LeakIX - Host 3.33.241.96

Host 3.33.241.96

United States

AMAZON-AES

Software information

Cowboy

tcp/443 tcp/80

Heroku

tcp/443 tcp/80

heroku-router

tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: watch.barryfarah.com
Port: 443
URL: https://watch.barryfarah.com

First seen 2025-11-12 01:23
Last seen 2026-01-12 00:23
Open for 60 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-12 00:23
Create report

Finds vulnerable Vite development environment

ViteJS development environment found and vulnerable to CVE-2025-30208

IP: 3.33.241.96
Domain: legacy.younlv.com
Port: 443
URL: https://legacy.younlv.com

First seen 2025-08-27 17:57
Last seen 2026-01-11 21:22
Open for 137 days

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9036f6bf8ab

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=26258
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-11 21:22

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90337b04c6a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=10511
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-10 21:19

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9037d941ebc

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=18298
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-09 21:12

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90328b7a8d6

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=28505
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-08 21:35

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903d94376a5

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=47161
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-07 21:20

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903719d3d7a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=59048
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-06 21:11

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9038ccadf3e

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=16948
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-05 21:04

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903f82125f2

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=50182
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-03 21:14

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90387862e0e

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=41038
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-02 21:20

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9034d96e5c8

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=39480
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-01 21:27

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903e3f10180

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=52771
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-31 21:29

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9035495c1e7

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=40001
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-30 21:15

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9030a07227d

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=7914
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-26 14:41

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903b929f66d

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=19391
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-26 00:20

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903650730c7

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=40827
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-24 11:13

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903e34a4b78

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=53888
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-22 09:20

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903c5b5ec38

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=4628
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-20 09:01

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903453d6d24

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=48022
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-18 09:02

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903854466b3

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=15199
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-16 08:50

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903cdd1d384

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=24415
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-14 06:22

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903429cb508

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=30788
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-13 05:23

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903fbd9ef70

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=53611
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-11 12:09

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903dad28490

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=22479
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-08 05:05

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9033a026b4e

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=56870
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-11-30 19:03

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9039f53a706

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=53073
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-11-28 10:58

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90360c91cf1

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=7437
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-13 12:10

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90391e5b53b

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=16352
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-11 09:11

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9039ebc3591

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=27769
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-09 02:25

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9031e107c36

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=41650
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-07 07:14

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903090e474c

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=23191
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-04 14:48

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9032a31251c

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=55907
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-02 23:39

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90380d859a5

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=7226
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-01 03:21

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90344ca854b

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=38442
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-28 11:35

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90371a88294

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=3038
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-26 12:53

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90340595544

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=23177
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-24 12:07

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9039aa05715

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=47684
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-22 16:16

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90393bf2355

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=11184
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-20 17:31

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90399e324c3

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=41385
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-19 05:37

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90328a8b41a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=22288
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-17 05:40

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903f7db690e

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=15035
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-14 20:52

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903105e1577

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=39885
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-13 07:31

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903e5304f9b

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=9796
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-11 11:49

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903fa20c1d2

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=40011
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-09 00:27

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903fd9f5487

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=44711
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-06 19:22

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90373b9b79a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=19871
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-05 00:23

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903453cdb7d

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=40872
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-03 02:24

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9039ea69ebf

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=26711
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-02 17:17

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903170f140a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=17323
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-08-31 07:19

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903c9e3a249

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=47060
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-08-29 11:39

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903ff98d754

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=20741
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-08-27 17:57

Create report

Finds vulnerable Vite development environment

ViteJS development environment found and vulnerable to CVE-2025-30208

IP: 76.223.57.73
Domain: legacy.younlv.com
Port: 80
URL: http://legacy.younlv.com

First seen 2025-08-27 17:57
Last seen 2026-01-11 21:18
Open for 137 days

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9036f6bf8ab

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=26258
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-11 21:18

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90337b04c6a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=10511
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-10 21:16

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9037d941ebc

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=18298
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-09 21:21

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90328b7a8d6

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=28505
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-08 21:37

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903d94376a5

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=47161
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-07 21:18

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903719d3d7a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=59048
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-06 21:13

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9038ccadf3e

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=16948
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-05 21:06

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903f82125f2

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=50182
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-03 21:12

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90387862e0e

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=41038
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-02 21:18

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9034d96e5c8

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=39480
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2026-01-01 21:24

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903e3f10180

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=52771
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-31 21:26

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9035495c1e7

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=40001
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-30 21:12

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903017b843d

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=39494
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-30 12:50

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903b929f66d

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=19391
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-26 09:57

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903650730c7

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=40827
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-24 08:39

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903e34a4b78

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=53888
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-22 07:45

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903c5b5ec38

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=4628
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-20 07:16

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903ac799382

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=31257
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-18 06:08

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903d484adfb

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=17694
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-16 04:39

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903cdd1d384

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=24415
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-14 02:28

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903429cb508

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=30788
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-12 14:17

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903b3d58fa1

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=12682
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-10 19:35

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903dad28490

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=22479
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-08 06:22

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90399265971

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=47503
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-02 05:12

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903ecb97fa3

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=16293
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-12-01 10:03

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903421e6123

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=52842
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-15 06:49

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90360c91cf1

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=7437
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-13 12:00

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9034e5601d4

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=59587
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-10 21:55

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903014c23fe

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=7120
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-08 19:19

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9036fc8a02b

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=33681
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-06 21:49

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903090e474c

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=23191
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-04 21:39

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9032a31251c

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=55907
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-03 07:08

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90380d859a5

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=7226
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-10-01 01:18

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90344ca854b

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=38442
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-28 16:28

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90371a88294

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=3038
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-27 02:57

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90340595544

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=23177
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-24 22:52

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9039aa05715

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=47684
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-23 02:00

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90393bf2355

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=11184
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-20 12:01

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903ccdeaf7c

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=13466
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-18 18:25

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed90328a8b41a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=22288
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-16 20:45

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903fdc5d5bd

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=9996
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-12 13:21

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9032c39fcd7

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=34598
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-10 13:40

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903c26f40b0

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=50614
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-08 14:33

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903fd9f5487

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=44711
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-06 11:43

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9035c8b54ec

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=24842
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-04 12:08

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903453cdb7d

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=40872
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-03 02:24

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed9039ea69ebf

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=26711
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-09-02 17:17

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903170f140a

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=17323
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-08-31 07:19

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903c9e3a249

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=47060
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-08-29 11:39

Severity: critical
Fingerprint: ebb688b314690472074e858154d682968e092245f37e69e456aed903ff98d754

Found vulnerable ViteJS development environment:
Affected by CVE-2025-30208
Environment:
npm_config_user_agent=npm/10.9.2 node/v22.16.0 linux x64 workspaces/false
npm_node_execpath=/app/.heroku/node/bin/node
SHLVL=0
npm_config_noproxy=
PORT=20741
HOME=/app
npm_package_json=/app/package.json
PS1=\\[\\033[01;34m\\]\\w\\[\\033[00m\\] \\[\\033[01;32m\\]$ \\[\\033[00m\\]
npm_config_userconfig=/app/.npmrc
npm_config_local_prefix=/app
COLOR=0
COREPACK_ENABLE_DOWNLOAD_PROMPT=0
_=/app/.heroku/node/bin/npm
npm_config_prefix=/app/.heroku/node
npm_config_npm_version=10.9.2
WEB_CONCURRENCY=1
npm_config_cache=/app/.npm
COREPACK_HOME=/app/.heroku/corepack
npm_config_node_gyp=/app/.heroku/node/lib/node_modules/npm/node_modules/node-gyp/bin/node-gyp.js
PATH=/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/node_modules/.bin:/node_modules/.bin:/app/.heroku/node/lib/node_modules/npm/node_modules/@npmcli/run-script/lib/node-gyp-bin:/app/.heroku/node/bin:/app/.heroku/yarn/bin:/usr/local/bin:/usr/bin:/bin:/app/bin:/app/node_modules/.bin
NODE=/app/.heroku/node/bin/node
npm_package_name=younlv
MEMORY_AVAILABLE=512
NODE_HOME=/app/.heroku/node
npm_lifecycle_script=vite --port $PORT --host 0.0.0.0
npm_package_version=0.0.0
npm_lifecycle_event=prod
npm_config_globalconfig=/app/.heroku/node/etc/npmrc
npm_config_init_module=/app/.npm-init.js
PWD=/app
npm_execpath=/app/.heroku/node/lib/node_modules/npm/bin/npm-cli.js
npm_config_global_prefix=/app/.heroku/node
npm_command=run-script
NODE_ENV=production
WEB_MEMORY=512
DYNO=web.1
INIT_CWD=/app
EDITOR=vi

Found on 2025-08-27 17:57

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: watch.landmarkchurch.org
Port: 80
URL: http://watch.landmarkchurch.org

First seen 2025-11-15 00:20
Last seen 2026-01-10 02:34
Open for 56 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-10 02:34
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: data.designmuseumgent.be
Port: 80
URL: http://data.designmuseumgent.be

First seen 2025-11-11 00:37
Last seen 2026-01-10 02:05
Open for 60 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-10 02:05
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.suamei.com.br
Port: 80
URL: http://api.suamei.com.br

First seen 2025-11-13 00:03
Last seen 2026-01-10 01:35
Open for 58 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-10 01:35
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.waltwithgod.com
Port: 80
URL: http://www.waltwithgod.com

First seen 2025-11-13 04:23
Last seen 2026-01-10 01:09
Open for 57 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-10 01:09
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: tbi.bmidigital.online
Port: 80
URL: http://tbi.bmidigital.online

First seen 2025-11-10 02:11
Last seen 2026-01-10 01:04
Open for 60 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-10 01:04
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: nutralmix-monitor.intech-ing.com
Port: 80
URL: http://nutralmix-monitor.intech-ing.com

First seen 2025-12-01 00:49
Last seen 2026-01-10 00:59
Open for 40 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-10 00:59
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: beta.cancerhotspots.org
Port: 443
URL: https://beta.cancerhotspots.org

First seen 2025-11-13 02:14
Last seen 2026-01-10 00:50
Open for 57 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656
```
Public Swagger UI/API detected at path: /swagger-ui.html
```
  Found on 2026-01-10 00:50
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: dev-api.hubble.social
Port: 443
URL: https://dev-api.hubble.social

First seen 2025-10-17 00:41
Last seen 2026-01-10 00:32
Open for 84 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb990725aba70

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/by-categories/random
GET /experts/by-category/{categoryName}/random
GET /experts/categories/counts
GET /experts/emerging-topics
GET /experts/inactive-transfers
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/restricted-countries
GET /experts/search
GET /experts/{username}/related
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /retrospective
GET /search
GET /search/autocomplete
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /users/{username}/available-days
GET /users/{username}/available-time-slots-for-date
GET /wishlist-lists
GET /wishlist-lists/{id}/items
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}/post-booking
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /payments/webhooks/connect
POST /referral/{username}/apply
POST /retrospective/download
POST /retrospective/download-test
POST /sessions/expert-review
POST /sessions/get-session-participants
POST /sessions/resolve-bulk-participant-emails
POST /sessions/resolve-participant-email
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
PUT /advisor-plan/toggle

Found on 2026-01-10 00:32

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb990b26e2f6f

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/by-categories/random
GET /experts/by-category/{categoryName}/random
GET /experts/categories/counts
GET /experts/emerging-topics
GET /experts/inactive-transfers
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/search
GET /experts/{username}/related
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /retrospective
GET /search
GET /search/autocomplete
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /users/{username}/available-days
GET /users/{username}/available-time-slots-for-date
GET /wishlist-lists
GET /wishlist-lists/{id}/items
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}/post-booking
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /payments/webhooks/connect
POST /referral/{username}/apply
POST /retrospective/download
POST /retrospective/download-test
POST /sessions/expert-review
POST /sessions/get-session-participants
POST /sessions/resolve-bulk-participant-emails
POST /sessions/resolve-participant-email
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
PUT /advisor-plan/toggle

Found on 2026-01-02 19:38

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb990bb103a5c

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/by-categories/random
GET /experts/by-category/{categoryName}/random
GET /experts/categories/counts
GET /experts/emerging-topics
GET /experts/inactive-transfers
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/search
GET /experts/{username}/related
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /retrospective
GET /search
GET /search/autocomplete
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /users/{username}/available-days
GET /users/{username}/available-time-slots-for-date
GET /wishlist-lists
GET /wishlist-lists/{id}/items
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}/post-booking
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /payments/webhooks/connect
POST /referral/{username}/apply
POST /sessions/expert-review
POST /sessions/get-session-participants
POST /sessions/resolve-bulk-participant-emails
POST /sessions/resolve-participant-email
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
PUT /advisor-plan/toggle

Found on 2025-12-23 09:12

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb99036f944b2

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/by-categories/random
GET /experts/by-category/{categoryName}/random
GET /experts/categories/counts
GET /experts/emerging-topics
GET /experts/inactive-transfers
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/search
GET /experts/{username}/related
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /search
GET /search/autocomplete
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /users/{username}/available-days
GET /users/{username}/available-time-slots-for-date
GET /wishlist-lists
GET /wishlist-lists/{id}/items
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}/post-booking
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /payments/webhooks/connect
POST /referral/{username}/apply
POST /sessions/expert-review
POST /sessions/get-session-participants
POST /sessions/resolve-bulk-participant-emails
POST /sessions/resolve-participant-email
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
PUT /advisor-plan/toggle

Found on 2025-12-21 05:51

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb99023fe9e83

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/by-categories/random
GET /experts/by-category/{categoryName}/random
GET /experts/categories/counts
GET /experts/emerging-topics
GET /experts/inactive-transfers
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/search
GET /experts/{username}/related
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /search
GET /search/autocomplete
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /wishlist-lists
GET /wishlist-lists/{id}/items
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}/post-booking
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /payments/webhooks/connect
POST /referral/{username}/apply
POST /sessions/expert-review
POST /sessions/get-session-participants
POST /sessions/resolve-bulk-participant-emails
POST /sessions/resolve-participant-email
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
PUT /advisor-plan/toggle

Found on 2025-12-17 00:37

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb9906b33bd10

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/by-categories/random
GET /experts/by-category/{categoryName}/random
GET /experts/categories/counts
GET /experts/emerging-topics
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/search
GET /experts/{username}/related
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /search
GET /search/autocomplete
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /wishlist-lists
GET /wishlist-lists/{id}/items
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}/post-booking
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /payments/webhooks/connect
POST /referral/{username}/apply
POST /sessions/expert-review
POST /sessions/get-session-participants
POST /sessions/resolve-bulk-participant-emails
POST /sessions/resolve-participant-email
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
PUT /advisor-plan/toggle

Found on 2025-12-01 19:12

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb99099fe60f5

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/by-categories/random
GET /experts/by-category/{categoryName}/random
GET /experts/categories/counts
GET /experts/emerging-topics
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/search
GET /experts/{username}/related
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /search
GET /search/autocomplete
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /wishlist-lists
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}/post-booking
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /payments/webhooks/connect
POST /referral/{username}/apply
POST /sessions/expert-review
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
POST /wishlist-lists/{id}/items
PUT /advisor-plan/toggle

Found on 2025-11-22 12:38

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb990694d88c8

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/by-categories/random
GET /experts/by-category/{categoryName}/random
GET /experts/categories/counts
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/search
GET /experts/{username}/related
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /search
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /wishlist-lists
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /payments/webhooks/connect
POST /referral/{username}/apply
POST /sessions/expert-review
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
POST /wishlist-lists/{id}/items
PUT /advisor-plan/toggle

Found on 2025-11-16 06:28

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb990711b3710

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/by-categories/random
GET /experts/by-category/{categoryName}/random
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/search
GET /experts/{username}/related
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /search
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /wishlist-lists
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /payments/webhooks/connect
POST /referral/{username}/apply
POST /sessions/expert-review
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
POST /wishlist-lists/{id}/items
PUT /advisor-plan/toggle

Found on 2025-11-12 06:44

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb9907991eca7

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/search
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /search
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /wishlist-lists
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /payments/webhooks/connect
POST /referral/{username}/apply
POST /sessions/expert-review
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
POST /wishlist-lists/{id}/items
PUT /advisor-plan/toggle

Found on 2025-11-10 09:09

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb9903a756b94

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/search
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /wishlist-lists
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /payments/webhooks/connect
POST /referral/{username}/apply
POST /sessions/expert-review
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
POST /wishlist-lists/{id}/items
PUT /advisor-plan/toggle

Found on 2025-10-27 10:44

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495f03597d7108e3f4814e5429a89cb99016144d10

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /sessions/test-delete-calendar-event/{eventId}
DELETE /wishlist-lists/{id}
DELETE /wishlist-lists/{id}/expert/{expertProfileId}
GET /advisor-plan
GET /advisor-plan/check-subscription-status/{setupIntentId}
GET /advisor-plan/complete-subscription/{setupIntentId}
GET /advisor-plan/learner-subscriptions
GET /advisor-plan/subscribers
GET /asset/{assetId}
GET /asset/{assetId}/info
GET /experts
GET /experts-category
GET /experts/landing
GET /experts/metrics/{expertId}
GET /experts/referrals/dashboard
GET /experts/referrals/my-link
GET /experts/search
GET /experts/{username}/reviews
GET /healthz
GET /oauth/google-calendar
GET /oauth/google-calendar/done
GET /payments/onboarding/{expertId}/{country}
GET /payments/payment-intent/{paymentIntentId}
GET /payments/stripe-account-status
GET /payments/verify-payment-intent/{paymentIntentId}
GET /payments/verify-setup-intent/{setupIntentId}
GET /referral/{username}
GET /sessions/expert-username/{username}/reviews
GET /sessions/expert/{expertId}/reviews
GET /sessions/past
GET /sessions/upcoming
GET /sessions/user/reviews
GET /sessions/{sessionId}/reviews
GET /users/availability/{username}
GET /users/calendar-events
GET /users/calendar-preferences
GET /users/expert-profile/{username}
GET /users/me
GET /users/payment-info
GET /users/timezone
GET /users/{username}/availability-slots
GET /wishlist-lists
PATCH /advisor-plan/cancel-subscription/{subscriptionId}
PATCH /payments/update-stripe-connection-status
PATCH /sessions/{sessionId}
PATCH /users
PATCH /users/availability
PATCH /users/marketplace/disable
POST /advisor-plan/create
POST /asset/upload
POST /auth/clerk
POST /communications/contact-form
POST /communications/newsletter-signup
POST /internal/send-slack-message
POST /payments/confirm-subscription-payment
POST /payments/create-payment-intent
POST /payments/create-setup-intent
POST /payments/webhooks
POST /referral/{username}/apply
POST /sessions/expert-review
POST /sessions/review
POST /sessions/test-calendar-event
POST /sessions/test-reschedule
POST /sessions/{sessionId}/request-reschedule
POST /sessions/{sessionId}/reschedule
POST /sessions/{sessionId}/reschedule/force
POST /users/admin/sync-all-expert-calendars
POST /users/become-expert
POST /users/become-expert/waitlist
POST /users/expert-profile
POST /users/sync-calendars
POST /users/sync-timezone
POST /wishlist-lists/{id}/items
PUT /advisor-plan/toggle

Found on 2025-10-25 10:24

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: automation.api.dev.sdocs.com
Port: 80
URL: http://automation.api.dev.sdocs.com

First seen 2025-10-21 01:11
Last seen 2026-01-10 00:17
Open for 80 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd151e75e4b85ff4881575c27921bb99ec19103a7adeaa4d918
```
Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /test/documents
GET /test/envelopes
GET /test/pdfCode
GET /test/pdfFile
GET /test/templates
POST /test/sendEsign
```
  Found on 2026-01-10 00:17
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: prod.lifestyleintelligencelq.com
Port: 80
URL: http://prod.lifestyleintelligencelq.com

First seen 2025-10-24 00:52
Last seen 2026-01-09 23:45
Open for 77 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 23:45
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: callcenter.universe.carruslearn.com
Port: 80
URL: http://callcenter.universe.carruslearn.com

