LeakIX - Host 185.217.107.30

Host 185.217.107.30

United Kingdom

Fic Shareco Limited

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.creedfragrance.com
Port: 443
URL: https://horizon-api.www.creedfragrance.com

First seen 2025-10-16 01:31
Last seen 2026-01-02 23:01
Open for 78 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa374c2942e74c2942e74c2942e74c2942e74c2942e
```
GraphQL introspection enabled at /graphql
Detected: Magento
```
Found on 2026-01-02 23:01

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f2a2b02d90e5f48ffe3b43715407d111eff6dc41

GraphQL introspection enabled at /graphql
Types: 604 (by kind: ENUM: 64, INPUT_OBJECT: 72, INTERFACE: 5, OBJECT: 429, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-13 01:33

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3afc985bb17ccec392a658e7fdb929bcf88847398

GraphQL introspection enabled at /graphql
Types: 603 (by kind: ENUM: 64, INPUT_OBJECT: 72, INTERFACE: 5, OBJECT: 428, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 11:07

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3dd1f74cb9d40f0499a7488cf839861ffdac2fd88

GraphQL introspection enabled at /graphql
Types: 601 (by kind: ENUM: 64, INPUT_OBJECT: 72, INTERFACE: 5, OBJECT: 426, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-27 03:59

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d0de57f5b1b6a5f7369652c98b5dfbf982e11c5a

GraphQL introspection enabled at /graphql
Types: 599 (by kind: ENUM: 64, INPUT_OBJECT: 72, INTERFACE: 5, OBJECT: 424, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 11:13

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e6866d1f7b440cad3d3beb7aa5a8ec8395f60dfc

GraphQL introspection enabled at /graphql
Types: 600 (by kind: ENUM: 65, INPUT_OBJECT: 72, INTERFACE: 5, OBJECT: 424, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, check, deleteAddress, deletePaymentCard, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-20 11:55

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa38d054ce9abd793cbf00889c4fcfdead98ad2417a

GraphQL introspection enabled at /graphql
Types: 545 (by kind: ENUM: 64, INPUT_OBJECT: 67, INTERFACE: 5, OBJECT: 378, SCALAR: 28, UNION: 3)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, check, deleteAddress, deletePaymentCard, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-16 01:31

982.2 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.creedfragrance.de
Port: 443
URL: https://horizon-api.www.creedfragrance.de

First seen 2025-10-16 01:30
Last seen 2026-01-02 22:55
Open for 78 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa374c2942e74c2942e74c2942e74c2942e74c2942e
```
GraphQL introspection enabled at /graphql
Detected: Magento
```
Found on 2026-01-02 22:55
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-12-10 16:02

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e1c3bdbf0112350d0fd3650b002e5ce364158e9c

GraphQL introspection enabled at /graphql
Types: 603 (by kind: ENUM: 65, INPUT_OBJECT: 72, INTERFACE: 5, OBJECT: 427, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-30 10:03

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34833a9778594866550c685d33f7e665bbbafaa24

GraphQL introspection enabled at /graphql
Types: 601 (by kind: ENUM: 65, INPUT_OBJECT: 72, INTERFACE: 5, OBJECT: 425, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 05:47

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3055368d1591e6013baeba6dc04be7871964bc502

GraphQL introspection enabled at /graphql
Types: 602 (by kind: ENUM: 66, INPUT_OBJECT: 72, INTERFACE: 5, OBJECT: 425, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, check, deleteAddress, deletePaymentCard, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-20 08:47

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39f085a3de522ccdfb2007db0af953315cd3339d6

GraphQL introspection enabled at /graphql
Types: 547 (by kind: ENUM: 65, INPUT_OBJECT: 67, INTERFACE: 5, OBJECT: 379, SCALAR: 28, UNION: 3)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, check, deleteAddress, deletePaymentCard, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-16 01:30

986.2 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.breeder.wellbeloved.com
Port: 443
URL: https://horizon-api.breeder.wellbeloved.com

First seen 2025-12-08 02:08
Last seen 2026-01-02 22:16
Open for 25 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa393d83ffcbe752e40cdb431acd046a020da5ac8e2

GraphQL introspection enabled at /graphql
Types: 591 (by kind: ENUM: 65, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 417, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2026-01-02 22:16

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30d85c5a6be1bd3d677c8304e1c4a595245a3ca9c

GraphQL introspection enabled at /graphql
Types: 590 (by kind: ENUM: 64, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 417, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-19 06:08

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa389919d1d0552217fe4030721e7460ae1f48f1c71

GraphQL introspection enabled at /graphql
Types: 588 (by kind: ENUM: 64, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 415, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-14 08:32

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa361e3945fbf45d96dc92ff86b4920c08317b741fc

GraphQL introspection enabled at /graphql
Types: 588 (by kind: ENUM: 65, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 414, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-08 02:08

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.rukkapets.us
Port: 443
URL: https://horizon-api.www.rukkapets.us

First seen 2025-12-03 12:09
Last seen 2026-01-02 18:43
Open for 30 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa338fad341a67f3c4344f877fd8b20e6a5271611e6

GraphQL introspection enabled at /graphql
Types: 585 (by kind: ENUM: 65, INPUT_OBJECT: 73, INTERFACE: 3, OBJECT: 410, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 18:43

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa346135e53d932c011c1b3d7a73cec3127b317c780

GraphQL introspection enabled at /graphql
Types: 584 (by kind: ENUM: 64, INPUT_OBJECT: 73, INTERFACE: 3, OBJECT: 410, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-19 05:01

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa38337c178f16b0b9c7e8569a0a9998ddc1e652473

GraphQL introspection enabled at /graphql
Types: 582 (by kind: ENUM: 64, INPUT_OBJECT: 73, INTERFACE: 3, OBJECT: 408, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-13 16:03

