Host 23.3.89.123
Germany
Software information
AkamaiGHost
tcp/80
Heroku
tcp/443
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
First seen 2025-12-02 18:38
Last seen 2026-02-09 16:46
Open for 68 days-
Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3984bb4b4a1ee9f38a46bc2e96f8248cc6f410df4GraphQL introspection enabled at /graphql Types: 107 (by kind: ENUM: 20, INPUT_OBJECT: 23, OBJECT: 59, SCALAR: 5) Operations: - Query: Query | fields: categories, posts, series, status, tags - Mutation: Mutation | fields: connectSocialProvider, disconnectSocialProvider, loginWithPassword, loginWithSocialProvider, registerProfile Directives: deprecated, include, skip (total: 3)
Found on 2026-02-09 16:46109.0 kBytes
-
-
Open service 23.3.89.123:443 · api.nowness.com
2026-01-23 12:02
HTTP/1.1 200 OK Access-Control-Allow-Headers: Accept, Accept-Version, Content-Length, Content-MD5, Content-Type, Date, Api-Version, Response-Time Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Api-Version, Request-Id, Response-Time Cache-Control: public, max-age=3600 Content-Length: 3531 Content-Type: text/html Last-Modified: Tue, 09 Dec 2025 18:25:26 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=fv7N1wLM%2FBjgY%2FUvHo%2BeX7j7%2FJuGmm%2FjpOTKMGsgthQ%3D\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\u0026ts=1769169753"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=fv7N1wLM%2FBjgY%2FUvHo%2BeX7j7%2FJuGmm%2FjpOTKMGsgthQ%3D&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&ts=1769169753" Request-Id: 365ae861-403b-1240-ae77-b7268710e7f3 Response-Time: 1 Server: Heroku Date: Fri, 23 Jan 2026 12:02:33 GMT Connection: close Page title: Swagger UI <!DOCTYPE html> <html> <head> <title>Swagger UI</title> <link href='https://fonts.googleapis.com/css?family=Droid+Sans:400,700' rel='stylesheet' type='text/css'/> <link href='css/highlight.default.css' media='screen' rel='stylesheet' type='text/css'/> <link href='css/screen.css' media='screen' rel='stylesheet' type='text/css'/> <script type="text/javascript" src="lib/shred.bundle.js"></script> <script src='lib/jquery-1.8.0.min.js' type='text/javascript'></script> <script src='lib/jquery.slideto.min.js' type='text/javascript'></script> <script src='lib/jquery.wiggle.min.js' type='text/javascript'></script> <script src='lib/jquery.ba-bbq.min.js' type='text/javascript'></script> <script src='lib/handlebars-1.0.0.js' type='text/javascript'></script> <script src='lib/underscore-min.js' type='text/javascript'></script> <script src='lib/backbone-min.js' type='text/javascript'></script> <script src='lib/swagger.js' type='text/javascript'></script> <script src='swagger-ui.js' type='text/javascript'></script> <script src='lib/highlight.7.3.pack.js' type='text/javascript'></script> <!-- enabling this will enable oauth2 implicit scope support --> <script src='lib/swagger-oauth.js' type='text/javascript'></script> <script type="text/javascript"> $(function () { var apiUrl = document.location.origin; var apiPath = '/api/api-docs'; var queryUrl = /apiUrl=(.*?)(?:&|#|$)/.exec(document.location.search); if(queryUrl){ apiPath = queryUrl[1]; } apiUrl += apiPath; window.swaggerUi = new SwaggerUi({ url: apiUrl, dom_id: "swagger-ui-container", supportedSubmitMethods: ['get', 'post', 'put', 'delete'], onComplete: function(swaggerApi, swaggerUi){ log("Loaded SwaggerUI"); if(typeof initOAuth == "function") { /* initOAuth({ clientId: "your-client-id", realm: "your-realms", appName: "your-app-name" }); */ } $('pre code').each(function(i, e) { hljs.highlightBlock(e) }); }, onFailure: function(data) { log("Unable to Load SwaggerUI"); }, docExpansion: "none" }); $('#input_apiKey').change(function() { var key = $('#input_apiKey')[0].value; log("key: " + key); if(key && key.trim() != "") { log("added