First seen 2025-10-28 00:59
Last seen 2026-01-09 23:39
Open for 73 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43eaf74554244263506039b409c309f75616ab860f
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /logging/call
GET /logging/voicemail
GET /maps/affiliates
GET /maps/area-code-map
GET /maps/blocked-numbers
GET /maps/campaign-paths
GET /maps/local-presence-numbers
GET /routing/affiliates
GET /routing/agent
GET /routing/blocked-number
GET /routing/case
GET /routing/learner
GET /routing/local-presence
GET /routing/path
POST /database/cases
POST /database/learner
POST /database/nicagents
POST /database/pocs
POST /database/program-enrollments
POST /database/sfusers
POST /database/skills
POST /lists/s2l
POST /logging/case
POST /logging/lead
POST /realtime/place-call
POST /seeder/aausers
```
  Found on 2026-01-09 23:39
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: hubspot.api.test.sdocs.com
Port: 443
URL: https://hubspot.api.test.sdocs.com

First seen 2025-10-30 00:30
Last seen 2026-01-09 23:32
Open for 71 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b763a87836b89d23865da56b0074f326b42204381

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /file
GET /app/access-token
GET /app/install
GET /auth/verify
GET /decodeToken/{token}
GET /documents
GET /envelopes
GET /generate/init
GET /generateTemplate
GET /hubspot/document/{documentId}/generate/Pdf
GET /hubspot/documents/attachments
GET /hubspot/envelope/{envelopeId}/document/{documentId}/signatures
GET /hubspot/file
GET /hubspot/generateFinalPdf
GET /hubspot/getFile
GET /hubspot/mergeData
GET /hubspot/object/{object}/{objectId}/associations
GET /hubspot/objects
GET /hubspot/objects/{objectType}/properties
GET /hubspot/objects/{object}/{objectId}
GET /hubspot/properties/{objectType}/{propertyName}
GET /hubspot/schema/{apiName}
GET /hubspot/schemas
GET /hubspot/user/{userId}
GET /templates
GET /user
GET /users
PATCH /hubspot/object/{objectId}
POST /activity/timeline/info
POST /app/install/sync
POST /app/install/templates
POST /esign/envelope/create
POST /hubspot/datasource/refresh
POST /hubspot/envelope/{envelopeId}/documents/signatureField/uploadSign
POST /hubspot/object/{objName}
POST /hubspot/template
POST /hubspot/uploadFile
POST /hubspot/uploadImage
POST /workflow/actions/generatedocument
POST /workflow/actions/generatedocumentandattach
POST /workflow/actions/generatedocumentesign
POST /workflow/actions/templates

Found on 2026-01-09 23:32

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: rise.newcreation.courses
Port: 443
URL: https://rise.newcreation.courses

First seen 2025-10-23 00:32
Last seen 2026-01-09 23:31
Open for 78 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 23:31
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: staging.famweaver.com
Port: 443
URL: https://staging.famweaver.com

First seen 2025-11-08 18:37
Last seen 2026-01-09 23:27
Open for 62 days

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863c3ab104164ad0812947afd5de274814ba9b094c12

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
ANY info
DELETE /api/conversations/{id}
DELETE /api/conversations/{id}/members/{memberId}
DELETE /api/errors(?=/|$)/all
GET /api(?=/|$)/detailed
GET /api(?=/|$)/health
GET /api(?=/|$)/ready
GET /api/auth/genesis
GET /api/auth/google
GET /api/auth/google/callback
GET /api/auth/me
GET /api/auth/user
GET /api/conversations
GET /api/conversations/matching
GET /api/conversations/{id}/members
GET /api/conversations/{id}/messages
GET /api/conversations/{id}/permissions
GET /api/conversations/{id}/relationships
GET /api/csrf-token
GET /api/debug/session
GET /api/email-preferences(?=/|$)
GET /api/email-preferences(?=/|$)/analytics
GET /api/email-preferences(?=/|$)/track/click/{emailId}
GET /api/email-preferences(?=/|$)/track/open/{emailId}
GET /api/errors(?=/|$)/aggregations
GET /api/errors(?=/|$)/my-errors
GET /api/errors(?=/|$)/recent
GET /api/family-members
GET /api/family-members/search
GET /api/family-relationships
GET /api/family-relationships/between/{fromUserId}/{toUserId}
GET /api/family-relationships/path/{targetUserId}
GET /api/family-tree/structure
GET /api/logout
GET /api/metrics(?=/|$)/capacity
GET /api/metrics(?=/|$)/dashboard
GET /api/metrics(?=/|$)/limits
GET /api/metrics(?=/|$)/resources
GET /api/network(?=/|$)/context
GET /api/network(?=/|$)/dashboard
GET /api/network(?=/|$)/health
GET /api/network(?=/|$)/members
GET /api/network(?=/|$)/repository-stats
GET /api/network(?=/|$)/stats
GET /api/public(?=/|$)/sms-consent/status/{phoneNumber}
GET /api/sms-monitoring(?=/|$)/audit-logs
GET /api/sms-monitoring(?=/|$)/consent-stats
GET /api/sms-monitoring(?=/|$)/dashboard
GET /api/sms-monitoring(?=/|$)/delivery-status
GET /api/sms-monitoring(?=/|$)/service-health
GET /api/sms-monitoring(?=/|$)/sla-metrics
GET /api/v2/events
GET /api/v2/events/{eventId}
GET /api/v2/monitoring(?=/|$)/cache
GET /api/v2/monitoring(?=/|$)/cache-stats
GET /api/v2/monitoring(?=/|$)/health
GET /api/v2/monitoring(?=/|$)/metrics
GET /api/v2/monitoring(?=/|$)/performance
GET /api/v2/monitoring(?=/|$)/query-stats
GET /api/v2/monitoring(?=/|$)/realtime
GET /api/v2/monitoring(?=/|$)/realtime-stats
GET /api/v2/monitoring(?=/|$)/system
GET /api/v2/monitoring(?=/|$)/test
GET /api/v2/monitoring(?=/|$)/user-journey/{userId}
GET /api/v2/network(?=/|$)/members
GET /api/v2/network(?=/|$)/stats
POST /api/auth/generate-api-key
POST /api/auth/genesis/email
POST /api/auth/genesis/magic-link
POST /api/email-preferences(?=/|$)/unsubscribe
POST /api/error-reports
POST /api/family-relationships/fix-labels
POST /api/family-relationships/refresh-cache
POST /api/messages
POST /api/metrics(?=/|$)/drain
POST /api/network(?=/|$)/batch
POST /api/network(?=/|$)/cache/invalidate
POST /api/public(?=/|$)/sms-consent
POST /api/public(?=/|$)/sms-consent/opt-out
POST /api/public(?=/|$)/sms-consent/verify
POST /api/sms-monitoring(?=/|$)/clear-cache
POST /api/v2/events/{eventId}/rsvp
POST /api/v2/monitoring(?=/|$)/cache-optimize
POST /api/v2/monitoring(?=/|$)/cache-stats/reset
POST /api/v2/monitoring(?=/|$)/sessions/clear
POST /api/validate-email
PUT /api/conversations/{id}/settings

Found on 2026-01-09 23:27

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863c3ab104164ad0812947afd5de274814baf5f8c78f

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
ANY info
DELETE /api/conversations/{id}
DELETE /api/conversations/{id}/members/{memberId}
DELETE /api/errors(?=/|$)/all
GET /api(?=/|$)/detailed
GET /api(?=/|$)/health
GET /api(?=/|$)/ready
GET /api/auth/google
GET /api/auth/google/callback
GET /api/auth/me
GET /api/auth/user
GET /api/conversations
GET /api/conversations/matching
GET /api/conversations/{id}/members
GET /api/conversations/{id}/messages
GET /api/conversations/{id}/permissions
GET /api/conversations/{id}/relationships
GET /api/csrf-token
GET /api/debug/session
GET /api/email-preferences(?=/|$)
GET /api/email-preferences(?=/|$)/analytics
GET /api/email-preferences(?=/|$)/track/click/{emailId}
GET /api/email-preferences(?=/|$)/track/open/{emailId}
GET /api/errors(?=/|$)/aggregations
GET /api/errors(?=/|$)/my-errors
GET /api/errors(?=/|$)/recent
GET /api/family-members
GET /api/family-members/search
GET /api/family-relationships
GET /api/family-relationships/between/{fromUserId}/{toUserId}
GET /api/family-relationships/path/{targetUserId}
GET /api/family-tree/structure
GET /api/logout
GET /api/metrics(?=/|$)/capacity
GET /api/metrics(?=/|$)/dashboard
GET /api/metrics(?=/|$)/limits
GET /api/metrics(?=/|$)/resources
GET /api/network(?=/|$)/context
GET /api/network(?=/|$)/dashboard
GET /api/network(?=/|$)/health
GET /api/network(?=/|$)/members
GET /api/network(?=/|$)/repository-stats
GET /api/network(?=/|$)/stats
GET /api/public(?=/|$)/sms-consent/status/{phoneNumber}
GET /api/sms-monitoring(?=/|$)/audit-logs
GET /api/sms-monitoring(?=/|$)/consent-stats
GET /api/sms-monitoring(?=/|$)/dashboard
GET /api/sms-monitoring(?=/|$)/delivery-status
GET /api/sms-monitoring(?=/|$)/service-health
GET /api/sms-monitoring(?=/|$)/sla-metrics
GET /api/v2/monitoring(?=/|$)/cache
GET /api/v2/monitoring(?=/|$)/cache-stats
GET /api/v2/monitoring(?=/|$)/health
GET /api/v2/monitoring(?=/|$)/metrics
GET /api/v2/monitoring(?=/|$)/performance
GET /api/v2/monitoring(?=/|$)/query-stats
GET /api/v2/monitoring(?=/|$)/realtime
GET /api/v2/monitoring(?=/|$)/realtime-stats
GET /api/v2/monitoring(?=/|$)/system
GET /api/v2/monitoring(?=/|$)/test
GET /api/v2/monitoring(?=/|$)/user-journey/{userId}
GET /api/v2/network(?=/|$)/members
GET /api/v2/network(?=/|$)/stats
POST /api/auth/generate-api-key
POST /api/email-preferences(?=/|$)/unsubscribe
POST /api/error-reports
POST /api/family-relationships/fix-labels
POST /api/family-relationships/refresh-cache
POST /api/messages
POST /api/metrics(?=/|$)/drain
POST /api/network(?=/|$)/batch
POST /api/network(?=/|$)/cache/invalidate
POST /api/public(?=/|$)/sms-consent
POST /api/public(?=/|$)/sms-consent/opt-out
POST /api/public(?=/|$)/sms-consent/verify
POST /api/sms-monitoring(?=/|$)/clear-cache
POST /api/v2/monitoring(?=/|$)/cache-optimize
POST /api/v2/monitoring(?=/|$)/cache-stats/reset
POST /api/v2/monitoring(?=/|$)/sessions/clear
POST /api/validate-email
PUT /api/conversations/{id}/settings

Found on 2025-12-10 21:58

Severity: info
Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
Found on 2025-11-26 11:00

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863c3ab104164ad0812947afd5de274814ba5db07b1b

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
ANY info
DELETE /api/conversations/{id}
DELETE /api/conversations/{id}/members/{memberId}
DELETE /api/errors(?=/|$)/all
GET /api(?=/|$)/detailed
GET /api(?=/|$)/health
GET /api(?=/|$)/ready
GET /api/auth/google
GET /api/auth/google/callback
GET /api/auth/me
GET /api/auth/user
GET /api/conversations
GET /api/conversations/matching
GET /api/conversations/{id}/members
GET /api/conversations/{id}/messages
GET /api/conversations/{id}/permissions
GET /api/conversations/{id}/relationships
GET /api/csrf-token
GET /api/debug/session
GET /api/email-preferences(?=/|$)
GET /api/email-preferences(?=/|$)/analytics
GET /api/email-preferences(?=/|$)/track/click/{emailId}
GET /api/email-preferences(?=/|$)/track/open/{emailId}
GET /api/errors(?=/|$)/aggregations
GET /api/errors(?=/|$)/my-errors
GET /api/errors(?=/|$)/recent
GET /api/family-members
GET /api/family-members/search
GET /api/family-relationships
GET /api/family-relationships/between/{fromUserId}/{toUserId}
GET /api/family-relationships/path/{targetUserId}
GET /api/family-tree/structure
GET /api/logout
GET /api/metrics(?=/|$)/capacity
GET /api/metrics(?=/|$)/dashboard
GET /api/metrics(?=/|$)/limits
GET /api/metrics(?=/|$)/resources
GET /api/network(?=/|$)/context
GET /api/network(?=/|$)/dashboard
GET /api/network(?=/|$)/health
GET /api/network(?=/|$)/members
GET /api/network(?=/|$)/repository-stats
GET /api/network(?=/|$)/stats
GET /api/public(?=/|$)/sms-consent/status/{phoneNumber}
GET /api/sms-monitoring(?=/|$)/audit-logs
GET /api/sms-monitoring(?=/|$)/consent-stats
GET /api/sms-monitoring(?=/|$)/dashboard
GET /api/sms-monitoring(?=/|$)/delivery-status
GET /api/sms-monitoring(?=/|$)/service-health
GET /api/sms-monitoring(?=/|$)/sla-metrics
GET /api/v2/monitoring(?=/|$)/cache
GET /api/v2/monitoring(?=/|$)/cache-stats
GET /api/v2/monitoring(?=/|$)/health
GET /api/v2/monitoring(?=/|$)/metrics
GET /api/v2/monitoring(?=/|$)/performance
GET /api/v2/monitoring(?=/|$)/query-stats
GET /api/v2/monitoring(?=/|$)/realtime
GET /api/v2/monitoring(?=/|$)/realtime-stats
GET /api/v2/monitoring(?=/|$)/system
GET /api/v2/monitoring(?=/|$)/test
GET /api/v2/monitoring(?=/|$)/user-journey/{userId}
POST /api/auth/generate-api-key
POST /api/email-preferences(?=/|$)/unsubscribe
POST /api/error-reports
POST /api/family-relationships/fix-labels
POST /api/family-relationships/refresh-cache
POST /api/messages
POST /api/metrics(?=/|$)/drain
POST /api/network(?=/|$)/batch
POST /api/network(?=/|$)/cache/invalidate
POST /api/public(?=/|$)/sms-consent
POST /api/public(?=/|$)/sms-consent/opt-out
POST /api/public(?=/|$)/sms-consent/verify
POST /api/sms-monitoring(?=/|$)/clear-cache
POST /api/v2/monitoring(?=/|$)/cache-optimize
POST /api/v2/monitoring(?=/|$)/cache-stats/reset
POST /api/v2/monitoring(?=/|$)/sessions/clear
POST /api/validate-email
PUT /api/conversations/{id}/settings

Found on 2025-11-16 04:11

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 75.2.60.68
Domain: www.famweaver.com
Port: 80
URL: http://www.famweaver.com

First seen 2025-11-08 18:30
Last seen 2026-01-09 23:21
Open for 62 days

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863c3ab104164ad0812947afd5de274814ba9b094c12

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
ANY info
DELETE /api/conversations/{id}
DELETE /api/conversations/{id}/members/{memberId}
DELETE /api/errors(?=/|$)/all
GET /api(?=/|$)/detailed
GET /api(?=/|$)/health
GET /api(?=/|$)/ready
GET /api/auth/genesis
GET /api/auth/google
GET /api/auth/google/callback
GET /api/auth/me
GET /api/auth/user
GET /api/conversations
GET /api/conversations/matching
GET /api/conversations/{id}/members
GET /api/conversations/{id}/messages
GET /api/conversations/{id}/permissions
GET /api/conversations/{id}/relationships
GET /api/csrf-token
GET /api/debug/session
GET /api/email-preferences(?=/|$)
GET /api/email-preferences(?=/|$)/analytics
GET /api/email-preferences(?=/|$)/track/click/{emailId}
GET /api/email-preferences(?=/|$)/track/open/{emailId}
GET /api/errors(?=/|$)/aggregations
GET /api/errors(?=/|$)/my-errors
GET /api/errors(?=/|$)/recent
GET /api/family-members
GET /api/family-members/search
GET /api/family-relationships
GET /api/family-relationships/between/{fromUserId}/{toUserId}
GET /api/family-relationships/path/{targetUserId}
GET /api/family-tree/structure
GET /api/logout
GET /api/metrics(?=/|$)/capacity
GET /api/metrics(?=/|$)/dashboard
GET /api/metrics(?=/|$)/limits
GET /api/metrics(?=/|$)/resources
GET /api/network(?=/|$)/context
GET /api/network(?=/|$)/dashboard
GET /api/network(?=/|$)/health
GET /api/network(?=/|$)/members
GET /api/network(?=/|$)/repository-stats
GET /api/network(?=/|$)/stats
GET /api/public(?=/|$)/sms-consent/status/{phoneNumber}
GET /api/sms-monitoring(?=/|$)/audit-logs
GET /api/sms-monitoring(?=/|$)/consent-stats
GET /api/sms-monitoring(?=/|$)/dashboard
GET /api/sms-monitoring(?=/|$)/delivery-status
GET /api/sms-monitoring(?=/|$)/service-health
GET /api/sms-monitoring(?=/|$)/sla-metrics
GET /api/v2/events
GET /api/v2/events/{eventId}
GET /api/v2/monitoring(?=/|$)/cache
GET /api/v2/monitoring(?=/|$)/cache-stats
GET /api/v2/monitoring(?=/|$)/health
GET /api/v2/monitoring(?=/|$)/metrics
GET /api/v2/monitoring(?=/|$)/performance
GET /api/v2/monitoring(?=/|$)/query-stats
GET /api/v2/monitoring(?=/|$)/realtime
GET /api/v2/monitoring(?=/|$)/realtime-stats
GET /api/v2/monitoring(?=/|$)/system
GET /api/v2/monitoring(?=/|$)/test
GET /api/v2/monitoring(?=/|$)/user-journey/{userId}
GET /api/v2/network(?=/|$)/members
GET /api/v2/network(?=/|$)/stats
POST /api/auth/generate-api-key
POST /api/auth/genesis/email
POST /api/auth/genesis/magic-link
POST /api/email-preferences(?=/|$)/unsubscribe
POST /api/error-reports
POST /api/family-relationships/fix-labels
POST /api/family-relationships/refresh-cache
POST /api/messages
POST /api/metrics(?=/|$)/drain
POST /api/network(?=/|$)/batch
POST /api/network(?=/|$)/cache/invalidate
POST /api/public(?=/|$)/sms-consent
POST /api/public(?=/|$)/sms-consent/opt-out
POST /api/public(?=/|$)/sms-consent/verify
POST /api/sms-monitoring(?=/|$)/clear-cache
POST /api/v2/events/{eventId}/rsvp
POST /api/v2/monitoring(?=/|$)/cache-optimize
POST /api/v2/monitoring(?=/|$)/cache-stats/reset
POST /api/v2/monitoring(?=/|$)/sessions/clear
POST /api/validate-email
PUT /api/conversations/{id}/settings

Found on 2026-01-09 23:21

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863c3ab104164ad0812947afd5de274814ba5db07b1b

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
ANY info
DELETE /api/conversations/{id}
DELETE /api/conversations/{id}/members/{memberId}
DELETE /api/errors(?=/|$)/all
GET /api(?=/|$)/detailed
GET /api(?=/|$)/health
GET /api(?=/|$)/ready
GET /api/auth/google
GET /api/auth/google/callback
GET /api/auth/me
GET /api/auth/user
GET /api/conversations
GET /api/conversations/matching
GET /api/conversations/{id}/members
GET /api/conversations/{id}/messages
GET /api/conversations/{id}/permissions
GET /api/conversations/{id}/relationships
GET /api/csrf-token
GET /api/debug/session
GET /api/email-preferences(?=/|$)
GET /api/email-preferences(?=/|$)/analytics
GET /api/email-preferences(?=/|$)/track/click/{emailId}
GET /api/email-preferences(?=/|$)/track/open/{emailId}
GET /api/errors(?=/|$)/aggregations
GET /api/errors(?=/|$)/my-errors
GET /api/errors(?=/|$)/recent
GET /api/family-members
GET /api/family-members/search
GET /api/family-relationships
GET /api/family-relationships/between/{fromUserId}/{toUserId}
GET /api/family-relationships/path/{targetUserId}
GET /api/family-tree/structure
GET /api/logout
GET /api/metrics(?=/|$)/capacity
GET /api/metrics(?=/|$)/dashboard
GET /api/metrics(?=/|$)/limits
GET /api/metrics(?=/|$)/resources
GET /api/network(?=/|$)/context
GET /api/network(?=/|$)/dashboard
GET /api/network(?=/|$)/health
GET /api/network(?=/|$)/members
GET /api/network(?=/|$)/repository-stats
GET /api/network(?=/|$)/stats
GET /api/public(?=/|$)/sms-consent/status/{phoneNumber}
GET /api/sms-monitoring(?=/|$)/audit-logs
GET /api/sms-monitoring(?=/|$)/consent-stats
GET /api/sms-monitoring(?=/|$)/dashboard
GET /api/sms-monitoring(?=/|$)/delivery-status
GET /api/sms-monitoring(?=/|$)/service-health
GET /api/sms-monitoring(?=/|$)/sla-metrics
GET /api/v2/monitoring(?=/|$)/cache
GET /api/v2/monitoring(?=/|$)/cache-stats
GET /api/v2/monitoring(?=/|$)/health
GET /api/v2/monitoring(?=/|$)/metrics
GET /api/v2/monitoring(?=/|$)/performance
GET /api/v2/monitoring(?=/|$)/query-stats
GET /api/v2/monitoring(?=/|$)/realtime
GET /api/v2/monitoring(?=/|$)/realtime-stats
GET /api/v2/monitoring(?=/|$)/system
GET /api/v2/monitoring(?=/|$)/test
GET /api/v2/monitoring(?=/|$)/user-journey/{userId}
POST /api/auth/generate-api-key
POST /api/email-preferences(?=/|$)/unsubscribe
POST /api/error-reports
POST /api/family-relationships/fix-labels
POST /api/family-relationships/refresh-cache
POST /api/messages
POST /api/metrics(?=/|$)/drain
POST /api/network(?=/|$)/batch
POST /api/network(?=/|$)/cache/invalidate
POST /api/public(?=/|$)/sms-consent
POST /api/public(?=/|$)/sms-consent/opt-out
POST /api/public(?=/|$)/sms-consent/verify
POST /api/sms-monitoring(?=/|$)/clear-cache
POST /api/v2/monitoring(?=/|$)/cache-optimize
POST /api/v2/monitoring(?=/|$)/cache-stats/reset
POST /api/v2/monitoring(?=/|$)/sessions/clear
POST /api/validate-email
PUT /api/conversations/{id}/settings

Found on 2025-11-08 18:30

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 15.197.149.68
Domain: api.staging.loma.tech
Port: 80
URL: http://api.staging.loma.tech

First seen 2025-10-29 08:20
Last seen 2026-01-09 22:19
Open for 72 days

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4f4136d44735ebdeac957fa908ecbbd1754c1cdfc

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /v1/auth/user-destroy/
DELETE /v1/cart/remove/{marketplace_id}/{variant_id}/
DELETE /v1/listings/{id}/delete/
GET /dj-rest-auth/logout/
GET /v1/active_category_ids/
GET /v1/active_marketplace_listing_ids/{marketplace_id}/
GET /v1/active_marketplace_listing_slugs/{marketplace_id}/
GET /v1/active_marketplace_page_slugs/{marketplace_id}/
GET /v1/active_marketplace_pages/
GET /v1/active_top_level_category_ids/
GET /v1/attributes/{attribute_id}/
GET /v1/auctions/{auction_id}/bids/
GET /v1/auctions/{auction_id}/max_bid/
GET /v1/auth/access-token/
GET /v1/cart/{marketplace_id}/
GET /v1/categories/{category_id}/parent_list/
GET /v1/categories/{category_id}/permissions/roles/
GET /v1/categories/{id}/
GET /v1/categories/{id}/admin/
GET /v1/categories/{id}/attributes/
GET /v1/category_with_listings/{id}/
GET /v1/checkout/{marketplace_id}/
GET /v1/checkout_session/{marketplace_id}/{session_id}/
GET /v1/fulfillment-types/{marketplace_id}/
GET /v1/generate_listing_promo_preview_image/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/generate_marketplace_preview_image/{preview_type}/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/get_marketplace_preview_data/{marketplace_preview_data_id}/
GET /v1/link_in_bio_marketplaces/
GET /v1/listings/category/{id}/
GET /v1/listings/category/{id}/v2/
GET /v1/listings/map/{id}/
GET /v1/listings/map/{id}/v2/
GET /v1/listings/promo_media/{object_id}/
GET /v1/listings/{id}/
GET /v1/marketplace_account_attributes/{marketplace_id}/
GET /v1/marketplace_pages/{hostname}/{slug}/
GET /v1/marketplaces/categories/{marketplace_role_id}/
GET /v1/marketplaces/hostnames/
GET /v1/marketplaces/link_in_bio/{hostname}/
GET /v1/marketplaces/roles/{marketplace_role_id}/
GET /v1/marketplaces/{hostname}/
GET /v1/marketplaces/{hostname}/categories/
GET /v1/marketplaces/{hostname}/hostname/
GET /v1/marketplaces/{hostname}/link_in_bio/
GET /v1/marketplaces/{marketplace_id}/categories/
GET /v1/marketplaces/{marketplace_id}/categories/{category_id}/
GET /v1/marketplaces/{marketplace_id}/category_selector/
GET /v1/marketplaces/{marketplace_id}/domain/
GET /v1/marketplaces/{marketplace_id}/info/
GET /v1/marketplaces/{marketplace_id}/pages/slug/{slug}/
GET /v1/marketplaces/{marketplace_id}/roles/
GET /v1/marketplaces/{marketplace_id}/status/
GET /v1/marketplaces/{marketplace_id}/theme/
GET /v1/marketplaces/{marketplace_id}/top_level_categories/
GET /v1/marketplaces/{marketplace_id}/user/roles/
GET /v1/orders/{marketplace_id}/{id}/
GET /v1/roles/global/
GET /v1/stripe/code/{hostname}/{code}/
GET /v1/stripe/{marketplace_id}/account/
POST /dj-rest-auth/login/
POST /dj-rest-auth/password/reset/
POST /dj-rest-auth/password/reset/confirm/
POST /dj-rest-auth/token/refresh/
POST /dj-rest-auth/token/verify/
POST /v1/ai_run/
POST /v1/ai_status_change/
POST /v1/auctions/{auction_id}/bid/
POST /v1/auctions/{auction_id}/relist-auction/
POST /v1/auth/email_exists/
POST /v1/auth/forgot-password/
POST /v1/auth/onboarding-register/
POST /v1/auth/register/
POST /v1/auth/reset-password/
POST /v1/auth/token/
POST /v1/auth/token/body-refresh/
POST /v1/auth/token/refresh/
POST /v1/auth/verify_email/{token}
POST /v1/bannerbear-webhook/
POST /v1/batch/listings/import/
POST /v1/batch/listings/populate/
POST /v1/batch/loma_listings/import/
POST /v1/cart/add/{marketplace_id}/{variant_id}/
POST /v1/categories/{category_id}/checkout_session/
POST /v1/categories/{category_id}/deal_order/{order_id}/checkout_session/
POST /v1/create_marketplace_from_social_username/
POST /v1/generate_listings_step/
POST /v1/generate_marketplace_data/
POST /v1/generate_presigned_url/
POST /v1/generate_social_data/
POST /v1/get_import_log_results/
POST /v1/keysavvy/deal_order/{order_id}/{marketplace_id}/get_checkout_session_status/
POST /v1/leads/{lead_id}/{marketplace_id}/follow_up/
POST /v1/listings/create/
POST /v1/listings/{listing_id}/mark_as_broken/
POST /v1/listings/{listing_id}/{marketplace_id}/get_checkout_session_status/
POST /v1/listings/{listing_id}/{marketplace_id}/send_registration_email/
POST /v1/mailing_list/{marketplace_id}/signup/
POST /v1/marketplaces/{marketplace_id}/generate_ticket/
POST /v1/marketplaces/{marketplace_id}/send_magic_link/
POST /v1/marketplaces/{marketplace_id}/validate_referral_code/
POST /v1/orders/create/
POST /v1/payments/create_payment_intent/{cart_id}/
POST /v1/payments/stripe_webhook/
POST /v1/payments/update_payment_intent/{cart_id}/
POST /v1/quick_launch/monetization_options/
POST /v1/refresh_image_links/{listing_id}/
POST /v1/restart-worker/
POST /v1/rye/shipping/{cart_id}/
POST /v1/rye/webhook/
POST /v1/send-verification-code/
POST /v1/shareautomation/ayrshare/webhook/
POST /v1/shareautomation/promo_automation/webhook/
POST /v1/shipping/rates/
POST /v1/shipping/shippo_webhook/
POST /v1/shippo/address/validate/
POST /v1/sso/ticket-hostname/
POST /v1/sso/token/social/
POST /v1/sso/validate-ticket/
POST /v1/stripe/{marketplace_id}/account_session/
POST /v1/stripe/{marketplace_id}/settings/
POST /v1/submit_lead/
POST /v1/testing/reset-marketplace-to-preview/
POST /v1/users/{user_id}/roles/{id}/checkout_session/
POST /v1/validate_referral_code/
POST /v1/verify-email-by-token/
POST /v1/verify-email/
POST /v1/webhooks/sendgrid/inbound/
PUT /v1/cart/modify/{marketplace_id}/{variant_id}/
PUT /v1/listings/{id}/{marketplace_id}/update/
PUT /v1/listings/{id}/{marketplace_id}/update_category/
PUT /v1/listings/{listing_id}/{marketplace_id}/admin_set_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_sold_price/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/{listing_status}/{sub_status}/
PUT /v1/orders/update-fulfillment/

Found on 2026-01-09 22:19

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4f4136d44735ebdeac957fa908ecbbd17f511853f

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /v1/auth/user-destroy/
DELETE /v1/cart/remove/{marketplace_id}/{variant_id}/
DELETE /v1/listings/{id}/delete/
GET /dj-rest-auth/logout/
GET /v1/active_category_ids/
GET /v1/active_marketplace_listing_ids/{marketplace_id}/
GET /v1/active_marketplace_listing_slugs/{marketplace_id}/
GET /v1/active_marketplace_page_slugs/{marketplace_id}/
GET /v1/active_marketplace_pages/
GET /v1/active_top_level_category_ids/
GET /v1/attributes/{attribute_id}/
GET /v1/auctions/{auction_id}/bids/
GET /v1/auctions/{auction_id}/max_bid/
GET /v1/auth/access-token/
GET /v1/cart/{marketplace_id}/
GET /v1/categories/{category_id}/parent_list/
GET /v1/categories/{category_id}/permissions/roles/
GET /v1/categories/{id}/
GET /v1/categories/{id}/admin/
GET /v1/categories/{id}/attributes/
GET /v1/category_with_listings/{id}/
GET /v1/checkout/{marketplace_id}/
GET /v1/checkout_session/{marketplace_id}/{session_id}/
GET /v1/fulfillment-types/{marketplace_id}/
GET /v1/generate_listing_promo_preview_image/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/generate_marketplace_preview_image/{preview_type}/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/get_marketplace_preview_data/{marketplace_preview_data_id}/
GET /v1/link_in_bio_marketplaces/
GET /v1/listings/category/{id}/
GET /v1/listings/category/{id}/v2/
GET /v1/listings/map/{id}/
GET /v1/listings/map/{id}/v2/
GET /v1/listings/promo_media/{object_id}/
GET /v1/listings/{id}/
GET /v1/marketplace_account_attributes/{marketplace_id}/
GET /v1/marketplace_pages/{hostname}/{slug}/
GET /v1/marketplaces/categories/{marketplace_role_id}/
GET /v1/marketplaces/hostnames/
GET /v1/marketplaces/link_in_bio/{hostname}/
GET /v1/marketplaces/roles/{marketplace_role_id}/
GET /v1/marketplaces/{hostname}/
GET /v1/marketplaces/{hostname}/categories/
GET /v1/marketplaces/{hostname}/hostname/
GET /v1/marketplaces/{hostname}/link_in_bio/
GET /v1/marketplaces/{marketplace_id}/categories/
GET /v1/marketplaces/{marketplace_id}/categories/{category_id}/
GET /v1/marketplaces/{marketplace_id}/category_selector/
GET /v1/marketplaces/{marketplace_id}/domain/
GET /v1/marketplaces/{marketplace_id}/info/
GET /v1/marketplaces/{marketplace_id}/pages/slug/{slug}/
GET /v1/marketplaces/{marketplace_id}/roles/
GET /v1/marketplaces/{marketplace_id}/status/
GET /v1/marketplaces/{marketplace_id}/theme/
GET /v1/marketplaces/{marketplace_id}/top_level_categories/
GET /v1/marketplaces/{marketplace_id}/user/roles/
GET /v1/orders/{marketplace_id}/{id}/
GET /v1/roles/global/
GET /v1/stripe/code/{hostname}/{code}/
GET /v1/stripe/{marketplace_id}/account/
POST /dj-rest-auth/login/
POST /dj-rest-auth/password/reset/
POST /dj-rest-auth/password/reset/confirm/
POST /dj-rest-auth/token/refresh/
POST /dj-rest-auth/token/verify/
POST /v1/ai_run/
POST /v1/ai_status_change/
POST /v1/auctions/{auction_id}/bid/
POST /v1/auctions/{auction_id}/relist-auction/
POST /v1/auth/email_exists/
POST /v1/auth/forgot-password/
POST /v1/auth/onboarding-register/
POST /v1/auth/register/
POST /v1/auth/reset-password/
POST /v1/auth/token/
POST /v1/auth/token/body-refresh/
POST /v1/auth/token/refresh/
POST /v1/auth/verify_email/{token}
POST /v1/bannerbear-webhook/
POST /v1/batch/listings/import/
POST /v1/batch/listings/populate/
POST /v1/batch/loma_listings/import/
POST /v1/cart/add/{marketplace_id}/{variant_id}/
POST /v1/categories/{category_id}/checkout_session/
POST /v1/create_marketplace_from_social_username/
POST /v1/generate_listings_step/
POST /v1/generate_marketplace_data/
POST /v1/generate_presigned_url/
POST /v1/generate_social_data/
POST /v1/get_import_log_results/
POST /v1/leads/{lead_id}/{marketplace_id}/follow_up/
POST /v1/listings/create/
POST /v1/listings/{listing_id}/mark_as_broken/
POST /v1/listings/{listing_id}/{marketplace_id}/get_checkout_session_status/
POST /v1/listings/{listing_id}/{marketplace_id}/send_registration_email/
POST /v1/mailing_list/{marketplace_id}/signup/
POST /v1/marketplaces/{marketplace_id}/generate_ticket/
POST /v1/marketplaces/{marketplace_id}/send_magic_link/
POST /v1/marketplaces/{marketplace_id}/validate_referral_code/
POST /v1/orders/create/
POST /v1/payments/create_payment_intent/{cart_id}/
POST /v1/payments/stripe_webhook/
POST /v1/payments/update_payment_intent/{cart_id}/
POST /v1/quick_launch/monetization_options/
POST /v1/refresh_image_links/{listing_id}/
POST /v1/restart-worker/
POST /v1/rye/shipping/{cart_id}/
POST /v1/rye/webhook/
POST /v1/send-verification-code/
POST /v1/shareautomation/ayrshare/webhook/
POST /v1/shareautomation/promo_automation/webhook/
POST /v1/shipping/rates/
POST /v1/shipping/shippo_webhook/
POST /v1/shippo/address/validate/
POST /v1/sso/ticket-hostname/
POST /v1/sso/token/social/
POST /v1/sso/validate-ticket/
POST /v1/stripe/{marketplace_id}/account_session/
POST /v1/stripe/{marketplace_id}/settings/
POST /v1/submit_lead/
POST /v1/testing/reset-marketplace-to-preview/
POST /v1/users/{user_id}/roles/{id}/checkout_session/
POST /v1/validate_referral_code/
POST /v1/verify-email-by-token/
POST /v1/verify-email/
POST /v1/webhooks/sendgrid/inbound/
PUT /v1/cart/modify/{marketplace_id}/{variant_id}/
PUT /v1/listings/{id}/{marketplace_id}/update/
PUT /v1/listings/{id}/{marketplace_id}/update_category/
PUT /v1/listings/{listing_id}/{marketplace_id}/admin_set_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_sold_price/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/{listing_status}/{sub_status}/
PUT /v1/orders/update-fulfillment/

Found on 2025-12-30 12:56

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4f4136d44735ebdeac957fa908ecbbd17266a6be5

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /v1/auth/user-destroy/
DELETE /v1/cart/remove/{marketplace_id}/{variant_id}/
DELETE /v1/listings/{id}/delete/
GET /dj-rest-auth/logout/
GET /v1/active_category_ids/
GET /v1/active_marketplace_listing_ids/{marketplace_id}/
GET /v1/active_marketplace_listing_slugs/{marketplace_id}/
GET /v1/active_marketplace_page_slugs/{marketplace_id}/
GET /v1/active_marketplace_pages/
GET /v1/active_top_level_category_ids/
GET /v1/attributes/{attribute_id}/
GET /v1/auctions/{auction_id}/bids/
GET /v1/auctions/{auction_id}/max_bid/
GET /v1/auth/access-token/
GET /v1/cart/{marketplace_id}/
GET /v1/categories/{category_id}/parent_list/
GET /v1/categories/{category_id}/permissions/roles/
GET /v1/categories/{id}/
GET /v1/categories/{id}/admin/
GET /v1/categories/{id}/attributes/
GET /v1/category_with_listings/{id}/
GET /v1/checkout/{marketplace_id}/
GET /v1/checkout_session/{marketplace_id}/{session_id}/
GET /v1/fulfillment-types/{marketplace_id}/
GET /v1/generate_listing_promo_preview_image/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/generate_marketplace_preview_image/{preview_type}/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/get_marketplace_preview_data/{marketplace_preview_data_id}/
GET /v1/link_in_bio_marketplaces/
GET /v1/listings/category/{id}/
GET /v1/listings/map/{id}/
GET /v1/listings/promo_media/{object_id}/
GET /v1/listings/{id}/
GET /v1/marketplace_account_attributes/{marketplace_id}/
GET /v1/marketplace_pages/{hostname}/{slug}/
GET /v1/marketplaces/categories/{marketplace_role_id}/
GET /v1/marketplaces/hostnames/
GET /v1/marketplaces/link_in_bio/{hostname}/
GET /v1/marketplaces/roles/{marketplace_role_id}/
GET /v1/marketplaces/{hostname}/
GET /v1/marketplaces/{hostname}/categories/
GET /v1/marketplaces/{hostname}/hostname/
GET /v1/marketplaces/{hostname}/link_in_bio/
GET /v1/marketplaces/{marketplace_id}/categories/
GET /v1/marketplaces/{marketplace_id}/categories/{category_id}/
GET /v1/marketplaces/{marketplace_id}/category_selector/
GET /v1/marketplaces/{marketplace_id}/domain/
GET /v1/marketplaces/{marketplace_id}/info/
GET /v1/marketplaces/{marketplace_id}/pages/slug/{slug}/
GET /v1/marketplaces/{marketplace_id}/roles/
GET /v1/marketplaces/{marketplace_id}/status/
GET /v1/marketplaces/{marketplace_id}/theme/
GET /v1/marketplaces/{marketplace_id}/top_level_categories/
GET /v1/marketplaces/{marketplace_id}/user/roles/
GET /v1/orders/{marketplace_id}/{id}/
GET /v1/roles/global/
GET /v1/stripe/code/{hostname}/{code}/
GET /v1/stripe/{marketplace_id}/account/
POST /dj-rest-auth/login/
POST /dj-rest-auth/password/reset/
POST /dj-rest-auth/password/reset/confirm/
POST /dj-rest-auth/token/refresh/
POST /dj-rest-auth/token/verify/
POST /v1/ai_run/
POST /v1/ai_status_change/
POST /v1/auctions/{auction_id}/bid/
POST /v1/auctions/{auction_id}/relist-auction/
POST /v1/auth/email_exists/
POST /v1/auth/forgot-password/
POST /v1/auth/onboarding-register/
POST /v1/auth/register/
POST /v1/auth/reset-password/
POST /v1/auth/token/
POST /v1/auth/token/body-refresh/
POST /v1/auth/token/refresh/
POST /v1/auth/verify_email/{token}
POST /v1/bannerbear-webhook/
POST /v1/batch/listings/import/
POST /v1/batch/listings/populate/
POST /v1/batch/loma_listings/import/
POST /v1/cart/add/{marketplace_id}/{variant_id}/
POST /v1/categories/{category_id}/checkout_session/
POST /v1/create_marketplace_from_social_username/
POST /v1/generate_listings_step/
POST /v1/generate_marketplace_data/
POST /v1/generate_presigned_url/
POST /v1/generate_social_data/
POST /v1/get_import_log_results/
POST /v1/leads/{lead_id}/{marketplace_id}/follow_up/
POST /v1/listings/create/
POST /v1/listings/{listing_id}/mark_as_broken/
POST /v1/listings/{listing_id}/{marketplace_id}/get_checkout_session_status/
POST /v1/listings/{listing_id}/{marketplace_id}/send_registration_email/
POST /v1/mailing_list/{marketplace_id}/signup/
POST /v1/marketplaces/{marketplace_id}/generate_ticket/
POST /v1/marketplaces/{marketplace_id}/send_magic_link/
POST /v1/marketplaces/{marketplace_id}/validate_referral_code/
POST /v1/orders/create/
POST /v1/payments/create_payment_intent/{cart_id}/
POST /v1/payments/stripe_webhook/
POST /v1/payments/update_payment_intent/{cart_id}/
POST /v1/quick_launch/monetization_options/
POST /v1/refresh_image_links/{listing_id}/
POST /v1/restart-worker/
POST /v1/rye/shipping/{cart_id}/
POST /v1/rye/webhook/
POST /v1/send-verification-code/
POST /v1/shareautomation/ayrshare/webhook/
POST /v1/shareautomation/promo_automation/webhook/
POST /v1/shipping/rates/
POST /v1/shipping/shippo_webhook/
POST /v1/shippo/address/validate/
POST /v1/sso/ticket-hostname/
POST /v1/sso/token/social/
POST /v1/sso/validate-ticket/
POST /v1/stripe/{marketplace_id}/account_session/
POST /v1/stripe/{marketplace_id}/settings/
POST /v1/submit_lead/
POST /v1/testing/reset-marketplace-to-preview/
POST /v1/users/{user_id}/roles/{id}/checkout_session/
POST /v1/validate_referral_code/
POST /v1/verify-email-by-token/
POST /v1/verify-email/
POST /v1/webhooks/sendgrid/inbound/
PUT /v1/cart/modify/{marketplace_id}/{variant_id}/
PUT /v1/listings/{id}/{marketplace_id}/update/
PUT /v1/listings/{id}/{marketplace_id}/update_category/
PUT /v1/listings/{listing_id}/{marketplace_id}/admin_set_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_sold_price/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/{listing_status}/{sub_status}/
PUT /v1/orders/update-fulfillment/

Found on 2025-12-22 10:55

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4f4136d44735ebdeac957fa908ecbbd17f036fa20

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /v1/auth/user-destroy/
DELETE /v1/cart/remove/{marketplace_id}/{variant_id}/
DELETE /v1/listings/{id}/delete/
GET /dj-rest-auth/logout/
GET /v1/active_category_ids/
GET /v1/active_marketplace_listing_ids/{marketplace_id}/
GET /v1/active_marketplace_listing_slugs/{marketplace_id}/
GET /v1/active_marketplace_page_slugs/{marketplace_id}/
GET /v1/active_marketplace_pages/
GET /v1/active_top_level_category_ids/
GET /v1/attributes/{attribute_id}/
GET /v1/auctions/{auction_id}/bids/
GET /v1/auctions/{auction_id}/max_bid/
GET /v1/auth/access-token/
GET /v1/cart/{marketplace_id}/
GET /v1/categories/{category_id}/parent_list/
GET /v1/categories/{category_id}/permissions/roles/
GET /v1/categories/{id}/
GET /v1/categories/{id}/admin/
GET /v1/categories/{id}/attributes/
GET /v1/category_with_listings/{id}/
GET /v1/checkout/{marketplace_id}/
GET /v1/checkout_session/{marketplace_id}/{session_id}/
GET /v1/fulfillment-types/{marketplace_id}/
GET /v1/generate_listing_promo_preview_image/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/generate_marketplace_preview_image/{preview_type}/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/get_marketplace_preview_data/{marketplace_preview_data_id}/
GET /v1/link_in_bio_marketplaces/
GET /v1/listings/category/{id}/
GET /v1/listings/map/{id}/
GET /v1/listings/promo_media/{object_id}/
GET /v1/listings/{id}/
GET /v1/marketplace_account_attributes/{marketplace_id}/
GET /v1/marketplace_pages/{hostname}/{slug}/
GET /v1/marketplaces/categories/{marketplace_role_id}/
GET /v1/marketplaces/hostnames/
GET /v1/marketplaces/link_in_bio/{hostname}/
GET /v1/marketplaces/roles/{marketplace_role_id}/
GET /v1/marketplaces/{hostname}/
GET /v1/marketplaces/{hostname}/categories/
GET /v1/marketplaces/{hostname}/hostname/
GET /v1/marketplaces/{hostname}/link_in_bio/
GET /v1/marketplaces/{marketplace_id}/categories/
GET /v1/marketplaces/{marketplace_id}/categories/{category_id}/
GET /v1/marketplaces/{marketplace_id}/category_selector/
GET /v1/marketplaces/{marketplace_id}/domain/
GET /v1/marketplaces/{marketplace_id}/info/
GET /v1/marketplaces/{marketplace_id}/pages/slug/{slug}/
GET /v1/marketplaces/{marketplace_id}/roles/
GET /v1/marketplaces/{marketplace_id}/status/
GET /v1/marketplaces/{marketplace_id}/theme/
GET /v1/marketplaces/{marketplace_id}/top_level_categories/
GET /v1/marketplaces/{marketplace_id}/user/roles/
GET /v1/orders/{marketplace_id}/{id}/
GET /v1/roles/global/
GET /v1/stripe/code/{hostname}/{code}/
GET /v1/stripe/{marketplace_id}/account/
POST /dj-rest-auth/login/
POST /dj-rest-auth/password/reset/
POST /dj-rest-auth/password/reset/confirm/
POST /dj-rest-auth/token/refresh/
POST /dj-rest-auth/token/verify/
POST /v1/ai_run/
POST /v1/ai_status_change/
POST /v1/auctions/{auction_id}/bid/
POST /v1/auctions/{auction_id}/relist-auction/
POST /v1/auth/email_exists/
POST /v1/auth/forgot-password/
POST /v1/auth/onboarding-register/
POST /v1/auth/register/
POST /v1/auth/reset-password/
POST /v1/auth/token/
POST /v1/auth/token/body-refresh/
POST /v1/auth/token/refresh/
POST /v1/auth/verify_email/{token}
POST /v1/bannerbear-webhook/
POST /v1/batch/listings/import/
POST /v1/batch/listings/populate/
POST /v1/batch/loma_listings/import/
POST /v1/cart/add/{marketplace_id}/{variant_id}/
POST /v1/categories/{category_id}/checkout_session/
POST /v1/create_marketplace_from_social_username/
POST /v1/generate_listings_step/
POST /v1/generate_marketplace_data/
POST /v1/generate_presigned_url/
POST /v1/generate_social_data/
POST /v1/get_import_log_results/
POST /v1/leads/{lead_id}/{marketplace_id}/follow_up/
POST /v1/listings/create/
POST /v1/listings/{listing_id}/mark_as_broken/
POST /v1/listings/{listing_id}/{marketplace_id}/get_checkout_session_status/
POST /v1/listings/{listing_id}/{marketplace_id}/send_registration_email/
POST /v1/mailing_list/{marketplace_id}/signup/
POST /v1/marketplaces/{marketplace_id}/generate_ticket/
POST /v1/marketplaces/{marketplace_id}/send_magic_link/
POST /v1/orders/create/
POST /v1/payments/create_payment_intent/{cart_id}/
POST /v1/payments/stripe_webhook/
POST /v1/payments/update_payment_intent/{cart_id}/
POST /v1/quick_launch/monetization_options/
POST /v1/refresh_image_links/{listing_id}/
POST /v1/restart-worker/
POST /v1/rye/shipping/{cart_id}/
POST /v1/rye/webhook/
POST /v1/send-verification-code/
POST /v1/shareautomation/ayrshare/webhook/
POST /v1/shareautomation/promo_automation/webhook/
POST /v1/shipping/rates/
POST /v1/shipping/shippo_webhook/
POST /v1/shippo/address/validate/
POST /v1/sso/ticket-hostname/
POST /v1/sso/token/social/
POST /v1/sso/validate-ticket/
POST /v1/stripe/{marketplace_id}/account_session/
POST /v1/stripe/{marketplace_id}/settings/
POST /v1/submit_lead/
POST /v1/testing/reset-marketplace-to-preview/
POST /v1/users/{user_id}/roles/{id}/checkout_session/
POST /v1/validate_referral_code/
POST /v1/verify-email-by-token/
POST /v1/verify-email/
POST /v1/webhooks/sendgrid/inbound/
PUT /v1/cart/modify/{marketplace_id}/{variant_id}/
PUT /v1/listings/{id}/{marketplace_id}/update/
PUT /v1/listings/{id}/{marketplace_id}/update_category/
PUT /v1/listings/{listing_id}/{marketplace_id}/admin_set_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_sold_price/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/{listing_status}/{sub_status}/
PUT /v1/orders/update-fulfillment/

Found on 2025-12-17 03:19

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4f4136d44735ebdeac957fa908ecbbd174b94f088

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /v1/auth/user-destroy/
DELETE /v1/cart/remove/{marketplace_id}/{variant_id}/
DELETE /v1/listings/{id}/delete/
GET /dj-rest-auth/logout/
GET /v1/active_category_ids/
GET /v1/active_marketplace_listing_ids/{marketplace_id}/
GET /v1/active_marketplace_listing_slugs/{marketplace_id}/
GET /v1/active_marketplace_page_slugs/{marketplace_id}/
GET /v1/active_marketplace_pages/
GET /v1/active_top_level_category_ids/
GET /v1/attributes/{attribute_id}/
GET /v1/auctions/{auction_id}/bids/
GET /v1/auctions/{auction_id}/max_bid/
GET /v1/auth/access-token/
GET /v1/cart/{marketplace_id}/
GET /v1/categories/{category_id}/parent_list/
GET /v1/categories/{category_id}/permissions/roles/
GET /v1/categories/{id}/
GET /v1/categories/{id}/admin/
GET /v1/categories/{id}/attributes/
GET /v1/category_with_listings/{id}/
GET /v1/checkout/{marketplace_id}/
GET /v1/checkout_session/{marketplace_id}/{session_id}/
GET /v1/fulfillment-types/{marketplace_id}/
GET /v1/generate_listing_promo_preview_image/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/generate_marketplace_preview_image/{preview_type}/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/get_marketplace_preview_data/{marketplace_preview_data_id}/
GET /v1/link_in_bio_marketplaces/
GET /v1/listings/category/{id}/
GET /v1/listings/map/{id}/
GET /v1/listings/promo_media/{object_id}/