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa375c6030c1bce9c509b0225fcf1a4b910b0fe45e7

GraphQL introspection enabled at /graphql
Types: 581 (by kind: ENUM: 64, INPUT_OBJECT: 73, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-10 12:06

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3451f2bc06ee5f8046cb71038f382bde4a0ec4cab

GraphQL introspection enabled at /graphql
Types: 582 (by kind: ENUM: 65, INPUT_OBJECT: 73, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-06 08:49

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.moltonbrown.fr
Port: 443
URL: https://horizon-api.www.moltonbrown.fr

First seen 2025-10-17 12:05
Last seen 2026-01-02 18:25
Open for 77 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d94fdd6717058b554bb2d703c7ffd92b884f23b4

GraphQL introspection enabled at /graphql
Types: 581 (by kind: ENUM: 64, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 410, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 18:25

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ce08e3cf0e8bb75d14e7fa9b0ca6a6d338fea64c

GraphQL introspection enabled at /graphql
Types: 580 (by kind: ENUM: 63, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 410, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-17 03:02

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b498abfd37ebb51fd5846241e63ebe41eca9e892

GraphQL introspection enabled at /graphql
Types: 578 (by kind: ENUM: 63, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 408, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-13 04:14

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a96505dc7e72b3f485ae5e180d7d9a120201db2

GraphQL introspection enabled at /graphql
Types: 575 (by kind: ENUM: 63, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 405, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-01 16:14

996.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa322260e4ddd517cef121ea2510077a831705e2342

GraphQL introspection enabled at /graphql
Types: 573 (by kind: ENUM: 63, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 403, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 22:19

989.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-10-30 06:09

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa322260e4ddd517cef420ae980de0ae045a4b4c246

GraphQL introspection enabled at /graphql
Types: 573 (by kind: ENUM: 63, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 403, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, check, deleteAddress, deletePaymentCard, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-21 06:10

988.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3eca28385208e1647532068a81cbd1e6d4cfeecde

GraphQL introspection enabled at /graphql
Types: 582 (by kind: ENUM: 64, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 410, SCALAR: 28, UNION: 7)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, check, deleteAddress, deletePaymentCard, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-19 10:23

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.wrexhamafcmerchandise.com
Port: 443
URL: https://horizon-api.www.wrexhamafcmerchandise.com

First seen 2025-10-19 08:42
Last seen 2026-01-02 17:14
Open for 75 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3bf85ca3daf5c9cdfd0b9b5016990be0124509ed2

GraphQL introspection enabled at /graphql
Types: 579 (by kind: ENUM: 63, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 409, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 17:14

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d7f5cf1b16a85259aead8a1fa110fe2f1e4cb338

GraphQL introspection enabled at /graphql
Types: 578 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 409, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-18 14:58

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa38e9b1b1751fbc9c57d2f0333e261497b4bad5704

GraphQL introspection enabled at /graphql
Types: 576 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-16 11:46

997.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34f6c874da34d4fefbe9d3b51b9300131407db442

GraphQL introspection enabled at /graphql
Types: 575 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 406, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-10 19:23

996.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa32109e7259b038127e49738b953b0c90998461caa

GraphQL introspection enabled at /graphql
Types: 573 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 404, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-30 14:35

992.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fba5bd7d031fe59faf6d23c170471fc10e063e12

GraphQL introspection enabled at /graphql
Types: 571 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 402, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-14 07:33

984.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fba5bd7d031fe59f6d4e457019ef66d5da616416

GraphQL introspection enabled at /graphql
Types: 571 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 402, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, check, deleteAddress, deletePaymentCard, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-21 06:54

984.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e8e3dfba51e972ea15f82a134fc12702c14956b9

GraphQL introspection enabled at /graphql
Types: 580 (by kind: ENUM: 63, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 409, SCALAR: 28, UNION: 7)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, check, deleteAddress, deletePaymentCard, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-19 08:42

1.0 MBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.shop.purina.co.uk
Port: 443
URL: https://horizon-api.shop.purina.co.uk

First seen 2025-12-03 12:10
Last seen 2026-01-02 17:03
Open for 30 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 17:03
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.shop.oralb.de
Port: 443
URL: https://horizon-api.shop.oralb.de

First seen 2025-11-09 15:32
Last seen 2026-01-02 16:47
Open for 54 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-02 16:47

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d1fed79b73b17fd96818229f004576afbfaa67b8

GraphQL introspection enabled at /graphql
Types: 592 (by kind: ENUM: 70, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 413, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-01 19:14

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b5036da37cf1fb61f3282677f80cf6d7b59d9b70

GraphQL introspection enabled at /graphql
Types: 590 (by kind: ENUM: 70, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 411, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 19:36

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.zuechter.jameswellbeloved.de
Port: 443
URL: https://horizon-api.zuechter.jameswellbeloved.de

First seen 2025-12-05 19:10
Last seen 2026-01-02 16:28
Open for 27 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa38aed32b1869c6fb337ba3eedc2e7b7b57d89d1c5

GraphQL introspection enabled at /graphql
Types: 586 (by kind: ENUM: 64, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 415, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2026-01-02 16:28

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ee1e3dc30c199241da4e8d57af394df7c4285e17

GraphQL introspection enabled at /graphql
Types: 585 (by kind: ENUM: 63, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 415, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-19 04:31

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa303539d2fd32baa7d90296dbb060898b31612da13

GraphQL introspection enabled at /graphql
Types: 583 (by kind: ENUM: 63, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 413, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-14 08:32

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a62a969f90fd452daeb0222b4c27cd4376623f3c

GraphQL introspection enabled at /graphql
Types: 583 (by kind: ENUM: 64, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 412, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-08 02:09

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.store.fr.honda.ch
Port: 443
URL: https://horizon-api.store.fr.honda.ch

