LeakIX - Host 23.3.88.40

Host 23.3.88.40

Germany

Akamai International B.V.

Software information

AkamaiGHost

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 23.3.88.40
Domain: emr-stage.maxicare.com.ph
Port: 443
URL: https://emr-stage.maxicare.com.ph

First seen 2025-11-30 00:15
Last seen 2026-01-19 08:50
Open for 50 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-19 08:50
Create report

Open service 23.3.88.40:443 · emr-stage.maxicare.com.ph

2026-01-23 16:33

HTTP/1.1 403 Forbidden
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 385
Expires: Fri, 23 Jan 2026 16:33:49 GMT
Date: Fri, 23 Jan 2026 16:33:49 GMT
Connection: close
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;emr&#45;stage&#46;maxicare&#46;com&#46;ph&#47;" on this server.<P>
Reference&#32;&#35;18&#46;7580317&#46;1769186029&#46;1a50837a
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;7580317&#46;1769186029&#46;1a50837a</P>
</BODY>
</HTML>

Found 2026-01-23 by HttpPlugin

Create report

Open service 23.3.88.40:443 · emr-stage.maxicare.com.ph

2026-01-08 23:11

HTTP/1.1 502 Bad Gateway
Content-Type: text/html
Content-Length: 150
Date: Thu, 08 Jan 2026 23:11:39 GMT
Connection: close
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN

Page title: 502 Bad Gateway

<html>
<head><title>502 Bad Gateway</title></head>
<body>
<center><h1>502 Bad Gateway</h1></center>
<hr><center>nginx</center>
</body>
</html>

Found 2026-01-08 by HttpPlugin

Create report

Open service 23.3.88.40:443 · www.jhproposals.com

2026-01-07 03:42

HTTP/1.1 403 Forbidden
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 371
Expires: Wed, 07 Jan 2026 03:42:42 GMT
Date: Wed, 07 Jan 2026 03:42:42 GMT
Connection: close
Strict-Transport-Security: max-age=15768000

Page title: Access Denied

<HTML><HEAD>
<TITLE>Access Denied</TITLE>
</HEAD><BODY>
<H1>Access Denied</H1>
 
You don't have permission to access "http&#58;&#47;&#47;www&#46;jhproposals&#46;com&#47;" on this server.<P>
Reference&#32;&#35;18&#46;c580317&#46;1767757362&#46;1b4457c9
<P>https&#58;&#47;&#47;errors&#46;edgesuite&#46;net&#47;18&#46;c580317&#46;1767757362&#46;1b4457c9</P>
</BODY>
</HTML>

Found 2026-01-07 by HttpPlugin

Create report

Open service 23.3.88.40:443 · emr-stage.maxicare.com.ph

2026-01-01 23:14

HTTP/1.1 502 Bad Gateway
Content-Type: text/html
Content-Length: 150
Date: Thu, 01 Jan 2026 23:14:28 GMT
Connection: close
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN

Page title: 502 Bad Gateway

<html>
<head><title>502 Bad Gateway</title></head>
<body>
<center><h1>502 Bad Gateway</h1></center>
<hr><center>nginx</center>
</body>
</html>

Found 2026-01-01 by HttpPlugin

Create report

Open service 23.3.88.40:443 · fredericmalle.kr

2025-12-31 10:56

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.fredericmalle.com/kr?stores=1
Date: Wed, 31 Dec 2025 10:56:08 GMT
Connection: close
akamai-grn: 0.2c580317.1767178568.42443b21

Found 2025-12-31 by HttpPlugin

Create report

Open service 23.3.88.40:80 · fredericmalle.kr

2025-12-31 10:56

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.fredericmalle.com/kr?stores=1
Date: Wed, 31 Dec 2025 10:56:10 GMT
Connection: close
akamai-grn: 0.24580317.1767178570.11046d4

Found 2025-12-31 by HttpPlugin

Create report

Open service 23.3.88.40:443 · emr-stage.maxicare.com.ph

2025-12-22 11:02

HTTP/1.1 502 Bad Gateway
Content-Type: text/html
Content-Length: 150
Date: Mon, 22 Dec 2025 11:02:38 GMT
Connection: close
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN

Page title: 502 Bad Gateway

<html>
<head><title>502 Bad Gateway</title></head>
<body>
<center><h1>502 Bad Gateway</h1></center>
<hr><center>nginx</center>
</body>
</html>