GET /v1/listings/{id}/
GET /v1/marketplace_account_attributes/{marketplace_id}/
GET /v1/marketplace_pages/{hostname}/{slug}/
GET /v1/marketplaces/categories/{marketplace_role_id}/
GET /v1/marketplaces/hostnames/
GET /v1/marketplaces/link_in_bio/{hostname}/
GET /v1/marketplaces/roles/{marketplace_role_id}/
GET /v1/marketplaces/{hostname}/
GET /v1/marketplaces/{hostname}/categories/
GET /v1/marketplaces/{hostname}/hostname/
GET /v1/marketplaces/{hostname}/link_in_bio/
GET /v1/marketplaces/{marketplace_id}/categories/
GET /v1/marketplaces/{marketplace_id}/categories/{category_id}/
GET /v1/marketplaces/{marketplace_id}/category_selector/
GET /v1/marketplaces/{marketplace_id}/domain/
GET /v1/marketplaces/{marketplace_id}/info/
GET /v1/marketplaces/{marketplace_id}/pages/slug/{slug}/
GET /v1/marketplaces/{marketplace_id}/roles/
GET /v1/marketplaces/{marketplace_id}/status/
GET /v1/marketplaces/{marketplace_id}/theme/
GET /v1/marketplaces/{marketplace_id}/top_level_categories/
GET /v1/marketplaces/{marketplace_id}/user/roles/
GET /v1/orders/{marketplace_id}/{id}/
GET /v1/roles/global/
GET /v1/stripe/code/{hostname}/{code}/
GET /v1/stripe/{marketplace_id}/account/
POST /dj-rest-auth/login/
POST /dj-rest-auth/password/reset/
POST /dj-rest-auth/password/reset/confirm/
POST /dj-rest-auth/token/refresh/
POST /dj-rest-auth/token/verify/
POST /v1/ai_run/
POST /v1/ai_status_change/
POST /v1/auctions/{auction_id}/bid/
POST /v1/auctions/{auction_id}/relist-auction/
POST /v1/auth/email_exists/
POST /v1/auth/forgot-password/
POST /v1/auth/onboarding-register/
POST /v1/auth/register/
POST /v1/auth/reset-password/
POST /v1/auth/token/
POST /v1/auth/token/body-refresh/
POST /v1/auth/token/refresh/
POST /v1/auth/verify_email/{token}
POST /v1/bannerbear-webhook/
POST /v1/batch/listings/import/
POST /v1/batch/listings/populate/
POST /v1/batch/loma_listings/import/
POST /v1/cart/add/{marketplace_id}/{variant_id}/
POST /v1/categories/{category_id}/checkout_session/
POST /v1/create_marketplace_from_social_username/
POST /v1/generate_listings_step/
POST /v1/generate_marketplace_data/
POST /v1/generate_presigned_url/
POST /v1/generate_social_data/
POST /v1/get_import_log_results/
POST /v1/leads/{lead_id}/{marketplace_id}/follow_up/
POST /v1/listings/create/
POST /v1/listings/{listing_id}/mark_as_broken/
POST /v1/listings/{listing_id}/{marketplace_id}/get_checkout_session_status/
POST /v1/listings/{listing_id}/{marketplace_id}/send_registration_email/
POST /v1/mailing_list/{marketplace_id}/signup/
POST /v1/marketplaces/{marketplace_id}/generate_ticket/
POST /v1/marketplaces/{marketplace_id}/send_magic_link/
POST /v1/orders/create/
POST /v1/payments/create_payment_intent/{cart_id}/
POST /v1/payments/stripe_webhook/
POST /v1/payments/update_payment_intent/{cart_id}/
POST /v1/quick_launch/monetization_options/
POST /v1/refresh_image_links/{listing_id}/
POST /v1/rye/shipping/{cart_id}/
POST /v1/rye/webhook/
POST /v1/send-verification-code/
POST /v1/shareautomation/ayrshare/webhook/
POST /v1/shareautomation/promo_automation/webhook/
POST /v1/shipping/rates/
POST /v1/shipping/shippo_webhook/
POST /v1/shippo/address/validate/
POST /v1/sso/ticket-hostname/
POST /v1/sso/token/social/
POST /v1/sso/validate-ticket/
POST /v1/stripe/{marketplace_id}/account_session/
POST /v1/stripe/{marketplace_id}/settings/
POST /v1/submit_lead/
POST /v1/testing/reset-marketplace-to-preview/
POST /v1/users/{user_id}/roles/{id}/checkout_session/
POST /v1/validate_referral_code/
POST /v1/verify-email-by-token/
POST /v1/verify-email/
POST /v1/webhooks/sendgrid/inbound/
PUT /v1/cart/modify/{marketplace_id}/{variant_id}/
PUT /v1/listings/{id}/{marketplace_id}/update/
PUT /v1/listings/{id}/{marketplace_id}/update_category/
PUT /v1/listings/{listing_id}/{marketplace_id}/admin_set_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_sold_price/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/{listing_status}/{sub_status}/
PUT /v1/orders/update-fulfillment/

Found on 2025-12-14 13:31

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4f4136d44735ebdeac957fa908ecbbd17b7f1418a

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /v1/auth/user-destroy/
DELETE /v1/cart/remove/{marketplace_id}/{variant_id}/
DELETE /v1/listings/{id}/delete/
GET /dj-rest-auth/logout/
GET /v1/active_category_ids/
GET /v1/active_marketplace_listing_ids/{marketplace_id}/
GET /v1/active_marketplace_listing_slugs/{marketplace_id}/
GET /v1/active_marketplace_page_slugs/{marketplace_id}/
GET /v1/active_marketplace_pages/
GET /v1/active_top_level_category_ids/
GET /v1/attributes/{attribute_id}/
GET /v1/auctions/{auction_id}/bids/
GET /v1/auctions/{auction_id}/max_bid/
GET /v1/auth/access-token/
GET /v1/cart/{marketplace_id}/
GET /v1/categories/{category_id}/parent_list/
GET /v1/categories/{category_id}/permissions/roles/
GET /v1/categories/{id}/
GET /v1/categories/{id}/admin/
GET /v1/categories/{id}/attributes/
GET /v1/category_with_listings/{id}/
GET /v1/checkout/{marketplace_id}/
GET /v1/checkout_session/{marketplace_id}/{session_id}/
GET /v1/fulfillment-types/{marketplace_id}/
GET /v1/generate_listing_promo_preview_image/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/generate_marketplace_preview_image/{preview_type}/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/get_marketplace_preview_data/{marketplace_preview_data_id}/
GET /v1/link_in_bio_marketplaces/
GET /v1/listings/category/{id}/
GET /v1/listings/map/{id}/
GET /v1/listings/promo_media/{object_id}/
GET /v1/listings/{id}/
GET /v1/marketplace_account_attributes/{marketplace_id}/
GET /v1/marketplace_pages/{hostname}/{slug}/
GET /v1/marketplaces/categories/{marketplace_role_id}/
GET /v1/marketplaces/hostnames/
GET /v1/marketplaces/link_in_bio/{hostname}/
GET /v1/marketplaces/roles/{marketplace_role_id}/
GET /v1/marketplaces/{hostname}/
GET /v1/marketplaces/{hostname}/categories/
GET /v1/marketplaces/{hostname}/hostname/
GET /v1/marketplaces/{hostname}/link_in_bio/
GET /v1/marketplaces/{marketplace_id}/categories/
GET /v1/marketplaces/{marketplace_id}/categories/{category_id}/
GET /v1/marketplaces/{marketplace_id}/category_selector/
GET /v1/marketplaces/{marketplace_id}/domain/
GET /v1/marketplaces/{marketplace_id}/info/
GET /v1/marketplaces/{marketplace_id}/pages/slug/{slug}/
GET /v1/marketplaces/{marketplace_id}/roles/
GET /v1/marketplaces/{marketplace_id}/status/
GET /v1/marketplaces/{marketplace_id}/theme/
GET /v1/marketplaces/{marketplace_id}/top_level_categories/
GET /v1/marketplaces/{marketplace_id}/user/roles/
GET /v1/orders/{marketplace_id}/{id}/
GET /v1/roles/global/
GET /v1/stripe/code/{hostname}/{code}/
GET /v1/stripe/{marketplace_id}/account/
POST /dj-rest-auth/login/
POST /dj-rest-auth/password/reset/
POST /dj-rest-auth/password/reset/confirm/
POST /dj-rest-auth/token/refresh/
POST /dj-rest-auth/token/verify/
POST /v1/ai_run/
POST /v1/ai_status_change/
POST /v1/auctions/{auction_id}/bid/
POST /v1/auctions/{auction_id}/relist-auction/
POST /v1/auth/email_exists/
POST /v1/auth/forgot-password/
POST /v1/auth/onboarding-register/
POST /v1/auth/register/
POST /v1/auth/reset-password/
POST /v1/auth/token/
POST /v1/auth/token/body-refresh/
POST /v1/auth/token/refresh/
POST /v1/auth/verify_email/{token}
POST /v1/bannerbear-webhook/
POST /v1/batch/listings/import/
POST /v1/batch/listings/populate/
POST /v1/batch/loma_listings/import/
POST /v1/cart/add/{marketplace_id}/{variant_id}/
POST /v1/categories/{category_id}/checkout_session/
POST /v1/create_marketplace_from_social_username/
POST /v1/generate_listings_step/
POST /v1/generate_marketplace_data/
POST /v1/generate_presigned_url/
POST /v1/generate_social_data/
POST /v1/get_import_log_results/
POST /v1/leads/{lead_id}/{marketplace_id}/follow_up/
POST /v1/listings/create/
POST /v1/listings/{listing_id}/mark_as_broken/
POST /v1/listings/{listing_id}/{marketplace_id}/get_checkout_session_status/
POST /v1/listings/{listing_id}/{marketplace_id}/send_registration_email/
POST /v1/mailing_list/{marketplace_id}/signup/
POST /v1/marketplaces/{marketplace_id}/generate_ticket/
POST /v1/marketplaces/{marketplace_id}/send_magic_link/
POST /v1/orders/create/
POST /v1/payments/create_payment_intent/{cart_id}/
POST /v1/payments/stripe_webhook/
POST /v1/payments/update_payment_intent/{cart_id}/
POST /v1/quick_launch/monetization_options/
POST /v1/refresh_image_links/{listing_id}/
POST /v1/send-verification-code/
POST /v1/shareautomation/ayrshare/webhook/
POST /v1/shareautomation/promo_automation/webhook/
POST /v1/shipping/rates/
POST /v1/shipping/shippo_webhook/
POST /v1/shippo/address/validate/
POST /v1/sso/ticket-hostname/
POST /v1/sso/token/social/
POST /v1/sso/validate-ticket/
POST /v1/stripe/{marketplace_id}/account_session/
POST /v1/stripe/{marketplace_id}/settings/
POST /v1/submit_lead/
POST /v1/testing/reset-marketplace-to-preview/
POST /v1/users/{user_id}/roles/{id}/checkout_session/
POST /v1/validate_referral_code/
POST /v1/verify-email-by-token/
POST /v1/verify-email/
POST /v1/webhooks/sendgrid/inbound/
PUT /v1/cart/modify/{marketplace_id}/{variant_id}/
PUT /v1/listings/{id}/{marketplace_id}/update/
PUT /v1/listings/{id}/{marketplace_id}/update_category/
PUT /v1/listings/{listing_id}/{marketplace_id}/admin_set_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_sold_price/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/{listing_status}/{sub_status}/
PUT /v1/orders/update-fulfillment/

Found on 2025-12-07 07:07

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4f4136d44735ebdeac957fa908ecbbd171cd06015

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /v1/auth/user-destroy/
DELETE /v1/cart/remove/{marketplace_id}/{variant_id}/
DELETE /v1/listings/{id}/delete/
GET /dj-rest-auth/logout/
GET /v1/active_category_ids/
GET /v1/active_marketplace_listing_ids/{marketplace_id}/
GET /v1/active_marketplace_listing_slugs/{marketplace_id}/
GET /v1/active_marketplace_page_slugs/{marketplace_id}/
GET /v1/active_marketplace_pages/
GET /v1/active_top_level_category_ids/
GET /v1/attributes/{attribute_id}/
GET /v1/auctions/{auction_id}/bids/
GET /v1/auctions/{auction_id}/max_bid/
GET /v1/auth/access-token/
GET /v1/cart/{marketplace_id}/
GET /v1/categories/{category_id}/parent_list/
GET /v1/categories/{category_id}/permissions/roles/
GET /v1/categories/{id}/
GET /v1/categories/{id}/admin/
GET /v1/categories/{id}/attributes/
GET /v1/category_with_listings/{id}/
GET /v1/checkout/{marketplace_id}/
GET /v1/checkout_session/{marketplace_id}/{session_id}/
GET /v1/fulfillment-types/{marketplace_id}/
GET /v1/generate_listing_promo_preview_image/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/generate_marketplace_preview_image/{preview_type}/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/get_marketplace_preview_data/{marketplace_preview_data_id}/
GET /v1/link_in_bio_marketplaces/
GET /v1/listings/category/{id}/
GET /v1/listings/map/{id}/
GET /v1/listings/promo_media/{object_id}/
GET /v1/listings/{id}/
GET /v1/marketplace_account_attributes/{marketplace_id}/
GET /v1/marketplace_pages/{hostname}/{slug}/
GET /v1/marketplaces/categories/{marketplace_role_id}/
GET /v1/marketplaces/hostnames/
GET /v1/marketplaces/link_in_bio/{hostname}/
GET /v1/marketplaces/roles/{marketplace_role_id}/
GET /v1/marketplaces/{hostname}/
GET /v1/marketplaces/{hostname}/categories/
GET /v1/marketplaces/{hostname}/hostname/
GET /v1/marketplaces/{hostname}/link_in_bio/
GET /v1/marketplaces/{marketplace_id}/categories/
GET /v1/marketplaces/{marketplace_id}/categories/{category_id}/
GET /v1/marketplaces/{marketplace_id}/domain/
GET /v1/marketplaces/{marketplace_id}/info/
GET /v1/marketplaces/{marketplace_id}/pages/slug/{slug}/
GET /v1/marketplaces/{marketplace_id}/roles/
GET /v1/marketplaces/{marketplace_id}/status/
GET /v1/marketplaces/{marketplace_id}/theme/
GET /v1/marketplaces/{marketplace_id}/top_level_categories/
GET /v1/marketplaces/{marketplace_id}/user/roles/
GET /v1/orders/{marketplace_id}/{id}/
GET /v1/roles/global/
GET /v1/stripe/code/{hostname}/{code}/
GET /v1/stripe/{marketplace_id}/account/
POST /dj-rest-auth/login/
POST /dj-rest-auth/password/reset/
POST /dj-rest-auth/password/reset/confirm/
POST /dj-rest-auth/token/refresh/
POST /dj-rest-auth/token/verify/
POST /v1/ai_run/
POST /v1/ai_status_change/
POST /v1/auctions/{auction_id}/bid/
POST /v1/auctions/{auction_id}/relist-auction/
POST /v1/auth/email_exists/
POST /v1/auth/forgot-password/
POST /v1/auth/onboarding-register/
POST /v1/auth/register/
POST /v1/auth/reset-password/
POST /v1/auth/token/
POST /v1/auth/token/body-refresh/
POST /v1/auth/token/refresh/
POST /v1/auth/verify_email/{token}
POST /v1/bannerbear-webhook/
POST /v1/batch/listings/import/
POST /v1/batch/listings/populate/
POST /v1/batch/loma_listings/import/
POST /v1/cart/add/{marketplace_id}/{variant_id}/
POST /v1/categories/{category_id}/checkout_session/
POST /v1/create_marketplace_from_social_username/
POST /v1/generate_listings_step/
POST /v1/generate_marketplace_data/
POST /v1/generate_presigned_url/
POST /v1/generate_social_data/
POST /v1/get_import_log_results/
POST /v1/leads/{lead_id}/{marketplace_id}/follow_up/
POST /v1/listings/create/
POST /v1/listings/{listing_id}/mark_as_broken/
POST /v1/listings/{listing_id}/{marketplace_id}/get_checkout_session_status/
POST /v1/listings/{listing_id}/{marketplace_id}/send_registration_email/
POST /v1/mailing_list/{marketplace_id}/signup/
POST /v1/marketplaces/{marketplace_id}/generate_ticket/
POST /v1/marketplaces/{marketplace_id}/send_magic_link/
POST /v1/orders/create/
POST /v1/payments/create_payment_intent/{cart_id}/
POST /v1/payments/stripe_webhook/
POST /v1/payments/update_payment_intent/{cart_id}/
POST /v1/quick_launch/monetization_options/
POST /v1/refresh_image_links/{listing_id}/
POST /v1/send-verification-code/
POST /v1/shareautomation/ayrshare/webhook/
POST /v1/shareautomation/promo_automation/webhook/
POST /v1/shipping/rates/
POST /v1/shipping/shippo_webhook/
POST /v1/shippo/address/validate/
POST /v1/sso/ticket-hostname/
POST /v1/sso/token/social/
POST /v1/sso/validate-ticket/
POST /v1/stripe/{marketplace_id}/account_session/
POST /v1/stripe/{marketplace_id}/settings/
POST /v1/submit_lead/
POST /v1/testing/reset-marketplace-to-preview/
POST /v1/users/{user_id}/roles/{id}/checkout_session/
POST /v1/validate_referral_code/
POST /v1/verify-email-by-token/
POST /v1/verify-email/
POST /v1/webhooks/sendgrid/inbound/
PUT /v1/cart/modify/{marketplace_id}/{variant_id}/
PUT /v1/listings/{id}/{marketplace_id}/update/
PUT /v1/listings/{id}/{marketplace_id}/update_category/
PUT /v1/listings/{listing_id}/{marketplace_id}/admin_set_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_sold_price/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/{listing_status}/{sub_status}/
PUT /v1/orders/update-fulfillment/

Found on 2025-12-02 00:12

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4f4136d44735ebdeac957fa908ecbbd1706b09f0f

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /v1/auth/user-destroy/
DELETE /v1/cart/remove/{marketplace_id}/{variant_id}/
DELETE /v1/listings/{id}/delete/
GET /dj-rest-auth/logout/
GET /v1/active_category_ids/
GET /v1/active_marketplace_listing_ids/{marketplace_id}/
GET /v1/active_marketplace_listing_slugs/{marketplace_id}/
GET /v1/active_marketplace_page_slugs/{marketplace_id}/
GET /v1/active_marketplace_pages/
GET /v1/active_top_level_category_ids/
GET /v1/attributes/{attribute_id}/
GET /v1/auctions/{auction_id}/bids/
GET /v1/auctions/{auction_id}/max_bid/
GET /v1/auth/access-token/
GET /v1/cart/{marketplace_id}/
GET /v1/categories/{category_id}/parent_list/
GET /v1/categories/{category_id}/permissions/roles/
GET /v1/categories/{id}/
GET /v1/categories/{id}/admin/
GET /v1/categories/{id}/attributes/
GET /v1/category_with_listings/{id}/
GET /v1/checkout/{marketplace_id}/
GET /v1/checkout_session/{marketplace_id}/{session_id}/
GET /v1/fulfillment-types/{marketplace_id}/
GET /v1/generate_listing_promo_preview_image/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/generate_marketplace_preview_image/{preview_type}/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/get_marketplace_preview_data/{marketplace_preview_data_id}/
GET /v1/link_in_bio_marketplaces/
GET /v1/listings/category/{id}/
GET /v1/listings/map/{id}/
GET /v1/listings/promo_media/{object_id}/
GET /v1/listings/{id}/
GET /v1/marketplace_account_attributes/{marketplace_id}/
GET /v1/marketplace_pages/{hostname}/{slug}/
GET /v1/marketplaces/categories/{marketplace_role_id}/
GET /v1/marketplaces/hostnames/
GET /v1/marketplaces/link_in_bio/{hostname}/
GET /v1/marketplaces/roles/{marketplace_role_id}/
GET /v1/marketplaces/{hostname}/
GET /v1/marketplaces/{hostname}/categories/
GET /v1/marketplaces/{hostname}/hostname/
GET /v1/marketplaces/{hostname}/link_in_bio/
GET /v1/marketplaces/{marketplace_id}/categories/
GET /v1/marketplaces/{marketplace_id}/categories/{category_id}/
GET /v1/marketplaces/{marketplace_id}/domain/
GET /v1/marketplaces/{marketplace_id}/info/
GET /v1/marketplaces/{marketplace_id}/pages/slug/{slug}/
GET /v1/marketplaces/{marketplace_id}/roles/
GET /v1/marketplaces/{marketplace_id}/status/
GET /v1/marketplaces/{marketplace_id}/theme/
GET /v1/marketplaces/{marketplace_id}/top_level_categories/
GET /v1/marketplaces/{marketplace_id}/user/roles/
GET /v1/orders/{marketplace_id}/{id}/
GET /v1/roles/global/
GET /v1/stripe/code/{hostname}/{code}/
GET /v1/stripe/{marketplace_id}/account/
POST /dj-rest-auth/login/
POST /dj-rest-auth/password/reset/
POST /dj-rest-auth/password/reset/confirm/
POST /dj-rest-auth/token/refresh/
POST /dj-rest-auth/token/verify/
POST /v1/ai_run/
POST /v1/ai_status_change/
POST /v1/auctions/{auction_id}/bid/
POST /v1/auctions/{auction_id}/relist-auction/
POST /v1/auth/email_exists/
POST /v1/auth/forgot-password/
POST /v1/auth/onboarding-register/
POST /v1/auth/register/
POST /v1/auth/reset-password/
POST /v1/auth/token/
POST /v1/auth/token/body-refresh/
POST /v1/auth/token/refresh/
POST /v1/auth/verify_email/{token}
POST /v1/bannerbear-webhook/
POST /v1/batch/listings/import/
POST /v1/batch/listings/populate/
POST /v1/batch/loma_listings/import/
POST /v1/cart/add/{marketplace_id}/{variant_id}/
POST /v1/categories/{category_id}/checkout_session/
POST /v1/create_marketplace_from_social_username/
POST /v1/generate_listings_step/
POST /v1/generate_marketplace_data/
POST /v1/generate_presigned_url/
POST /v1/generate_social_data/
POST /v1/get_import_log_results/
POST /v1/leads/{lead_id}/{marketplace_id}/follow_up/
POST /v1/listings/create/
POST /v1/listings/{listing_id}/mark_as_broken/
POST /v1/listings/{listing_id}/{marketplace_id}/send_registration_email/
POST /v1/mailing_list/{marketplace_id}/signup/
POST /v1/marketplaces/{marketplace_id}/generate_ticket/
POST /v1/marketplaces/{marketplace_id}/send_magic_link/
POST /v1/orders/create/
POST /v1/payments/create_payment_intent/{cart_id}/
POST /v1/payments/stripe_webhook/
POST /v1/payments/update_payment_intent/{cart_id}/
POST /v1/quick_launch/monetization_options/
POST /v1/refresh_image_links/{listing_id}/
POST /v1/send-verification-code/
POST /v1/shareautomation/ayrshare/webhook/
POST /v1/shareautomation/promo_automation/webhook/
POST /v1/shipping/rates/
POST /v1/shipping/shippo_webhook/
POST /v1/shippo/address/validate/
POST /v1/sso/ticket-hostname/
POST /v1/sso/token/social/
POST /v1/sso/validate-ticket/
POST /v1/stripe/{marketplace_id}/account_session/
POST /v1/stripe/{marketplace_id}/settings/
POST /v1/submit_lead/
POST /v1/testing/reset-marketplace-to-preview/
POST /v1/users/{user_id}/roles/{id}/checkout_session/
POST /v1/validate_referral_code/
POST /v1/verify-email-by-token/
POST /v1/verify-email/
POST /v1/webhooks/sendgrid/inbound/
PUT /v1/cart/modify/{marketplace_id}/{variant_id}/
PUT /v1/listings/{id}/{marketplace_id}/update/
PUT /v1/listings/{id}/{marketplace_id}/update_category/
PUT /v1/listings/{listing_id}/{marketplace_id}/admin_set_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_sold_price/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/{listing_status}/{sub_status}/
PUT /v1/orders/update-fulfillment/

Found on 2025-12-01 17:23

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4f4136d44735ebdeac957fa908ecbbd1703f1bd65

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /v1/auth/user-destroy/
DELETE /v1/cart/remove/{marketplace_id}/{variant_id}/
DELETE /v1/listings/{id}/delete/
GET /dj-rest-auth/logout/
GET /v1/active_category_ids/
GET /v1/active_marketplace_listing_ids/{marketplace_id}/
GET /v1/active_marketplace_listing_slugs/{marketplace_id}/
GET /v1/active_marketplace_page_slugs/{marketplace_id}/
GET /v1/active_marketplace_pages/
GET /v1/active_top_level_category_ids/
GET /v1/attributes/{attribute_id}/
GET /v1/auctions/{auction_id}/bids/
GET /v1/auctions/{auction_id}/max_bid/
GET /v1/auth/access-token/
GET /v1/cart/{marketplace_id}/
GET /v1/categories/{category_id}/parent_list/
GET /v1/categories/{category_id}/permissions/roles/
GET /v1/categories/{id}/
GET /v1/categories/{id}/admin/
GET /v1/categories/{id}/attributes/
GET /v1/category_with_listings/{id}/
GET /v1/checkout/{marketplace_id}/
GET /v1/checkout_session/{marketplace_id}/{session_id}/
GET /v1/fulfillment-types/{marketplace_id}/
GET /v1/generate_listing_promo_preview_image/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/generate_marketplace_preview_image/{preview_type}/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/get_marketplace_preview_data/{marketplace_preview_data_id}/
GET /v1/link_in_bio_marketplaces/
GET /v1/listings/category/{id}/
GET /v1/listings/map/{id}/
GET /v1/listings/promo_media/{object_id}/
GET /v1/listings/{id}/
GET /v1/marketplace_account_attributes/{marketplace_id}/
GET /v1/marketplace_pages/{hostname}/{slug}/
GET /v1/marketplaces/categories/{marketplace_role_id}/
GET /v1/marketplaces/hostnames/
GET /v1/marketplaces/link_in_bio/{hostname}/
GET /v1/marketplaces/roles/{marketplace_role_id}/
GET /v1/marketplaces/{hostname}/
GET /v1/marketplaces/{hostname}/categories/
GET /v1/marketplaces/{hostname}/hostname/
GET /v1/marketplaces/{hostname}/link_in_bio/
GET /v1/marketplaces/{marketplace_id}/categories/
GET /v1/marketplaces/{marketplace_id}/categories/{category_id}/
GET /v1/marketplaces/{marketplace_id}/domain/
GET /v1/marketplaces/{marketplace_id}/info/
GET /v1/marketplaces/{marketplace_id}/pages/slug/{slug}/
GET /v1/marketplaces/{marketplace_id}/roles/
GET /v1/marketplaces/{marketplace_id}/status/
GET /v1/marketplaces/{marketplace_id}/theme/
GET /v1/marketplaces/{marketplace_id}/top_level_categories/
GET /v1/marketplaces/{marketplace_id}/user/roles/
GET /v1/orders/{marketplace_id}/{id}/
GET /v1/roles/global/
GET /v1/stripe/code/{hostname}/{code}/
GET /v1/stripe/{marketplace_id}/account/
POST /dj-rest-auth/login/
POST /dj-rest-auth/password/reset/
POST /dj-rest-auth/password/reset/confirm/
POST /dj-rest-auth/token/refresh/
POST /dj-rest-auth/token/verify/
POST /v1/ai_run/
POST /v1/ai_status_change/
POST /v1/auctions/{auction_id}/bid/
POST /v1/auctions/{auction_id}/relist-auction/
POST /v1/auth/email_exists/
POST /v1/auth/forgot-password/
POST /v1/auth/onboarding-register/
POST /v1/auth/register/
POST /v1/auth/reset-password/
POST /v1/auth/token/
POST /v1/auth/token/body-refresh/
POST /v1/auth/token/refresh/
POST /v1/auth/verify_email/{token}
POST /v1/bannerbear-webhook/
POST /v1/batch/listings/import/
POST /v1/batch/listings/populate/
POST /v1/batch/loma_listings/import/
POST /v1/cart/add/{marketplace_id}/{variant_id}/
POST /v1/categories/{category_id}/checkout_session/
POST /v1/create_marketplace_from_social_username/
POST /v1/generate_listings_step/
POST /v1/generate_marketplace_data/
POST /v1/generate_presigned_url/
POST /v1/generate_social_data/
POST /v1/get_import_log_results/
POST /v1/leads/{lead_id}/{marketplace_id}/follow_up/
POST /v1/listings/create/
POST /v1/listings/{listing_id}/mark_as_broken/
POST /v1/mailing_list/{marketplace_id}/signup/
POST /v1/marketplaces/{marketplace_id}/generate_ticket/
POST /v1/marketplaces/{marketplace_id}/send_magic_link/
POST /v1/orders/create/
POST /v1/payments/create_payment_intent/{cart_id}/
POST /v1/payments/stripe_webhook/
POST /v1/payments/update_payment_intent/{cart_id}/
POST /v1/quick_launch/monetization_options/
POST /v1/refresh_image_links/{listing_id}/
POST /v1/send-verification-code/
POST /v1/shareautomation/ayrshare/webhook/
POST /v1/shareautomation/promo_automation/webhook/
POST /v1/shipping/rates/
POST /v1/shipping/shippo_webhook/
POST /v1/shippo/address/validate/
POST /v1/sso/ticket-hostname/
POST /v1/sso/token/social/
POST /v1/sso/validate-ticket/
POST /v1/stripe/{marketplace_id}/account_session/
POST /v1/stripe/{marketplace_id}/settings/
POST /v1/submit_lead/
POST /v1/testing/reset-marketplace-to-preview/
POST /v1/users/{user_id}/roles/{id}/checkout_session/
POST /v1/validate_referral_code/
POST /v1/verify-email-by-token/
POST /v1/verify-email/
POST /v1/webhooks/sendgrid/inbound/
PUT /v1/cart/modify/{marketplace_id}/{variant_id}/
PUT /v1/listings/{id}/{marketplace_id}/update/
PUT /v1/listings/{id}/{marketplace_id}/update_category/
PUT /v1/listings/{listing_id}/{marketplace_id}/admin_set_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_sold_price/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/{listing_status}/{sub_status}/
PUT /v1/orders/update-fulfillment/

Found on 2025-11-21 13:47

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4f4136d44735ebdeac957fa908ecbbd17e37ab3f8

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /v1/auth/user-destroy/
DELETE /v1/cart/remove/{marketplace_id}/{variant_id}/
DELETE /v1/listings/{id}/delete/
GET /dj-rest-auth/logout/
GET /v1/active_category_ids/
GET /v1/active_marketplace_listing_ids/{marketplace_id}/
GET /v1/active_marketplace_listing_slugs/{marketplace_id}/
GET /v1/active_marketplace_page_slugs/{marketplace_id}/
GET /v1/active_marketplace_pages/
GET /v1/active_top_level_category_ids/
GET /v1/attributes/{attribute_id}/
GET /v1/auctions/{auction_id}/bids/
GET /v1/auctions/{auction_id}/max_bid/
GET /v1/auth/access-token/
GET /v1/cart/{marketplace_id}/
GET /v1/categories/{category_id}/parent_list/
GET /v1/categories/{category_id}/permissions/roles/
GET /v1/categories/{id}/
GET /v1/categories/{id}/admin/
GET /v1/categories/{id}/attributes/
GET /v1/category_with_listings/{id}/
GET /v1/checkout/{marketplace_id}/
GET /v1/checkout_session/{marketplace_id}/{session_id}/
GET /v1/fulfillment-types/{marketplace_id}/
GET /v1/generate_listing_promo_preview_image/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/generate_marketplace_preview_image/{preview_type}/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/get_marketplace_preview_data/{marketplace_preview_data_id}/
GET /v1/link_in_bio_marketplaces/
GET /v1/listings/category/{id}/
GET /v1/listings/map/{id}/
GET /v1/listings/promo_media/{object_id}/
GET /v1/listings/{id}/
GET /v1/marketplace_account_attributes/{marketplace_id}/
GET /v1/marketplace_pages/{hostname}/{slug}/
GET /v1/marketplaces/categories/{marketplace_role_id}/
GET /v1/marketplaces/hostnames/
GET /v1/marketplaces/link_in_bio/{hostname}/
GET /v1/marketplaces/roles/{marketplace_role_id}/
GET /v1/marketplaces/{hostname}/
GET /v1/marketplaces/{hostname}/categories/
GET /v1/marketplaces/{hostname}/hostname/
GET /v1/marketplaces/{hostname}/link_in_bio/
GET /v1/marketplaces/{marketplace_id}/categories/
GET /v1/marketplaces/{marketplace_id}/categories/{category_id}/
GET /v1/marketplaces/{marketplace_id}/domain/
GET /v1/marketplaces/{marketplace_id}/info/
GET /v1/marketplaces/{marketplace_id}/pages/slug/{slug}/
GET /v1/marketplaces/{marketplace_id}/roles/
GET /v1/marketplaces/{marketplace_id}/status/
GET /v1/marketplaces/{marketplace_id}/theme/
GET /v1/marketplaces/{marketplace_id}/top_level_categories/
GET /v1/marketplaces/{marketplace_id}/user/roles/
GET /v1/orders/{marketplace_id}/{id}/
GET /v1/roles/global/
GET /v1/stripe/code/{hostname}/{code}/
GET /v1/stripe/{marketplace_id}/account/
POST /dj-rest-auth/login/
POST /dj-rest-auth/password/reset/
POST /dj-rest-auth/password/reset/confirm/
POST /dj-rest-auth/token/refresh/
POST /dj-rest-auth/token/verify/
POST /v1/ai_run/
POST /v1/ai_status_change/
POST /v1/auctions/{auction_id}/bid/
POST /v1/auctions/{auction_id}/relist-auction/
POST /v1/auth/email_exists/
POST /v1/auth/forgot-password/
POST /v1/auth/onboarding-register/
POST /v1/auth/register/
POST /v1/auth/reset-password/
POST /v1/auth/token/
POST /v1/auth/token/body-refresh/
POST /v1/auth/token/refresh/
POST /v1/auth/verify_email/{token}
POST /v1/bannerbear-webhook/
POST /v1/batch/listings/import/
POST /v1/batch/listings/populate/
POST /v1/batch/loma_listings/import/
POST /v1/cart/add/{marketplace_id}/{variant_id}/
POST /v1/categories/{category_id}/checkout_session/
POST /v1/create_marketplace_from_social_username/
POST /v1/generate_listings_step/
POST /v1/generate_marketplace_data/
POST /v1/generate_presigned_url/
POST /v1/generate_social_data/
POST /v1/get_import_log_results/
POST /v1/leads/{lead_id}/{marketplace_id}/follow_up/
POST /v1/listings/create/
POST /v1/listings/{listing_id}/mark_as_broken/
POST /v1/mailing_list/{marketplace_id}/signup/
POST /v1/marketplaces/{marketplace_id}/generate_ticket/
POST /v1/marketplaces/{marketplace_id}/send_magic_link/
POST /v1/orders/create/
POST /v1/payments/create_payment_intent/{cart_id}/
POST /v1/payments/stripe_webhook/
POST /v1/payments/update_payment_intent/{cart_id}/
POST /v1/quick_launch/monetization_options/
POST /v1/refresh_image_links/{listing_id}/
POST /v1/send-verification-code/
POST /v1/shareautomation/ayrshare/webhook/
POST /v1/shareautomation/promo_automation/webhook/
POST /v1/shipping/rates/
POST /v1/shipping/shippo_webhook/
POST /v1/shippo/address/validate/
POST /v1/sso/ticket-hostname/
POST /v1/sso/token/social/
POST /v1/sso/validate-ticket/
POST /v1/stripe/{marketplace_id}/account_session/
POST /v1/stripe/{marketplace_id}/settings/
POST /v1/submit_lead/
POST /v1/users/{user_id}/roles/{id}/checkout_session/
POST /v1/validate_referral_code/
POST /v1/verify-email-by-token/
POST /v1/verify-email/
POST /v1/webhooks/sendgrid/inbound/
PUT /v1/cart/modify/{marketplace_id}/{variant_id}/
PUT /v1/listings/{id}/{marketplace_id}/update/
PUT /v1/listings/{id}/{marketplace_id}/update_category/
PUT /v1/listings/{listing_id}/{marketplace_id}/admin_set_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_sold_price/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/{listing_status}/{sub_status}/
PUT /v1/orders/update-fulfillment/

Found on 2025-11-16 17:28

Severity: info
Fingerprint: 5733ddf49ff49cd1f5e22fb4f4136d44735ebdeac957fa908ecbbd170a22e70e

Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
DELETE /v1/auth/user-destroy/
DELETE /v1/cart/remove/{marketplace_id}/{variant_id}/
DELETE /v1/listings/{id}/delete/
GET /dj-rest-auth/logout/
GET /v1/active_category_ids/
GET /v1/active_marketplace_listing_ids/{marketplace_id}/
GET /v1/active_marketplace_listing_slugs/{marketplace_id}/
GET /v1/active_marketplace_page_slugs/{marketplace_id}/
GET /v1/active_marketplace_pages/
GET /v1/active_top_level_category_ids/
GET /v1/attributes/{attribute_id}/
GET /v1/auctions/{auction_id}/bids/
GET /v1/auctions/{auction_id}/max_bid/
GET /v1/auth/access-token/
GET /v1/cart/{marketplace_id}/
GET /v1/categories/{category_id}/parent_list/
GET /v1/categories/{category_id}/permissions/roles/
GET /v1/categories/{id}/
GET /v1/categories/{id}/admin/
GET /v1/categories/{id}/attributes/
GET /v1/category_with_listings/{id}/
GET /v1/checkout/{marketplace_id}/
GET /v1/checkout_session/{marketplace_id}/{session_id}/
GET /v1/fulfillment-types/{marketplace_id}/
GET /v1/generate_listing_promo_preview_image/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/generate_marketplace_preview_image/{preview_type}/{marketplace_preview_data_id}/{email_run_id}/
GET /v1/get_marketplace_preview_data/{marketplace_preview_data_id}/
GET /v1/link_in_bio_marketplaces/
GET /v1/listings/category/{id}/
GET /v1/listings/map/{id}/
GET /v1/listings/promo_media/{object_id}/
GET /v1/listings/{id}/
GET /v1/marketplace_account_attributes/{marketplace_id}/
GET /v1/marketplace_pages/{hostname}/{slug}/
GET /v1/marketplaces/categories/{marketplace_role_id}/
GET /v1/marketplaces/hostnames/
GET /v1/marketplaces/link_in_bio/{hostname}/
GET /v1/marketplaces/roles/{marketplace_role_id}/
GET /v1/marketplaces/{hostname}/
GET /v1/marketplaces/{hostname}/categories/
GET /v1/marketplaces/{hostname}/hostname/
GET /v1/marketplaces/{hostname}/link_in_bio/
GET /v1/marketplaces/{marketplace_id}/categories/
GET /v1/marketplaces/{marketplace_id}/categories/{category_id}/
GET /v1/marketplaces/{marketplace_id}/domain/
GET /v1/marketplaces/{marketplace_id}/info/
GET /v1/marketplaces/{marketplace_id}/pages/slug/{slug}/
GET /v1/marketplaces/{marketplace_id}/roles/
GET /v1/marketplaces/{marketplace_id}/status/
GET /v1/marketplaces/{marketplace_id}/theme/
GET /v1/marketplaces/{marketplace_id}/top_level_categories/
GET /v1/marketplaces/{marketplace_id}/user/roles/
GET /v1/orders/{marketplace_id}/{id}/
GET /v1/roles/global/
GET /v1/stripe/code/{hostname}/{code}/
GET /v1/stripe/{marketplace_id}/account/
POST /dj-rest-auth/login/
POST /dj-rest-auth/password/reset/
POST /dj-rest-auth/password/reset/confirm/
POST /dj-rest-auth/token/refresh/
POST /dj-rest-auth/token/verify/
POST /v1/ai_run/
POST /v1/ai_status_change/
POST /v1/auctions/{auction_id}/bid/
POST /v1/auctions/{auction_id}/relist-auction/
POST /v1/auth/email_exists/
POST /v1/auth/forgot-password/
POST /v1/auth/onboarding-register/
POST /v1/auth/register/
POST /v1/auth/reset-password/
POST /v1/auth/token/
POST /v1/auth/token/body-refresh/
POST /v1/auth/token/refresh/
POST /v1/auth/verify_email/{token}
POST /v1/bannerbear-webhook/
POST /v1/batch/listings/import/
POST /v1/batch/listings/populate/
POST /v1/batch/loma_listings/import/
POST /v1/cart/add/{marketplace_id}/{variant_id}/
POST /v1/categories/{category_id}/checkout_session/
POST /v1/create_marketplace_from_social_username/
POST /v1/generate_listings_step/
POST /v1/generate_marketplace_data/
POST /v1/generate_presigned_url/
POST /v1/generate_social_data/
POST /v1/get_import_log_results/
POST /v1/leads/{lead_id}/{marketplace_id}/follow_up/
POST /v1/listings/create/
POST /v1/listings/{listing_id}/mark_as_broken/
POST /v1/mailing_list/{marketplace_id}/signup/
POST /v1/marketplaces/{marketplace_id}/generate_ticket/
POST /v1/marketplaces/{marketplace_id}/send_magic_link/
POST /v1/orders/create/
POST /v1/payments/create_payment_intent/{cart_id}/
POST /v1/payments/stripe_webhook/
POST /v1/payments/update_payment_intent/{cart_id}/
POST /v1/quick_launch/monetization_options/
POST /v1/refresh_image_links/{listing_id}/
POST /v1/send-verification-code/
POST /v1/shareautomation/ayrshare/webhook/
POST /v1/shareautomation/promo_automation/webhook/
POST /v1/shipping/rates/
POST /v1/shipping/shippo_webhook/
POST /v1/shippo/address/validate/
POST /v1/sso/token/social/
POST /v1/sso/validate-ticket/
POST /v1/stripe/{marketplace_id}/account_session/
POST /v1/stripe/{marketplace_id}/settings/
POST /v1/submit_lead/
POST /v1/users/{user_id}/roles/{id}/checkout_session/
POST /v1/validate_referral_code/
POST /v1/verify-email-by-token/
POST /v1/verify-email/
POST /v1/webhooks/sendgrid/inbound/
PUT /v1/cart/modify/{marketplace_id}/{variant_id}/
PUT /v1/listings/{id}/{marketplace_id}/update/
PUT /v1/listings/{id}/{marketplace_id}/update_category/
PUT /v1/listings/{listing_id}/{marketplace_id}/admin_set_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_sold_price/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/
PUT /v1/listings/{listing_id}/{marketplace_id}/set_status_and_sub_status/{listing_status}/{sub_status}/
PUT /v1/orders/update-fulfillment/

Found on 2025-11-03 10:43

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: phoebe.bmidigital.online
Port: 80
URL: http://phoebe.bmidigital.online

First seen 2025-11-13 03:23
Last seen 2026-01-09 22:10
Open for 57 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 22:10
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: backend.ezpurim.com
Port: 80
URL: http://backend.ezpurim.com

First seen 2025-10-30 01:00
Last seen 2026-01-09 21:03
Open for 71 days

Severity: info
Fingerprint: 5733ddf49ff49cd18553ecf7c76ee5bea63c64e0668ff2da3cece0ee931d7058

Public Swagger UI/API detected at path: /swagger-ui.html - sample paths:
DELETE /api/v1/item/orders/admin/{itemOrderId}/{customerId}
DELETE /api/v1/orders/admin/{orderId}/{fromCustomerId}
GET /api/v1/auth/login
GET /api/v1/auth/login/social
GET /api/v1/auth/ping
GET /api/v1/auth/search
GET /api/v1/city
GET /api/v1/city/{cityId}
GET /api/v1/customer/admin
GET /api/v1/customer/admin/emails
GET /api/v1/customer/admin/greetings
GET /api/v1/customer/admin/newCustomers
GET /api/v1/customer/admin/paper
GET /api/v1/customer/admin/short
GET /api/v1/customer/admin/summary
GET /api/v1/customer/cart
GET /api/v1/customer/hascard
GET /api/v1/customer/names
GET /api/v1/customer/summary
GET /api/v1/customer/{customerId}
GET /api/v1/email/stats
GET /api/v1/google/api/key
GET /api/v1/google/place
GET /api/v1/item
GET /api/v1/item/image/{itemId}
GET /api/v1/item/orders
GET /api/v1/item/orders/admin/customer/invoice/{invoiceId}
GET /api/v1/item/orders/admin/customer/summary/{customerId}
GET /api/v1/item/orders/admin/customer/{customerId}
GET /api/v1/item/orders/consolidated
GET /api/v1/item/orders/customer
GET /api/v1/item/orders/{itemOrderId}
GET /api/v1/item/{itemId}
GET /api/v1/newinvoice
GET /api/v1/newinvoice/pdf/{invoiceId}
GET /api/v1/newinvoice/summary
GET /api/v1/orders
GET /api/v1/orders/admin
GET /api/v1/orders/admin/giving/invoice/{invoiceId}
GET /api/v1/orders/admin/giving/summary/{customerId}
GET /api/v1/orders/admin/receiving/summary/{customerId}
GET /api/v1/orders/admin/receiving/{customerId}
GET /api/v1/orders/admin/reciprocation
GET /api/v1/orders/admin/years
GET /api/v1/orders/admin/{customerId}
GET /api/v1/orders/giving/ids
GET /api/v1/orders/order/{orderId}
GET /api/v1/orders/receiving
GET /api/v1/org/admin
GET /api/v1/org/na/{orgId}
GET /api/v1/org/summary
GET /api/v1/org/super
GET /api/v1/org/{orgId}
GET /api/v1/payment/admin/invoice
GET /api/v1/price
GET /api/v1/reports/count/consolidated
GET /api/v1/reports/count/customers/giving
GET /api/v1/reports/count/customers/notgiving
GET /api/v1/reports/count/customers/notreceiving
GET /api/v1/reports/count/customers/receiving
GET /api/v1/reports/count/gift/receiving
GET /api/v1/reports/count/items/receiving
GET /api/v1/reports/count/items/total
GET /api/v1/reports/count/orders
GET /api/v1/reports/customers/abandonedcarts
GET /api/v1/reports/customers/givinggetting
GET /api/v1/reports/customers/notgiving
GET /api/v1/reports/orders/checks/unpaid
GET /api/v1/reports/orders/giving
GET /api/v1/reports/orders/receiving/counts
GET /api/v1/reports/orders/receiving/large
GET /api/v1/reports/orders/receiving/small
GET /api/v1/reports/orders/receiving/small/results
GET /api/v1/reports/orders/reciprocated/unpaid
GET /api/v1/reports/orders/summed
GET /api/v1/reports/revenue/consolidated
GET /api/v1/reports/revenue/items
GET /api/v1/reports/revenue/orders
GET /api/v1/reports/revenue/reciprocated
GET /api/v1/reports/revenue/running
GET /api/v1/reports/revenue/total
GET /api/v1/reports/users/loggedin
GET /api/v1/route
GET /api/v1/route/distance
GET /api/v1/route/neighborhoods
GET /api/v1/route/optimized
GET /api/v1/route/optimized/results
GET /api/v1/route/simple
GET /api/v1/route/simple/results
GET /api/v1/route/stored
GET /api/v1/staffCategory
GET /api/v1/staffCategory/{staffCategoryId}
GET /api/v1/state
GET /api/v1/state/{stateId}
GET /api/v1/street
GET /api/v1/street/{streetId}
GET /api/v1/templates
GET /api/v1/templates/{name}
GET /api/v1/title
GET /api/v1/title/all
GET /api/v1/title/{titleId}
GET /api/v1/user
GET /api/v1/user/checkEmailAvailability
GET /api/v1/user/me
POST /api/v1/auth/create
POST /api/v1/auth/register
POST /api/v1/auth/sendpin
POST /api/v1/auth/validate
POST /api/v1/city/admin
POST /api/v1/customer/admin/import/{orgId}
POST /api/v1/customer/admin/import2/{orgId}
POST /api/v1/customer/reset/reciprocations
POST /api/v1/email
POST /api/v1/email/all
POST /api/v1/email/help
POST /api/v1/email/mailing
POST /api/v1/item/admin
POST /api/v1/item/orders/admin/{customerId}
POST /api/v1/orders/admin/import/{orgId}
POST /api/v1/orders/admin/{fromCustomerId}
POST /api/v1/org
POST /api/v1/payment
POST /api/v1/payment/admin/reciprocation/charge
POST /api/v1/payment/check
POST /api/v1/payment/webhook
POST /api/v1/price/admin
POST /api/v1/staffCategory/admin
POST /api/v1/street/admin
POST /api/v1/title/admin
PUT /api/v1/auth/changePassword
PUT /api/v1/city/admin/{cityId}
PUT /api/v1/customer
PUT /api/v1/customer/admin/merge
PUT /api/v1/customer/admin/{customerId}
PUT /api/v1/customer/cart/gifts
PUT /api/v1/customer/cart/items
PUT /api/v1/customer/fix
PUT /api/v1/customer/routes
PUT /api/v1/item/admin/upload/{itemId}
PUT /api/v1/item/admin/{itemId}
PUT /api/v1/newinvoice/{invoiceId}
PUT /api/v1/orders/admin/order
PUT /api/v1/org/siteowner
PUT /api/v1/payment/admin/receipt
PUT /api/v1/payment/admin/refund
PUT /api/v1/price/admin/{priceId}
PUT /api/v1/staffCategory/admin/{staffCategoryId}
PUT /api/v1/street/admin/{streetId}
PUT /api/v1/title/admin/{titleId}

Found on 2026-01-09 21:03

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: prism.api.test.sdocs.com
Port: 443
URL: https://prism.api.test.sdocs.com

First seen 2025-10-30 00:30
Last seen 2026-01-09 20:53
Open for 71 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd151e75e4b1b486095842ac896e4ae9b4622d4ce0979b9e427
```
Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
PATCH /prism/document/{documentId}/mergedata/refresh
POST /prism/document/{documentId}/generate
POST /prism/document/{documentId}/generate/pdf
POST /prism/document/{documentId}/generate/uploadFile
POST /prism/document/{documentId}/mergedata/generate
POST /prism/pdfUpload/generate/pdf
POST /prism/template/{templateId}/generate/pdf
POST /prism/template/{templateId}/publish
```
  Found on 2026-01-09 20:53
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.bmi.vision
Port: 443
URL: https://www.bmi.vision

First seen 2025-10-30 00:00
Last seen 2026-01-09 20:52
Open for 71 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 20:52
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: proxy.realestateapi.com
Port: 80
URL: http://proxy.realestateapi.com

First seen 2025-11-24 01:36
Last seen 2026-01-09 20:35
Open for 46 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43339d009ac8efbf1e464fa51b06df62d2a3c86c38
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
POST /v2/AddressVerification
POST /v2/AutoComplete
POST /v2/CSVBuilder
POST /v2/MLSDetail
POST /v2/MLSSearch
POST /v2/PropGPT
POST /v2/PropertyAvm
POST /v2/PropertyDetail
POST /v2/PropertyDetailBulk
POST /v2/PropertySearch
POST /v2/Reports/Documents
POST /v2/Reports/PropertyLiens
POST /v2/Reports/PropertyReports
POST /v3/PropertyComps
```
  Found on 2026-01-09 20:35
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: askcolette.ai
Port: 443
URL: https://askcolette.ai

