2025-12-28 06:18
Last seen 2026-02-02 09:50
Open for 36 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035492ca6f20f6b064d3f0dc73ad9e17c7e0b10c1945c

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/v1/Favourites/{typeId}/{type}
GET /api/v1/Advantages/Banners/{index}/{length}
GET /api/v1/Advantages/{index}/{length}/{highlighted}
GET /api/v1/Agenda/{index}/{length}
GET /api/v1/Agenda/{length}
GET /api/v1/Athlete/All/{index}/{length}
GET /api/v1/Athlete/{athleteId}
GET /api/v1/Athlete/{sportId}/{index}/{length}
GET /api/v1/Configuration/GetAll
GET /api/v1/Configuration/{id}
GET /api/v1/Favourites/All
GET /api/v1/Favourites/{index}/{length}
GET /api/v1/Message/GetLogo
GET /api/v1/Message/{index}/{length}
GET /api/v1/News/All/{index}/{length}
GET /api/v1/News/{id}/{noOfRelatedNews}
GET /api/v1/News/{sportId}/{index}/{length}
GET /api/v1/OlympicChannelWidgetSettings
GET /api/v1/Partner/{id}
GET /api/v1/Partner/{index}/{length}
GET /api/v1/Podcasts/All/{index}/{length}
GET /api/v1/Podcasts/{videoId}
GET /api/v1/Profile
GET /api/v1/ProfileExtraInfo/GetAll
GET /api/v1/Results
GET /api/v1/Results/{length}
GET /api/v1/Sports
GET /api/v1/Sports/{id}/{eventCount}/{newsCount}
GET /api/v1/Staff
GET /api/v1/Staff/{staffId}
GET /api/v1/StaticPages/{type}
GET /api/v1/Videos/All/{index}/{length}
GET /api/v1/Videos/{videoId}
GET /api/v2/Athlete/All/{index}/{length}
GET /api/v2/Athlete/{athleteId}
GET /api/v2/Athlete/{sportId}/{index}/{length}
GET /api/v2/Results
GET /api/v2/Results/Filter
GET /api/v2/Results/Latest
GET /api/v2/Results/{length}
POST /api/v1/Account/ForgotPassword
POST /api/v1/Account/GetNewToken
POST /api/v1/Account/UserLogin
POST /api/v1/Account/UserRegister
POST /api/v1/Favourites
POST /api/v1/Message
POST /api/v1/Notification/SendToTopic
POST /api/v1/Notification/SendToUser
POST /api/v1/Notification/SendToUsers
POST /api/v1/Profile/AcceptConditions
POST /api/v1/Profile/AddToken
POST /api/v1/Profile/Delete
POST /api/v1/Profile/RemoveToken
POST /api/v1/Profile/Upgrade

Found on 2026-02-02 09:50

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: uat.myteamorgchart.com
Port: 443
URL: https://uat.myteamorgchart.com

First seen 2025-10-26 12:13
Last seen 2026-02-02 08:53
Open for 98 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549ba82dbf87747113cad136d2ea47cc34d8ade2dce
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/v{version}/remappings/{chartId}/{remappingId}
GET /api/v{version}/charts
GET /api/v{version}/charts/{chartId}
GET /api/v{version}/data/chartview/{chartId}
GET /api/v{version}/data/{chartId}
GET /api/v{version}/data/{chartId}/item
GET /api/v{version}/positions/additional/{chartId}
GET /api/v{version}/positions/additional/{chartId}/position
GET /api/v{version}/positions/{chartId}
GET /api/v{version}/positions/{chartId}/position
GET /api/v{version}/remappings/{chartId}
POST /api/v{version}/data/{chartId}/bulk
POST /api/v{version}/data/{chartId}/bulk2
POST /api/v{version}/images/{chartId}/{uniqueId}
POST /api/v{version}/positions/additional/{chartId}/bulk
```
  Found on 2026-02-02 08:53
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 13.69.68.4
Domain: www.samanax.com
Port: 443
URL: https://www.samanax.com

First seen 2025-11-27 12:59
Last seen 2026-02-02 07:42
Open for 66 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0fe627c8138d443b242547736025477360
```
Found 3 files trough .DS_Store spidering:

/wp-content
/wp-content/themes
/wp-content/themes/redwood
```
  Found on 2026-02-02 07:42
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: auth.operio.co
Port: 443
URL: https://auth.operio.co

First seen 2025-11-05 11:53
Last seen 2026-02-02 07:21
Open for 88 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035494723033b3e1a976f1a19a478891f7dcaee712234

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /Account/Customer/{resourceId}
GET /Account
GET /Account/FieldPersons
GET /Account/FieldPersons/{contractorResourceId}
GET /Account/FieldPersonsContractorById
GET /Account/GetCustomerRoles
GET /Account/GetSettingsUser
GET /Account/GetSettingsUsers
GET /Account/GetSubscription
GET /Account/MyInformation
GET /Account/RequestPasswordReset
GET /Account/Roles
GET /Account/RolesForContractors
GET /Account/Supervizors
GET /Account/{resourceId}
POST /Account/DownloadCustomerUsersWithFilter
POST /Account/DownloadSrv365UsersWithFilter
POST /Account/GetCustomerUsers
POST /Account/GetWithFilter
POST /Account/MultiCreateOrUpdateSrv365Users
POST /Account/MultiCreateOrUpdateUsers
POST /Account/SubmitPasswordReset
POST /Account/{resourceId}/RemoveProfilePicture
POST /Account/{resourceId}/UploadProfilePicture
PUT /Account/UpdateSubscription
PUT /Account/{resourceId}/Password
PUT /Account/{resourceId}/SetInitialPassword

Found on 2026-02-02 07:21

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: apc-ots.ws.moviatrafik.dk
Port: 443
URL: https://apc-ots.ws.moviatrafik.dk

First seen 2025-12-21 12:15
Last seen 2026-02-02 02:25
Open for 42 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d60fa9712a4f84cc579f84cc579f84cc579f84cc579
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
POST /CountingReport
POST /CountingReport/Batch
```
  Found on 2026-02-02 02:25
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: api-loader.qeedio.com
Port: 443
URL: https://api-loader.qeedio.com