First seen 2025-11-26 14:06
Last seen 2026-01-02 16:11
Open for 37 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b4124c2cb74edd305d14665c5d3d29b097486747

GraphQL introspection enabled at /graphql
Types: 575 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 16:11

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa334d1d1d0fa8af5144b38aa48c33b3c94fd05a99b

GraphQL introspection enabled at /graphql
Types: 574 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-17 03:14

995.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b731fb501fd82d94406f83c8fa0bb614d259571b

GraphQL introspection enabled at /graphql
Types: 572 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 405, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-12 20:28

991.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e0cba2985b0c947c03784200fa1cd4fcbc3d54d3

GraphQL introspection enabled at /graphql
Types: 572 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 404, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 18:47

994.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f3c6ee0deaedf92f78eb75916ce7f371de076802

GraphQL introspection enabled at /graphql
Types: 569 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 402, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-30 17:24

985.9 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.eimele.com
Port: 443
URL: https://horizon-api.eimele.com

First seen 2025-10-22 04:44
Last seen 2026-01-02 16:11
Open for 72 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-02 16:11

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa38f080941b1284e43b3826dfdb26d5ca55cbad7e6

GraphQL introspection enabled at /graphql
Types: 616 (by kind: ENUM: 75, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 428, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-01 08:03

1.1 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3539d227d1b755c9f78e628c16ddee4c10681db12

GraphQL introspection enabled at /graphql
Types: 614 (by kind: ENUM: 75, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 426, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 21:07

1.1 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3539d227d1b755c9fc8ad7270d87e952700bf0b80

GraphQL introspection enabled at /graphql
Types: 614 (by kind: ENUM: 75, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 426, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, cancelSubscription, check, deleteAddress, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-22 04:44

1.1 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.wrexhamafcmerchandise.co.uk
Port: 443
URL: https://horizon-api.www.wrexhamafcmerchandise.co.uk

First seen 2025-10-19 18:41
Last seen 2026-01-02 16:04
Open for 74 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3bf85ca3daf5c9cdfd0b9b5016990be0124509ed2

GraphQL introspection enabled at /graphql
Types: 579 (by kind: ENUM: 63, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 409, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 16:04

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ff7830e56d57c367f3ef77f9cd961749034ba96a

GraphQL introspection enabled at /graphql
Types: 577 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 408, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-16 12:01

999.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa38e9b1b1751fbc9c57d2f0333e261497b4bad5704

GraphQL introspection enabled at /graphql
Types: 576 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-12 17:25

998.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34f6c874da34d4fefbe9d3b51b9300131407db442

GraphQL introspection enabled at /graphql
Types: 575 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 406, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-10 20:59

997.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa32109e7259b038127e49738b953b0c90998461caa

GraphQL introspection enabled at /graphql
Types: 573 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 404, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-28 04:15

992.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fba5bd7d031fe59faf6d23c170471fc10e063e12

GraphQL introspection enabled at /graphql
Types: 571 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 402, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 19:13

985.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fba5bd7d031fe59f6d4e457019ef66d5da616416

GraphQL introspection enabled at /graphql
Types: 571 (by kind: ENUM: 62, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 402, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, check, deleteAddress, deletePaymentCard, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-21 16:27

984.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e8e3dfba51e972ea15f82a134fc12702c14956b9

GraphQL introspection enabled at /graphql
Types: 580 (by kind: ENUM: 63, INPUT_OBJECT: 70, INTERFACE: 3, OBJECT: 409, SCALAR: 28, UNION: 7)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, check, deleteAddress, deletePaymentCard, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-19 18:41

1.0 MBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.yourcoca-cola.co.uk
Port: 443
URL: https://horizon-api.www.yourcoca-cola.co.uk

First seen 2025-12-03 11:05
Last seen 2026-01-02 15:36
Open for 30 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 15:36
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.equinepremium.com
Port: 443
URL: https://horizon-api.www.equinepremium.com

First seen 2025-10-30 00:08
Last seen 2026-01-02 14:57
Open for 64 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-02 14:57

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa361237c684543a0cc9fc66e10503fbbacf06476c3

GraphQL introspection enabled at /graphql
Types: 596 (by kind: ENUM: 69, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 414, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-30 20:51

1.1 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d7980ad0809c0814c0ef03483f3b559477aefa9b

GraphQL introspection enabled at /graphql
Types: 594 (by kind: ENUM: 69, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 412, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 21:45

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.store.de.honda.ch
Port: 443
URL: https://horizon-api.store.de.honda.ch

First seen 2025-11-26 14:03
Last seen 2026-01-02 14:57
Open for 37 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b4124c2cb74edd305d14665c5d3d29b097486747

GraphQL introspection enabled at /graphql
Types: 575 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 14:57

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34d7c65ae40dfad5e6f837dc669e0e6bafb08a841

GraphQL introspection enabled at /graphql
Types: 573 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 406, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-16 15:53

992.5 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b731fb501fd82d94406f83c8fa0bb614d259571b

GraphQL introspection enabled at /graphql
Types: 572 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 405, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-12 20:26

991.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e0cba2985b0c947c03784200fa1cd4fcbc3d54d3

GraphQL introspection enabled at /graphql
Types: 572 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 404, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 17:25

994.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f3c6ee0deaedf92f78eb75916ce7f371de076802

GraphQL introspection enabled at /graphql
Types: 569 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 402, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-30 17:24

985.9 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.bio-kult.com
Port: 443
URL: https://horizon-api.www.bio-kult.com

First seen 2025-10-29 13:12
Last seen 2026-01-02 14:19
Open for 65 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-02 14:19

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e006efb5014db937f3959e09b989e6397aec291a

GraphQL introspection enabled at /graphql
Types: 597 (by kind: ENUM: 70, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 414, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-26 22:31