First seen 2025-12-05 21:51
Last seen 2026-01-09 20:10
Open for 34 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 20:10
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.dev-slotessentials.com
Port: 443
URL: https://api.dev-slotessentials.com

First seen 2025-10-18 00:56
Last seen 2026-01-09 20:03
Open for 83 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873e6cdb9006

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/lootboxes/histories
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/milestones/requests
GET /admin/milestones/requests/by-id/{requestId}
GET /admin/milestones/requests/export/csv
GET /admin/milestones/requests/export/json
GET /admin/milestones/requests/metadata
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/settings/rewards-video/signature
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/tournaments
GET /admin/users
GET /admin/users/export/csv
GET /admin/users/export/json
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/chats/messages
GET /private/chats/messages/{messageId}
GET /private/experiences/history
GET /private/lootboxes/available
GET /private/lootboxes/histories
GET /private/milestones
GET /private/milestones/by-id/{milestoneId}
GET /private/milestones/requests
GET /private/milestones/requests/by-id/{requestId}
GET /private/notifications
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/challenges
GET /public/challenges/{challengeId}
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/milestones
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/providers
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/providers/by-slug/{slug}
GET /public/providers/{providerId}
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/participants
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /admin/slots/{slotId}/merge
PATCH /private/notifications/read
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/files
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/notifications
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/lootboxes/open-daily
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2026-01-09 20:03

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873edce1da17

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/lootboxes/histories
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/milestones
GET /admin/milestones/by-id/{milestoneId}
GET /admin/milestones/requests
GET /admin/milestones/requests/by-id/{requestId}
GET /admin/milestones/requests/export/csv
GET /admin/milestones/requests/export/json
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/settings/rewards-video/signature
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/tournaments
GET /admin/users
GET /admin/users/export/csv
GET /admin/users/export/json
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/chats/messages
GET /private/chats/messages/{messageId}
GET /private/experiences/history
GET /private/lootboxes/available
GET /private/lootboxes/histories
GET /private/milestones
GET /private/milestones/by-id/{milestoneId}
GET /private/milestones/requests
GET /private/milestones/requests/by-id/{requestId}
GET /private/notifications
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/challenges
GET /public/challenges/{challengeId}
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/milestones/prizes
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/providers
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/providers/by-slug/{slug}
GET /public/providers/{providerId}
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/participants
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /admin/slots/{slotId}/merge
PATCH /private/notifications/read
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/files
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/notifications
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/lootboxes/open-daily
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2026-01-02 17:55

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873e9c04cdd4

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/lootboxes/histories
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/tournaments
GET /admin/users
GET /admin/users/export/csv
GET /admin/users/export/json
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/chats/messages
GET /private/chats/messages/{messageId}
GET /private/experiences/history
GET /private/lootboxes/available
GET /private/lootboxes/histories
GET /private/notifications
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/challenges
GET /public/challenges/{challengeId}
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/participants
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /admin/slots/{slotId}/merge
PATCH /private/notifications/read
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/files
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/notifications
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/lootboxes/open-daily
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2025-12-01 01:04

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873efca20dc5

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/lootboxes/histories
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/tournaments
GET /admin/users
GET /admin/users/export/csv
GET /admin/users/export/json
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/chats/messages
GET /private/chats/messages/{messageId}
GET /private/experiences/history
GET /private/lootboxes/available
GET /private/lootboxes/histories
GET /private/notifications
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/challenges
GET /public/challenges/{challengeId}
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/participants
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /private/notifications/read
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/files
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/notifications
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/lootboxes/open-daily
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2025-11-26 21:02

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873e8d982a1a

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/lootboxes/histories
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/tournaments
GET /admin/users
GET /admin/users/export/csv
GET /admin/users/export/json
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/chats/messages
GET /private/chats/messages/{messageId}
GET /private/experiences/history
GET /private/lootboxes/available
GET /private/lootboxes/histories
GET /private/notifications
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/participants
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /private/notifications/read
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/files
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/notifications
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/lootboxes/open-daily
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2025-11-23 09:59

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873e4a3b9c82

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/lootboxes/histories
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/tournaments
GET /admin/users
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/chats/messages
GET /private/chats/messages/{messageId}
GET /private/experiences/history
GET /private/lootboxes/available
GET /private/lootboxes/histories
GET /private/notifications
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/participants
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /private/notifications/read
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/files
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/notifications
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/lootboxes/open-daily
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2025-11-21 06:26

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873e8e789036

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/lootboxes/histories
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/tournaments
GET /admin/users
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/chats/messages
GET /private/chats/messages/{messageId}
GET /private/experiences/history
GET /private/lootboxes/histories
GET /private/notifications
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/participants
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /private/notifications/read
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/files
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/notifications
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/lootboxes/open-daily
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2025-11-18 09:26

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873e142899aa

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/lootboxes/histories
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/users
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/chats/messages
GET /private/chats/messages/{messageId}
GET /private/experiences/history
GET /private/lootboxes/histories
GET /private/notifications
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/widgets/tournaments/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /private/notifications/read
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/files
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/notifications
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/lootboxes/open-daily
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2025-11-08 14:01

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873ee7812aa6

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/lootboxes/histories
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/users
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/chats/messages
GET /private/chats/messages/{messageId}
GET /private/experiences/history
GET /private/lootboxes/histories
GET /private/notifications
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /private/notifications/read
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/notifications
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/lootboxes/open-daily
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2025-11-05 06:51

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873eae66a5b1

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/lootboxes/histories
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/users
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/chats/messages
GET /private/chats/messages/{messageId}
GET /private/lootboxes/histories
GET /private/notifications
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /private/notifications/read
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/notifications
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/lootboxes/open-daily
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2025-11-02 00:50

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873ebc0ae6f2

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/users
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/notifications
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/claim-daily
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /private/notifications/read
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/notifications
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/chats/messages
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2025-10-28 17:07

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b0a4a2d8b2d4996b086d9d801e64873e69f4c76e