First seen 2026-01-09 02:14
Last seen 2026-02-02 01:16
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d6000d671d3e7a85524e7a85524e7a85524e7a85524
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
POST /v1/auth
POST /v1/data-loader
```
  Found on 2026-02-02 01:16
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.69.68.4
Domain: gql-accept.stagemarkt.nl
Port: 443
URL: https://gql-accept.stagemarkt.nl

First seen 2026-01-02 17:11
Last seen 2026-02-02 00:17
Open for 30 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37fe67e5a07ef3a4a7633f5aed124d7d2fd26927b

GraphQL introspection enabled at /graphql
Types: 135 (by kind: ENUM: 6, INPUT_OBJECT: 1, INTERFACE: 39, OBJECT: 77, SCALAR: 6, UNION: 6)
Operations:
- Query: Query | fields: contentByContentType, contentByGuid, contentById, contentByRoute, contentByTag
Directives: include, skip (total: 2)

Readable stores: 1
contentAtRoot (args: optional/default) : page=1 pageSize=10 totalItems=2 hasNextPage=false

Found on 2026-02-02 00:17

151.4 kBytes 4 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37fe67e5a07ef3a4a7633f5aed124d7d2fc625e0f

GraphQL introspection enabled at /graphql
Types: 135 (by kind: ENUM: 6, INPUT_OBJECT: 1, INTERFACE: 39, OBJECT: 77, SCALAR: 6, UNION: 6)
Operations:
- Query: Query | fields: contentByContentType, contentByGuid, contentById, contentByRoute, contentByTag
Directives: include, skip (total: 2)

Readable stores: 1
contentAtRoot (args: optional/default) : hasNextPage=false page=1 pageSize=10 totalItems=2

Found on 2026-01-02 17:11

151.4 kBytes 4 rows

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: planner.kx-digital.com
Port: 443
URL: https://planner.kx-digital.com

First seen 2025-12-29 15:07
Last seen 2026-02-01 23:33
Open for 34 days

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb40e9964ec472beb3a9e126c7a1d0dc43a92298376

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /api/AntiForgery/token
GET /api/Consultants
GET /api/GrowthStages
GET /api/Products
GET /api/Products/sprayplan
GET /api/Products/used
GET /api/Products/user
GET /api/Products/user/{id}
GET /api/SprayplanApplicationProducts/{id}
GET /api/SprayplanApplications/{id}
GET /api/SprayplanApplications/{id}/images
GET /api/SprayplanGrowthStageProducts/{id}
GET /api/SprayplanGrowthStages/{id}
GET /api/Sprayplans
GET /api/Sprayplans/suggested
GET /api/Sprayplans/user
GET /api/Sprayplans/user/exists
GET /api/Sprayplans/user/years
GET /api/Sprayplans/user/{id}
GET /api/Sprayplans/{id}
GET /api/Users
GET /api/Users/current
GET /api/Users/email
GET /api/Users/settings
GET /api/Varieties
GET /api/Varieties/cultures
GET /api/Varieties/template
GET /api/Varieties/used
GET /api/users/login
GET /api/users/login-internal
GET /api/users/logout
POST /api/Products/own
POST /api/Reports/ProductList
POST /api/Reports/Sprayplan
POST /api/SprayplanApplications/{id}/product
POST /api/SprayplanGrowthStages/{id}/products
POST /api/Sprayplans/user/{id}/application
POST /api/Sprayplans/user/{id}/duplicate
POST /api/Sprayplans/user/{id}/send
POST /api/Sprayplans/{id}/duplicate
POST /api/Sprayplans/{id}/growth-stage
POST /api/Stations
PUT /api/Products/user/purchase-amount
PUT /api/SprayplanApplicationProducts/{id}/reset
PUT /api/SprayplanApplications/{id}/active
PUT /api/SprayplanApplications/{id}/done
PUT /api/SprayplanApplications/{id}/leafwallHeight
PUT /api/SprayplanApplications/{id}/reset
PUT /api/SprayplanApplications/{id}/waterAmount