1.1 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa306c6e1c9dbd61b6bbff4dff59208ac6d441a0ade

GraphQL introspection enabled at /graphql
Types: 595 (by kind: ENUM: 70, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 412, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 15:52

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.precisionbiotics.co.uk
Port: 443
URL: https://horizon-api.www.precisionbiotics.co.uk

First seen 2025-10-15 12:48
Last seen 2026-01-02 12:34
Open for 78 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-02 12:34

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa361237c684543a0cc9fc66e10503fbbacf06476c3

GraphQL introspection enabled at /graphql
Types: 596 (by kind: ENUM: 69, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 414, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-30 13:42

1.1 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d7980ad0809c0814c0ef03483f3b559477aefa9b

GraphQL introspection enabled at /graphql
Types: 594 (by kind: ENUM: 69, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 412, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 16:53

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d7980ad0809c0814042b9077ade5944f6d0ca818

GraphQL introspection enabled at /graphql
Types: 594 (by kind: ENUM: 69, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 412, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, exchangeSocialAuthenticationToken, header, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, forgottenPassword, login, logout, resetPassword
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-23 06:46

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b754346dd687014f8ceac56040a05df7995b2350

GraphQL introspection enabled at /graphql
Types: 603 (by kind: ENUM: 70, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 419, SCALAR: 28, UNION: 7)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, cancelSubscription, check, deleteAddress, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-19 06:18

1.1 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3bf684d230cbac5e18c7fb506e30216190c1a923a

GraphQL introspection enabled at /graphql
Types: 545 (by kind: ENUM: 69, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 372, SCALAR: 28, UNION: 4)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, cancelSubscription, check, deleteAddress, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-15 12:48

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.store.honda.it
Port: 443
URL: https://horizon-api.store.honda.it

First seen 2025-11-26 14:06
Last seen 2026-01-02 12:13
Open for 36 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b4124c2cb74edd305d14665c5d3d29b097486747

GraphQL introspection enabled at /graphql
Types: 575 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 12:13

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa334d1d1d0fa8af5144b38aa48c33b3c94fd05a99b

GraphQL introspection enabled at /graphql
Types: 574 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-18 22:39

995.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b731fb501fd82d94406f83c8fa0bb614d259571b

GraphQL introspection enabled at /graphql
Types: 572 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 405, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-13 07:51

991.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f3c6ee0deaedf92f78eb75916ce7f371de076802

GraphQL introspection enabled at /graphql
Types: 569 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 402, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-30 21:40

986.1 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.direct.purina.co.uk
Port: 443
URL: https://horizon-api.direct.purina.co.uk

First seen 2025-12-08 18:56
Last seen 2026-01-02 11:55
Open for 24 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 11:55
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.shop.honda.nl
Port: 443
URL: https://horizon-api.shop.honda.nl

First seen 2025-12-03 17:26
Last seen 2026-01-02 11:14
Open for 29 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b4124c2cb74edd305d14665c5d3d29b097486747

GraphQL introspection enabled at /graphql
Types: 575 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 11:14

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa334d1d1d0fa8af5144b38aa48c33b3c94fd05a99b

GraphQL introspection enabled at /graphql
Types: 574 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-16 17:34

995.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e0cba2985b0c947c03784200fa1cd4fcbc3d54d3

GraphQL introspection enabled at /graphql
Types: 572 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 404, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 17:26

994.8 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.shop.honda.de
Port: 443
URL: https://horizon-api.shop.honda.de

First seen 2025-11-26 14:03
Last seen 2026-01-02 11:13
Open for 36 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b4124c2cb74edd305d14665c5d3d29b097486747

GraphQL introspection enabled at /graphql
Types: 575 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 11:13

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa334d1d1d0fa8af5144b38aa48c33b3c94fd05a99b

GraphQL introspection enabled at /graphql
Types: 574 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-18 20:03

995.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e0cba2985b0c947c03784200fa1cd4fcbc3d54d3

GraphQL introspection enabled at /graphql
Types: 572 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 404, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 17:26

994.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f3c6ee0deaedf92f78eb75916ce7f371de076802

GraphQL introspection enabled at /graphql
Types: 569 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 402, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-01 05:10

985.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-11-26 14:03

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.shop.oralb.co.uk
Port: 443
URL: https://horizon-api.shop.oralb.co.uk

First seen 2025-12-03 11:09
Last seen 2026-01-02 10:37
Open for 29 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 10:37
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.plasmon.it
Port: 443
URL: https://horizon-api.www.plasmon.it

First seen 2025-12-03 11:09
Last seen 2026-01-02 10:08
Open for 29 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-02 10:08

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fb1921e5b4b9be67110f88f96791e8496bc2f26a

GraphQL introspection enabled at /graphql
Types: 600 (by kind: ENUM: 68, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 423, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-16 11:23

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34ec44e71054954f33079322d23c489f5c92445f6

GraphQL introspection enabled at /graphql
Types: 599 (by kind: ENUM: 68, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 422, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 11:09

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.store.honda.co.uk
Port: 443
URL: https://horizon-api.store.honda.co.uk

First seen 2025-11-26 14:04
Last seen 2026-01-02 09:57
Open for 36 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f0a12f4a928a087adf7cd13abfa32b86ccf644ad

GraphQL introspection enabled at /graphql
Types: 577 (by kind: ENUM: 63, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 408, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 09:57

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30a598320994b592474cd9ed84726dc44ff94614b

GraphQL introspection enabled at /graphql
Types: 576 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 408, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-18 09:31

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa36e463ea4a3f0eb28eb44dde49bbc3968544f944f

GraphQL introspection enabled at /graphql
Types: 574 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 406, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-16 07:24

996.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa35a676efc7b58934056e840aca396ef2001b1b177

GraphQL introspection enabled at /graphql
Types: 571 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 403, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-02 08:06

