Host 197.253.4.13
Nigeria
Software information
Microsoft-IIS 10.0
tcp/443
-
Swagger API description is publicly available
Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.
Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.
While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.
First seen 2025-11-16 12:56
Last seen 2026-01-10 01:01
Open for 54 days-
Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549f8cc0d64d9adfc61446b049e6229bbf05b8f5f03Public Swagger UI/API detected at path: /swagger/index.html - sample paths: GET /api/Accounts/BasicUserProfileInfo GET /api/Accounts/VerifyResetToken/{token}/{email} GET /api/ActCategories/Get/{id} GET /api/ActCategories/GetAll GET /api/ActCategories/GetAllActive GET /api/ActCategories/GetAllActiveData GET /api/ActCategories/GetAllRecords GET /api/ActCategories/SearchBy GET /api/Acts/Get/{id} GET /api/Acts/GetAll GET /api/Acts/GetAllActive GET /api/Acts/GetAllRecords GET /api/Acts/GetCategory GET /api/Acts/SearchBy GET /api/Alerts/Get/{id} GET /api/Alerts/GetAll GET /api/Alerts/GetAllActive GET /api/Alerts/GetAllRecords GET /api/Alerts/GetTrail GET /api/Alerts/GetUserMainQuestionss GET /api/Alerts/SearchBy GET /api/ArticleActions/Get/{id} GET /api/ArticleActions/GetAll GET /api/ArticleActions/GetAllActive GET /api/ArticleActions/GetAllRecords GET /api/ArticleActions/SearchBy GET /api/Articles/Get/{id} GET /api/Articles/GetAll GET /api/Articles/GetAllActive GET /api/Articles/GetAllActiveData GET /api/Articles/GetAllRecords GET /api/Articles/SearchBy GET /api/CalendarEvents/Get/{id} GET /api/CalendarEvents/GetAll GET /api/CalendarEvents/GetAllActive GET /api/CalendarEvents/GetAllRecords GET /api/CalendarEvents/RecommendEvents GET /api/CalendarEvents/SearchBy GET /api/CalendarEvents/Trainings GET /api/Categories/Get/{id} GET /api/Categories/GetAll GET /api/Categories/GetAllActive GET /api/Categories/GetAllRecords GET /api/Categories/SearchBy GET /api/Countries/Get/{id} GET /api/Countries/GetAll GET /api/Countries/GetAllActive GET /api/Countries/GetAllRecords GET /api/Countries/SearchBy GET /api/Customers/Get/{id} GET /api/Customers/GetAll GET /api/Customers/GetAllActive GET /api/Customers/GetAllRecords GET /api/Customers/GetSummary GET /api/Customers/SearchBy GET /api/EventAttendees/Get/{id} GET /api/EventAttendees/GetAll GET /api/EventAttendees/GetAllActive GET /api/EventAttendees/GetAllRecords GET /api/EventAttendees/SearchBy GET /api/Functions/Get/{id} GET /api/Functions/GetAll GET /api/Functions/GetAllActive GET /api/Functions/RetrieveFunctions GET /api/NewCategories/Get/{id} GET /api/NewCategories/GetAll GET /api/NewCategories/GetAllActive GET /api/NewCategories/GetAllRecords GET /api/NewCategories/SearchBy GET /api/PublicationActions/Get/{id} GET /api/PublicationActions/GetAll GET /api/PublicationActions/GetAllActive GET /api/PublicationActions/GetAllRecords GET /api/PublicationActions/SearchBy GET /api/Publications/Get/{id} GET /api/Publications/GetAll GET /api/Publications/GetAllActive GET /api/Publications/GetAllActiveData GET /api/Publications/GetAllRecords GET /api/Publications/SearchBy GET /api/Sections/Get/{id} GET /api/Sections/GetAll GET /api/Sections/GetAllActive GET /api/Sections/GetAllRecords GET /api/Sections/GetByAct GET /api/Sections/SearchBy GET /api/SubSections/Get/{id} GET /api/SubSections/GetAll GET /api/SubSections/GetAllActive GET /api/SubSections/GetAllRecords GET /api/SubSections/GetBySectiont GET /api/SubSections/SearchBy GET /api/TaxNewActions/Get/{id} GET /api/TaxNewActions/GetAll GET /api/TaxNewActions/GetAllActive GET /api/TaxNewActions/GetAllRecords GET /api/TaxNewActions/SearchBy GET /api/TaxNews/Get/{id} GET /api/TaxNews/GetAll GET /api/TaxNews/GetAllActive GET /api/TaxNews/GetAllActiveData GET /api/TaxNews/GetAllRecords GET /api/TaxNews/SearchBy GET /api/UserRoles/Get/{id} GET /api/UserRoles/GetAll GET /api/UserRoles/GetAllActive