PUT /api/SprayplanGrowthStageProducts/{id}/dosage
PUT /api/SprayplanGrowthStages/{id}/leafwall-height
PUT /api/SprayplanGrowthStages/{id}/recommended
PUT /api/Sprayplans/exists
PUT /api/Sprayplans/{id}/active

Found on 2026-02-01 23:33

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: act-qa.wintershalldea.no
Port: 443
URL: https://act-qa.wintershalldea.no

First seen 2025-12-25 05:03
Last seen 2026-02-01 22:05
Open for 38 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b1db83f7e47ca4652f977fcc2e6bf391baf4f688

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/v1/Acts/{actId}/participants/{participantId}
DELETE /api/v1/Subtasks/{subtaskId}/participants/{participantId}
GET /api/v1/Acts
GET /api/v1/Acts/mine
GET /api/v1/Acts/search
GET /api/v1/Acts/{actId}/participants
GET /api/v1/Acts/{id}
GET /api/v1/Assets
GET /api/v1/Assets/{id}
GET /api/v1/Attachments/{type}/{typeId}
GET /api/v1/Attachments/{type}/{typeId}/{attachmentName}
GET /api/v1/Attachments/{type}/{typeId}/{attachmentName}/uri
GET /api/v1/Auth
GET /api/v1/Categories
GET /api/v1/Categories/types
GET /api/v1/Categories/types/{type}
GET /api/v1/Categories/{id}
GET /api/v1/Categories/{id}/subcategories
GET /api/v1/Deliveries
GET /api/v1/Deliveries/{id}
GET /api/v1/Languages
GET /api/v1/Languages/{id}
GET /api/v1/Locations
GET /api/v1/Locations/{id}
GET /api/v1/MitigationMeasures/{id}
GET /api/v1/Participants
GET /api/v1/Participants/{id}
GET /api/v1/Requirements/{id}
GET /api/v1/Risks/{id}
GET /api/v1/Subcategories
GET /api/v1/Subcategories/{id}
GET /api/v1/Subtasks/{id}
GET /api/v1/Subtasks/{subtaskId}/participants
GET /api/v1/Subtasks/{subtaskId}/requirements
GET /api/v1/Subtasks/{subtaskId}/risks
GET /api/v1/Tasks/{id}
GET /api/v1/Tasks/{taskId}/requirements
GET /api/v1/Tasks/{taskId}/risks
GET /api/v1/Tasks/{taskId}/subtasks
GET /api/v1/Users
GET /api/v1/Users/photo
GET /api/v1/Users/proxy
PATCH /api/v1/Acts/close/{id}
PATCH /api/v1/Acts/execute/{id}
PATCH /api/v1/Acts/{actId}
PATCH /api/v1/Assets/{assetId}
PATCH /api/v1/Categories/{categoryId}
PATCH /api/v1/Deliveries/{deliveryId}
PATCH /api/v1/Locations/{locationId}
PATCH /api/v1/MitigationMeasures/close/{id}
PATCH /api/v1/MitigationMeasures/{mitigationMeasureId}
PATCH /api/v1/Questions/{questionId}
PATCH /api/v1/Requirements/{requirementId}
PATCH /api/v1/Risks/{riskId}
PATCH /api/v1/Subcategories/{subcategoryId}
PATCH /api/v1/Subtasks/close/{id}
PATCH /api/v1/Subtasks/{subtaskId}
PATCH /api/v1/Tasks/rearrange
POST /api/v1/Attachments
POST /api/v1/MitigationMeasures
POST /api/v1/Participants/{participantId}/acts/{actId}
POST /api/v1/Requirements
POST /api/v1/Risks
POST /api/v1/Subtasks
POST /api/v1/Tasks

Found on 2026-02-01 22:05

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.69.68.4
Domain: gql-accept.leerbanenmarkt.nl
Port: 443
URL: https://gql-accept.leerbanenmarkt.nl

First seen 2026-01-03 11:44
Last seen 2026-01-23 00:42
Open for 19 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37fe67e5a07ef3a4a7633f5aed124d7d2fd26927b

GraphQL introspection enabled at /graphql
Types: 135 (by kind: ENUM: 6, INPUT_OBJECT: 1, INTERFACE: 39, OBJECT: 77, SCALAR: 6, UNION: 6)
Operations:
- Query: Query | fields: contentByContentType, contentByGuid, contentById, contentByRoute, contentByTag
Directives: include, skip (total: 2)

Readable stores: 1
contentAtRoot (args: optional/default) : page=1 pageSize=10 totalItems=2 hasNextPage=false

Found on 2026-01-23 00:42