990.6 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.whitestuff.fr
Port: 443
URL: https://horizon-api.www.whitestuff.fr

First seen 2025-10-25 05:10
Last seen 2026-01-02 09:31
Open for 69 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa358ee1c148ba116d8e7375a5400717e785c498b5f

GraphQL introspection enabled at /graphql
Types: 595 (by kind: ENUM: 68, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 418, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 09:31

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f540ad382ce4bcdc117573e0cc27dd1cc08ad133

GraphQL introspection enabled at /graphql
Types: 594 (by kind: ENUM: 67, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 418, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-18 07:56

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa303a286ec6c9a5a70c2b2909c7fa99ff0b208e807

GraphQL introspection enabled at /graphql
Types: 592 (by kind: ENUM: 67, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 416, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-16 04:55

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d828e330a0c5b2b4274392685be1a3f435f0c23b

GraphQL introspection enabled at /graphql
Types: 591 (by kind: ENUM: 67, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 415, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-11 09:52

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3123662af089316fddd12633be8842e333289216c

GraphQL introspection enabled at /graphql
Types: 589 (by kind: ENUM: 67, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 413, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-30 04:36

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a125b5d754e94405222683736c165dbb08ed73c4

GraphQL introspection enabled at /graphql
Types: 587 (by kind: ENUM: 67, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 411, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 04:14

1.0 MBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.allbeauty.com
Port: 443
URL: https://horizon-api.www.allbeauty.com

First seen 2025-12-05 14:05
Last seen 2026-01-02 09:21
Open for 27 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 09:21
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.de.speedo.com
Port: 443
URL: https://horizon-api.de.speedo.com

First seen 2025-12-03 12:11
Last seen 2026-01-02 09:16
Open for 29 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa374c2942e74c2942e74c2942e74c2942e74c2942e
```
GraphQL introspection enabled at /graphql
Detected: Magento
```
Found on 2026-01-02 09:16

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa325fcbf33ee97db31464775c75d16d28724aa8347

GraphQL introspection enabled at /graphql
Types: 603 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 425, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-18 20:56

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa366e328bb985fcd396ea6917ff432decfae509e98

GraphQL introspection enabled at /graphql
Types: 600 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 422, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 12:11

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.berghaus.com
Port: 443
URL: https://horizon-api.www.berghaus.com

First seen 2025-12-03 11:06
Last seen 2026-01-02 05:30
Open for 29 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa374c2942e74c2942e74c2942e74c2942e74c2942e
```
GraphQL introspection enabled at /graphql
Detected: Magento
```
Found on 2026-01-02 05:30

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa325fcbf33ee97db31464775c75d16d28724aa8347

GraphQL introspection enabled at /graphql
Types: 603 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 425, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-18 21:32

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30ef92a0f7e55bc1d8ad0fe5b3097b893650fb333

GraphQL introspection enabled at /graphql
Types: 601 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 423, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-14 05:01

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30ef92a0f7e55bc1d8ad0fe5b3097b893340c9b8c

GraphQL introspection enabled at /graphql
Types: 601 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 423, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-12 11:17

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa366e328bb985fcd396ea6917ff432decfae509e98

GraphQL introspection enabled at /graphql
Types: 600 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 422, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 11:06

1.0 MBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.pevonia.com
Port: 443
URL: https://horizon-api.www.pevonia.com

First seen 2025-12-03 11:10
Last seen 2026-01-02 03:18
Open for 29 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa374c2942e74c2942e74c2942e74c2942e74c2942e
```
GraphQL introspection enabled at /graphql
Detected: Magento
```
  Found on 2026-01-02 03:18
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-12-10 13:05
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.speedo.com
Port: 443
URL: https://horizon-api.www.speedo.com

First seen 2025-12-03 12:11
Last seen 2026-01-02 03:17
Open for 29 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa374c2942e74c2942e74c2942e74c2942e74c2942e
```
GraphQL introspection enabled at /graphql
Detected: Magento
```
Found on 2026-01-02 03:17

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa325fcbf33ee97db31464775c75d16d28724aa8347

GraphQL introspection enabled at /graphql
Types: 603 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 425, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-18 17:07

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d6efac6742a3d05524ab8603c5ecc82b1aea684b

GraphQL introspection enabled at /graphql
Types: 602 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 424, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-16 12:38

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30ef92a0f7e55bc1d8ad0fe5b3097b893340c9b8c

GraphQL introspection enabled at /graphql
Types: 601 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 423, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-11 00:37

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa366e328bb985fcd396ea6917ff432decfae509e98

GraphQL introspection enabled at /graphql
Types: 600 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 422, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 12:11

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.eu.hyrox-shop.com
Port: 443
URL: https://horizon-api.eu.hyrox-shop.com

First seen 2025-10-22 04:43
Last seen 2026-01-02 03:07
Open for 71 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f540ad382ce4bcdc117573e0cc27dd1cc08ad133

GraphQL introspection enabled at /graphql
Types: 594 (by kind: ENUM: 67, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 418, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 03:07

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3cab9b5e073db6564061cee18098b6b840d9f980b

GraphQL introspection enabled at /graphql
Types: 591 (by kind: ENUM: 66, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 416, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-16 10:13

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f5b9059213042b627b6e79521934952e7df64f05

GraphQL introspection enabled at /graphql
Types: 590 (by kind: ENUM: 66, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 415, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-10 07:07

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d828e330a0c5b2b4274392685be1a3f435f0c23b

GraphQL introspection enabled at /graphql
Types: 591 (by kind: ENUM: 67, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 415, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-08 09:13

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3db010dc9a21d7f6b0ce08bf5a289586da38d56de

GraphQL introspection enabled at /graphql
Types: 588 (by kind: ENUM: 66, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 413, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-28 11:20

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3839d2ead314ef40f03dc11f18524ff91c7d75462