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /admin/blogs/{blogId}
DELETE /admin/chats/messages/{messageId}
DELETE /admin/faqs/{faqId}
DELETE /admin/kick/commands/{commandId}
DELETE /admin/merch/items/{itemId}/images/{imageId}
DELETE /admin/rewards/banners/{bannerId}
GET /admin/bonus-hunt-trackers
GET /admin/bonus-hunt-trackers/summary/charts
GET /admin/bonus-hunt-trackers/{trackerId}
GET /admin/bonus-hunt-trackers/{trackerId}/records
GET /admin/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /admin/kick/commands
GET /admin/kick/metadata
GET /admin/kick/settings
GET /admin/kick/users
GET /admin/kick/users/export/csv
GET /admin/kick/users/export/json
GET /admin/kick/users/{botUserId}
GET /admin/kick/users/{botUserId}/points/transactions
GET /admin/leaderboards/prizes
GET /admin/leaderboards/prizes/{rank}
GET /admin/merch/items
GET /admin/merch/items/{itemId}
GET /admin/merch/requests
GET /admin/merch/requests/{requestId}
GET /admin/points-shop/items
GET /admin/points-shop/items/{itemId}
GET /admin/points-shop/requests
GET /admin/points-shop/requests/{requestId}
GET /admin/promo-codes/activations
GET /admin/promo-codes/activations/{activationId}
GET /admin/promo-codes/codes
GET /admin/promo-codes/codes/{promoCodeId}
GET /admin/providers
GET /admin/providers/{providerId}
GET /admin/session-trackers
GET /admin/session-trackers/summary/charts
GET /admin/session-trackers/{trackerId}
GET /admin/slots
GET /admin/slots-battles
GET /admin/slots-battles/{battleId}
GET /admin/slots/{slotId}
GET /admin/slots/{slotId}/reviews/{reviewId}
GET /admin/users
GET /admin/users/frauds
GET /admin/users/{userId}
GET /admin/users/{userId}/comments
GET /admin/users/{userId}/comments/{commentId}
GET /admin/users/{userId}/points/metadata
GET /admin/users/{userId}/points/transactions
GET /admin/win-trackers
GET /admin/win-trackers/{trackerId}
GET /private/bonus-hunt-trackers
GET /private/bonus-hunt-trackers/summary/charts
GET /private/bonus-hunt-trackers/{trackerId}
GET /private/bonus-hunt-trackers/{trackerId}/records
GET /private/bonus-hunt-trackers/{trackerId}/records/{recordId}
GET /private/points-shop/items
GET /private/promo-codes/activations
GET /private/promo-codes/activations/{activationId}
GET /private/session-trackers
GET /private/session-trackers/summary/charts
GET /private/session-trackers/{trackerId}
GET /private/slots-battles
GET /private/slots-battles/{battleId}
GET /private/slots/{slotId}/reviews
GET /private/tournaments
GET /private/users/my-profile
GET /private/users/points/claim-daily
GET /private/users/points/metadata
GET /private/users/points/transactions
GET /private/widgets/now-playing/records
GET /private/widgets/now-playing/records/{recordId}
GET /private/widgets/settings/settings
GET /private/win-trackers
GET /private/win-trackers/{trackerId}
GET /public/auth/login/discord
GET /public/auth/login/kick
GET /public/auth/login/razed
GET /public/blogs
GET /public/blogs/by-slug/{slug}
GET /public/blogs/{blogId}
GET /public/bonus-hunt-trackers/{userId}
GET /public/bonus-hunt-trackers/{userId}/{trackerId}
GET /public/casinos
GET /public/chats/messages
GET /public/chats/messages/{messageId}
GET /public/faqs
GET /public/faqs/{faqId}
GET /public/files/{type}/{filename}
GET /public/health/check
GET /public/leaderboards/records
GET /public/merch/items
GET /public/merch/items/{itemId}
GET /public/misc/countries
GET /public/misc/currencies
GET /public/misc/metadata
GET /public/misc/slots
GET /public/points-shop/items
GET /public/points-shop/items/{itemId}
GET /public/providers
GET /public/rewards/banners
GET /public/session-trackers/{trackerId}
GET /public/settings
GET /public/slots
GET /public/slots/by-slug/{slug}
GET /public/slots/random
GET /public/slots/{slotId}
GET /public/slots/{slotId}/reviews
GET /public/tournaments/{tournamentId}
GET /public/tournaments/{tournamentId}/rounds
GET /public/tournaments/{tournamentId}/rounds/{roundId}
GET /public/users/{userId}
GET /public/widgets/bonus-hunt-trackers/{userId}
GET /public/widgets/deposits-withdrawals
GET /public/widgets/deposits-withdrawals/{userId}
GET /public/widgets/now-playing/{userId}
GET /public/widgets/slots-battles/{userId}
GET /public/win-trackers/{userId}/{trackerId}
PATCH /admin/settings
PATCH /private/slots-battles/{battleId}/{gameId}
PATCH /private/tournaments/{tournamentId}
PATCH /private/users/my-profile/change-password
POST /admin/blogs
POST /admin/faqs
POST /admin/kick/users/{botUserId}/points/decrease
POST /admin/kick/users/{botUserId}/points/increase
POST /admin/merch/items/{itemId}/images
POST /admin/rewards/banners
POST /admin/users/{userId}/points/decrease
POST /admin/users/{userId}/points/increase
POST /private/chats/messages
POST /private/merch/request
POST /private/points-shop/items/{itemId}/claim
POST /private/promo-codes/activate
POST /private/slots/{slotId}/reviews/{reviewId}/reactions
POST /private/users/my-profile/verify-email/confirm
POST /private/users/my-profile/verify-email/send
POST /public/auth/login/username
POST /public/auth/logout
POST /public/auth/policy/agree
POST /public/auth/register
POST /public/auth/reset-password/confirm
POST /public/auth/reset-password/send
PUT /private/tournaments/{tournamentId}/rounds/{roundId}

Found on 2025-10-22 15:57

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.staging.ehr.litisaude.com.br
Port: 80
URL: http://api.staging.ehr.litisaude.com.br

First seen 2025-12-04 00:45
Last seen 2026-01-09 19:50
Open for 36 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 19:50
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.cmasystems.com.mx
Port: 443
URL: https://www.cmasystems.com.mx

First seen 2025-11-05 00:51
Last seen 2026-01-09 19:34
Open for 65 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f61fc931f61fc931f61fc931f61fc931f61fc931f61fc931
```
Public Swagger UI/API detected at path: /api/swagger.json
```
  Found on 2026-01-09 19:34
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: app.step0.xyz
Port: 443
URL: https://app.step0.xyz

First seen 2025-11-14 01:13
Last seen 2026-01-09 19:32
Open for 56 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 19:32
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.askcolette.ai
Port: 80
URL: http://www.askcolette.ai

First seen 2025-12-05 21:55
Last seen 2026-01-09 19:17
Open for 34 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 19:17
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: industrycard.app
Port: 80
URL: http://industrycard.app

First seen 2025-12-10 00:27
Last seen 2026-01-09 18:51
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 18:51
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.api.jobtitan.io
Port: 443
URL: https://www.api.jobtitan.io

First seen 2025-10-27 01:00
Last seen 2026-01-09 18:17
Open for 74 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 18:17
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: rfservices.thesingularpoint.com
Port: 443
URL: https://rfservices.thesingularpoint.com

First seen 2025-12-10 00:29
Last seen 2026-01-09 18:09
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd18553ecf7ed0fcaa6b454cad09aba69bb9aba69bb9aba69bb
```
Public Swagger UI/API detected at path: /swagger-ui.html - sample paths:
GET /products
GET /products/hello
GET /products/{id}
```
  Found on 2026-01-09 18:09
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: demo.airbo.com
Port: 443
URL: https://demo.airbo.com

First seen 2025-11-09 00:51
Last seen 2026-01-09 17:57
Open for 61 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 17:57
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: takifoam.bmidigital.online
Port: 80
URL: http://takifoam.bmidigital.online

First seen 2025-11-14 03:43
Last seen 2026-01-09 16:56
Open for 56 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 16:56
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: substratum-staging.bloomstudio.gg
Port: 80
URL: http://substratum-staging.bloomstudio.gg

First seen 2025-11-07 00:26
Last seen 2026-01-09 16:36
Open for 63 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 16:36
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: pagos.marinanavegar.co
Port: 80
URL: http://pagos.marinanavegar.co

First seen 2025-10-24 00:02
Last seen 2026-01-09 16:04
Open for 77 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd110a331ec9ef240103277828e121354b9365fa20c0d556626
```
Public Swagger UI/API detected at path: /v2/api-docs - sample paths:
GET /event/check
GET /invoice/getInvoice
GET /invoice/getStringInvoice
GET /payment/merchants
GET /payment/status-transaction
POST /cash-receipt/create
POST /event/call
POST /payment/create-transaction
```
  Found on 2026-01-09 16:04
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: takifoam.newcreation.courses
Port: 80
URL: http://takifoam.newcreation.courses

First seen 2025-11-13 00:43
Last seen 2026-01-09 15:58
Open for 57 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 15:58
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: app.lury.app
Port: 443
URL: https://app.lury.app

First seen 2025-12-10 01:07
Last seen 2026-01-09 15:22
Open for 30 days

Severity: info
Fingerprint: 5733ddf49ff49cd110a331ec1fc9f56ab15506cc1364e9c49a20d07127b2fa6d

Public Swagger UI/API detected at path: /v2/api-docs - sample paths:
GET /actuator
GET /actuator/beans
GET /actuator/caches
GET /actuator/caches/{cache}
GET /actuator/conditions
GET /actuator/configprops
GET /actuator/env
GET /actuator/env/{toMatch}
GET /actuator/health
GET /actuator/health/**
GET /actuator/heapdump
GET /actuator/info
GET /actuator/loggers
GET /actuator/loggers/{name}
GET /actuator/mappings
GET /actuator/metrics
GET /actuator/metrics/{requiredMetricName}
GET /actuator/scheduledtasks
GET /actuator/threaddump
GET /admin/merchant/analytics
GET /admin/merchant/collections
GET /admin/merchant/collections/search/{keyword}
GET /admin/merchant/collections/status/{enabled}
GET /admin/merchant/collections/{collection_id}/products
GET /admin/merchant/offers/export/{period}
GET /admin/merchant/offers/list
GET /admin/merchant/offers/recent
GET /admin/merchant/offers/search/{keyword}
GET /admin/merchant/offers/status/{status}
GET /admin/merchant/products
GET /admin/merchant/products/blocked
GET /admin/merchant/products/paginated
GET /admin/merchant/products/search/{keyword}
GET /admin/merchant/products/status/{enabled}
GET /error
GET /inititalload
GET /load/periodic/shop
GET /load/periodic/shop/all
GET /loadmapping
GET /offers/{shop_domain}/discount/status
GET /offers/{shop_domain}/offer/cta
GET /test/productdownload/{shop_domain}
GET /token/decrypted
POST /admin/merchant/collections/{collection_id}/price/{accept_percentage}/of/{price_type}
POST /admin/merchant/collections/{collection_id}/status/{enabled}
POST /admin/merchant/product/{sfy_product_id}/status/{blocked}
POST /admin/merchant/product/{sfy_product_id}/variant/{sfy_variant_id}/price/{accept_price}
POST /admin/merchant/product/{sfy_product_id}/variant/{sfy_variant_id}/status/{enabled}
POST /offers/{shop_domain}/discount/{existing_discount_nyp_code}/renew
POST /offers/{shop_domain}/offer/make_offer
POST /offers/{shop_domain}/offer/{new_offer_id}/discount/{existing_discount_nyp_code}/update
POST /offers/{shop_domain}/offer/{offer_id}/discount/create

Found on 2026-01-09 15:22

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.guisbot.top
Port: 443
URL: https://api.guisbot.top

First seen 2025-12-10 00:08
Last seen 2026-01-09 14:33
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 14:33
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: backend.checkme-app.com
Port: 80
URL: http://backend.checkme-app.com

First seen 2025-12-10 00:28
Last seen 2026-01-09 14:33
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 14:33
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.brillianttasting.group
Port: 443
URL: https://www.brillianttasting.group

First seen 2025-11-15 00:30
Last seen 2026-01-09 13:56
Open for 55 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 13:56
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: staff.bmidigital.online
Port: 443
URL: https://staff.bmidigital.online

First seen 2025-10-27 00:20
Last seen 2026-01-09 13:44
Open for 74 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 13:44
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api-tst.megawatthq.com
Port: 80
URL: http://api-tst.megawatthq.com

First seen 2025-10-20 00:56
Last seen 2026-01-09 13:37
Open for 81 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff435897b6ad46d3d4313626b690c90d1964eb9615aa

Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /admin/getAllClientsPowerUsage
GET /admin/getAllClientsPowerUsageCsv
GET /admin/getAwardsBySite
GET /admin/getClientPowerUsage
GET /admin/getClientPowerUsageCsv
GET /admin/getEmailsByAddress
GET /admin/getEnvironment
GET /admin/getEventsBySiteId
GET /admin/getRandomNumber
GET /admin/sendSplitPowerPercentageBySite
GET /bitcoin/coinmarketcap
GET /bitcoin/mempoolspace
GET /bitcoin/minerstat
GET /database/customers/{customerId}/sites
GET /database/executing-events
GET /database/pool-swaps
GET /database/sites/{siteId}/day-ahead
GET /database/sites/{siteId}/events
GET /database/sites/{siteId}/look-ahead
GET /database/sites/{siteId}/real-time
GET /foreman/clients/{clientId}
GET /foreman/clients/{clientId}/asics
GET /foreman/clients/{clientId}/miners
GET /pjm/getLmpData
POST /admin/addClientEmail
POST /admin/bearerHash
POST /admin/createInvoices
POST /admin/endDrs3Manually
POST /admin/endMisoRealTimeEvent
POST /admin/endMisoRealTimeTestEvent
POST /admin/getDrs2Roi
POST /admin/getEmails
POST /admin/getInvoices
POST /admin/insertHistoricLmpData
POST /admin/postIncompleteClients
POST /admin/processDrs2DayAheadAwards
POST /admin/processEvent
POST /admin/processEvents
POST /admin/processEventsByEmailAndSite
POST /admin/processEventsCheck
POST /admin/processText
POST /admin/reverseXor
POST /admin/runDailyProcesses
POST /admin/runOvernightProcesses
POST /admin/runPython
POST /admin/scheduleMisoPeakAvoidanceEvent
POST /admin/sendEmail
POST /admin/sendEventEndNotifications
POST /admin/sendInternalAndHostedMinerCounts
POST /admin/sendTestEmailNotification
POST /admin/sendTestTextNotification
POST /admin/startDrs3Manually
POST /admin/startDrs3TestTexts
POST /admin/startDrs3TestTextsCheck
POST /admin/startMisoRealTimeEvent
POST /admin/startMisoRealTimeTestEvent
POST /admin/submitDrs2Offers
POST /admin/submitDrs3Offers
POST /admin/updateClientGroups
POST /admin/updateClientPowerUsage
POST /admin/updateClientPowerUsageCheck
POST /admin/updateClients
POST /admin/updateEventConfigs
POST /admin/updateLmps
POST /admin/updateMiners
POST /admin/updatePnodes
POST /admin/uploadJsonFileToTable
POST /admin/xor
POST /alta/sensors/balancePower
POST /flex/addEvent
POST /flex/addSites
POST /flex/createUsers
POST /flex/login
POST /flex/resetPassword
POST /flex/verifySignature
POST /foreman/dispatches/{clientId}
POST /foreman/dispatches/{clientId}/{eventId}/cancel
POST /pjm/getDSRDASynchronizedReserveAward
POST /pjm/getDSRRTSynchronizedReserveAward
POST /pjm/getMarketResults
POST /pjm/getPortfolios
POST /pjm/getToken
POST /pjm/submitDSRScheduleOffer
POST /pjm/submitDSRScheduleOfferUpdate
POST /pjm/submitDSRSynchronizedReserveOffer
POST /pjm/submitDSRSynchronizedReserveUpdate
POST /pjm/submitDSRUpdate
POST /slack/ackMessage
POST /slack/postMessage
POST /slack/sendException
POST /slack/sendMessage

Found on 2026-01-09 13:37

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff435897b6ad46d3d4313626b690c90d1964c7a31fc9

Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /admin/getAllClientsPowerUsage
GET /admin/getAllClientsPowerUsageCsv
GET /admin/getAwardsBySite
GET /admin/getClientPowerUsage
GET /admin/getClientPowerUsageCsv
GET /admin/getEmailsByAddress
GET /admin/getEnvironment
GET /admin/getEventsBySiteId
GET /admin/getRandomNumber
GET /admin/sendSplitPowerPercentageBySite
GET /bitcoin/coinmarketcap
GET /bitcoin/mempoolspace
GET /bitcoin/minerstat
GET /database/customers/{customerId}/sites
GET /database/executing-events
GET /database/pool-swaps
GET /database/sites/{siteId}/day-ahead
GET /database/sites/{siteId}/events
GET /database/sites/{siteId}/look-ahead
GET /database/sites/{siteId}/real-time
GET /foreman/clients/{clientId}
GET /foreman/clients/{clientId}/asics
GET /foreman/clients/{clientId}/miners
GET /pjm/getLmpData
POST /admin/bearerHash
POST /admin/createInvoices
POST /admin/endDrs3Manually
POST /admin/endMisoRealTimeEvent
POST /admin/endMisoRealTimeTestEvent
POST /admin/getDrs2Roi
POST /admin/getEmails
POST /admin/getInvoices
POST /admin/insertHistoricLmpData
POST /admin/postIncompleteClients
POST /admin/processDrs2DayAheadAwards
POST /admin/processEvent
POST /admin/processEvents
POST /admin/processEventsByEmailAndSite
POST /admin/processEventsCheck
POST /admin/processText
POST /admin/reverseXor
POST /admin/runDailyProcesses
POST /admin/runOvernightProcesses
POST /admin/runPython
POST /admin/scheduleMisoPeakAvoidanceEvent
POST /admin/sendEmail
POST /admin/sendEventEndNotifications
POST /admin/sendInternalAndHostedMinerCounts
POST /admin/sendTestEmailNotification
POST /admin/sendTestTextNotification
POST /admin/startDrs3Manually
POST /admin/startDrs3TestTexts
POST /admin/startDrs3TestTextsCheck
POST /admin/startMisoRealTimeEvent
POST /admin/startMisoRealTimeTestEvent
POST /admin/submitDrs2Offers
POST /admin/submitDrs3Offers
POST /admin/updateClientGroups
POST /admin/updateClientPowerUsage
POST /admin/updateClientPowerUsageCheck
POST /admin/updateClients
POST /admin/updateEventConfigs
POST /admin/updateLmps
POST /admin/updateMiners
POST /admin/updatePnodes
POST /admin/uploadJsonFileToTable
POST /admin/xor
POST /alta/sensors/balancePower
POST /flex/addEvent
POST /flex/addSites
POST /flex/createUsers
POST /flex/login
POST /flex/resetPassword
POST /flex/verifySignature
POST /foreman/dispatches/{clientId}
POST /foreman/dispatches/{clientId}/{eventId}/cancel
POST /pjm/getDSRDASynchronizedReserveAward
POST /pjm/getDSRRTSynchronizedReserveAward
POST /pjm/getMarketResults
POST /pjm/getPortfolios
POST /pjm/getToken
POST /pjm/submitDSRScheduleOffer
POST /pjm/submitDSRScheduleOfferUpdate
POST /pjm/submitDSRSynchronizedReserveOffer
POST /pjm/submitDSRSynchronizedReserveUpdate
POST /pjm/submitDSRUpdate
POST /slack/ackMessage
POST /slack/postMessage
POST /slack/sendException
POST /slack/sendMessage

Found on 2025-12-27 04:55

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff435897b6ad31f2fd6581d2cf506b9633283769df95

Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /admin/getAllClientsPowerUsage
GET /admin/getClientPowerUsage
GET /admin/getEmailsByAddress
GET /admin/getEnvironment
GET /admin/getRandomNumber
GET /bitcoin/coinmarketcap
GET /bitcoin/mempoolspace
GET /bitcoin/minerstat
GET /database/customers/{customerId}/sites
GET /database/executing-events
GET /database/pool-swaps
GET /database/sites/{siteId}/day-ahead
GET /database/sites/{siteId}/events
GET /database/sites/{siteId}/look-ahead
GET /database/sites/{siteId}/real-time
GET /foreman/clients/{clientId}
GET /foreman/clients/{clientId}/asics
GET /foreman/clients/{clientId}/miners
GET /pjm/getLmpData
POST /admin/bearerHash
POST /admin/createInvoices
POST /admin/endDrs3Manually
POST /admin/endMisoRealTimeEvent
POST /admin/endMisoRealTimeTestEvent
POST /admin/getDrs2Roi
POST /admin/getEmails
POST /admin/getInvoices
POST /admin/insertHistoricLmpData
POST /admin/postIncompleteClients
POST /admin/processDrs2DayAheadAwards
POST /admin/processEvent
POST /admin/processEvents
POST /admin/processEventsByEmailAndSite
POST /admin/processEventsCheck
POST /admin/processText
POST /admin/reverseXor
POST /admin/runDailyProcesses
POST /admin/runOvernightProcesses
POST /admin/runPython
POST /admin/scheduleMisoPeakAvoidanceEvent
POST /admin/sendEmail
POST /admin/sendEventEndNotifications
POST /admin/sendInternalAndHostedMinerCounts
POST /admin/sendTestEmailNotification
POST /admin/sendTestTextNotification
POST /admin/startDrs3Manually
POST /admin/startDrs3TestTexts
POST /admin/startDrs3TestTextsCheck
POST /admin/startMisoRealTimeEvent
POST /admin/startMisoRealTimeTestEvent
POST /admin/submitDrs2Offers
POST /admin/submitDrs3Offers
POST /admin/updateClientGroups
POST /admin/updateClientPowerUsage
POST /admin/updateClientPowerUsageCheck
POST /admin/updateClients
POST /admin/updateEventConfigs
POST /admin/updateLmps
POST /admin/updateMiners
POST /admin/updatePnodes
POST /admin/uploadJsonFileToTable
POST /admin/xor
POST /alta/sensors/balancePower
POST /flex/addEvent
POST /flex/addSites
POST /flex/createUsers
POST /flex/login
POST /flex/resetPassword
POST /flex/verifySignature
POST /foreman/dispatches/{clientId}
POST /foreman/dispatches/{clientId}/{eventId}/cancel
POST /pjm/getDSRDASynchronizedReserveAward
POST /pjm/getDSRRTSynchronizedReserveAward
POST /pjm/getMarketResults
POST /pjm/getPortfolios
POST /pjm/getToken
POST /pjm/submitDSRScheduleOffer
POST /pjm/submitDSRScheduleOfferUpdate
POST /pjm/submitDSRSynchronizedReserveOffer
POST /pjm/submitDSRSynchronizedReserveUpdate
POST /pjm/submitDSRUpdate
POST /slack/ackMessage
POST /slack/postMessage
POST /slack/sendException
POST /slack/sendMessage

Found on 2025-12-01 17:21

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff435897b6ad31f2fd6581d2cf506b963328c8f41282

Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /admin/getAllClientsPowerUsage
GET /admin/getClientPowerUsage
GET /admin/getEmailsByAddress
GET /admin/getEnvironment
GET /admin/getRandomNumber
GET /bitcoin/coinmarketcap
GET /bitcoin/mempoolspace
GET /bitcoin/minerstat
GET /database/customers/{customerId}/sites
GET /database/executing-events
GET /database/pool-swaps
GET /database/sites/{siteId}/day-ahead
GET /database/sites/{siteId}/events
GET /database/sites/{siteId}/look-ahead
GET /database/sites/{siteId}/real-time
GET /foreman/clients/{clientId}
GET /foreman/clients/{clientId}/asics
GET /foreman/clients/{clientId}/miners
GET /pjm/getLmpData
POST /admin/bearerHash
POST /admin/createInvoices
POST /admin/endDrs3Manually
POST /admin/endMisoRealTimeEvent
POST /admin/endMisoRealTimeTestEvent
POST /admin/getDrs2Roi
POST /admin/getEmails
POST /admin/getInvoices
POST /admin/insertHistoricLmpData
POST /admin/postIncompleteClients
POST /admin/processDrs2DayAheadAwards
POST /admin/processEvent
POST /admin/processEvents
POST /admin/processEventsByEmailAndSite
POST /admin/processEventsCheck
POST /admin/processText
POST /admin/reverseXor
POST /admin/runDailyProcesses
POST /admin/runOvernightProcesses
POST /admin/runPython
POST /admin/sendEmail
POST /admin/sendEventEndNotifications
POST /admin/sendInternalAndHostedMinerCounts
POST /admin/sendTestEmailNotification
POST /admin/sendTestTextNotification
POST /admin/startDrs3Manually
POST /admin/startDrs3TestTexts
POST /admin/startDrs3TestTextsCheck
POST /admin/startMisoRealTimeEvent
POST /admin/startMisoRealTimeTestEvent
POST /admin/submitDrs2Offers
POST /admin/submitDrs3Offers
POST /admin/updateClientGroups
POST /admin/updateClientPowerUsage
POST /admin/updateClientPowerUsageCheck
POST /admin/updateClients
POST /admin/updateEventConfigs
POST /admin/updateLmps
POST /admin/updateMiners
POST /admin/updatePnodes
POST /admin/uploadJsonFileToTable
POST /admin/xor
POST /alta/sensors/balancePower
POST /flex/addEvent
POST /flex/addSites
POST /flex/createUsers
POST /flex/login
POST /flex/resetPassword
POST /flex/verifySignature
POST /foreman/dispatches/{clientId}
POST /foreman/dispatches/{clientId}/{eventId}/cancel
POST /pjm/getDSRDASynchronizedReserveAward
POST /pjm/getDSRRTSynchronizedReserveAward
POST /pjm/getMarketResults
POST /pjm/getPortfolios
POST /pjm/getToken
POST /pjm/submitDSRScheduleOffer
POST /pjm/submitDSRScheduleOfferUpdate
POST /pjm/submitDSRSynchronizedReserveOffer
POST /pjm/submitDSRSynchronizedReserveUpdate
POST /pjm/submitDSRUpdate
POST /slack/ackMessage
POST /slack/postMessage
POST /slack/sendException
POST /slack/sendMessage

Found on 2025-11-29 09:41

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff430d5078105f801cf38b4885aad6e74c32356e66bc

Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /admin/getAllClientsMonthlyPowerUsage
GET /admin/getClientMonthlyPowerUsage
GET /admin/getEmailsByAddress
GET /admin/getEnvironment
GET /admin/getRandomNumber
GET /bitcoin/coinmarketcap
GET /bitcoin/mempoolspace
GET /bitcoin/minerstat
GET /database/customers/{customerId}/sites
GET /database/executing-events
GET /database/pool-swaps
GET /database/sites/{siteId}/day-ahead
GET /database/sites/{siteId}/events
GET /database/sites/{siteId}/look-ahead
GET /database/sites/{siteId}/real-time
GET /foreman/clients/{clientId}
GET /foreman/clients/{clientId}/asics
GET /foreman/clients/{clientId}/miners
GET /pjm/getLmpData
POST /admin/bearerHash
POST /admin/createInvoices
POST /admin/endDrs3Manually
POST /admin/endMisoRealTimeEvent
POST /admin/endMisoRealTimeTestEvent
POST /admin/getDrs2Roi
POST /admin/getEmails
POST /admin/getInvoices
POST /admin/insertHistoricLmpData
POST /admin/postIncompleteClients
POST /admin/processDrs2DayAheadAwards
POST /admin/processEvent
POST /admin/processEvents
POST /admin/processEventsByEmailAndSite
POST /admin/processEventsCheck
POST /admin/processText
POST /admin/reverseXor
POST /admin/runDailyProcesses
POST /admin/runOvernightProcesses
POST /admin/runPython
POST /admin/sendEmail
POST /admin/sendEventEndNotifications
POST /admin/sendInternalAndHostedMinerCounts
POST /admin/sendTestEmailNotification
POST /admin/sendTestTextNotification
POST /admin/startDrs3Manually
POST /admin/startDrs3TestTexts
POST /admin/startDrs3TestTextsCheck
POST /admin/startMisoRealTimeEvent
POST /admin/startMisoRealTimeTestEvent
POST /admin/submitDrs2Offers
POST /admin/submitDrs3Offers
POST /admin/updateClientGroups
POST /admin/updateClientPowerUsage
POST /admin/updateClientPowerUsageCheck
POST /admin/updateClients
POST /admin/updateEventConfigs
POST /admin/updateLmps
POST /admin/updateMiners
POST /admin/updatePnodes
POST /admin/uploadJsonFileToTable
POST /admin/xor
POST /alta/sensors/balancePower
POST /flex/addEvent
POST /flex/addSites
POST /flex/createUsers
POST /flex/login
POST /flex/resetPassword
POST /flex/verifySignature
POST /foreman/dispatches/{clientId}
POST /foreman/dispatches/{clientId}/{eventId}/cancel
POST /pjm/getDSRDASynchronizedReserveAward
POST /pjm/getDSRRTSynchronizedReserveAward
POST /pjm/getMarketResults
POST /pjm/getPortfolios
POST /pjm/getToken
POST /pjm/submitDSRScheduleOffer
POST /pjm/submitDSRScheduleOfferUpdate
POST /pjm/submitDSRSynchronizedReserveOffer
POST /pjm/submitDSRSynchronizedReserveUpdate
POST /pjm/submitDSRUpdate
POST /slack/ackMessage
POST /slack/postMessage
POST /slack/sendException
POST /slack/sendMessage

Found on 2025-10-30 20:37

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.strategicallypositioned.com
Port: 80
URL: http://www.strategicallypositioned.com

First seen 2025-11-15 01:00
Last seen 2026-01-09 13:03
Open for 55 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 13:03
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: creative-production-integration-api.celtra.com
Port: 443
URL: https://creative-production-integration-api.celtra.com

First seen 2025-11-17 00:04
Last seen 2026-01-09 13:02
Open for 53 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 13:02
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: digital-account.alpha.despertaenergia.com
Port: 443
URL: https://digital-account.alpha.despertaenergia.com

First seen 2025-11-15 01:30
Last seen 2026-01-09 12:43
Open for 55 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 12:43
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.staging.ehr.litisaude.com.br
Port: 443
URL: https://api.staging.ehr.litisaude.com.br

First seen 2025-12-04 00:45
Last seen 2026-01-09 12:31
Open for 36 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 12:31
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.jt-modelmakerij-api.nl
Port: 80
URL: http://www.jt-modelmakerij-api.nl

First seen 2025-11-28 01:08
Last seen 2026-01-09 12:20
Open for 42 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4ba83c4fc6f40bc661b979462410e6239414fbedb7

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /api/material
GET /api/material-registration
GET /api/material-registration/{id}
GET /api/material/finished
GET /api/material/{id}
GET /api/mold
GET /api/mold/{id}
GET /api/moldhour
GET /api/moldhour/{id}
GET /api/overtime-weeks
GET /api/overtime-weeks/all
GET /api/overtime-weeks/users/{userId}
GET /api/roles
GET /api/user
GET /api/user/all
GET /api/user/{id}
GET /image/{image_name}
GET /robot.txt
GET /robots.txt
POST /api/auth/refreshtoken
POST /api/auth/signin
POST /api/auth/signup
POST /api/material-registration/{moldId}/{materialId}
POST /api/mold/{id}/moldhour
PUT /api/overtime-weeks/{overtimeWeekId}
PUT /api/overtime-weeks/{overtimeWeekId}/users/{userId}

Found on 2026-01-09 12:20

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4ba83c4fc6f40bc661b979462410e62394c229393b

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /api/material
GET /api/material-registration
GET /api/material-registration/{id}
GET /api/material/finished
GET /api/material/{id}
GET /api/mold
GET /api/mold/{id}
GET /api/moldhour
GET /api/moldhour/{id}
GET /api/overtime-weeks
GET /api/overtime-weeks/all
GET /api/overtime-weeks/users/{userId}
GET /api/test/admin
GET /api/test/all
GET /api/test/mod
GET /api/test/user
GET /api/user
GET /api/user/all
GET /api/user/{id}
GET /image/{image_name}
GET /robot.txt
GET /robots.txt
POST /api/auth/refreshtoken
POST /api/auth/signin
POST /api/auth/signup
POST /api/material-registration/{moldId}/{materialId}
POST /api/mold/{id}/moldhour
PUT /api/overtime-weeks/{overtimeWeekId}
PUT /api/overtime-weeks/{overtimeWeekId}/users/{userId}