151.4 kBytes 4 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37fe67e5a07ef3a4a7633f5aed124d7d2ecaada97

GraphQL introspection enabled at /graphql
Types: 135 (by kind: ENUM: 6, INPUT_OBJECT: 1, INTERFACE: 39, OBJECT: 77, SCALAR: 6, UNION: 6)
Operations:
- Query: Query | fields: contentByContentType, contentByGuid, contentById, contentByRoute, contentByTag
Directives: include, skip (total: 2)

Readable stores: 1
contentAtRoot (args: optional/default) : pageSize=10 totalItems=2 hasNextPage=false page=1

Found on 2026-01-16 02:05

151.4 kBytes 4 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37fe67e5a07ef3a4a7633f5aed124d7d24f57de63

GraphQL introspection enabled at /graphql
Types: 135 (by kind: ENUM: 6, INPUT_OBJECT: 1, INTERFACE: 39, OBJECT: 77, SCALAR: 6, UNION: 6)
Operations:
- Query: Query | fields: contentByContentType, contentByGuid, contentById, contentByRoute, contentByTag
Directives: include, skip (total: 2)

Readable stores: 1
contentAtRoot (args: optional/default) : totalItems=2 hasNextPage=false page=1 pageSize=10

Found on 2026-01-03 11:44

151.4 kBytes 4 rows

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: demo-projectb.integra2drive.ch
Port: 443
URL: https://demo-projectb.integra2drive.ch

First seen 2026-01-09 01:27
Last seen 2026-01-23 00:29
Open for 13 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035494ba680ea521615473b1e48cb6574b7f7b5a2e337

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/AppConfiguration
GET /api/AppConfiguration/translations/{language}
GET /api/Auth/GetUser
GET /api/Auth/ValidateToken
GET /api/MasterData/GetCurrentEntityValue
GET /api/MasterData/ReadAdminOptionsWithMaster
GET /api/MasterData/ReadAllEnumSelectedByTenant
GET /api/MasterData/ReadAllEnumsByTenant
GET /api/MasterData/ReadEnumsByTenantAndId
GET /api/Partner/ReadAllMarketTenantParties/{market}
GET /api/Partner/ReadAllTenantParties
GET /api/Settings/ReadColumnSetting/{userId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItem/{id}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByProductItemId/{productItemId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByTradeId/{tradeId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByTransactionId/{transactionId}/{tenantId}
GET /api/Store/ReadAllCatalogs
GET /api/Store/ReadAllMarkets
GET /api/Store/ReadAllProductsByManufacturer
GET /api/Store/ReadAllStores
GET /api/Store/ReadAllTaxes
GET /api/Store/ReadCatalogsByMarket
GET /api/Store/ReadMarket
GET /api/Store/ReadProduct
GET /api/Store/ReadProductByType
GET /api/Trade/GetSalePrice
POST /api/Auth/ChangePassword
POST /api/Auth/DoLogin
POST /api/Auth/GetUserParty
POST /api/Document/UploadDocuments/{userId}/{tenantId}
POST /api/Integra/MapProductItemFromIntegraObject
POST /api/MasterData/UpdateEnum
POST /api/Notification
POST /api/ServiceProduct/ApplyMarketDefaultServiceProductToTenant/{market}/{tenantId}
POST /api/ServiceProduct/CreateServiceProduct
POST /api/ServiceProduct/DeleteServiceProductByProductId
POST /api/ServiceProduct/ReadAllNotDealerServicesFromView
POST /api/ServiceProduct/ReadAllServicesFromView
POST /api/ServiceProduct/UpdateServiceProduct
POST /api/ServiceProduct/UpdateServiceofTenants
POST /api/Settings/InsertColumnSettings
POST /api/Settings/UpdateColumnSettings
POST /api/SmallFleetService/CopyBrokeredVehicleServiceItem
POST /api/SmallFleetService/CreateNewBrokeredVehicleServiceItem
POST /api/Store/ReadTax
POST /api/Trade/CalculatePrices
POST /api/Trade/GetGrossPrice