Found 2025-12-22 by HttpPlugin

Create report

maxicare.com.phaccountlink.maxicare.com.phadolfo.maxicare.com.phalen.maxicare.com.phapi.maxicare.com.phapp-teleconsult.maxicare.com.phcarlo.maxicare.com.phchris.maxicare.com.phcorp-preprod.maxicare.com.phd2ms.maxicare.com.phemr-stage.maxicare.com.phemr.maxicare.com.phenrollme.maxicare.com.phequicom-account-dev.maxicare.com.phequicom-account.maxicare.com.phequicom-dev.maxicare.com.phess.maxicare.com.phfailover-d2ms.maxicare.com.phfailover.maxicare.com.phglenn.maxicare.com.phgoconvert.maxicare.com.phhealthpoduat.maxicare.com.phhome-uat.maxicare.com.phhrgateway.maxicare.com.phhrviewpoint.maxicare.com.phjoey01.maxicare.com.phlogin.maxicare.com.phmapi.maxicare.com.phmaxilife.maxicare.com.phmbs.maxicare.com.phmembergateway-staging.maxicare.com.phmembergateway.maxicare.com.phmemberportal-uat.maxicare.com.phmemberportal.maxicare.com.phmemberviewpoint.maxicare.com.phmgtest.maxicare.com.phmyehr-stage.maxicare.com.phmyehr.maxicare.com.phoptum.maxicare.com.phpayment.maxicare.com.phpayorapi.maxicare.com.phpayorlink.maxicare.com.phpl2-stage.maxicare.com.phpl2.maxicare.com.phprovidergateway.maxicare.com.phraymark.maxicare.com.phraymark01.maxicare.com.phrcs01.maxicare.com.phregisterme.maxicare.com.phrei.maxicare.com.phsalesviewpoint.maxicare.com.phshop.maxicare.com.phsms.maxicare.com.phsso-admin.maxicare.com.phsso-api.maxicare.com.phsso-ha.maxicare.com.phsso-uat.maxicare.com.phsso.maxicare.com.phteleconsult.maxicare.com.phvaccine.maxicare.com.phwww.maxicare.com.ph

Fingerprint:

c25acac411a1573ff42a300a228917f41dc51c7fe214686eebb94372c5cfc966

CN:

maxicare.com.ph

Key:

ECDSA-256

Issuer:

DigiCert Global G3 TLS ECC SHA384 2020 CA1

Not before:

2026-01-19 00:00

Not after:

2026-12-01 23:59

maxicare.com.phaccountlink.maxicare.com.phadolfo.maxicare.com.phalen.maxicare.com.phapi.maxicare.com.phapp-teleconsult.maxicare.com.phcarlo.maxicare.com.phchris.maxicare.com.phcorp-preprod.maxicare.com.phd2ms.maxicare.com.phemr-stage.maxicare.com.phemr.maxicare.com.phenrollme.maxicare.com.phequicom-account-dev.maxicare.com.phequicom-account.maxicare.com.phequicom-dev.maxicare.com.phess.maxicare.com.phfailover-d2ms.maxicare.com.phfailover.maxicare.com.phglenn.maxicare.com.phgoconvert.maxicare.com.phhealthpoduat.maxicare.com.phhome-uat.maxicare.com.phhrgateway.maxicare.com.phhrviewpoint.maxicare.com.phjoey01.maxicare.com.phlogin.maxicare.com.phmapi.maxicare.com.phmaxilife.maxicare.com.phmbs.maxicare.com.phmembergateway-staging.maxicare.com.phmembergateway.maxicare.com.phmemberportal-uat.maxicare.com.phmemberportal.maxicare.com.phmemberviewpoint.maxicare.com.phmgtest.maxicare.com.phmyehr-stage.maxicare.com.phmyehr.maxicare.com.phoptum.maxicare.com.phpayment.maxicare.com.phpayorapi.maxicare.com.phpayorlink.maxicare.com.phpl2-stage.maxicare.com.phpl2.maxicare.com.phprovidergateway.maxicare.com.phraymark.maxicare.com.phraymark01.maxicare.com.phrcs01.maxicare.com.phregisterme.maxicare.com.phrei.maxicare.com.phsalesviewpoint.maxicare.com.phshop.maxicare.com.phsms.maxicare.com.phsso-admin.maxicare.com.phsso-api.maxicare.com.phsso-ha.maxicare.com.phsso-uat.maxicare.com.phsso.maxicare.com.phvaccine.maxicare.com.phwww.maxicare.com.ph

Fingerprint:

3600f17df1a5a2e6d067ae3b24fcc94c411bb9ddaeb0ffff1d2a489d6eee6f5b

CN:

maxicare.com.ph

Key:

ECDSA-256

Issuer:

DigiCert Global G3 TLS ECC SHA384 2020 CA1

Not before:

2025-11-30 00:00

Not after:

2026-12-01 23:59

johnhancock.com350882.johnhancock.comadvisor-dev-tmp.johnhancockinsurance.comadvisor-tst.tmp.johnhancockinsurance.comadvisor.johnhancockinsurance.comagent.johnhancockinsurance.comagents.johnhancockinsurance.comapi-medallia-prodproxied.manulife.comapps-stage.johnhancockinsurance.comdapops.flidev.rps.jhancock.comdapops.fliprd.rps.jhancock.comdapops.fliqa.rps.jhancock.comdapops.fliuat.rps.jhancock.comdev-api.jhinvestments.comdev.johnhancockinsurance.comexpresstrack.johnhancockinsurance.comhancockrecreation.comhopdongcuatoi-stg.manulife.com.vnidentity.jhancock.comids.johnhancockvitality.cominsight.manulifeam.cominsight.manulifeim.cominstant-apply.johnhancockinsurance.comjh1.jhlifeinsurance.comjhancockrealestate.comjhcalculator.comjhekitpdf.comjhfixedproducts.comjhi-apim.uatc.manulife.comjhlifeinsurance.comjhmclient.comjhmgroup.comjhmyportfolio.comjhproposals.comjhriskquiz.comjhsaleshub.comjhsalesnet.comjhservicenet.comjohnhancockinsurance.comjohnhancockvitality.comlife.customer.johnhancock.comltc.customer.johnhancock.comltcconnect.johnhancockinsurance.comltcprovider.johnhancockinsurance.commanulifeimlanduse.commanulifeinvestmentmgmt.commanulifeinvestmentmgt.commanuliferealestatefinance.commi-stg-cps.jhinvestments.commove.manulife.com.vnod.jhekitpdf.compartnerlink.jhancock.compartnerlinkc.jhancock.compers.manulifebermuda.compolicy.johnhancockvitality.comprod-api.jhinvestments.comqa.johnhancock.comqa.johnhancockinsurance.comregister.jhancock.comsales-dev-tmp.johnhancockinsurance.comsales-stg-tmp.johnhancockinsurance.comsales.johnhancockinsurance.comsales2.johnhancockinsurance.comsales2.manulifebermuda.comsecure.johnhancockinsurance.comsimpleterm-uat.johnhancock.comstage.identity.jhancock.comstage.johnhancockvitality.comstage.partnerlink.jhancock.comstage.register.jhancock.comstagec.partnerlink.jhancock.comstg-tmp.manulifeim.comstg.distributor.globalhnw.manulife.comstg.rewardslife.johnhancockinsurance.comsurvey-medallia.manulife.catest.partnerlink.jhancock.comtest.register.jhancock.comucits.manulifeinvestmentmgmt.comusrswiftaemportal.johnhancock.comviewpoints.manulifeam.comwww.hancockrecreation.comwww.jhancockrealestate.comwww.jhcalculator.comwww.jhekitpdf.comwww.jhfixedproducts.comwww.jhlifeinsurance.comwww.jhmclient.comwww.jhmgroup.comwww.jhmyportfolio.comwww.jhproposals.comwww.jhriskquiz.comwww.jhsaleshub.comwww.jhsalesnet.comwww.jhservicenet.comwww.johnhancockinsurance.comwww.johnhancockvitality.comwww.manulifeinvestmentmgmt.comwww.manulifeinvestmentmgt.comwww.manuliferealestatefinance.com

Fingerprint:

850bcc915e9d8e2290962c7f3bb057a2bd05dd6ff9a35dc8a752e77726a5ea4a

CN:

johnhancock.com

Key:

RSA-2048

Issuer:

Sectigo Public Server Authentication CA OV R36

Not before:

2025-10-28 00:00

Not after:

2026-10-28 23:59

editionsdeparfums.comeditionsdeparfumsfredericmalle.safredericmalle.aefredericmalle.co.ukfredericmalle.comfredericmalle.com.hkfredericmalle.eufredericmalle.frfredericmalle.jpfredericmalle.kr

Fingerprint:

5850dbece8607b3000f1a3bbab94c24905dfa8cd7ab7e67a9146571f9077db1d

CN:

fredericmalle.com

Key:

RSA-2048

Issuer:

R12

Not before:

2025-12-17 06:00

Not after:

2026-03-17 06:00

Domain summary

emr-stage.maxicare.com.ph 4 www.jhproposals.com 0 fredericmalle.kr 1

3 recorded

Host 23.3.88.40

Germany

Software information

Swagger API description is publicly available

Create report

Create report

Create report

Create report

Create report

Create report

Create report

editionsdeparfums.comeditionsdeparfumsfredericmalle.safredericmalle.aefredericmalle.co.ukfredericmalle.comfredericmalle.com.hkfredericmalle.eufredericmalle.frfredericmalle.jpfredericmalle.kr

Domain summary