GraphQL introspection enabled at /graphql
Types: 586 (by kind: ENUM: 66, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 411, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 14:33

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30b2133ff4d0bfecd3f399fcbf711b6a3718a7bdc

GraphQL introspection enabled at /graphql
Types: 584 (by kind: ENUM: 65, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 410, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-04 17:28

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30b2133ff4d0bfecdf194b71aeaf5bc107d7530e7

GraphQL introspection enabled at /graphql
Types: 584 (by kind: ENUM: 65, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 410, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, cancelReturn, check, deleteAddress, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-22 04:43

1.0 MBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.protexinpet.com
Port: 443
URL: https://horizon-api.www.protexinpet.com

First seen 2025-12-03 12:09
Last seen 2026-01-02 03:01
Open for 29 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 03:01
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.us.no7beauty.com
Port: 443
URL: https://horizon-api.us.no7beauty.com

First seen 2025-12-03 11:09
Last seen 2026-01-02 02:18
Open for 29 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 02:18
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.fr.speedo.com
Port: 443
URL: https://horizon-api.fr.speedo.com

First seen 2025-12-03 12:11
Last seen 2026-01-02 02:02
Open for 29 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa374c2942e74c2942e74c2942e74c2942e74c2942e
```
GraphQL introspection enabled at /graphql
Detected: Magento
```
Found on 2026-01-02 02:02

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa325fcbf33ee97db31464775c75d16d28724aa8347

GraphQL introspection enabled at /graphql
Types: 603 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 425, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-18 20:56

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa366e328bb985fcd396ea6917ff432decfae509e98

GraphQL introspection enabled at /graphql
Types: 600 (by kind: ENUM: 67, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 422, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 12:11

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.us.speedo.com
Port: 443
URL: https://horizon-api.us.speedo.com

First seen 2025-12-03 12:12
Last seen 2026-01-02 02:02
Open for 29 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33b96dc7bb75cd7796c9629bf4ab0550f506e878f

GraphQL introspection enabled at /graphql
Types: 601 (by kind: ENUM: 68, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 424, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2026-01-02 02:02

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b3d8b1d791b398054074ff734b45d9bb9f62da7b

GraphQL introspection enabled at /graphql
Types: 600 (by kind: ENUM: 67, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 424, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Detected: Magento

Found on 2025-12-18 20:56

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3830814098d9d7f2bddb7e6b50466c92db855071e

GraphQL introspection enabled at /graphql
Types: 597 (by kind: ENUM: 67, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 421, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 12:12

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.shop.fr.honda.be
Port: 443
URL: https://horizon-api.shop.fr.honda.be

First seen 2025-11-26 14:04
Last seen 2026-01-02 02:02
Open for 36 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b4124c2cb74edd305d14665c5d3d29b097486747

GraphQL introspection enabled at /graphql
Types: 575 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-02 02:02

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa334d1d1d0fa8af5144b38aa48c33b3c94fd05a99b

GraphQL introspection enabled at /graphql
Types: 574 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 407, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-18 20:57

995.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e0cba2985b0c947c03784200fa1cd4fcbc3d54d3

GraphQL introspection enabled at /graphql
Types: 572 (by kind: ENUM: 62, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 404, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-03 17:27

994.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f3c6ee0deaedf92f78eb75916ce7f371de076802

GraphQL introspection enabled at /graphql
Types: 569 (by kind: ENUM: 61, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 402, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-30 19:56

985.9 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.heinztohome.co.uk
Port: 443
URL: https://horizon-api.heinztohome.co.uk

First seen 2025-12-03 11:07
Last seen 2026-01-02 00:47
Open for 29 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 00:47
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.us.hyrox-shop.com
Port: 443
URL: https://horizon-api.us.hyrox-shop.com

First seen 2025-12-10 07:07
Last seen 2026-01-01 22:02
Open for 22 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f540ad382ce4bcdc117573e0cc27dd1cc08ad133

GraphQL introspection enabled at /graphql
Types: 594 (by kind: ENUM: 67, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 418, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2026-01-01 22:02

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39d8187bae260aaea854e466ab6368816568ffcfd

GraphQL introspection enabled at /graphql
Types: 592 (by kind: ENUM: 66, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 417, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-16 12:10

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3cab9b5e073db6564061cee18098b6b840d9f980b

GraphQL introspection enabled at /graphql
Types: 591 (by kind: ENUM: 66, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 416, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-14 08:28

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f5b9059213042b627b6e79521934952e7df64f05

GraphQL introspection enabled at /graphql
Types: 590 (by kind: ENUM: 66, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 415, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-10 07:07

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.winkel.oralb.nl
Port: 443
URL: https://horizon-api.winkel.oralb.nl

First seen 2025-10-15 12:46
Last seen 2026-01-01 19:52
Open for 78 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-01 19:52

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39ac0e9f3bfb2b271714d06078bb189c7859411e0

GraphQL introspection enabled at /graphql
Types: 594 (by kind: ENUM: 70, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 413, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-30 21:14

1.1 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa36c849b574b5a1085e52f98f318aa133b1d827d44

GraphQL introspection enabled at /graphql
Types: 592 (by kind: ENUM: 70, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 411, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 15:14

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3467df409153a1f2b7f7eab2407171c939738df8c

GraphQL introspection enabled at /graphql
Types: 593 (by kind: ENUM: 71, INPUT_OBJECT: 74, INTERFACE: 3, OBJECT: 411, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, cancelSubscription, check, deleteAddress, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-19 15:22

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa385932f983814c37ceb2efa4912ec0a18ef8110bf