POST /api/Trade/GetNetPrice
POST /api/TradeServices

Found on 2026-01-23 00:29

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-01-09 01:27

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: demo-projectb.service2muuv.eu
Port: 443
URL: https://demo-projectb.service2muuv.eu

First seen 2026-01-11 08:10
Last seen 2026-01-22 21:29
Open for 11 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035494ba680ea521615473b1e48cb6574b7f7b5a2e337

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/AppConfiguration
GET /api/AppConfiguration/translations/{language}
GET /api/Auth/GetUser
GET /api/Auth/ValidateToken
GET /api/MasterData/GetCurrentEntityValue
GET /api/MasterData/ReadAdminOptionsWithMaster
GET /api/MasterData/ReadAllEnumSelectedByTenant
GET /api/MasterData/ReadAllEnumsByTenant
GET /api/MasterData/ReadEnumsByTenantAndId
GET /api/Partner/ReadAllMarketTenantParties/{market}
GET /api/Partner/ReadAllTenantParties
GET /api/Settings/ReadColumnSetting/{userId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItem/{id}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByProductItemId/{productItemId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByTradeId/{tradeId}/{tenantId}
GET /api/SmallFleetService/ReadBrokeredVehicleServiceItemByTransactionId/{transactionId}/{tenantId}
GET /api/Store/ReadAllCatalogs
GET /api/Store/ReadAllMarkets
GET /api/Store/ReadAllProductsByManufacturer
GET /api/Store/ReadAllStores
GET /api/Store/ReadAllTaxes
GET /api/Store/ReadCatalogsByMarket
GET /api/Store/ReadMarket
GET /api/Store/ReadProduct
GET /api/Store/ReadProductByType
GET /api/Trade/GetSalePrice
POST /api/Auth/ChangePassword
POST /api/Auth/DoLogin
POST /api/Auth/GetUserParty
POST /api/Document/UploadDocuments/{userId}/{tenantId}
POST /api/Integra/MapProductItemFromIntegraObject
POST /api/MasterData/UpdateEnum
POST /api/Notification
POST /api/ServiceProduct/ApplyMarketDefaultServiceProductToTenant/{market}/{tenantId}
POST /api/ServiceProduct/CreateServiceProduct
POST /api/ServiceProduct/DeleteServiceProductByProductId
POST /api/ServiceProduct/ReadAllNotDealerServicesFromView
POST /api/ServiceProduct/ReadAllServicesFromView
POST /api/ServiceProduct/UpdateServiceProduct
POST /api/ServiceProduct/UpdateServiceofTenants
POST /api/Settings/InsertColumnSettings
POST /api/Settings/UpdateColumnSettings
POST /api/SmallFleetService/CopyBrokeredVehicleServiceItem
POST /api/SmallFleetService/CreateNewBrokeredVehicleServiceItem
POST /api/Store/ReadTax
POST /api/Trade/CalculatePrices
POST /api/Trade/GetGrossPrice
POST /api/Trade/GetNetPrice
POST /api/TradeServices

Found on 2026-01-22 21:29

Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
Found on 2026-01-11 08:10

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: api.ieucys.eu
Port: 443
URL: https://api.ieucys.eu

First seen 2025-12-10 12:56
Last seen 2026-01-16 04:20
Open for 36 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-16 04:20
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 13.69.68.4
Domain: vehicle-consumption.ws.moviatrafik.dk
Port: 443
URL: https://vehicle-consumption.ws.moviatrafik.dk

First seen 2025-12-28 06:30
Last seen 2026-01-16 01:23
Open for 18 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d60adbd378be7762b4ae7762b4ae7762b4ae7762b4a
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
POST /DataLog/ElectricVehicle
POST /DataLog/ElectricVehicleBatch
```
  Found on 2026-01-16 01:23
Create report