Found on 2025-12-13 08:08

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.jobtitan.io
Port: 443
URL: https://api.jobtitan.io

First seen 2025-10-27 01:10
Last seen 2026-01-09 12:13
Open for 74 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 12:13
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.jobtitan.io
Port: 80
URL: http://api.jobtitan.io

First seen 2025-10-27 01:10
Last seen 2026-01-09 12:13
Open for 74 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 12:13
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: beta.cancerhotspots.org
Port: 80
URL: http://beta.cancerhotspots.org

First seen 2025-11-13 02:14
Last seen 2026-01-09 12:03
Open for 57 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656
```
Public Swagger UI/API detected at path: /swagger-ui.html
```
  Found on 2026-01-09 12:03
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: phoebe.bmidigital.online
Port: 443
URL: https://phoebe.bmidigital.online

First seen 2025-11-13 03:23
Last seen 2026-01-09 12:03
Open for 57 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 12:03
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: consensus.askfortransparency.com
Port: 80
URL: http://consensus.askfortransparency.com

First seen 2025-10-18 00:06
Last seen 2026-01-09 11:50
Open for 83 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 11:50
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: prism.api.dev.sdocs.com
Port: 443
URL: https://prism.api.dev.sdocs.com

First seen 2025-10-22 00:44
Last seen 2026-01-09 11:44
Open for 79 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd151e75e4b1b486095842ac896e4ae9b4622d4ce0979b9e427
```
Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
PATCH /prism/document/{documentId}/mergedata/refresh
POST /prism/document/{documentId}/generate
POST /prism/document/{documentId}/generate/pdf
POST /prism/document/{documentId}/generate/uploadFile
POST /prism/document/{documentId}/mergedata/generate
POST /prism/pdfUpload/generate/pdf
POST /prism/template/{templateId}/generate/pdf
POST /prism/template/{templateId}/publish
```
  Found on 2026-01-09 11:44
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: backend.mapit.sa
Port: 443
URL: https://backend.mapit.sa

First seen 2025-11-14 00:35
Last seen 2026-01-09 11:37
Open for 56 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 11:37
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.gasoexacto.com
Port: 443
URL: https://www.gasoexacto.com

First seen 2025-11-24 19:34
Last seen 2026-01-09 10:14
Open for 45 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff434af40e724af40e724af40e724af40e724af40e72
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
POST /login/jwt/
```
  Found on 2026-01-09 10:14
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.codemetrics.ai
Port: 443
URL: https://api.codemetrics.ai

First seen 2025-11-14 02:13
Last seen 2026-01-09 09:42
Open for 56 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 09:42
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.exchange.staging.liveswitch.com
Port: 80
URL: http://api.exchange.staging.liveswitch.com

First seen 2025-10-25 05:26
Last seen 2026-01-09 09:18
Open for 76 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549fbd36c012b358f089e0990bf1234bc837ea9ab36

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/platform-authentications/{id}
GET /.well-known/jwks.json
GET /.well-known/oauth-authorization-server
GET /.well-known/openid-configuration
GET /api/actions
GET /api/actions/export/{platformId}
GET /api/actions/history/http
GET /api/actions/public
GET /api/actions/public/{id}
GET /api/actions/{id}
GET /api/app-executions
GET /api/apps
GET /api/apps/{id}
GET /api/authentication/callback
GET /api/authentication/login
GET /api/me
GET /api/me/email
GET /api/platform-authentications
GET /api/platform-authentications/oauth/callback/{platformRandomId}
GET /api/platform-authentications/pre-auth-fields/{platformId}
GET /api/platform-interceptors
GET /api/platform-interceptors/{id}
GET /api/platform-variables
GET /api/platform-variables/{id}
GET /api/platforms
GET /api/platforms/public
GET /api/platforms/public/authenticated-only
GET /api/platforms/public/by-app/{appId}
GET /api/platforms/public/latest/{id}
GET /api/platforms/public/login/{platformCodeName}
GET /api/platforms/public/{id}
GET /api/platforms/{id}
GET /api/public/actions
GET /api/public/actions/{id}
GET /api/public/apps
GET /api/public/apps/connect/{appId}
GET /api/public/apps/platform/by-name/{platformCodeName}
GET /api/public/apps/platform/{id}
GET /api/public/apps/workflows/{appId}
GET /api/public/apps/{id}
GET /api/public/meta/exchange/definitions/platform.json
GET /api/public/meta/mcp/all.json
GET /api/public/meta/mcp/{platformCodeName}.json
GET /api/public/meta/openapi/all.json
GET /api/public/meta/openapi/{platformCodeName}.json
GET /api/public/platforms
GET /api/public/platforms/authenticated-only
GET /api/public/platforms/by-app/{appId}
GET /api/public/platforms/latest/{id}
GET /api/public/platforms/login/{platformCodeName}
GET /api/public/platforms/{id}
GET /api/public/triggers
GET /api/public/triggers/{id}
GET /api/status
GET /api/status/extended
GET /api/stepdefinitions
GET /api/trigger-instances/{id}
GET /api/triggers
GET /api/triggers/app
GET /api/triggers/export/{platformId}
GET /api/triggers/history
GET /api/triggers/public
GET /api/triggers/public/{id}
GET /api/triggers/{id}
GET /api/workflow-exceptions
GET /api/workflow-exceptions/{id}
GET /api/workflow-history/app/{appId}
GET /api/workflow-history/instance/{instanceId}
GET /api/workflow-history/instance/{instanceId}/steps
GET /api/workflow-history/workflow/{workflowId}
GET /api/workflowdefinitions/{id}
GET /api/workflows
GET /api/workflows/{id}
GET /authorize
GET /callback
GET /debug/routes
POST /api/actions/openapi
POST /api/actions/{actionId}/input-properties
POST /api/actions/{actionId}/output-properties
POST /api/actions/{actionId}/succeed
POST /api/actions/{actionId}/try
POST /api/actions/{id}/clone
POST /api/apps/{id}/upgrade
POST /api/appversions/{id}
POST /api/evaluation/javascript
POST /api/platform-authentications/apikey/{platformId}
POST /api/platform-authentications/basic/{platformId}
POST /api/platform-authentications/oauth/{platformId}
POST /api/platform-interceptors/{id}/test
POST /api/platforms/public/logout/{platformCodeName}
POST /api/platforms/publish/{platformId}
POST /api/public/apps/activate/{appId}
POST /api/public/apps/deactivate/{appId}
POST /api/public/apps/install/{appId}
POST /api/public/apps/uninstall/{appId}
POST /api/public/platforms/logout/{platformCodeName}
POST /api/public/tools/try/{stepType}
POST /api/public/tools/try/{stepType}/magic
POST /api/tools/public/try/{stepType}
POST /api/tools/public/try/{stepType}/magic
POST /api/triggers/openapi
POST /api/triggers/{id}/clone
POST /api/triggers/{triggerId}/data-properties
POST /api/triggers/{triggerId}/input-properties
POST /api/triggers/{triggerId}/succeed
POST /api/triggers/{triggerId}/try
POST /api/workflows/{id}/clone
POST /register
POST /token
POST /token/exchange
PUT /api/actions/{actionId}/http-request-info/{id}
PUT /api/actions/{actionId}/input-properties/order
PUT /api/actions/{actionId}/input-properties/{id}
PUT /api/actions/{actionId}/output-properties/{id}
PUT /api/apps/{id}/status
PUT /api/platform-authentications/{id}/action-input-values
PUT /api/platform-authentications/{id}/user-selected-tenant-id
PUT /api/triggers/{triggerId}/data-properties/{id}
PUT /api/triggers/{triggerId}/input-properties/order
PUT /api/triggers/{triggerId}/input-properties/{id}
PUT /api/workflows/{id}/disable
PUT /api/workflows/{id}/enable

Found on 2026-01-09 09:18

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549fbd36c012b358f089e0990bf1234bc8308a63011

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/platform-authentications/{id}
GET /.well-known/jwks.json
GET /.well-known/oauth-authorization-server
GET /.well-known/openid-configuration
GET /api/actions
GET /api/actions/export/{platformId}
GET /api/actions/history/http
GET /api/actions/public
GET /api/actions/public/{id}
GET /api/actions/{id}
GET /api/app-executions
GET /api/apps
GET /api/apps/{id}
GET /api/authentication/callback
GET /api/authentication/login
GET /api/me
GET /api/me/email
GET /api/platform-authentications
GET /api/platform-authentications/oauth/callback/{platformRandomId}
GET /api/platform-authentications/pre-auth-fields/{platformId}
GET /api/platform-interceptors
GET /api/platform-interceptors/{id}
GET /api/platform-variables
GET /api/platform-variables/{id}
GET /api/platforms
GET /api/platforms/public
GET /api/platforms/public/authenticated-only
GET /api/platforms/public/by-app/{appId}
GET /api/platforms/public/latest/{id}
GET /api/platforms/public/login/{platformCodeName}
GET /api/platforms/public/{id}
GET /api/platforms/{id}
GET /api/public/actions
GET /api/public/actions/{id}
GET /api/public/apps
GET /api/public/apps/connect/{appId}
GET /api/public/apps/platform/by-name/{platformCodeName}
GET /api/public/apps/platform/{id}
GET /api/public/apps/workflows/{appId}
GET /api/public/apps/{id}
GET /api/public/meta/exchange/definitions/platform.json
GET /api/public/meta/mcp/all.json
GET /api/public/meta/mcp/{platformCodeName}.json
GET /api/public/meta/openapi/all.json
GET /api/public/meta/openapi/{platformCodeName}.json
GET /api/public/platforms
GET /api/public/platforms/authenticated-only
GET /api/public/platforms/by-app/{appId}
GET /api/public/platforms/latest/{id}
GET /api/public/platforms/login/{platformCodeName}
GET /api/public/platforms/{id}
GET /api/public/triggers
GET /api/public/triggers/{id}
GET /api/status
GET /api/status/extended
GET /api/stepdefinitions
GET /api/trigger-instances/{id}
GET /api/triggers
GET /api/triggers/app
GET /api/triggers/export/{platformId}
GET /api/triggers/history
GET /api/triggers/public
GET /api/triggers/public/{id}
GET /api/triggers/{id}
GET /api/workflow-exceptions
GET /api/workflow-exceptions/{id}
GET /api/workflow-history/app/{appId}
GET /api/workflow-history/instance/{instanceId}
GET /api/workflow-history/workflow/{workflowId}
GET /api/workflowdefinitions/{id}
GET /api/workflows
GET /api/workflows/{id}
GET /authorize
GET /callback
GET /debug/routes
POST /api/actions/openapi
POST /api/actions/{actionId}/input-properties
POST /api/actions/{actionId}/output-properties
POST /api/actions/{actionId}/succeed
POST /api/actions/{actionId}/try
POST /api/actions/{id}/clone
POST /api/apps/{id}/upgrade
POST /api/appversions/{id}
POST /api/evaluation/javascript
POST /api/platform-authentications/apikey/{platformId}
POST /api/platform-authentications/basic/{platformId}
POST /api/platform-authentications/oauth/{platformId}
POST /api/platform-interceptors/{id}/test
POST /api/platforms/public/logout/{platformCodeName}
POST /api/platforms/publish/{platformId}
POST /api/public/apps/activate/{appId}
POST /api/public/apps/deactivate/{appId}
POST /api/public/apps/install/{appId}
POST /api/public/apps/uninstall/{appId}
POST /api/public/platforms/logout/{platformCodeName}
POST /api/public/tools/try/{stepType}
POST /api/public/tools/try/{stepType}/magic
POST /api/tools/public/try/{stepType}
POST /api/tools/public/try/{stepType}/magic
POST /api/triggers/openapi
POST /api/triggers/{id}/clone
POST /api/triggers/{triggerId}/data-properties
POST /api/triggers/{triggerId}/input-properties
POST /api/triggers/{triggerId}/succeed
POST /api/triggers/{triggerId}/try
POST /api/workflows/{id}/clone
POST /register
POST /token
POST /token/exchange
PUT /api/actions/{actionId}/http-request-info/{id}
PUT /api/actions/{actionId}/input-properties/order
PUT /api/actions/{actionId}/input-properties/{id}
PUT /api/actions/{actionId}/output-properties/{id}
PUT /api/apps/{id}/status
PUT /api/platform-authentications/{id}/action-input-values
PUT /api/platform-authentications/{id}/user-selected-tenant-id
PUT /api/triggers/{triggerId}/data-properties/{id}
PUT /api/triggers/{triggerId}/input-properties/order
PUT /api/triggers/{triggerId}/input-properties/{id}
PUT /api/workflows/{id}/disable
PUT /api/workflows/{id}/enable

Found on 2026-01-01 19:31

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549fbd36c012b358f089e0990bf1234bc83d0d86f34

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/platform-authentications/{id}
GET /.well-known/jwks.json
GET /.well-known/oauth-authorization-server
GET /.well-known/openid-configuration
GET /api/actions
GET /api/actions/export/{platformId}
GET /api/actions/history/http
GET /api/actions/public
GET /api/actions/public/{id}
GET /api/actions/{id}
GET /api/app-executions
GET /api/apps
GET /api/apps/{id}
GET /api/authentication/callback
GET /api/authentication/login
GET /api/authentication/logout
GET /api/me
GET /api/me/email
GET /api/platform-authentications
GET /api/platform-authentications/oauth/callback/{platformRandomId}
GET /api/platform-authentications/pre-auth-fields/{platformId}
GET /api/platform-interceptors
GET /api/platform-interceptors/{id}
GET /api/platform-variables
GET /api/platform-variables/{id}
GET /api/platforms
GET /api/platforms/public
GET /api/platforms/public/authenticated-only
GET /api/platforms/public/by-app/{appId}
GET /api/platforms/public/latest/{id}
GET /api/platforms/public/login/{platformCodeName}
GET /api/platforms/public/{id}
GET /api/platforms/{id}
GET /api/public/actions
GET /api/public/actions/{id}
GET /api/public/apps
GET /api/public/apps/connect/{appId}
GET /api/public/apps/platform/by-name/{platformCodeName}
GET /api/public/apps/platform/{id}
GET /api/public/apps/workflows/{appId}
GET /api/public/apps/{id}
GET /api/public/meta/exchange/definitions/platform.json
GET /api/public/meta/mcp/all.json
GET /api/public/meta/mcp/{platformCodeName}.json
GET /api/public/meta/openapi/all.json
GET /api/public/meta/openapi/{platformCodeName}.json
GET /api/public/platforms
GET /api/public/platforms/authenticated-only
GET /api/public/platforms/by-app/{appId}
GET /api/public/platforms/latest/{id}
GET /api/public/platforms/login/{platformCodeName}
GET /api/public/platforms/{id}
GET /api/public/triggers
GET /api/public/triggers/{id}
GET /api/status
GET /api/status/extended
GET /api/stepdefinitions
GET /api/trigger-instances/{id}
GET /api/triggers
GET /api/triggers/app
GET /api/triggers/export/{platformId}
GET /api/triggers/history
GET /api/triggers/public
GET /api/triggers/public/{id}
GET /api/triggers/{id}
GET /api/workflow-exceptions
GET /api/workflow-exceptions/{id}
GET /api/workflow-history/app/{appId}
GET /api/workflow-history/instance/{instanceId}
GET /api/workflow-history/workflow/{workflowId}
GET /api/workflowdefinitions/{id}
GET /api/workflows
GET /api/workflows/{id}
GET /authorize
GET /callback
GET /debug/routes
POST /api/actions/openapi
POST /api/actions/{actionId}/input-properties
POST /api/actions/{actionId}/output-properties
POST /api/actions/{actionId}/succeed
POST /api/actions/{actionId}/try
POST /api/actions/{id}/clone
POST /api/apps/{id}/upgrade
POST /api/appversions/{id}
POST /api/evaluation/javascript
POST /api/platform-authentications/apikey/{platformId}
POST /api/platform-authentications/basic/{platformId}
POST /api/platform-authentications/oauth/{platformId}
POST /api/platform-interceptors/{id}/test
POST /api/platforms/public/logout/{platformCodeName}
POST /api/platforms/publish/{platformId}
POST /api/public/apps/activate/{appId}
POST /api/public/apps/deactivate/{appId}
POST /api/public/apps/install/{appId}
POST /api/public/apps/uninstall/{appId}
POST /api/public/platforms/logout/{platformCodeName}
POST /api/public/tools/try/{stepType}
POST /api/public/tools/try/{stepType}/magic
POST /api/tools/public/try/{stepType}
POST /api/tools/public/try/{stepType}/magic
POST /api/triggers/openapi
POST /api/triggers/{id}/clone
POST /api/triggers/{triggerId}/data-properties
POST /api/triggers/{triggerId}/input-properties
POST /api/triggers/{triggerId}/succeed
POST /api/triggers/{triggerId}/try
POST /api/workflows/{id}/clone
POST /register
POST /token
POST /token/exchange
PUT /api/actions/{actionId}/http-request-info/{id}
PUT /api/actions/{actionId}/input-properties/order
PUT /api/actions/{actionId}/input-properties/{id}
PUT /api/actions/{actionId}/output-properties/{id}
PUT /api/apps/{id}/status
PUT /api/platform-authentications/{id}/action-input-values
PUT /api/platform-authentications/{id}/user-selected-tenant-id
PUT /api/triggers/{triggerId}/data-properties/{id}
PUT /api/triggers/{triggerId}/input-properties/order
PUT /api/triggers/{triggerId}/input-properties/{id}
PUT /api/workflows/{id}/disable
PUT /api/workflows/{id}/enable

Found on 2025-11-26 04:32

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549fbd36c012b358f089e0990bf1234bc837d5b7f59

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/platform-authentications/{id}
GET /.well-known/jwks.json
GET /.well-known/oauth-authorization-server
GET /.well-known/openid-configuration
GET /api/actions
GET /api/actions/export/{platformId}
GET /api/actions/history/http
GET /api/actions/public
GET /api/actions/public/{id}
GET /api/actions/{id}
GET /api/app-executions
GET /api/apps
GET /api/apps/{id}
GET /api/authentication/callback
GET /api/authentication/login
GET /api/authentication/logout
GET /api/me
GET /api/me/email
GET /api/platform-authentications
GET /api/platform-authentications/oauth/callback/{platformRandomId}
GET /api/platform-variables
GET /api/platform-variables/{id}
GET /api/platforms
GET /api/platforms/public
GET /api/platforms/public/authenticated-only
GET /api/platforms/public/by-app/{appId}
GET /api/platforms/public/latest/{id}
GET /api/platforms/public/login/{platformCodeName}
GET /api/platforms/public/{id}
GET /api/platforms/{id}
GET /api/public/actions
GET /api/public/actions/{id}
GET /api/public/apps
GET /api/public/apps/connect/{appId}
GET /api/public/apps/platform/{platformId}
GET /api/public/apps/workflows/{appId}
GET /api/public/apps/{id}
GET /api/public/meta/exchange/definitions/platform.json
GET /api/public/meta/mcp/all.json
GET /api/public/meta/mcp/{platformCodeName}.json
GET /api/public/meta/openapi/all.json
GET /api/public/meta/openapi/{platformCodeName}.json
GET /api/public/platforms
GET /api/public/platforms/authenticated-only
GET /api/public/platforms/by-app/{appId}
GET /api/public/platforms/latest/{id}
GET /api/public/platforms/login/{platformCodeName}
GET /api/public/platforms/{id}
GET /api/public/triggers
GET /api/public/triggers/{id}
GET /api/publicapps
GET /api/publicapps/connect/{appId}
GET /api/publicapps/platform/{platformId}
GET /api/publicapps/workflows/{appId}
GET /api/publicapps/{id}
GET /api/status
GET /api/status/extended
GET /api/stepdefinitions
GET /api/trigger-instances/{id}
GET /api/triggers
GET /api/triggers/app
GET /api/triggers/export/{platformId}
GET /api/triggers/history
GET /api/triggers/public
GET /api/triggers/public/{id}
GET /api/triggers/{id}
GET /api/workflow-exceptions
GET /api/workflow-exceptions/{id}
GET /api/workflow-history/app/{appId}
GET /api/workflow-history/instance/{instanceId}
GET /api/workflow-history/workflow/{workflowId}
GET /api/workflowdefinitions/{id}
GET /api/workflows
GET /api/workflows/{id}
GET /authorize
GET /callback
GET /debug/routes
POST /api/actions/openapi
POST /api/actions/{actionId}/input-properties
POST /api/actions/{actionId}/output-properties
POST /api/actions/{actionId}/succeed
POST /api/actions/{actionId}/try
POST /api/actions/{id}/clone
POST /api/apps/{id}/upgrade
POST /api/appversions/{id}
POST /api/evaluation/javascript
POST /api/platform-authentications/apikey/{platformId}
POST /api/platform-authentications/basic/{platformId}
POST /api/platform-authentications/oauth/{platformId}
POST /api/platforms/public/logout/{platformCodeName}
POST /api/platforms/publish/{platformId}
POST /api/public/apps/install/{appId}
POST /api/public/apps/uninstall/{appId}
POST /api/public/platforms/logout/{platformCodeName}
POST /api/public/tools/try/{stepType}
POST /api/public/tools/try/{stepType}/magic
POST /api/publicapps/install/{appId}
POST /api/publicapps/uninstall/{appId}
POST /api/tools/public/try/{stepType}
POST /api/tools/public/try/{stepType}/magic
POST /api/triggers/openapi
POST /api/triggers/{id}/clone
POST /api/triggers/{triggerId}/data-properties
POST /api/triggers/{triggerId}/input-properties
POST /api/triggers/{triggerId}/succeed
POST /api/triggers/{triggerId}/try
POST /api/workflows/{id}/clone
POST /register
POST /token
POST /token/exchange
PUT /api/actions/{actionId}/http-request-info/{id}
PUT /api/actions/{actionId}/input-properties/order
PUT /api/actions/{actionId}/input-properties/{id}
PUT /api/actions/{actionId}/output-properties/{id}
PUT /api/apps/{id}/status
PUT /api/platform-authentications/{id}/action-input-values
PUT /api/platform-authentications/{id}/user-selected-tenant-id
PUT /api/triggers/{triggerId}/data-properties/{id}
PUT /api/triggers/{triggerId}/input-properties/order
PUT /api/triggers/{triggerId}/input-properties/{id}
PUT /api/workflows/{id}/disable
PUT /api/workflows/{id}/enable

Found on 2025-11-12 21:13

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: watch.horizon.org.nz
Port: 80
URL: http://watch.horizon.org.nz

First seen 2025-11-15 00:50
Last seen 2026-01-09 09:13
Open for 55 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 09:13
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: countrycamp.bmidigital.online
Port: 80
URL: http://countrycamp.bmidigital.online

First seen 2025-11-14 02:12
Last seen 2026-01-09 09:08
Open for 56 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 09:08
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: industrycard.app
Port: 443
URL: https://industrycard.app

First seen 2025-12-10 00:27
Last seen 2026-01-09 07:56
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 07:56
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: backend.checkme-app.com
Port: 443
URL: https://backend.checkme-app.com

First seen 2025-12-10 00:28
Last seen 2026-01-09 07:56
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 07:56
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.ehr.litisaude.com.br
Port: 443
URL: https://api.ehr.litisaude.com.br

First seen 2025-12-04 00:44
Last seen 2026-01-09 07:31
Open for 36 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 07:31
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.guisbot.top
Port: 80
URL: http://api.guisbot.top

First seen 2025-12-10 00:08
Last seen 2026-01-09 07:18
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 07:18
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.bwoc.online
Port: 80
URL: http://www.bwoc.online

First seen 2025-11-14 02:02
Last seen 2026-01-09 07:17
Open for 56 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 07:17
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: portal.saltview.com
Port: 80
URL: http://portal.saltview.com

First seen 2025-10-23 00:43
Last seen 2026-01-09 07:15
Open for 78 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 07:15
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: sharingjesus.bmidigital.online
Port: 443
URL: https://sharingjesus.bmidigital.online

First seen 2025-11-13 02:44
Last seen 2026-01-09 07:10
Open for 57 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 07:10
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.omnitimeline.com
Port: 443
URL: https://www.omnitimeline.com

First seen 2025-11-13 01:33
Last seen 2026-01-09 07:10
Open for 57 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 07:10
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: synapse.api.dev.sdocs.com
Port: 80
URL: http://synapse.api.dev.sdocs.com

First seen 2025-10-30 00:40
Last seen 2026-01-09 06:43
Open for 71 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4b49bd6e4bc172a02011a441220ede2d3b113b6a9a

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /connectedApp/{connectedAppId}/asset/{assetId}/platformInfo
GET /connectedApp/{connectedAppId}/data/file
GET /connectedApp/{connectedAppId}/data/user/{userEmail}
GET /connectedApp/{connectedAppId}/data/{objectApiName}/{fieldApiName}
GET /connectedApp/{connectedAppId}/metadata/assets
GET /connectedApp/{connectedAppId}/metadata/objects
GET /connectedApp/{connectedAppId}/metadata/objects/{objectApiName}
GET /connectedApp/{connectedAppId}/metadata/objects/{objectApiName}/relationships
GET /connectedApp/{connectedAppId}/metadata/objects/{objectApiName}/{fieldApiName}/options
PATCH /connectedApp/{connectedAppId}/{objectApiName}/{objectId}
POST /connectedApp
POST /connectedApp/{connectedAppId}/connections
POST /connectedApp/{connectedAppId}/data/objects/{objectApiName}/records/{recordId}/file
POST /connectedApp/{connectedAppId}/data/{objectApiName}/{objectId}
POST /connectedApp/{connectedAppId}/disconnect
POST /connectedApp/{connectedAppId}/messaging/{msgType}
POST /connectedApp/{connectedAppId}/startRecipes
POST /connectedApp/{connectedAppId}/workflow/callback

Found on 2026-01-09 06:43

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.tuim.com.br
Port: 80
URL: http://api.tuim.com.br

First seen 2025-10-21 00:10
Last seen 2026-01-09 05:59
Open for 80 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f61fc931f61fc931f61fc931f61fc931f61fc931f61fc931
```
Public Swagger UI/API detected at path: /api/swagger.json
```
  Found on 2026-01-09 05:59
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: server-dev.makeitperfectly.com
Port: 80
URL: http://server-dev.makeitperfectly.com

First seen 2025-11-15 00:50
Last seen 2026-01-09 05:51
Open for 55 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43d381b5382c079c364d9202341b346bb3b43030af

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /{appName}/anonymous/{userId}
DELETE /{appName}/sessions/{token}
DELETE /{appName}/users/{userId}/reset
DELETE /{appName}/{resourceType}/{id}
GET /contents
GET /contents/{id}
GET /events
GET /reviews
GET /reviews/{reviewId}
GET /web/{appName}/auth
GET /web/{appName}/auth_no_social
GET /web/{appName}/confirm
GET /web/{appName}/confirm/resend
GET /web/{appName}/error
GET /web/{appName}/links/{path*}
GET /web/{appName}/login
GET /web/{appName}/obsolete
GET /web/{appName}/reference
GET /web/{appName}/reference/{referenceType}/{referenceId}
GET /web/{appName}/register
GET /web/{appName}/reset
GET /web/{appName}/reset_request
GET /web/{appName}/users/feed
GET /web/{appName}/users/{userId}/feed
GET /{appName}/actions
GET /{appName}/actions/{id}
GET /{appName}/actions/{id}/history
GET /{appName}/analytics/builds
GET /{appName}/analytics/builds/dayparts
GET /{appName}/analytics/builds/ingredients
GET /{appName}/analytics/builds/recipes
GET /{appName}/analytics/builds/users
GET /{appName}/analytics/builds/{id}
GET /{appName}/collections
GET /{appName}/collections/{cid}
GET /{appName}/collections/{id}/history
GET /{appName}/containers
GET /{appName}/containers/{id}
GET /{appName}/containers/{id}/history
GET /{appName}/contents/{id}/history
GET /{appName}/contents/{type}
GET /{appName}/dependencies/{resourceType}
GET /{appName}/dependencies/{resourceType}/{resourceId}
GET /{appName}/error
GET /{appName}/extras/{id}
GET /{appName}/extras/{id}/history
GET /{appName}/feed
GET /{appName}/feed/{id}
GET /{appName}/ingredients
GET /{appName}/ingredients/{id}
GET /{appName}/ingredients/{id}/history
GET /{appName}/partners/{name}
GET /{appName}/partners/{name}/containers/{id}
GET /{appName}/partners/{name}/ingredients/{id}
GET /{appName}/partners/{name}/recipes/{id}
GET /{appName}/partners/{name}/tools/{id}
GET /{appName}/promotions/{resourceType}/{resourceId}
GET /{appName}/recipes
GET /{appName}/recipes/partners/{partnerName}/{partnerId}
GET /{appName}/recipes/{id}
GET /{appName}/recipes/{id}/history
GET /{appName}/reset/{id}
GET /{appName}/resources/tags
GET /{appName}/reviews/{id}/history
GET /{appName}/sessions
GET /{appName}/status
GET /{appName}/tags
GET /{appName}/tags/{id}/history
GET /{appName}/tags/{tagId}
GET /{appName}/tools
GET /{appName}/tools/{id}
GET /{appName}/tools/{id}/history
GET /{appName}/units
GET /{appName}/units/{id}
GET /{appName}/units/{id}/history
GET /{appName}/users
GET /{appName}/users/{id}/history
GET /{appName}/users/{userId}
GET /{appName}/users/{userId}/app_preferences
GET /{appName}/users/{userId}/cabinet
GET /{appName}/users/{userId}/collections
GET /{appName}/users/{userId}/ingredients
GET /{appName}/users/{userId}/ingredients/{id}
GET /{appName}/users/{userId}/mealplans/active/{activeMealPlanId}
GET /{appName}/users/{userId}/recipe_settings
GET /{appName}/users/{userId}/recipes
GET /{appName}/users/{userId}/recipes/{id}
GET /{appName}/users/{userId}/recipes/{id}/builds/{buildId}
GET /{appName}/users/{userId}/recipes/{recipeId}/recipe_settings
GET /{appName}/users/{userId}/resources
GET /{appName}/users/{userId}/reviews
GET /{appName}/users/{userId}/shopping_list
GET /{appName}/users/{userId}/shopping_list_items
GET /{appName}/users/{userId}/shopping_list_items/{id}
GET /{appName}/users/{userId}/tags/{tagId}
GET /{appName}/users/{userId}/users
GET /{appName}/users/{userId}/{resourceType}/{resourceId}/tags
GET /{appName}/{resourceType}/{resourceId}/reviews
GET /{appName}/{resourceType}/{resourceId}/tags
POST /{appName}/anonymous
POST /{appName}/auth
POST /{appName}/change_email
POST /{appName}/collections/{cid}/users/{userId}
POST /{appName}/confirm
POST /{appName}/confirm/resend
POST /{appName}/migrations
POST /{appName}/promotions
POST /{appName}/register
POST /{appName}/reset
POST /{appName}/reset_request
POST /{appName}/users/{userId}/collections/personal
POST /{appName}/users/{userId}/events
POST /{appName}/users/{userId}/mealplans/active
POST /{appName}/users/{userId}/recipes/{id}/builds
POST /{appName}/users/{userId}/tags
POST /{appName}/users/{userId}/{resourceType}/{resourceId}/reviews
PUT /{appName}/collections/{cid}/{resourceType}/{resourceId}
PUT /{appName}/tags/{id}
PUT /{appName}/users/{userId}/collections/installed/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/collections/personal/{cid}
PUT /{appName}/users/{userId}/collections/personal/{cid}/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/mealplans/active/{id}
PUT /{appName}/users/{userId}/password
PUT /{appName}/users/{userId}/share/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/{resourceType}/{resourceId}/reviews/{reviewId}
PUT /{appName}/users/{userId}/{resourceType}/{resourceId}/tags/{tagId}
PUT /{appName}/{resourceType}/{resourceId}/localization
PUT /{appName}/{resourceType}/{resourceId}/photo
PUT /{appName}/{resourceType}/{resourceId}/tags/{tagId}

Found on 2026-01-09 05:51

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43d381b5382c079c364d9202341b346bb30d0917c1

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /{appName}/anonymous/{userId}
DELETE /{appName}/sessions/{token}
DELETE /{appName}/users/{userId}/reset
DELETE /{appName}/{resourceType}/{id}
GET /contents
GET /contents/{id}
GET /events
GET /reviews
GET /reviews/{reviewId}
GET /web/{appName}/auth
GET /web/{appName}/auth_no_social
GET /web/{appName}/confirm
GET /web/{appName}/confirm/resend
GET /web/{appName}/error
GET /web/{appName}/facebook/client_error
GET /web/{appName}/facebook/{source}
GET /web/{appName}/google/{source}
GET /web/{appName}/links/{path*}
GET /web/{appName}/login
GET /web/{appName}/obsolete
GET /web/{appName}/reference
GET /web/{appName}/reference/{referenceType}/{referenceId}
GET /web/{appName}/register
GET /web/{appName}/reset
GET /web/{appName}/reset_request
GET /web/{appName}/twitter
GET /web/{appName}/users/feed
GET /web/{appName}/users/{userId}/feed
GET /{appName}/actions
GET /{appName}/actions/{id}
GET /{appName}/actions/{id}/history
GET /{appName}/analytics/builds
GET /{appName}/analytics/builds/dayparts
GET /{appName}/analytics/builds/ingredients
GET /{appName}/analytics/builds/recipes
GET /{appName}/analytics/builds/users
GET /{appName}/analytics/builds/{id}
GET /{appName}/collections
GET /{appName}/collections/{cid}
GET /{appName}/collections/{id}/history
GET /{appName}/containers
GET /{appName}/containers/{id}
GET /{appName}/containers/{id}/history
GET /{appName}/contents/{id}/history
GET /{appName}/contents/{type}
GET /{appName}/dependencies/{resourceType}
GET /{appName}/dependencies/{resourceType}/{resourceId}
GET /{appName}/error
GET /{appName}/extras/{id}
GET /{appName}/extras/{id}/history
GET /{appName}/facebook_client
GET /{appName}/feed
GET /{appName}/feed/{id}
GET /{appName}/google_client
GET /{appName}/ingredients
GET /{appName}/ingredients/{id}
GET /{appName}/ingredients/{id}/history
GET /{appName}/partners/{name}
GET /{appName}/partners/{name}/containers/{id}
GET /{appName}/partners/{name}/ingredients/{id}
GET /{appName}/partners/{name}/recipes/{id}
GET /{appName}/partners/{name}/tools/{id}
GET /{appName}/promotions/{resourceType}/{resourceId}
GET /{appName}/recipes
GET /{appName}/recipes/partners/{partnerName}/{partnerId}
GET /{appName}/recipes/{id}
GET /{appName}/recipes/{id}/history
GET /{appName}/reset/{id}
GET /{appName}/resources/tags
GET /{appName}/reviews/{id}/history
GET /{appName}/sessions
GET /{appName}/status
GET /{appName}/tags
GET /{appName}/tags/{id}/history
GET /{appName}/tags/{tagId}
GET /{appName}/tools
GET /{appName}/tools/{id}
GET /{appName}/tools/{id}/history
GET /{appName}/units
GET /{appName}/units/{id}
GET /{appName}/units/{id}/history
GET /{appName}/users
GET /{appName}/users/{id}/history
GET /{appName}/users/{userId}
GET /{appName}/users/{userId}/app_preferences
GET /{appName}/users/{userId}/cabinet
GET /{appName}/users/{userId}/collections
GET /{appName}/users/{userId}/ingredients
GET /{appName}/users/{userId}/ingredients/{id}
GET /{appName}/users/{userId}/mealplans/active/{activeMealPlanId}
GET /{appName}/users/{userId}/recipe_settings
GET /{appName}/users/{userId}/recipes
GET /{appName}/users/{userId}/recipes/{id}
GET /{appName}/users/{userId}/recipes/{id}/builds/{buildId}
GET /{appName}/users/{userId}/recipes/{recipeId}/recipe_settings
GET /{appName}/users/{userId}/resources
GET /{appName}/users/{userId}/reviews
GET /{appName}/users/{userId}/shopping_list
GET /{appName}/users/{userId}/shopping_list_items
GET /{appName}/users/{userId}/shopping_list_items/{id}
GET /{appName}/users/{userId}/tags/{tagId}
GET /{appName}/users/{userId}/users
GET /{appName}/users/{userId}/{resourceType}/{resourceId}/tags
GET /{appName}/{resourceType}/{resourceId}/reviews
GET /{appName}/{resourceType}/{resourceId}/tags
POST /{appName}/anonymous
POST /{appName}/auth
POST /{appName}/change_email
POST /{appName}/collections/{cid}/users/{userId}
POST /{appName}/confirm
POST /{appName}/confirm/resend
POST /{appName}/migrations
POST /{appName}/promotions
POST /{appName}/register
POST /{appName}/reset
POST /{appName}/reset_request
POST /{appName}/users/{userId}/collections/personal
POST /{appName}/users/{userId}/events
POST /{appName}/users/{userId}/mealplans/active
POST /{appName}/users/{userId}/recipes/{id}/builds
POST /{appName}/users/{userId}/tags
POST /{appName}/users/{userId}/{resourceType}/{resourceId}/reviews
PUT /{appName}/collections/{cid}/{resourceType}/{resourceId}
PUT /{appName}/tags/{id}
PUT /{appName}/users/{userId}/collections/installed/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/collections/personal/{cid}
PUT /{appName}/users/{userId}/collections/personal/{cid}/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/mealplans/active/{id}
PUT /{appName}/users/{userId}/password
PUT /{appName}/users/{userId}/share/{resourceType}/{resourceId}
PUT /{appName}/users/{userId}/{resourceType}/{resourceId}/reviews/{reviewId}
PUT /{appName}/users/{userId}/{resourceType}/{resourceId}/tags/{tagId}
PUT /{appName}/{resourceType}/{resourceId}/localization
PUT /{appName}/{resourceType}/{resourceId}/photo
PUT /{appName}/{resourceType}/{resourceId}/tags/{tagId}

Found on 2025-12-01 08:50

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.tailrender.com
Port: 443
URL: https://api.tailrender.com

First seen 2025-11-23 01:51
Last seen 2026-01-09 05:37
Open for 47 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 05:37
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 35.71.179.82
Domain: www.famweaver.com
Port: 443
URL: https://www.famweaver.com

First seen 2025-11-08 18:30
Last seen 2026-01-09 05:14
Open for 61 days

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863c3ab104164ad0812947afd5de274814ba9b094c12

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
ANY info
DELETE /api/conversations/{id}
DELETE /api/conversations/{id}/members/{memberId}
DELETE /api/errors(?=/|$)/all
GET /api(?=/|$)/detailed
GET /api(?=/|$)/health
GET /api(?=/|$)/ready
GET /api/auth/genesis
GET /api/auth/google
GET /api/auth/google/callback
GET /api/auth/me
GET /api/auth/user
GET /api/conversations
GET /api/conversations/matching
GET /api/conversations/{id}/members
GET /api/conversations/{id}/messages
GET /api/conversations/{id}/permissions
GET /api/conversations/{id}/relationships
GET /api/csrf-token
GET /api/debug/session
GET /api/email-preferences(?=/|$)
GET /api/email-preferences(?=/|$)/analytics
GET /api/email-preferences(?=/|$)/track/click/{emailId}
GET /api/email-preferences(?=/|$)/track/open/{emailId}
GET /api/errors(?=/|$)/aggregations
GET /api/errors(?=/|$)/my-errors
GET /api/errors(?=/|$)/recent
GET /api/family-members
GET /api/family-members/search
GET /api/family-relationships
GET /api/family-relationships/between/{fromUserId}/{toUserId}
GET /api/family-relationships/path/{targetUserId}
GET /api/family-tree/structure
GET /api/logout
GET /api/metrics(?=/|$)/capacity
GET /api/metrics(?=/|$)/dashboard
GET /api/metrics(?=/|$)/limits
GET /api/metrics(?=/|$)/resources
GET /api/network(?=/|$)/context
GET /api/network(?=/|$)/dashboard
GET /api/network(?=/|$)/health
GET /api/network(?=/|$)/members
GET /api/network(?=/|$)/repository-stats
GET /api/network(?=/|$)/stats
GET /api/public(?=/|$)/sms-consent/status/{phoneNumber}
GET /api/sms-monitoring(?=/|$)/audit-logs
GET /api/sms-monitoring(?=/|$)/consent-stats
GET /api/sms-monitoring(?=/|$)/dashboard
GET /api/sms-monitoring(?=/|$)/delivery-status
GET /api/sms-monitoring(?=/|$)/service-health
GET /api/sms-monitoring(?=/|$)/sla-metrics
GET /api/v2/events
GET /api/v2/events/{eventId}
GET /api/v2/monitoring(?=/|$)/cache
GET /api/v2/monitoring(?=/|$)/cache-stats
GET /api/v2/monitoring(?=/|$)/health
GET /api/v2/monitoring(?=/|$)/metrics
GET /api/v2/monitoring(?=/|$)/performance
GET /api/v2/monitoring(?=/|$)/query-stats
GET /api/v2/monitoring(?=/|$)/realtime
GET /api/v2/monitoring(?=/|$)/realtime-stats
GET /api/v2/monitoring(?=/|$)/system
GET /api/v2/monitoring(?=/|$)/test
GET /api/v2/monitoring(?=/|$)/user-journey/{userId}
GET /api/v2/network(?=/|$)/members
GET /api/v2/network(?=/|$)/stats
POST /api/auth/generate-api-key
POST /api/auth/genesis/email
POST /api/auth/genesis/magic-link
POST /api/email-preferences(?=/|$)/unsubscribe
POST /api/error-reports
POST /api/family-relationships/fix-labels
POST /api/family-relationships/refresh-cache
POST /api/messages
POST /api/metrics(?=/|$)/drain
POST /api/network(?=/|$)/batch
POST /api/network(?=/|$)/cache/invalidate
POST /api/public(?=/|$)/sms-consent
POST /api/public(?=/|$)/sms-consent/opt-out
POST /api/public(?=/|$)/sms-consent/verify
POST /api/sms-monitoring(?=/|$)/clear-cache
POST /api/v2/events/{eventId}/rsvp
POST /api/v2/monitoring(?=/|$)/cache-optimize
POST /api/v2/monitoring(?=/|$)/cache-stats/reset
POST /api/v2/monitoring(?=/|$)/sessions/clear
POST /api/validate-email
PUT /api/conversations/{id}/settings

Found on 2026-01-09 05:14

Severity: info
Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
Found on 2025-11-08 18:30

Severity: info
Fingerprint: 5733ddf49ff49cd110b5863c3ab104164ad0812947afd5de274814ba5db07b1b

Public Swagger UI/API detected at path: /api-docs/swagger.json - sample paths:
ANY info
DELETE /api/conversations/{id}
DELETE /api/conversations/{id}/members/{memberId}
DELETE /api/errors(?=/|$)/all
GET /api(?=/|$)/detailed
GET /api(?=/|$)/health
GET /api(?=/|$)/ready
GET /api/auth/google
GET /api/auth/google/callback
GET /api/auth/me
GET /api/auth/user
GET /api/conversations
GET /api/conversations/matching
GET /api/conversations/{id}/members
GET /api/conversations/{id}/messages
GET /api/conversations/{id}/permissions
GET /api/conversations/{id}/relationships
GET /api/csrf-token
GET /api/debug/session
GET /api/email-preferences(?=/|$)
GET /api/email-preferences(?=/|$)/analytics
GET /api/email-preferences(?=/|$)/track/click/{emailId}
GET /api/email-preferences(?=/|$)/track/open/{emailId}
GET /api/errors(?=/|$)/aggregations
GET /api/errors(?=/|$)/my-errors
GET /api/errors(?=/|$)/recent
GET /api/family-members
GET /api/family-members/search
GET /api/family-relationships
GET /api/family-relationships/between/{fromUserId}/{toUserId}
GET /api/family-relationships/path/{targetUserId}
GET /api/family-tree/structure
GET /api/logout
GET /api/metrics(?=/|$)/capacity
GET /api/metrics(?=/|$)/dashboard
GET /api/metrics(?=/|$)/limits
GET /api/metrics(?=/|$)/resources
GET /api/network(?=/|$)/context
GET /api/network(?=/|$)/dashboard
GET /api/network(?=/|$)/health
GET /api/network(?=/|$)/members
GET /api/network(?=/|$)/repository-stats
GET /api/network(?=/|$)/stats
GET /api/public(?=/|$)/sms-consent/status/{phoneNumber}
GET /api/sms-monitoring(?=/|$)/audit-logs
GET /api/sms-monitoring(?=/|$)/consent-stats
GET /api/sms-monitoring(?=/|$)/dashboard
GET /api/sms-monitoring(?=/|$)/delivery-status
GET /api/sms-monitoring(?=/|$)/service-health
GET /api/sms-monitoring(?=/|$)/sla-metrics
GET /api/v2/monitoring(?=/|$)/cache
GET /api/v2/monitoring(?=/|$)/cache-stats
GET /api/v2/monitoring(?=/|$)/health
GET /api/v2/monitoring(?=/|$)/metrics
GET /api/v2/monitoring(?=/|$)/performance
GET /api/v2/monitoring(?=/|$)/query-stats
GET /api/v2/monitoring(?=/|$)/realtime
GET /api/v2/monitoring(?=/|$)/realtime-stats
GET /api/v2/monitoring(?=/|$)/system
GET /api/v2/monitoring(?=/|$)/test
GET /api/v2/monitoring(?=/|$)/user-journey/{userId}
POST /api/auth/generate-api-key
POST /api/email-preferences(?=/|$)/unsubscribe
POST /api/error-reports
POST /api/family-relationships/fix-labels
POST /api/family-relationships/refresh-cache
POST /api/messages
POST /api/metrics(?=/|$)/drain
POST /api/network(?=/|$)/batch
POST /api/network(?=/|$)/cache/invalidate
POST /api/public(?=/|$)/sms-consent
POST /api/public(?=/|$)/sms-consent/opt-out
POST /api/public(?=/|$)/sms-consent/verify
POST /api/sms-monitoring(?=/|$)/clear-cache
POST /api/v2/monitoring(?=/|$)/cache-optimize
POST /api/v2/monitoring(?=/|$)/cache-stats/reset
POST /api/v2/monitoring(?=/|$)/sessions/clear
POST /api/validate-email
PUT /api/conversations/{id}/settings

Found on 2025-11-08 18:30

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: plataforma-homolog.livre.app.br
Port: 443
URL: https://plataforma-homolog.livre.app.br

First seen 2025-12-03 00:27
Last seen 2026-01-09 04:51
Open for 37 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-09 04:51
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.kindred.chat
Port: 443
URL: https://api.kindred.chat

First seen 2025-11-22 02:37
Last seen 2026-01-09 04:45
Open for 48 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 04:45
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: rise.newcreation.courses
Port: 80
URL: http://rise.newcreation.courses

First seen 2025-10-23 00:32
Last seen 2026-01-09 04:24
Open for 78 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 04:24
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: reports.realestateapi.com
Port: 80
URL: http://reports.realestateapi.com

First seen 2025-11-24 01:46
Last seen 2026-01-09 04:18
Open for 46 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43339d009ac8efbf1e464fa51b06df62d2a3c86c38
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
POST /v2/AddressVerification
POST /v2/AutoComplete
POST /v2/CSVBuilder
POST /v2/MLSDetail
POST /v2/MLSSearch
POST /v2/PropGPT
POST /v2/PropertyAvm
POST /v2/PropertyDetail
POST /v2/PropertyDetailBulk
POST /v2/PropertySearch
POST /v2/Reports/Documents
POST /v2/Reports/PropertyLiens
POST /v2/Reports/PropertyReports
POST /v3/PropertyComps
```
  Found on 2026-01-09 04:18
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.exchange.staging.liveswitch.com
Port: 443
URL: https://api.exchange.staging.liveswitch.com