key " + key); window.authorizations.add("key", new ApiKeyAuthorization("X-Swagger-Api-Key", key, "header")); } }) window.swaggerUi.load(); }); </script> </head> <body> <div id='header'> <div class="swagger-ui-wrap"> <a id="logo" href="http://swagger.wordnik.com">swagger</a> <form id='api_selector'> <div class='input icon-btn'> <img id="show-pet-store-icon" src="images/pet_store_api.png" title="Show Swagger Petstore Example Apis"> </div> <div class='input icon-btn'> <img id="show-wordnik-dev-icon" src="images/wordnik_api.png" title="Show Wordnik Developer Apis"> </div> <div class='input'><input placeholder="http://example.com/api" id="input_baseUrl" name="baseUrl" type="text"/></div> <div class='input'><input placeholder="api_key" id="input_apiKey" name="apiKey" type="text"/></div> <div class='input'><a id="explore" href="#">Explore</a></div> </form> </div> </div> <div id="message-bar" class="swagger-ui-wrap"> </div> <div id="swagger-ui-container" class="swagger-ui-wrap"></div> </body> </html>Found 2026-01-23 by HttpPluginCreate report
-
Open service 23.3.89.123:80 · secure-login-bing.com
2026-01-12 05:33
HTTP/1.0 400 Bad Request Server: AkamaiGHost Mime-Version: 1.0 Content-Type: text/html Content-Length: 312 Expires: Mon, 12 Jan 2026 05:34:42 GMT Date: Mon, 12 Jan 2026 05:34:42 GMT Connection: close Page title: Invalid URL <HTML><HEAD> <TITLE>Invalid URL</TITLE> </HEAD><BODY> <H1>Invalid URL</H1> The requested URL "[no URL]", is invalid.<p> Reference #9.77590317.1768196082.3016c0db <P>https://errors.edgesuite.net/9.77590317.1768196082.3016c0db</P> </BODY></HTML>
Found 2026-01-12 by HttpPluginCreate report
-
Open service 23.3.89.123:443 · mybbu.com
2026-01-11 12:18
HTTP/1.1 301 Moved Permanently Content-Length: 0 Location: https://www.mybbu.com/ Expires: Sun, 11 Jan 2026 12:18:36 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sun, 11 Jan 2026 12:18:36 GMT Connection: close Server-Timing: cdn-cache; desc=HIT Server-Timing: edge; dur=1 X-Akamai-Countrycode: US Server-Timing: ak_p; desc="1768133916222_386649700_977503246_12_9840_82_89_-";dur=1
Found 2026-01-11 by HttpPluginCreate report
-
Open service 23.3.89.123:443 · api.nowness.com
2026-01-09 08:54
HTTP/1.1 200 OK Access-Control-Allow-Headers: Accept, Accept-Version, Content-Length, Content-MD5, Content-Type, Date, Api-Version, Response-Time Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Api-Version, Request-Id, Response-Time Cache-Control: public, max-age=3600 Content-Length: 3531 Content-Type: text/html Last-Modified: Tue, 09 Dec 2025 18:25:26 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=pWbCNkAXXGFPm3N09Itm94%2BwQfQ9VMQ%2BtR7Tx9fcjZE%3D\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\u0026ts=1767948843"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=pWbCNkAXXGFPm3N09Itm94%2BwQfQ9VMQ%2BtR7Tx9fcjZE%3D&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&ts=1767948843" Request-Id: 2fe9cd24-430d-259f-7193-ee0a1412e13e Response-Time: 1 Server: Heroku Date: Fri, 09 Jan 2026 08:54:03 GMT Connection: close Page title: Swagger UI <!DOCTYPE html> <html> <head> <title>Swagger UI</title> <link href='https://fonts.googleapis.com/css?family=Droid+Sans:400,700' rel='stylesheet' type='text/css'/> <link href='css/highlight.default.css' media='screen' rel='stylesheet' type='text/css'/> <link href='css/screen.css' media='screen' rel='stylesheet' type='text/css'/> <script type="text/javascript" src="lib/shred.bundle.js"></script> <script src='lib/jquery-1.8.0.min.js' type='text/javascript'></script> <script src='lib/jquery.slideto.min.js' type='text/javascript'></script> <script src='lib/jquery.wiggle.min.js' type='text/javascript'></script> <script src='lib/jquery.ba-bbq.min.js' type='text/javascript'></script> <script src='lib/handlebars-1.0.0.js' type='text/javascript'></script> <script src='lib/underscore-min.js' type='text/javascript'></script> <script src='lib/backbone-min.js' type='text/javascript'></script> <script src='lib/swagger.js' type='text/javascript'></script> <script src='swagger-ui.js' type='text/javascript'></script> <script src='lib/highlight.7.3.pack.js' type='text/javascript'></script> <!