Open service 13.69.68.4:80 · devette.automatiseerjouwproces.nl

2026-02-12 21:37

HTTP/1.1 307 Temporary Redirect
Content-Length: 6937
Connection: close
Content-Type: text/html; charset=utf-8
Date: Thu, 12 Feb 2026 21:37:37 GMT
Cache-Control: s-maxage=31536000
ETag: "p2zpwsqxxe5cp"
Location: /auth/signin
Set-Cookie: ARRAffinity=2c847a802c8040b33d7df73fac3a50614d8069754a88be4922fa1677ca17ce3d;Path=/;HttpOnly;Domain=devette.automatiseerjouwproces.nl
Vary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch, Accept-Encoding
x-nextjs-cache: HIT
x-nextjs-prerender: 1
x-nextjs-prerender: 1
x-nextjs-stale-time: 300
X-Powered-By: Next.js

Page title: ServiceApp - Service management made simple

<!DOCTYPE html><!--W5ciLjvvdvgCQaaHSFPrQ--><html id="__next_error__"><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width, initial-scale=1"/><link rel="preload" as="script" fetchPriority="low" href="/_next/static/chunks/8cc064cf5f4e66fc.js"/><script src="/_next/static/chunks/9a076b872a8ad769.js" async=""></script><script src="/_next/static/chunks/d3bac24045c1a728.js" async=""></script><script src="/_next/static/chunks/00f1964a3520ac92.js" async=""></script><script src="/_next/static/chunks/02d548b70d99921c.js" async=""></script><script src="/_next/static/chunks/turbopack-48ce8ab21165e69a.js" async=""></script><script src="/_next/static/chunks/22fc8eaca9ee64bc.js" async=""></script><script src="/_next/static/chunks/0e3f4c40d291d045.js" async=""></script><title>ServiceApp - Service management made simple</title><meta name="description" content="Streamline your service management with our powerful platform. Track projects, manage clients, and optimize your workflow all in one place."/><link rel="icon" href="/favicon.ico?favicon.d0b9a778.ico" sizes="48x48" type="image/x-icon"/><script src="/_next/static/chunks/a6dad97d9634a72d.js" noModule=""></script></head><body><div hidden=""><!--$--><!--/$--></div><script src="/_next/static/chunks/8cc064cf5f4e66fc.js" id="_R_" async=""></script><script>(self.__next_f=self.__next_f||[]).push([0])</script><script>self.__next_f.push([1,"1:\"$Sreact.fragment\"\n2:I[44636,[\"/_next/static/chunks/244125d91cf22ba8.js\"],\"Providers\"]\n3:I[62447,[\"/_next/static/chunks/22fc8eaca9ee64bc.js\",\"/_next/static/chunks/0e3f4c40d291d045.js\"],\"default\"]\n4:I[92699,[\"/_next/static/chunks/22fc8eaca9ee64bc.js\",\"/_next/static/chunks/0e3f4c40d291d045.js\"],\"default\"]\n6:I[87625,[\"/_next/static/chunks/22fc8eaca9ee64bc.js\",\"/_next/static/chunks/0e3f4c40d291d045.js\"],\"OutletBoundary\"]\n7:\"$Sreact.suspense\"\n9:I[87625,[\"/_next/static/chunks/22fc8eaca9ee64bc.js\",\"/_next/static/chunks/0e3f4c40d291d045.js\"],\"ViewportBoundary\"]\nb:I[87625,[\"/_next/static/chunks/22fc8eaca9ee64bc.js\",\"/_next/static/chunks/0e3f4c40d291d045.js\"],\"MetadataBoundary\"]\nd:I[42628,[],\"default\"]\n:HL[\"/_next/static/chunks/603faa73f95b23ec.css\",\"style\"]\n:HL[\"/_next/static/chunks/c47ea4474e085955.css\",\"style\"]\n:HL[\"/_next/static/media/03bda585a99c6450-s.p.ad37b9d9.woff2\",\"font\",{\"crossOrigin\":\"\",\"type\":\"font/woff2\"}]\n:HL[\"/_next/static/media/0c89a48fa5027cee-s.p.4564287c.woff2\",\"font\",{\"crossOrigin\":\"\",\"type\":\"font/woff2\"}]\n:HL[\"/_next/static/media/83afe278b6a6bb3c-s.p.3a6ba036.woff2\",\"font\",{\"crossOrigin\":\"\",\"type\":\"font/woff2\"}]\n:HL[\"/_next/static/media/ca31d6821328a4e9-s.p.8036670a.woff2\",\"font\",{\"crossOrigin\":\"\",\"type\":\"font/woff2\"}]\n"])</script><script>self.__next_f.push([1,"0:{\"P\":null,\"b\":\"W5ciLjvvdvgCQaaHSFPrQ\",\"c\":[\"\",\"\"],\"q\":\"\",\"i\":false,\"f\":[[[\"\",{\"children\":[\"__PAGE__\",{}]},\"$undefined\",\"$undefined\",true],[[\"$\",\"$1\",\"c\",{\"children\":[[[\"$\",\"link\",\"0\",{\"rel\":\"stylesheet\",\"href\":\"/_next/static/chunks/603faa73f95b23ec.css\",\"precedence\":\"next\",\"crossOrigin\":\"$undefined\",\"nonce\":\"$undefined\"}],[\"$\",\"link\",\"1\",{\"rel\":\"stylesheet\",\"href\":\"/_next/static/chunks/c47ea4474e085955.css\",\"precedence\":\"next\",\"crossOrigin\":\"$undefined\",\"nonce\":\"$undefined\"}],[\"$\",\"script\",\"script-0\",{\"src\":\"/_next/static/chunks/244125d91cf22ba8.js\",\"async\":true,\"nonce\":\"$undefined\"}]],[\"$\",\"html\",null,{\"lang\":\"en\",\"className\":\"h-full scroll-smooth bg-white antialiased space_grotesk_c74ca1d9-module__il6WUW__variable fraunces_51fddba5-module__4tCsHW__variable\",\"children\":[\"$\",\"body\",null,{\"className\":\"flex h-full flex-col\",\"children\":[\"$\",\"$L2\",null,{\"children\":[\"$\",\"$L3\",null,{\"parallelRouterKey\":\"children\",\"error\":\"$undefined\",\"errorStyles\":\"$undefined\",\"errorScripts\":\"$undefined\",\"template\":[\"$\",\"$L4\",null,{}],\"templateStyles\":\"$undefined\",\"templateScripts\":\"$undefined\",\"notFound\

Found 12 hours ago by HttpPlugin

Host 13.69.68.4

The Netherlands

Software information

MacOS file listing through .DS_Store file

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

MacOS file listing through .DS_Store file

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

GraphQL introspection is enabled.

Swagger API description is publicly available

Swagger API description is publicly available

GraphQL introspection is enabled.

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available

Swagger API description is publicly available