First seen 2025-10-25 05:26
Last seen 2026-01-09 03:46
Open for 75 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549fbd36c012b358f089e0990bf1234bc837ea9ab36

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/platform-authentications/{id}
GET /.well-known/jwks.json
GET /.well-known/oauth-authorization-server
GET /.well-known/openid-configuration
GET /api/actions
GET /api/actions/export/{platformId}
GET /api/actions/history/http
GET /api/actions/public
GET /api/actions/public/{id}
GET /api/actions/{id}
GET /api/app-executions
GET /api/apps
GET /api/apps/{id}
GET /api/authentication/callback
GET /api/authentication/login
GET /api/me
GET /api/me/email
GET /api/platform-authentications
GET /api/platform-authentications/oauth/callback/{platformRandomId}
GET /api/platform-authentications/pre-auth-fields/{platformId}
GET /api/platform-interceptors
GET /api/platform-interceptors/{id}
GET /api/platform-variables
GET /api/platform-variables/{id}
GET /api/platforms
GET /api/platforms/public
GET /api/platforms/public/authenticated-only
GET /api/platforms/public/by-app/{appId}
GET /api/platforms/public/latest/{id}
GET /api/platforms/public/login/{platformCodeName}
GET /api/platforms/public/{id}
GET /api/platforms/{id}
GET /api/public/actions
GET /api/public/actions/{id}
GET /api/public/apps
GET /api/public/apps/connect/{appId}
GET /api/public/apps/platform/by-name/{platformCodeName}
GET /api/public/apps/platform/{id}
GET /api/public/apps/workflows/{appId}
GET /api/public/apps/{id}
GET /api/public/meta/exchange/definitions/platform.json
GET /api/public/meta/mcp/all.json
GET /api/public/meta/mcp/{platformCodeName}.json
GET /api/public/meta/openapi/all.json
GET /api/public/meta/openapi/{platformCodeName}.json
GET /api/public/platforms
GET /api/public/platforms/authenticated-only
GET /api/public/platforms/by-app/{appId}
GET /api/public/platforms/latest/{id}
GET /api/public/platforms/login/{platformCodeName}
GET /api/public/platforms/{id}
GET /api/public/triggers
GET /api/public/triggers/{id}
GET /api/status
GET /api/status/extended
GET /api/stepdefinitions
GET /api/trigger-instances/{id}
GET /api/triggers
GET /api/triggers/app
GET /api/triggers/export/{platformId}
GET /api/triggers/history
GET /api/triggers/public
GET /api/triggers/public/{id}
GET /api/triggers/{id}
GET /api/workflow-exceptions
GET /api/workflow-exceptions/{id}
GET /api/workflow-history/app/{appId}
GET /api/workflow-history/instance/{instanceId}
GET /api/workflow-history/instance/{instanceId}/steps
GET /api/workflow-history/workflow/{workflowId}
GET /api/workflowdefinitions/{id}
GET /api/workflows
GET /api/workflows/{id}
GET /authorize
GET /callback
GET /debug/routes
POST /api/actions/openapi
POST /api/actions/{actionId}/input-properties
POST /api/actions/{actionId}/output-properties
POST /api/actions/{actionId}/succeed
POST /api/actions/{actionId}/try
POST /api/actions/{id}/clone
POST /api/apps/{id}/upgrade
POST /api/appversions/{id}
POST /api/evaluation/javascript
POST /api/platform-authentications/apikey/{platformId}
POST /api/platform-authentications/basic/{platformId}
POST /api/platform-authentications/oauth/{platformId}
POST /api/platform-interceptors/{id}/test
POST /api/platforms/public/logout/{platformCodeName}
POST /api/platforms/publish/{platformId}
POST /api/public/apps/activate/{appId}
POST /api/public/apps/deactivate/{appId}
POST /api/public/apps/install/{appId}
POST /api/public/apps/uninstall/{appId}
POST /api/public/platforms/logout/{platformCodeName}
POST /api/public/tools/try/{stepType}
POST /api/public/tools/try/{stepType}/magic
POST /api/tools/public/try/{stepType}
POST /api/tools/public/try/{stepType}/magic
POST /api/triggers/openapi
POST /api/triggers/{id}/clone
POST /api/triggers/{triggerId}/data-properties
POST /api/triggers/{triggerId}/input-properties
POST /api/triggers/{triggerId}/succeed
POST /api/triggers/{triggerId}/try
POST /api/workflows/{id}/clone
POST /register
POST /token
POST /token/exchange
PUT /api/actions/{actionId}/http-request-info/{id}
PUT /api/actions/{actionId}/input-properties/order
PUT /api/actions/{actionId}/input-properties/{id}
PUT /api/actions/{actionId}/output-properties/{id}
PUT /api/apps/{id}/status
PUT /api/platform-authentications/{id}/action-input-values
PUT /api/platform-authentications/{id}/user-selected-tenant-id
PUT /api/triggers/{triggerId}/data-properties/{id}
PUT /api/triggers/{triggerId}/input-properties/order
PUT /api/triggers/{triggerId}/input-properties/{id}
PUT /api/workflows/{id}/disable
PUT /api/workflows/{id}/enable

Found on 2026-01-09 03:46

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549fbd36c012b358f089e0990bf1234bc8308a63011

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/platform-authentications/{id}
GET /.well-known/jwks.json
GET /.well-known/oauth-authorization-server
GET /.well-known/openid-configuration
GET /api/actions
GET /api/actions/export/{platformId}
GET /api/actions/history/http
GET /api/actions/public
GET /api/actions/public/{id}
GET /api/actions/{id}
GET /api/app-executions
GET /api/apps
GET /api/apps/{id}
GET /api/authentication/callback
GET /api/authentication/login
GET /api/me
GET /api/me/email
GET /api/platform-authentications
GET /api/platform-authentications/oauth/callback/{platformRandomId}
GET /api/platform-authentications/pre-auth-fields/{platformId}
GET /api/platform-interceptors
GET /api/platform-interceptors/{id}
GET /api/platform-variables
GET /api/platform-variables/{id}
GET /api/platforms
GET /api/platforms/public
GET /api/platforms/public/authenticated-only
GET /api/platforms/public/by-app/{appId}
GET /api/platforms/public/latest/{id}
GET /api/platforms/public/login/{platformCodeName}
GET /api/platforms/public/{id}
GET /api/platforms/{id}
GET /api/public/actions
GET /api/public/actions/{id}
GET /api/public/apps
GET /api/public/apps/connect/{appId}
GET /api/public/apps/platform/by-name/{platformCodeName}
GET /api/public/apps/platform/{id}
GET /api/public/apps/workflows/{appId}
GET /api/public/apps/{id}
GET /api/public/meta/exchange/definitions/platform.json
GET /api/public/meta/mcp/all.json
GET /api/public/meta/mcp/{platformCodeName}.json
GET /api/public/meta/openapi/all.json
GET /api/public/meta/openapi/{platformCodeName}.json
GET /api/public/platforms
GET /api/public/platforms/authenticated-only
GET /api/public/platforms/by-app/{appId}
GET /api/public/platforms/latest/{id}
GET /api/public/platforms/login/{platformCodeName}
GET /api/public/platforms/{id}
GET /api/public/triggers
GET /api/public/triggers/{id}
GET /api/status
GET /api/status/extended
GET /api/stepdefinitions
GET /api/trigger-instances/{id}
GET /api/triggers
GET /api/triggers/app
GET /api/triggers/export/{platformId}
GET /api/triggers/history
GET /api/triggers/public
GET /api/triggers/public/{id}
GET /api/triggers/{id}
GET /api/workflow-exceptions
GET /api/workflow-exceptions/{id}
GET /api/workflow-history/app/{appId}
GET /api/workflow-history/instance/{instanceId}
GET /api/workflow-history/workflow/{workflowId}
GET /api/workflowdefinitions/{id}
GET /api/workflows
GET /api/workflows/{id}
GET /authorize
GET /callback
GET /debug/routes
POST /api/actions/openapi
POST /api/actions/{actionId}/input-properties
POST /api/actions/{actionId}/output-properties
POST /api/actions/{actionId}/succeed
POST /api/actions/{actionId}/try
POST /api/actions/{id}/clone
POST /api/apps/{id}/upgrade
POST /api/appversions/{id}
POST /api/evaluation/javascript
POST /api/platform-authentications/apikey/{platformId}
POST /api/platform-authentications/basic/{platformId}
POST /api/platform-authentications/oauth/{platformId}
POST /api/platform-interceptors/{id}/test
POST /api/platforms/public/logout/{platformCodeName}
POST /api/platforms/publish/{platformId}
POST /api/public/apps/activate/{appId}
POST /api/public/apps/deactivate/{appId}
POST /api/public/apps/install/{appId}
POST /api/public/apps/uninstall/{appId}
POST /api/public/platforms/logout/{platformCodeName}
POST /api/public/tools/try/{stepType}
POST /api/public/tools/try/{stepType}/magic
POST /api/tools/public/try/{stepType}
POST /api/tools/public/try/{stepType}/magic
POST /api/triggers/openapi
POST /api/triggers/{id}/clone
POST /api/triggers/{triggerId}/data-properties
POST /api/triggers/{triggerId}/input-properties
POST /api/triggers/{triggerId}/succeed
POST /api/triggers/{triggerId}/try
POST /api/workflows/{id}/clone
POST /register
POST /token
POST /token/exchange
PUT /api/actions/{actionId}/http-request-info/{id}
PUT /api/actions/{actionId}/input-properties/order
PUT /api/actions/{actionId}/input-properties/{id}
PUT /api/actions/{actionId}/output-properties/{id}
PUT /api/apps/{id}/status
PUT /api/platform-authentications/{id}/action-input-values
PUT /api/platform-authentications/{id}/user-selected-tenant-id
PUT /api/triggers/{triggerId}/data-properties/{id}
PUT /api/triggers/{triggerId}/input-properties/order
PUT /api/triggers/{triggerId}/input-properties/{id}
PUT /api/workflows/{id}/disable
PUT /api/workflows/{id}/enable

Found on 2026-01-02 09:22

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549fbd36c012b358f089e0990bf1234bc83d0d86f34

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/platform-authentications/{id}
GET /.well-known/jwks.json
GET /.well-known/oauth-authorization-server
GET /.well-known/openid-configuration
GET /api/actions
GET /api/actions/export/{platformId}
GET /api/actions/history/http
GET /api/actions/public
GET /api/actions/public/{id}
GET /api/actions/{id}
GET /api/app-executions
GET /api/apps
GET /api/apps/{id}
GET /api/authentication/callback
GET /api/authentication/login
GET /api/authentication/logout
GET /api/me
GET /api/me/email
GET /api/platform-authentications
GET /api/platform-authentications/oauth/callback/{platformRandomId}
GET /api/platform-authentications/pre-auth-fields/{platformId}
GET /api/platform-interceptors
GET /api/platform-interceptors/{id}
GET /api/platform-variables
GET /api/platform-variables/{id}
GET /api/platforms
GET /api/platforms/public
GET /api/platforms/public/authenticated-only
GET /api/platforms/public/by-app/{appId}
GET /api/platforms/public/latest/{id}
GET /api/platforms/public/login/{platformCodeName}
GET /api/platforms/public/{id}
GET /api/platforms/{id}
GET /api/public/actions
GET /api/public/actions/{id}
GET /api/public/apps
GET /api/public/apps/connect/{appId}
GET /api/public/apps/platform/by-name/{platformCodeName}
GET /api/public/apps/platform/{id}
GET /api/public/apps/workflows/{appId}
GET /api/public/apps/{id}
GET /api/public/meta/exchange/definitions/platform.json
GET /api/public/meta/mcp/all.json
GET /api/public/meta/mcp/{platformCodeName}.json
GET /api/public/meta/openapi/all.json
GET /api/public/meta/openapi/{platformCodeName}.json
GET /api/public/platforms
GET /api/public/platforms/authenticated-only
GET /api/public/platforms/by-app/{appId}
GET /api/public/platforms/latest/{id}
GET /api/public/platforms/login/{platformCodeName}
GET /api/public/platforms/{id}
GET /api/public/triggers
GET /api/public/triggers/{id}
GET /api/status
GET /api/status/extended
GET /api/stepdefinitions
GET /api/trigger-instances/{id}
GET /api/triggers
GET /api/triggers/app
GET /api/triggers/export/{platformId}
GET /api/triggers/history
GET /api/triggers/public
GET /api/triggers/public/{id}
GET /api/triggers/{id}
GET /api/workflow-exceptions
GET /api/workflow-exceptions/{id}
GET /api/workflow-history/app/{appId}
GET /api/workflow-history/instance/{instanceId}
GET /api/workflow-history/workflow/{workflowId}
GET /api/workflowdefinitions/{id}
GET /api/workflows
GET /api/workflows/{id}
GET /authorize
GET /callback
GET /debug/routes
POST /api/actions/openapi
POST /api/actions/{actionId}/input-properties
POST /api/actions/{actionId}/output-properties
POST /api/actions/{actionId}/succeed
POST /api/actions/{actionId}/try
POST /api/actions/{id}/clone
POST /api/apps/{id}/upgrade
POST /api/appversions/{id}
POST /api/evaluation/javascript
POST /api/platform-authentications/apikey/{platformId}
POST /api/platform-authentications/basic/{platformId}
POST /api/platform-authentications/oauth/{platformId}
POST /api/platform-interceptors/{id}/test
POST /api/platforms/public/logout/{platformCodeName}
POST /api/platforms/publish/{platformId}
POST /api/public/apps/activate/{appId}
POST /api/public/apps/deactivate/{appId}
POST /api/public/apps/install/{appId}
POST /api/public/apps/uninstall/{appId}
POST /api/public/platforms/logout/{platformCodeName}
POST /api/public/tools/try/{stepType}
POST /api/public/tools/try/{stepType}/magic
POST /api/tools/public/try/{stepType}
POST /api/tools/public/try/{stepType}/magic
POST /api/triggers/openapi
POST /api/triggers/{id}/clone
POST /api/triggers/{triggerId}/data-properties
POST /api/triggers/{triggerId}/input-properties
POST /api/triggers/{triggerId}/succeed
POST /api/triggers/{triggerId}/try
POST /api/workflows/{id}/clone
POST /register
POST /token
POST /token/exchange
PUT /api/actions/{actionId}/http-request-info/{id}
PUT /api/actions/{actionId}/input-properties/order
PUT /api/actions/{actionId}/input-properties/{id}
PUT /api/actions/{actionId}/output-properties/{id}
PUT /api/apps/{id}/status
PUT /api/platform-authentications/{id}/action-input-values
PUT /api/platform-authentications/{id}/user-selected-tenant-id
PUT /api/triggers/{triggerId}/data-properties/{id}
PUT /api/triggers/{triggerId}/input-properties/order
PUT /api/triggers/{triggerId}/input-properties/{id}
PUT /api/workflows/{id}/disable
PUT /api/workflows/{id}/enable

Found on 2025-11-26 00:32

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549fbd36c012b358f089e0990bf1234bc837d5b7f59