-- enabling this will enable oauth2 implicit scope support --> <script src='lib/swagger-oauth.js' type='text/javascript'></script> <script type="text/javascript"> $(function () { var apiUrl = document.location.origin; var apiPath = '/api/api-docs'; var queryUrl = /apiUrl=(.*?)(?:&|#|$)/.exec(document.location.search); if(queryUrl){ apiPath = queryUrl[1]; } apiUrl += apiPath; window.swaggerUi = new SwaggerUi({ url: apiUrl, dom_id: "swagger-ui-container", supportedSubmitMethods: ['get', 'post', 'put', 'delete'], onComplete: function(swaggerApi, swaggerUi){ log("Loaded SwaggerUI"); if(typeof initOAuth == "function") { /* initOAuth({ clientId: "your-client-id", realm: "your-realms", appName: "your-app-name" }); */ } $('pre code').each(function(i, e) { hljs.highlightBlock(e) }); }, onFailure: function(data) { log("Unable to Load SwaggerUI"); }, docExpansion: "none" }); $('#input_apiKey').change(function() { var key = $('#input_apiKey')[0].value; log("key: " + key); if(key && key.trim() != "") { log("added key " + key); window.authorizations.add("key", new ApiKeyAuthorization("X-Swagger-Api-Key", key, "header")); } }) window.swaggerUi.load(); }); </script> </head> <body> <div id='header'> <div class="swagger-ui-wrap"> <a id="logo" href="http://swagger.wordnik.com">swagger</a> <form id='api_selector'> <div class='input icon-btn'> <img id="show-pet-store-icon" src="images/pet_store_api.png" title="Show Swagger Petstore Example Apis"> </div> <div class='input icon-btn'> <img id="show-wordnik-dev-icon" src="images/wordnik_api.png" title="Show Wordnik Developer Apis"> </div> <div class='input'><input placeholder="http://example.com/api" id="input_baseUrl" name="baseUrl" type="text"/></div> <div class='input'><input placeholder="api_key" id="input_apiKey" name="apiKey" type="text"/></div> <div class='input'><a id="explore" href="#">Explore</a></div> </form> </div> </div> <div id="message-bar" class="swagger-ui-wrap"> </div> <div id="swagger-ui-container" class="swagger-ui-wrap"></div> </body> </html>Found 2026-01-09 by HttpPluginCreate report
-
Open service 23.3.89.123:80 · btenroll.com
2026-01-08 01:22
HTTP/1.0 400 Bad Request Server: AkamaiGHost Mime-Version: 1.0 Content-Type: text/html Content-Length: 312 Expires: Thu, 08 Jan 2026 01:22:46 GMT Date: Thu, 08 Jan 2026 01:22:46 GMT Connection: close Page title: Invalid URL <HTML><HEAD> <TITLE>Invalid URL</TITLE> </HEAD><BODY> <H1>Invalid URL</H1> The requested URL "[no URL]", is invalid.<p> Reference #9.77590317.1767835366.212e8a41 <P>https://errors.edgesuite.net/9.77590317.1767835366.212e8a41</P> </BODY></HTML>
Found 2026-01-08 by HttpPluginCreate report
-
Open service 23.3.89.123:443 · api.nowness.com
2026-01-02 09:29
HTTP/1.1 200 OK Access-Control-Allow-Headers: Accept, Accept-Version, Content-Length, Content-MD5, Content-Type, Date, Api-Version, Response-Time Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Api-Version, Request-Id, Response-Time Cache-Control: public, max-age=3600 Content-Length: 3531 Content-Type: text/html Last-Modified: Tue, 09 Dec 2025 18:25:26 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=lIx4ObCtzaG4G2UyRRqwd4OANOBW%2FXG%2FZrdMWnTkcwA%3D\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\u0026ts=1767346192"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=lIx4ObCtzaG4G2UyRRqwd4OANOBW%2FXG%2FZrdMWnTkcwA%3D&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&ts=1767346192" Request-Id: 