GraphQL introspection enabled at /graphql
Types: 538 (by kind: ENUM: 70, INPUT_OBJECT: 69, INTERFACE: 3, OBJECT: 365, SCALAR: 28, UNION: 3)
Operations:
- Query: Query | fields: captchaConfiguration, check, deliveryInfo, paymentMethods, supportedCurrencies
- Mutation: Mutation | fields: addAddress, cancelSubscription, check, deleteAddress, replaceAddress
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-15 12:46

991.3 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.betabreeders.purina.co.uk
Port: 443
URL: https://horizon-api.betabreeders.purina.co.uk

First seen 2025-12-03 12:10
Last seen 2025-12-10 06:33
Open for 6 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3165bd2d8192f793c1202fac07eb04abc49da6013

GraphQL introspection enabled at /graphql
Types: 580 (by kind: ENUM: 63, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 408, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-10 06:33

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f1ed30203ecce8241533ebd82f59e9440421064b

GraphQL introspection enabled at /graphql
Types: 581 (by kind: ENUM: 64, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 408, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-12-06 05:53

1.0 MBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.fuel10k.com
Port: 443
URL: https://horizon-api.fuel10k.com

First seen 2025-12-03 11:06
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-12-03 11:06
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.gardenoflife.nl
Port: 443
URL: https://horizon-api.www.gardenoflife.nl

First seen 2025-10-23 05:04
Last seen 2025-11-16 19:52
Open for 24 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa306c6e1c9dbd61b6bbff4dff59208ac6d441a0ade

GraphQL introspection enabled at /graphql
Types: 595 (by kind: ENUM: 70, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 412, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 19:52

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa306c6e1c9dbd61b6b4f1e1706b4a796a82d99b80f

GraphQL introspection enabled at /graphql
Types: 595 (by kind: ENUM: 70, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 412, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, exchangeSocialAuthenticationToken, header, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, forgottenPassword, login, logout, resetPassword
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-23 05:04

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.gardenoflife.net.au
Port: 443
URL: https://horizon-api.www.gardenoflife.net.au

First seen 2025-10-29 13:12
Last seen 2025-11-16 19:09
Open for 18 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34c0740d9a2ad20bb0339c8c515b139dda210b70e

GraphQL introspection enabled at /graphql
Types: 576 (by kind: ENUM: 63, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 404, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 19:09

993.4 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.gardenoflife.de
Port: 443
URL: https://horizon-api.www.gardenoflife.de

First seen 2025-10-23 01:31
Last seen 2025-11-16 10:52
Open for 24 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa306c6e1c9dbd61b6bbff4dff59208ac6d441a0ade

GraphQL introspection enabled at /graphql
Types: 595 (by kind: ENUM: 70, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 412, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 10:52

1.0 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa306c6e1c9dbd61b6b4f1e1706b4a796a82d99b80f

GraphQL introspection enabled at /graphql
Types: 595 (by kind: ENUM: 70, INPUT_OBJECT: 76, INTERFACE: 3, OBJECT: 412, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, exchangeSocialAuthenticationToken, header, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, forgottenPassword, login, logout, resetPassword
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-10-23 01:31

1.0 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.gardenoflife-it.com
Port: 443
URL: https://horizon-api.www.gardenoflife-it.com

First seen 2025-10-29 13:13
Last seen 2025-11-16 08:38
Open for 17 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34c0740d9a2ad20bb0339c8c515b139dda210b70e

GraphQL introspection enabled at /graphql
Types: 576 (by kind: ENUM: 63, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 404, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 08:38

993.4 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 185.217.107.30
Domain: horizon-api.www.gardenoflife.tw
Port: 443
URL: https://horizon-api.www.gardenoflife.tw

First seen 2025-10-29 13:13
Last seen 2025-11-16 06:20
Open for 17 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34c0740d9a2ad20bb0339c8c515b139dda210b70e

GraphQL introspection enabled at /graphql
Types: 576 (by kind: ENUM: 63, INPUT_OBJECT: 72, INTERFACE: 3, OBJECT: 404, SCALAR: 28, UNION: 6)
Operations:
- Query: Query | fields: check, customer, exchangeSocialAuthenticationToken, passwordResetTokenValidity, socialLoginProviders
- Mutation: Mutation | fields: check, updateDateOfBirth, updateEmailAddress, updateMobilePhoneNumber, updateName
Directives: authenticated, deprecated, include, internal, rateLimited, sensitive, skip, surrogateControl, volatile, weight (total: 12)

Found on 2025-11-16 06:20

994.0 kBytes

Create report

Open service 185.217.107.30:443 · horizon-api.www.creedfragrance.com

2026-01-10 02:31

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.moltonbrown.fr

2026-01-10 01:13

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.rukkapets.us

2026-01-10 01:04

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.yourcoca-cola.co.uk

2026-01-09 22:39

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.wrexhamafcmerchandise.co.uk

2026-01-09 22:10

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.eimele.com

2026-01-09 22:03

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.store.fr.honda.ch

2026-01-09 22:03

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.wrexhamafcmerchandise.com

2026-01-09 21:33

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.bio-kult.com

2026-01-09 21:14

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.shop.oralb.de

2026-01-09 20:49

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.breeder.wellbeloved.com

2026-01-09 18:17

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.shop.fl.honda.be

2026-01-09 18:10

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.store.honda.co.uk

2026-01-09 15:44

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.creedfragrance.de

2026-01-09 15:35

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.store.honda.it

2026-01-09 15:29

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.precisionbiotics.co.uk

2026-01-09 14:54

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.store.de.honda.ch

2026-01-09 14:37

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.equinepremium.com

2026-01-09 14:37

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.us.no7beauty.com

2026-01-09 12:31

HTTP/1.1 406 Not Acceptable
content-type: application/json
content-length: 41
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


{"status":406,"message":"Not Acceptable"}

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.lyres.co.uk

2026-01-09 12:30

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.zuechter.jameswellbeloved.de