GET /api/UserRoles/GetAllRecords GET /api/UserRoles/SearchBy GET /api/Users/Get/{id} GET /api/Users/GetAll GET /api/Users/GetAllActive GET /api/Users/GetAllRecords GET /api/Users/SearchBy POST /api/Accounts/ChangePassword POST /api/Accounts/ChangeUserPassword POST /api/Accounts/ProviderSignIn POST /api/Accounts/RefreshToken POST /api/Accounts/ResetPassword POST /api/Accounts/SignIn POST /api/Accounts/SignUp POST /api/ActCategories/Create POST /api/Acts/Create POST /api/Alerts/Create POST /api/Alerts/Reply POST /api/ArticleActions/SaveAction POST /api/Articles/Create POST /api/Calculators/Calclate POST /api/CalendarEvents/Create POST /api/Categories/Create POST /api/Countries/Create POST /api/EventAttendees/Create POST /api/Functions/Create POST /api/NewCategories/Create POST /api/PublicationActions/SaveAction POST /api/Publications/Create POST /api/Sections/Create POST /api/SubSections/Create POST /api/TaxNewActions/SaveAction POST /api/TaxNews/Create POST /api/UserRoles/Create POST /api/Users/Create PUT /api/Accounts/CompleteKYC/{id} PUT /api/ActCategories/EnableDisable/{id} PUT /api/ActCategories/Update/{id} PUT /api/Acts/EnableDisable/{id} PUT /api/Acts/Update/{id} PUT /api/Alerts/EnableDisable/{id} PUT /api/Alerts/Update/{id} PUT /api/ArticleActions/EnableDisable/{id} PUT /api/Articles/EnableDisable/{id} PUT /api/Articles/Update/{id} PUT /api/CalendarEvents/EnableDisable/{id} PUT /api/CalendarEvents/Update/{id} PUT /api/Categories/EnableDisable/{id} PUT /api/Categories/Update/{id} PUT /api/Countries/EnableDisable/{id} PUT /api/Countries/Update/{id} PUT /api/Customers/EnableDisable/{id} PUT /api/Customers/Update/{id} PUT /api/EventAttendees/EnableDisable/{id} PUT /api/EventAttendees/Update/{id} PUT /api/Functions/EnableDisable/{id} PUT /api/Functions/Update/{id} PUT /api/NewCategories/EnableDisable/{id} PUT /api/NewCategories/Update/{id} PUT /api/PublicationActions/EnableDisable/{id} PUT /api/Publications/EnableDisable/{id} PUT /api/Publications/Update/{id} PUT /api/Sections/EnableDisable/{id} PUT /api/Sections/Update/{id} PUT /api/SubSections/EnableDisable/{id} PUT /api/SubSections/Update/{id} PUT /api/TaxNewActions/EnableDisable/{id} PUT /api/TaxNews/EnableDisable/{id} PUT /api/TaxNews/Update/{id} PUT /api/UserRoles/EnableDisable/{id} PUT /api/UserRoles/Update/{id} PUT /api/Users/EnableDisable/{id} PUT /api/Users/Update/{id}Found on 2026-01-10 01:01 -
Severity: info
Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532cPublic Swagger UI/API detected at path: /swagger/index.html
Found on 2025-11-21 15:23
-
-
Open service 197.253.4.13:443 · tax-app.ng.kpmg.com
2026-01-10 01:01
HTTP/1.1 404 Not Found Transfer-Encoding: chunked Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Sat, 10 Jan 2026 01:01:51 GMT Connection: close
Found 2026-01-10 by HttpPluginCreate report
-
Open service 197.253.4.13:443 · tax-app.ng.kpmg.com
2026-01-02 19:15
HTTP/1.1 404 Not Found Transfer-Encoding: chunked Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Fri, 02 Jan 2026 19:16:00 GMT Connection: close
Found 2026-01-02 by HttpPluginCreate report
-
Open service 197.253.4.13:443 · tax-app.ng.kpmg.com
2025-12-23 08:04
HTTP/1.1 404 Not Found Transfer-Encoding: chunked Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Tue, 23 Dec 2025 08:05:00 GMT Connection: close
Found 2025-12-23 by HttpPluginCreate report
-
Open service 197.253.4.13:443 · tax-app.ng.kpmg.com
2025-12-21 03:28
HTTP/1.1 404 Not Found Transfer-Encoding: chunked Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Sun, 21 Dec 2025 03:28:45 GMT Connection: close
Found 2025-12-21 by HttpPluginCreate report
-
Open service 197.253.4.13:443 · tax-app.ng.kpmg.com
2025-12-19 03:04
HTTP/1.1 404 Not Found Transfer-Encoding: chunked Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Fri, 19 Dec 2025 03:04:42 GMT Connection: close
Found 2025-12-19 by HttpPluginCreate report