5c2b33e0-dead-1ee6-1c60-fd693212f833 Response-Time: 2 Server: Heroku Date: Fri, 02 Jan 2026 09:29:52 GMT Connection: close Page title: Swagger UI <!DOCTYPE html> <html> <head> <title>Swagger UI</title> <link href='https://fonts.googleapis.com/css?family=Droid+Sans:400,700' rel='stylesheet' type='text/css'/> <link href='css/highlight.default.css' media='screen' rel='stylesheet' type='text/css'/> <link href='css/screen.css' media='screen' rel='stylesheet' type='text/css'/> <script type="text/javascript" src="lib/shred.bundle.js"></script> <script src='lib/jquery-1.8.0.min.js' type='text/javascript'></script> <script src='lib/jquery.slideto.min.js' type='text/javascript'></script> <script src='lib/jquery.wiggle.min.js' type='text/javascript'></script> <script src='lib/jquery.ba-bbq.min.js' type='text/javascript'></script> <script src='lib/handlebars-1.0.0.js' type='text/javascript'></script> <script src='lib/underscore-min.js' type='text/javascript'></script> <script src='lib/backbone-min.js' type='text/javascript'></script> <script src='lib/swagger.js' type='text/javascript'></script> <script src='swagger-ui.js' type='text/javascript'></script> <script src='lib/highlight.7.3.pack.js' type='text/javascript'></script> <!-- enabling this will enable oauth2 implicit scope support --> <script src='lib/swagger-oauth.js' type='text/javascript'></script> <script type="text/javascript"> $(function () { var apiUrl = document.location.origin; var apiPath = '/api/api-docs'; var queryUrl = /apiUrl=(.*?)(?:&|#|$)/.exec(document.location.search); if(queryUrl){ apiPath = queryUrl[1]; } apiUrl += apiPath; window.swaggerUi = new SwaggerUi({ url: apiUrl, dom_id: "swagger-ui-container", supportedSubmitMethods: ['get', 'post', 'put', 'delete'], onComplete: function(swaggerApi, swaggerUi){ log("Loaded SwaggerUI"); if(typeof initOAuth == "function") { /* initOAuth({ clientId: "your-client-id", realm: "your-realms", appName: "your-app-name" }); */ } $('pre code').each(function(i, e) { hljs.highlightBlock(e) }); }, onFailure: function(data) { log("Unable to Load SwaggerUI"); }, docExpansion: "none" }); $('#input_apiKey').change(function() { var key = $('#input_apiKey')[0].value; log("key: " + key); if(key && key.trim() != "") { log("added key " + key); window.authorizations.add("key", new ApiKeyAuthorization("X-Swagger-Api-Key", key, "header")); } }) window.swaggerUi.load(); }); </script> </head> <body> <div id='header'> <div class="swagger-ui-wrap"> <a id="logo" href="http://swagger.wordnik.com">swagger</a> <form id='api_selector'> <div class='input icon-btn'> <img id="show-pet-store-icon" src="images/pet_store_api.png" title="Show Swagger Petstore Example Apis"> </div> <div class='input icon-btn'> <img id="show-wordnik-dev-icon" src="images/wordnik_api.png" title="Show Wordnik Developer Apis"> </div> <div class='input'><input placeholder="http://example.com/api" id="input_baseUrl" name="baseUrl" type="text"/></div> <div class='input'><input placeholder="api_key" id="input_apiKey" name="apiKey" type="text"/></div> <div class='input'><a id="explore" href="#">Explore</a></div> </form> </div> </div> <div id="message-bar" class="swagger-ui-wrap"> </div> <div id="swagger-ui-container" class="swagger-ui-wrap"></div> </body> </html>Found 2026-01-02 by HttpPluginCreate report
-
Open service 23.3.89.123:443 · api.nowness.com
2025-12-22 18:02