2026-01-09 11:48

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.eu.hyrox-shop.com

2026-01-09 11:35

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.pevonia.com

2026-01-09 11:25

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.shop.purina.co.uk

2026-01-09 11:18

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.allbeauty.com

2026-01-09 10:28

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.plasmon.it

2026-01-09 10:17

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.shop.honda.de

2026-01-09 09:38

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.shop.honda.nl

2026-01-09 09:37

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.athletia-beauty.co.uk

2026-01-09 09:35

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.creedfragrance.es

2026-01-09 09:35

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.direct.purina.co.uk

2026-01-09 09:32

HTTP/1.1 406 Not Acceptable
content-length: 41
content-type: application/json
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


{"status":406,"message":"Not Acceptable"}

Found 3 days ago by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.shop.oralb.co.uk

2026-01-09 08:23

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.speedo.com

2026-01-09 06:26

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.whitestuff.fr

2026-01-09 05:03

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.protexinpet.com

2026-01-09 04:38

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.berghaus.com

2026-01-09 04:09

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.de.speedo.com

2026-01-09 03:50

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.fuel10k.com

2026-01-09 03:06

HTTP/1.1 404 Not Found
date: Fri, 09 Jan 2026 03:06:34 GMT
content-type: text/plain; charset=utf-8
content-length: 9
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


Not Found

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.heinztohome.co.uk

2026-01-09 02:31

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.winkel.oralb.nl

2026-01-09 01:43

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.gardenoflife.tw

2026-01-09 01:09

HTTP/1.1 404 Not Found
date: Fri, 09 Jan 2026 01:09:35 GMT
content-type: text/plain; charset=utf-8
content-length: 9
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


Not Found

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.gardenoflife.net.au

2026-01-09 01:05

HTTP/1.1 404 Not Found
date: Fri, 09 Jan 2026 01:05:23 GMT
content-type: text/plain; charset=utf-8
content-length: 9
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


Not Found

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.gardenoflife.nl

2026-01-09 01:04

HTTP/1.1 404 Not Found
date: Fri, 09 Jan 2026 01:05:02 GMT
content-type: text/plain; charset=utf-8
content-length: 9
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


Not Found

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.betabreeders.purina.co.uk

2026-01-09 00:37

HTTP/1.1 404 Not Found
date: Fri, 09 Jan 2026 00:37:30 GMT
content-type: text/plain; charset=utf-8
content-length: 9
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


Not Found

Found 2026-01-09 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.shop.fr.honda.be

2026-01-08 23:45

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.us.speedo.com

2026-01-08 23:45

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.fr.speedo.com

2026-01-08 23:45

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.us.hyrox-shop.com

2026-01-08 23:36

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.ellesse.com

2026-01-08 21:14

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.hpeactivewear.com

2026-01-08 21:14

HTTP/1.1 404 Not Found
date: Thu, 08 Jan 2026 21:14:20 GMT
content-type: text/plain; charset=utf-8
content-length: 9
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


Not Found

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.gardenoflife-it.com

2026-01-08 20:13

HTTP/1.1 404 Not Found
date: Thu, 08 Jan 2026 20:13:09 GMT
content-type: text/plain; charset=utf-8
content-length: 9
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


Not Found

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.codeeight.com

2026-01-08 19:18

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.gardenoflife.de

2026-01-08 18:52

HTTP/1.1 406 Not Acceptable
content-length: 41
content-type: application/json
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


{"status":406,"message":"Not Acceptable"}

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.codeeight.com

2026-01-08 11:27

HTTP/1.1 406 Not Acceptable
content-length: 41
content-type: application/json
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


{"status":406,"message":"Not Acceptable"}

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:80 · horizon-api.www.codeeight.com

2026-01-08 11:27

HTTP/1.1 403 Forbidden
content-length: 93
cache-control: no-cache
content-type: text/html


<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:80 · horizon-api.www.creedfragrance.es

2026-01-08 11:23

HTTP/1.1 403 Forbidden
content-length: 93
cache-control: no-cache
content-type: text/html


<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.creedfragrance.es

2026-01-08 11:23

HTTP/1.1 406 Not Acceptable
content-length: 41
content-type: application/json
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


{"status":406,"message":"Not Acceptable"}

Found 2026-01-08 by HttpPlugin

Create report

Open service 185.217.107.30:80 · horizon-api.shop.oralb.de

2026-01-06 15:07

HTTP/1.1 403 Forbidden
content-length: 93
cache-control: no-cache
content-type: text/html


<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

Found 2026-01-06 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.shop.oralb.de

2026-01-06 15:07

HTTP/1.1 406 Not Acceptable
content-length: 41
content-type: application/json
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close


{"status":406,"message":"Not Acceptable"}

Found 2026-01-06 by HttpPlugin

Create report

Open service 185.217.107.30:80 · horizon-api.www.canterburynz.com.au

2026-01-04 23:16

HTTP/1.1 403 Forbidden
content-length: 93
cache-control: no-cache
content-type: text/html


<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>

Found 2026-01-04 by HttpPlugin

Create report

Open service 185.217.107.30:443 · horizon-api.www.canterburynz.com.au

2026-01-04 23:16

HTTP/1.1 200 OK
content-type: text/html
content-length: 284
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'; report-to csp-endpoint
strict-transport-security: max-age=31536000; includeSubDomains; preload
reporting-endpoints: csp-endpoint=https://csp.thehut.net/cspReport.txt
cache-control: no-store
connection: close

Page title: Horizon

<!doctype html>
<html>
<head><meta charset='UTF-8'/><title>Horizon</title></head>
<body>
<h1>Horizon</h1>
<p>This GraphQL API powers THG's enterprise e-commerce platform.</p>
<p><a href="https://horizondocs.thgaltitude.com/">Documentation</a> is available online.</p>
</body>
</html>

Found 2026-01-04 by HttpPlugin