HTTP/1.1 200 OK Access-Control-Allow-Headers: Accept, Accept-Version, Content-Length, Content-MD5, Content-Type, Date, Api-Version, Response-Time Access-Control-Allow-Methods: GET Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Api-Version, Request-Id, Response-Time Cache-Control: public, max-age=3600 Content-Length: 3531 Content-Type: text/html Last-Modified: Tue, 09 Dec 2025 18:25:26 GMT Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1} Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=wwHIof4LpPnGjJKDa76nP%2F3WlTeqP38lRQdMSjV%2BRaI%3D\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\u0026ts=1766426576"}],"max_age":3600} Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=wwHIof4LpPnGjJKDa76nP%2F3WlTeqP38lRQdMSjV%2BRaI%3D&sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d&ts=1766426576" Request-Id: 0a09c448-2bd6-aecc-0ee2-01252c577387 Response-Time: 1 Server: Heroku Date: Mon, 22 Dec 2025 18:02:56 GMT Connection: close Page title: Swagger UI <!DOCTYPE html> <html> <head> <title>Swagger UI</title> <link href='https://fonts.googleapis.com/css?family=Droid+Sans:400,700' rel='stylesheet' type='text/css'/> <link href='css/highlight.default.css' media='screen' rel='stylesheet' type='text/css'/> <link href='css/screen.css' media='screen' rel='stylesheet' type='text/css'/> <script type="text/javascript" src="lib/shred.bundle.js"></script> <script src='lib/jquery-1.8.0.min.js' type='text/javascript'></script> <script src='lib/jquery.slideto.min.js' type='text/javascript'></script> <script src='lib/jquery.wiggle.min.js' type='text/javascript'></script> <script src='lib/jquery.ba-bbq.min.js' type='text/javascript'></script> <script src='lib/handlebars-1.0.0.js' type='text/javascript'></script> <script src='lib/underscore-min.js' type='text/javascript'></script> <script src='lib/backbone-min.js' type='text/javascript'></script> <script src='lib/swagger.js' type='text/javascript'></script> <script src='swagger-ui.js' type='text/javascript'></script> <script src='lib/highlight.7.3.pack.js' type='text/javascript'></script> <!-- enabling this will enable oauth2 implicit scope support --> <script src='lib/swagger-oauth.js' type='text/javascript'></script> <script type="text/javascript"> $(function () { var apiUrl = document.location.origin; var apiPath = '/api/api-docs'; var queryUrl = /apiUrl=(.*?)(?:&|#|$)/.exec(document.location.search); if(queryUrl){ apiPath = queryUrl[1]; } apiUrl += apiPath; window.swaggerUi = new SwaggerUi({ url: apiUrl, dom_id: "swagger-ui-container", supportedSubmitMethods: ['get', 'post', 'put', 'delete'], onComplete: function(swaggerApi, swaggerUi){ log("Loaded SwaggerUI"); if(typeof initOAuth == "function") { /* initOAuth({ clientId: "your-client-id", realm: "your-realms", appName: "your-app-name" }); */ } $('pre code').each(function(i, e) { hljs.highlightBlock(e) }); }, onFailure: function(data) { log("Unable to Load SwaggerUI"); }, docExpansion: "none" }); $('#input_apiKey').change(function() { var key = $('#input_apiKey')[0].value; log("key: " + key); if(key && key.trim() != "") { log("added key " + key); window.authorizations.add("key", new ApiKeyAuthorization("X-Swagger-Api-Key", key, "header")); } }) window.swaggerUi.load(); }); </script> </head> <body> <div id='header'> <div class="swagger-ui-wrap"> <a id="logo" href="http://swagger.wordnik.com">swagger</a> <form id='api_selector'> <div class='input icon-btn'> <img id="show-pet-store-icon" src="images/pet_store_api.png" title="Show Swagger Petstore Example Apis"> </div> <div class='input icon-btn'> <img id="show-wordnik-dev-icon" src="images/wordnik_api.png" title="Show Wordnik Developer Apis"> </div> <div class='input'><input placeholder="http://example.com/api" id="input_baseUrl" name="baseUrl" type="text"/></div> <div class='input'><input placeholder="api_key" id="input_apiKey" name="apiKey" type="text"/></div> <div class='input'><a id="explore" href="#">Explore</a></div> </form> </div> </div> <div id="message-bar" class="swagger-ui-wrap"> </div> <div id="swagger-ui-container" class="swagger-ui-wrap"></div> </body> </html>Found 2025-12-22 by HttpPluginCreate report