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/platform-authentications/{id}
GET /.well-known/jwks.json
GET /.well-known/oauth-authorization-server
GET /.well-known/openid-configuration
GET /api/actions
GET /api/actions/export/{platformId}
GET /api/actions/history/http
GET /api/actions/public
GET /api/actions/public/{id}
GET /api/actions/{id}
GET /api/app-executions
GET /api/apps
GET /api/apps/{id}
GET /api/authentication/callback
GET /api/authentication/login
GET /api/authentication/logout
GET /api/me
GET /api/me/email
GET /api/platform-authentications
GET /api/platform-authentications/oauth/callback/{platformRandomId}
GET /api/platform-variables
GET /api/platform-variables/{id}
GET /api/platforms
GET /api/platforms/public
GET /api/platforms/public/authenticated-only
GET /api/platforms/public/by-app/{appId}
GET /api/platforms/public/latest/{id}
GET /api/platforms/public/login/{platformCodeName}
GET /api/platforms/public/{id}
GET /api/platforms/{id}
GET /api/public/actions
GET /api/public/actions/{id}
GET /api/public/apps
GET /api/public/apps/connect/{appId}
GET /api/public/apps/platform/{platformId}
GET /api/public/apps/workflows/{appId}
GET /api/public/apps/{id}
GET /api/public/meta/exchange/definitions/platform.json
GET /api/public/meta/mcp/all.json
GET /api/public/meta/mcp/{platformCodeName}.json
GET /api/public/meta/openapi/all.json
GET /api/public/meta/openapi/{platformCodeName}.json
GET /api/public/platforms
GET /api/public/platforms/authenticated-only
GET /api/public/platforms/by-app/{appId}
GET /api/public/platforms/latest/{id}
GET /api/public/platforms/login/{platformCodeName}
GET /api/public/platforms/{id}
GET /api/public/triggers
GET /api/public/triggers/{id}
GET /api/publicapps
GET /api/publicapps/connect/{appId}
GET /api/publicapps/platform/{platformId}
GET /api/publicapps/workflows/{appId}
GET /api/publicapps/{id}
GET /api/status
GET /api/status/extended
GET /api/stepdefinitions
GET /api/trigger-instances/{id}
GET /api/triggers
GET /api/triggers/app
GET /api/triggers/export/{platformId}
GET /api/triggers/history
GET /api/triggers/public
GET /api/triggers/public/{id}
GET /api/triggers/{id}
GET /api/workflow-exceptions
GET /api/workflow-exceptions/{id}
GET /api/workflow-history/app/{appId}
GET /api/workflow-history/instance/{instanceId}
GET /api/workflow-history/workflow/{workflowId}
GET /api/workflowdefinitions/{id}
GET /api/workflows
GET /api/workflows/{id}
GET /authorize
GET /callback
GET /debug/routes
POST /api/actions/openapi
POST /api/actions/{actionId}/input-properties
POST /api/actions/{actionId}/output-properties
POST /api/actions/{actionId}/succeed
POST /api/actions/{actionId}/try
POST /api/actions/{id}/clone
POST /api/apps/{id}/upgrade
POST /api/appversions/{id}
POST /api/evaluation/javascript
POST /api/platform-authentications/apikey/{platformId}
POST /api/platform-authentications/basic/{platformId}
POST /api/platform-authentications/oauth/{platformId}
POST /api/platforms/public/logout/{platformCodeName}
POST /api/platforms/publish/{platformId}
POST /api/public/apps/install/{appId}
POST /api/public/apps/uninstall/{appId}
POST /api/public/platforms/logout/{platformCodeName}
POST /api/public/tools/try/{stepType}
POST /api/public/tools/try/{stepType}/magic
POST /api/publicapps/install/{appId}
POST /api/publicapps/uninstall/{appId}
POST /api/tools/public/try/{stepType}
POST /api/tools/public/try/{stepType}/magic
POST /api/triggers/openapi
POST /api/triggers/{id}/clone
POST /api/triggers/{triggerId}/data-properties
POST /api/triggers/{triggerId}/input-properties
POST /api/triggers/{triggerId}/succeed
POST /api/triggers/{triggerId}/try
POST /api/workflows/{id}/clone
POST /register
POST /token
POST /token/exchange
PUT /api/actions/{actionId}/http-request-info/{id}
PUT /api/actions/{actionId}/input-properties/order
PUT /api/actions/{actionId}/input-properties/{id}
PUT /api/actions/{actionId}/output-properties/{id}
PUT /api/apps/{id}/status
PUT /api/platform-authentications/{id}/action-input-values
PUT /api/platform-authentications/{id}/user-selected-tenant-id
PUT /api/triggers/{triggerId}/data-properties/{id}
PUT /api/triggers/{triggerId}/input-properties/order
PUT /api/triggers/{triggerId}/input-properties/{id}
PUT /api/workflows/{id}/disable
PUT /api/workflows/{id}/enable

Found on 2025-10-27 01:42

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: ispapi.search.org
Port: 80
URL: http://ispapi.search.org

First seen 2025-10-20 01:16
Last seen 2026-01-09 03:41
Open for 81 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 03:41
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.agendabeauty.com.br
Port: 443
URL: https://api.agendabeauty.com.br

First seen 2025-11-21 03:58
Last seen 2026-01-09 03:15
Open for 48 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656
```
Public Swagger UI/API detected at path: /swagger-ui.html
```
  Found on 2026-01-09 03:15
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: admin-api-staging.playola.fm
Port: 443
URL: https://admin-api-staging.playola.fm

First seen 2025-11-21 04:19
Last seen 2026-01-09 03:15
Open for 48 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495695a0f3aa337d5704e506864644ee0c030ca4cd

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
ANY info
ANY openapi
DELETE /v1/auth/providers/{provider}
DELETE /v1/station-rules/{stationRuleId}
DELETE /v1/stationLists/{stationListId}/items/{stationListItemId}
DELETE /v1/stations/{stationId}/categories/{categoryId}/audioBlocks/{audioBlockId}
DELETE /v1/stations/{stationId}/users/{userId}
DELETE /v1/users/{userId}/likes/{audioBlockId}
DELETE /v1/users/{userId}/stations/{stationId}
DELETE /v1/waiting-list-entries/{id}
GET /shows
GET /shows/{showId}
GET /urlStations
GET /urlStations/{urlStationId}
GET /v1/airings
GET /v1/airings/{airingId}
GET /v1/airings/{airingId}/listener-summary
GET /v1/airings/{airingId}/listeners
GET /v1/analytics/engagement-distribution
GET /v1/analytics/listener-activity-metrics
GET /v1/analytics/listener-activity-time-series
GET /v1/analytics/minutes-per-dau-time-series
GET /v1/analytics/retention-curves
GET /v1/attribute-types
GET /v1/audio-blocks/search
GET /v1/audio-blocks/unmarked
GET /v1/audio-blocks/{audioBlockId}
GET /v1/audio-blocks/{audioBlockId}/transcription-status
GET /v1/audio-blocks/{audioBlockId}/transcriptions
GET /v1/auth/apple/mobile/authorize
GET /v1/auth/apple/web/authorize
GET /v1/auth/providers
GET /v1/auth/spotify/mobile/authorize
GET /v1/auth/spotify/mobile/code
GET /v1/auth/spotify/web/authorize
GET /v1/auth/spotify/web/code
GET /v1/clocks/{clockId}
GET /v1/developer/station-lists
GET /v1/developer/stations/{stationId}
GET /v1/episodes
GET /v1/episodes/{episodeId}
GET /v1/health-check
GET /v1/invitationCode
GET /v1/listening-sessions/active
GET /v1/listening-sessions/hourly-popularity
GET /v1/listening-sessions/top-listeners
GET /v1/listening-sessions/top-stations
GET /v1/playlists/{playlistId}/with-existing-songs
GET /v1/resources
GET /v1/resources/{resourceId}
GET /v1/resources/{resourceId}/related/{relatedId}
GET /v1/rewards/tiers
GET /v1/rewards/users/{userId}/prizes
GET /v1/rewards/users/{userId}/profile
GET /v1/songs
GET /v1/songs/requests
GET /v1/songs/search
GET /v1/songs/search-apple-music
GET /v1/songs/search-song-seeds
GET /v1/songs/search-spotify
GET /v1/stationLists
GET /v1/stationLists/by-slug/{slug}
GET /v1/stationLists/validate-slug/{slug}
GET /v1/stationLists/{stationListId}
GET /v1/stations
GET /v1/stations/search
GET /v1/stations/{stationId}
GET /v1/stations/{stationId}/audio-images
GET /v1/stations/{stationId}/audit
GET /v1/stations/{stationId}/categories
GET /v1/stations/{stationId}/clocks
GET /v1/stations/{stationId}/push-notification-subscription
GET /v1/stations/{stationId}/schedule
GET /v1/stations/{stationId}/schedule/violations
GET /v1/stations/{stationId}/song-opinions
GET /v1/stations/{stationId}/songs-without-opinions
GET /v1/stations/{stationId}/stationRules
GET /v1/stations/{stationId}/users
GET /v1/users/listening-leaderboard
GET /v1/users/me/push-notification-subscriptions
GET /v1/users/search
GET /v1/users/{userId}
GET /v1/users/{userId}/likes
GET /v1/users/{userId}/listening-history
GET /v1/users/{userId}/stations
GET /v1/users/{userId}/top-spotify-tracks
GET /v1/waiting-list-entries
POST /urlStations/{urlStationId}/activate
POST /urlStations/{urlStationId}/deactivate
POST /v1/attribute-types/validate
POST /v1/audio-blocks
POST /v1/audio-blocks/presigned-url
POST /v1/audio-blocks/search/missing-attributes
POST /v1/auth/apple/mobile/signup
POST /v1/auth/apple/webhook
POST /v1/auth/google/signin
POST /v1/auth/spotify/token/swap
POST /v1/clocks/{clockId}/segments
POST /v1/episodes/{episodeId}/segments
POST /v1/invitationCode/register
POST /v1/invitationCode/verify
POST /v1/listening-sessions
POST /v1/listening-sessions/end
POST /v1/notifications/global
POST /v1/rewards/prizes
POST /v1/rewards/prizes/image-upload-url
POST /v1/rewards/users/{userId}/prizes/{prizeId}/redeem
POST /v1/songs/by-spotify-id
POST /v1/spins
POST /v1/stationLists/{stationListId}/items
POST /v1/stations/image-upload-url
POST /v1/stations/{stationId}/activate
POST /v1/stations/{stationId}/copy-categories
POST /v1/stations/{stationId}/deactivate
POST /v1/stations/{stationId}/publish
POST /v1/stations/{stationId}/push-notification-subscription/subscribe
POST /v1/stations/{stationId}/push-notification-subscription/unsubscribe
POST /v1/stations/{stationId}/schedule/sample
POST /v1/stations/{stationId}/song-opinions/initialize
POST /v1/stations/{stationId}/voicetrack-presigned-url
POST /v1/users
POST /v1/voice-tracks
POST /v1/voice-tracks/upload-url
PUT /v1/audio-blocks/bulk
PUT /v1/audio-blocks/{audioBlockId}/replace
PUT /v1/auth/apple/revoke
PUT /v1/clocks/{clockId}/segments/{segmentId}
PUT /v1/episodes/{episodeId}/segments/{segmentId}
PUT /v1/invitationCode/{id}
PUT /v1/rewards/prizes/{prizeId}
PUT /v1/rewards/tiers/{tierId}
PUT /v1/spins/{spinId}
PUT /v1/stationLists/{stationListId}/reorder
PUT /v1/stations/{stationId}/categories/{categoryId}
PUT /v1/stations/{stationId}/categories/{categoryId}/addAudioBlocks
PUT /v1/stations/{stationId}/stationRules/{stationRuleId}

Found on 2026-01-09 03:15

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495695a0f3aa337d5704e506864644ee0cdb605f87

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
ANY info
ANY openapi
DELETE /v1/auth/providers/{provider}
DELETE /v1/station-rules/{stationRuleId}
DELETE /v1/stationLists/{stationListId}/items/{stationListItemId}
DELETE /v1/stations/{stationId}/categories/{categoryId}/audioBlocks/{audioBlockId}
DELETE /v1/stations/{stationId}/users/{userId}
DELETE /v1/users/{userId}/likes/{audioBlockId}
DELETE /v1/users/{userId}/stations/{stationId}
DELETE /v1/waiting-list-entries/{id}
GET /shows
GET /shows/schedule
GET /shows/schedule/{scheduledShowId}
GET /shows/schedule/{scheduledShowId}/listener-summary
GET /shows/schedule/{scheduledShowId}/listeners
GET /shows/{showId}
GET /urlStations
GET /urlStations/{urlStationId}
GET /v1/analytics/engagement-distribution
GET /v1/analytics/listener-activity-metrics
GET /v1/analytics/listener-activity-time-series
GET /v1/analytics/minutes-per-dau-time-series
GET /v1/analytics/retention-curves
GET /v1/attribute-types
GET /v1/audio-blocks/search
GET /v1/audio-blocks/unmarked
GET /v1/audio-blocks/{audioBlockId}
GET /v1/audio-blocks/{audioBlockId}/transcription-status
GET /v1/audio-blocks/{audioBlockId}/transcriptions
GET /v1/auth/apple/mobile/authorize
GET /v1/auth/apple/web/authorize
GET /v1/auth/providers
GET /v1/auth/spotify/mobile/authorize
GET /v1/auth/spotify/mobile/code
GET /v1/auth/spotify/web/authorize
GET /v1/auth/spotify/web/code
GET /v1/clocks/{clockId}
GET /v1/developer/station-lists
GET /v1/developer/stations/{stationId}
GET /v1/health-check
GET /v1/invitationCode
GET /v1/listening-sessions/active
GET /v1/listening-sessions/hourly-popularity
GET /v1/listening-sessions/top-listeners
GET /v1/listening-sessions/top-stations
GET /v1/playlists/{playlistId}/with-existing-songs
GET /v1/resources
GET /v1/resources/{resourceId}
GET /v1/resources/{resourceId}/related/{relatedId}
GET /v1/rewards/tiers
GET /v1/rewards/users/{userId}/prizes
GET /v1/rewards/users/{userId}/profile
GET /v1/songs
GET /v1/songs/requests
GET /v1/songs/search
GET /v1/songs/search-apple-music
GET /v1/songs/search-song-seeds
GET /v1/songs/search-spotify
GET /v1/stationLists
GET /v1/stationLists/by-slug/{slug}
GET /v1/stationLists/validate-slug/{slug}
GET /v1/stationLists/{stationListId}
GET /v1/stations
GET /v1/stations/search
GET /v1/stations/{stationId}
GET /v1/stations/{stationId}/audio-images
GET /v1/stations/{stationId}/audit
GET /v1/stations/{stationId}/categories
GET /v1/stations/{stationId}/clocks
GET /v1/stations/{stationId}/schedule
GET /v1/stations/{stationId}/schedule/violations
GET /v1/stations/{stationId}/song-opinions
GET /v1/stations/{stationId}/songs-without-opinions
GET /v1/stations/{stationId}/stationRules
GET /v1/stations/{stationId}/users
GET /v1/users/listening-leaderboard
GET /v1/users/search
GET /v1/users/{userId}
GET /v1/users/{userId}/likes
GET /v1/users/{userId}/listening-history
GET /v1/users/{userId}/stations
GET /v1/users/{userId}/top-spotify-tracks
GET /v1/waiting-list-entries
POST /shows/{showId}/segments
POST /urlStations/{urlStationId}/activate
POST /urlStations/{urlStationId}/deactivate
POST /v1/attribute-types/validate
POST /v1/audio-blocks
POST /v1/audio-blocks/presigned-url
POST /v1/audio-blocks/search/missing-attributes
POST /v1/auth/apple/mobile/signup
POST /v1/auth/apple/webhook
POST /v1/auth/google/signin
POST /v1/auth/spotify/token/swap
POST /v1/clocks/{clockId}/segments
POST /v1/invitationCode/register
POST /v1/invitationCode/verify
POST /v1/listening-sessions
POST /v1/listening-sessions/end
POST /v1/rewards/prizes
POST /v1/rewards/prizes/image-upload-url
POST /v1/rewards/users/{userId}/prizes/{prizeId}/redeem
POST /v1/songs/by-spotify-id
POST /v1/spins
POST /v1/stationLists/{stationListId}/items
POST /v1/stations/image-upload-url
POST /v1/stations/{stationId}/activate
POST /v1/stations/{stationId}/copy-categories
POST /v1/stations/{stationId}/deactivate
POST /v1/stations/{stationId}/publish
POST /v1/stations/{stationId}/schedule/sample
POST /v1/stations/{stationId}/song-opinions/initialize
POST /v1/stations/{stationId}/voicetrack-presigned-url
POST /v1/users
POST /v1/voice-tracks
POST /v1/voice-tracks/upload-url
PUT /shows/{showId}/segments/{segmentId}
PUT /v1/audio-blocks/bulk
PUT /v1/audio-blocks/{audioBlockId}/replace
PUT /v1/auth/apple/revoke
PUT /v1/clocks/{clockId}/segments/{segmentId}
PUT /v1/invitationCode/{id}
PUT /v1/rewards/prizes/{prizeId}
PUT /v1/rewards/tiers/{tierId}
PUT /v1/spins/{spinId}
PUT /v1/stationLists/{stationListId}/reorder
PUT /v1/stations/{stationId}/categories/{categoryId}
PUT /v1/stations/{stationId}/categories/{categoryId}/addAudioBlocks
PUT /v1/stations/{stationId}/stationRules/{stationRuleId}

Found on 2026-01-02 10:39

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495695a0f3aa337d5704e506864644ee0c9789e5c8

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
ANY info
ANY openapi
DELETE /v1/auth/providers/{provider}
DELETE /v1/station-rules/{stationRuleId}
DELETE /v1/stationLists/{stationListId}/items/{stationListItemId}
DELETE /v1/stations/{stationId}/categories/{categoryId}/audioBlocks/{audioBlockId}
DELETE /v1/stations/{stationId}/users/{userId}
DELETE /v1/users/{userId}/likes/{audioBlockId}
DELETE /v1/users/{userId}/stations/{stationId}
DELETE /v1/waiting-list-entries/{id}
GET /shows
GET /shows/schedule
GET /shows/schedule/{scheduledShowId}
GET /shows/schedule/{scheduledShowId}/listener-summary
GET /shows/schedule/{scheduledShowId}/listeners
GET /shows/{showId}
GET /urlStations
GET /urlStations/{urlStationId}
GET /v1/analytics/engagement-distribution
GET /v1/analytics/listener-activity-metrics
GET /v1/analytics/listener-activity-time-series
GET /v1/analytics/minutes-per-dau-time-series
GET /v1/analytics/retention-curves
GET /v1/attribute-types
GET /v1/audio-blocks/search
GET /v1/audio-blocks/unmarked
GET /v1/audio-blocks/{audioBlockId}
GET /v1/audio-blocks/{audioBlockId}/transcription-status
GET /v1/audio-blocks/{audioBlockId}/transcriptions
GET /v1/auth/apple/mobile/authorize
GET /v1/auth/apple/web/authorize
GET /v1/auth/providers
GET /v1/auth/spotify/mobile/authorize
GET /v1/auth/spotify/mobile/code
GET /v1/auth/spotify/web/authorize
GET /v1/auth/spotify/web/code
GET /v1/clocks/{clockId}
GET /v1/developer/station-lists
GET /v1/developer/stations/{stationId}
GET /v1/health-check
GET /v1/invitationCode
GET /v1/listening-sessions/active
GET /v1/listening-sessions/hourly-popularity
GET /v1/listening-sessions/top-listeners
GET /v1/listening-sessions/top-stations
GET /v1/playlists/{playlistId}/with-existing-songs
GET /v1/resources
GET /v1/resources/{resourceId}
GET /v1/resources/{resourceId}/related/{relatedId}
GET /v1/rewards/tiers
GET /v1/rewards/users/{userId}/prizes
GET /v1/rewards/users/{userId}/profile
GET /v1/songs
GET /v1/songs/search-apple-music
GET /v1/songs/search-spotify
GET /v1/stationLists
GET /v1/stationLists/by-slug/{slug}
GET /v1/stationLists/validate-slug/{slug}
GET /v1/stationLists/{stationListId}
GET /v1/stations
GET /v1/stations/search
GET /v1/stations/{stationId}
GET /v1/stations/{stationId}/audio-images
GET /v1/stations/{stationId}/audit
GET /v1/stations/{stationId}/categories
GET /v1/stations/{stationId}/clocks
GET /v1/stations/{stationId}/schedule
GET /v1/stations/{stationId}/schedule/violations
GET /v1/stations/{stationId}/song-opinions
GET /v1/stations/{stationId}/songs-without-opinions
GET /v1/stations/{stationId}/stationRules
GET /v1/stations/{stationId}/users
GET /v1/users/listening-leaderboard
GET /v1/users/search
GET /v1/users/{userId}
GET /v1/users/{userId}/likes
GET /v1/users/{userId}/listening-history
GET /v1/users/{userId}/stations
GET /v1/users/{userId}/top-spotify-tracks
GET /v1/waiting-list-entries
POST /shows/{showId}/segments
POST /urlStations/{urlStationId}/activate
POST /urlStations/{urlStationId}/deactivate
POST /v1/attribute-types/validate
POST /v1/audio-blocks
POST /v1/audio-blocks/presigned-url
POST /v1/audio-blocks/search/missing-attributes
POST /v1/auth/apple/mobile/signup
POST /v1/auth/apple/webhook
POST /v1/auth/google/signin
POST /v1/auth/spotify/token/swap
POST /v1/clocks/{clockId}/segments
POST /v1/invitationCode/register
POST /v1/invitationCode/verify
POST /v1/listening-sessions
POST /v1/listening-sessions/end
POST /v1/rewards/prizes
POST /v1/rewards/prizes/image-upload-url
POST /v1/rewards/users/{userId}/prizes/{prizeId}/redeem
POST /v1/songs/by-spotify-id
POST /v1/spins
POST /v1/stationLists/{stationListId}/items
POST /v1/stations/image-upload-url
POST /v1/stations/{stationId}/activate
POST /v1/stations/{stationId}/copy-categories
POST /v1/stations/{stationId}/deactivate
POST /v1/stations/{stationId}/publish
POST /v1/stations/{stationId}/schedule/sample
POST /v1/stations/{stationId}/song-opinions/initialize
POST /v1/stations/{stationId}/voicetrack-presigned-url
POST /v1/users
POST /v1/voice-tracks
POST /v1/voice-tracks/upload-url
PUT /shows/{showId}/segments/{segmentId}
PUT /v1/audio-blocks/bulk
PUT /v1/audio-blocks/{audioBlockId}/replace
PUT /v1/auth/apple/revoke
PUT /v1/clocks/{clockId}/segments/{segmentId}
PUT /v1/invitationCode/{id}
PUT /v1/rewards/prizes/{prizeId}
PUT /v1/rewards/tiers/{tierId}
PUT /v1/spins/{spinId}
PUT /v1/stationLists/{stationListId}/reorder
PUT /v1/stations/{stationId}/categories/{categoryId}
PUT /v1/stations/{stationId}/categories/{categoryId}/addAudioBlocks
PUT /v1/stations/{stationId}/stationRules/{stationRuleId}

Found on 2025-12-16 16:57

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495695a0f3aa337d5704e506864644ee0cb7025e6d

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
ANY info
ANY openapi
DELETE /v1/auth/providers/{provider}
DELETE /v1/station-rules/{stationRuleId}
DELETE /v1/stationLists/{stationListId}/items/{stationListItemId}
DELETE /v1/stations/{stationId}/categories/{categoryId}/audioBlocks/{audioBlockId}
DELETE /v1/stations/{stationId}/users/{userId}
DELETE /v1/users/{userId}/likes/{audioBlockId}
DELETE /v1/users/{userId}/stations/{stationId}
DELETE /v1/waiting-list-entries/{id}
GET /shows
GET /shows/schedule
GET /shows/{showId}
GET /urlStations
GET /urlStations/{urlStationId}
GET /v1/analytics/engagement-distribution
GET /v1/analytics/listener-activity-metrics
GET /v1/analytics/listener-activity-time-series
GET /v1/analytics/minutes-per-dau-time-series
GET /v1/analytics/retention-curves
GET /v1/attribute-types
GET /v1/audio-blocks/search
GET /v1/audio-blocks/unmarked
GET /v1/audio-blocks/{audioBlockId}
GET /v1/audio-blocks/{audioBlockId}/transcription-status
GET /v1/audio-blocks/{audioBlockId}/transcriptions
GET /v1/auth/apple/mobile/authorize
GET /v1/auth/apple/web/authorize
GET /v1/auth/providers
GET /v1/auth/spotify/mobile/authorize
GET /v1/auth/spotify/mobile/code
GET /v1/auth/spotify/web/authorize
GET /v1/auth/spotify/web/code
GET /v1/clocks/{clockId}
GET /v1/developer/station-lists
GET /v1/developer/stations/{stationId}
GET /v1/health-check
GET /v1/invitationCode
GET /v1/listening-sessions/active
GET /v1/listening-sessions/hourly-popularity
GET /v1/listening-sessions/top-listeners
GET /v1/listening-sessions/top-stations
GET /v1/playlists/{playlistId}/with-existing-songs
GET /v1/resources
GET /v1/resources/{resourceId}
GET /v1/resources/{resourceId}/related/{relatedId}
GET /v1/rewards/tiers
GET /v1/rewards/users/{userId}/prizes
GET /v1/rewards/users/{userId}/profile
GET /v1/songs
GET /v1/songs/search-apple-music
GET /v1/songs/search-spotify
GET /v1/stationLists
GET /v1/stationLists/by-slug/{slug}
GET /v1/stationLists/validate-slug/{slug}
GET /v1/stationLists/{stationListId}
GET /v1/stations
GET /v1/stations/search
GET /v1/stations/{stationId}
GET /v1/stations/{stationId}/audio-images
GET /v1/stations/{stationId}/audit
GET /v1/stations/{stationId}/categories
GET /v1/stations/{stationId}/clocks
GET /v1/stations/{stationId}/schedule
GET /v1/stations/{stationId}/schedule/violations
GET /v1/stations/{stationId}/song-opinions
GET /v1/stations/{stationId}/songs-without-opinions
GET /v1/stations/{stationId}/stationRules
GET /v1/stations/{stationId}/users
GET /v1/users/listening-leaderboard
GET /v1/users/search
GET /v1/users/{userId}
GET /v1/users/{userId}/likes
GET /v1/users/{userId}/listening-history
GET /v1/users/{userId}/stations
GET /v1/users/{userId}/top-spotify-tracks
GET /v1/waiting-list-entries
POST /shows/{showId}/segments
POST /urlStations/{urlStationId}/activate
POST /urlStations/{urlStationId}/deactivate
POST /v1/attribute-types/validate
POST /v1/audio-blocks
POST /v1/audio-blocks/presigned-url
POST /v1/audio-blocks/search/missing-attributes
POST /v1/auth/apple/mobile/signup
POST /v1/auth/apple/webhook
POST /v1/auth/google/signin
POST /v1/auth/spotify/token/swap
POST /v1/clocks/{clockId}/segments
POST /v1/invitationCode/register
POST /v1/invitationCode/verify
POST /v1/listening-sessions
POST /v1/listening-sessions/end
POST /v1/rewards/prizes
POST /v1/rewards/prizes/image-upload-url
POST /v1/rewards/users/{userId}/prizes/{prizeId}/redeem
POST /v1/songs/by-spotify-id
POST /v1/spins
POST /v1/stationLists/{stationListId}/items
POST /v1/stations/image-upload-url
POST /v1/stations/{stationId}/activate
POST /v1/stations/{stationId}/copy-categories
POST /v1/stations/{stationId}/deactivate
POST /v1/stations/{stationId}/publish
POST /v1/stations/{stationId}/schedule/sample
POST /v1/stations/{stationId}/song-opinions/initialize
POST /v1/stations/{stationId}/voicetrack-presigned-url
POST /v1/users
POST /v1/voice-tracks
POST /v1/voice-tracks/upload-url
PUT /shows/schedule/{scheduledShowId}
PUT /shows/{showId}/segments/{segmentId}
PUT /v1/audio-blocks/bulk
PUT /v1/audio-blocks/{audioBlockId}/replace
PUT /v1/auth/apple/revoke
PUT /v1/clocks/{clockId}/segments/{segmentId}
PUT /v1/invitationCode/{id}
PUT /v1/rewards/prizes/{prizeId}
PUT /v1/rewards/tiers/{tierId}
PUT /v1/spins/{spinId}
PUT /v1/stationLists/{stationListId}/reorder
PUT /v1/stations/{stationId}/categories/{categoryId}
PUT /v1/stations/{stationId}/categories/{categoryId}/addAudioBlocks
PUT /v1/stations/{stationId}/stationRules/{stationRuleId}

Found on 2025-12-01 16:16

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035495695a0f3aa337d5704e506864644ee0cc2eef0df

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
ANY info
ANY openapi
DELETE /v1/auth/providers/{provider}
DELETE /v1/station-rules/{stationRuleId}
DELETE /v1/stationLists/{stationListId}/items/{stationListItemId}
DELETE /v1/stations/{stationId}/categories/{categoryId}/audioBlocks/{audioBlockId}
DELETE /v1/stations/{stationId}/users/{userId}
DELETE /v1/users/{userId}/likes/{audioBlockId}
DELETE /v1/users/{userId}/stations/{stationId}
DELETE /v1/waiting-list-entries/{id}
GET /shows
GET /shows/schedule
GET /shows/{showId}
GET /urlStations
GET /urlStations/{urlStationId}
GET /v1/analytics/engagement-distribution
GET /v1/analytics/listener-activity-metrics
GET /v1/analytics/listener-activity-time-series
GET /v1/analytics/minutes-per-dau-time-series
GET /v1/analytics/retention-curves
GET /v1/attribute-types
GET /v1/audio-blocks/search
GET /v1/audio-blocks/unmarked
GET /v1/audio-blocks/{audioBlockId}
GET /v1/audio-blocks/{audioBlockId}/transcription-status
GET /v1/audio-blocks/{audioBlockId}/transcriptions
GET /v1/auth/apple/mobile/authorize
GET /v1/auth/apple/web/authorize
GET /v1/auth/providers
GET /v1/auth/spotify/mobile/authorize
GET /v1/auth/spotify/mobile/code
GET /v1/auth/spotify/web/authorize
GET /v1/auth/spotify/web/code
GET /v1/clocks/{clockId}
GET /v1/developer/station-lists
GET /v1/developer/stations/{stationId}
GET /v1/health-check
GET /v1/invitationCode
GET /v1/listening-sessions/active
GET /v1/listening-sessions/hourly-popularity
GET /v1/listening-sessions/top-listeners
GET /v1/listening-sessions/top-stations
GET /v1/playlists/{playlistId}/with-existing-songs
GET /v1/resources
GET /v1/resources/{resourceId}
GET /v1/resources/{resourceId}/related/{relatedId}
GET /v1/rewards/tiers
GET /v1/rewards/users/{userId}/prizes
GET /v1/rewards/users/{userId}/profile
GET /v1/songs
GET /v1/songs/search-apple-music
GET /v1/songs/search-spotify
GET /v1/stationLists
GET /v1/stationLists/by-slug/{slug}
GET /v1/stationLists/validate-slug/{slug}
GET /v1/stationLists/{stationListId}
GET /v1/stations
GET /v1/stations/search
GET /v1/stations/{stationId}
GET /v1/stations/{stationId}/audio-images
GET /v1/stations/{stationId}/audit
GET /v1/stations/{stationId}/categories
GET /v1/stations/{stationId}/clocks
GET /v1/stations/{stationId}/schedule
GET /v1/stations/{stationId}/schedule/violations
GET /v1/stations/{stationId}/song-opinions
GET /v1/stations/{stationId}/stationRules
GET /v1/stations/{stationId}/users
GET /v1/users/listening-leaderboard
GET /v1/users/search
GET /v1/users/{userId}
GET /v1/users/{userId}/likes
GET /v1/users/{userId}/listening-history
GET /v1/users/{userId}/stations
GET /v1/users/{userId}/top-spotify-tracks
GET /v1/waiting-list-entries
POST /shows/{showId}/segments
POST /urlStations/{urlStationId}/activate
POST /urlStations/{urlStationId}/deactivate
POST /v1/attribute-types/validate
POST /v1/audio-blocks
POST /v1/audio-blocks/presigned-url
POST /v1/audio-blocks/search/missing-attributes
POST /v1/auth/apple/mobile/signup
POST /v1/auth/apple/webhook
POST /v1/auth/google/signin
POST /v1/auth/spotify/token/swap
POST /v1/clocks/{clockId}/segments
POST /v1/invitationCode/register
POST /v1/invitationCode/verify
POST /v1/listening-sessions
POST /v1/listening-sessions/end
POST /v1/rewards/prizes
POST /v1/rewards/prizes/image-upload-url
POST /v1/rewards/users/{userId}/prizes/{prizeId}/redeem
POST /v1/songs/by-spotify-id
POST /v1/spins
POST /v1/stationLists/{stationListId}/items
POST /v1/stations/image-upload-url
POST /v1/stations/{stationId}/activate
POST /v1/stations/{stationId}/copy-categories
POST /v1/stations/{stationId}/deactivate
POST /v1/stations/{stationId}/publish
POST /v1/stations/{stationId}/schedule/sample
POST /v1/stations/{stationId}/song-opinions/initialize
POST /v1/stations/{stationId}/voicetrack-presigned-url
POST /v1/users
POST /v1/voice-tracks
POST /v1/voice-tracks/upload-url
PUT /shows/schedule/{scheduledShowId}
PUT /shows/{showId}/segments/{segmentId}
PUT /v1/audio-blocks/bulk
PUT /v1/audio-blocks/{audioBlockId}/replace
PUT /v1/auth/apple/revoke
PUT /v1/clocks/{clockId}/segments/{segmentId}
PUT /v1/invitationCode/{id}
PUT /v1/rewards/prizes/{prizeId}
PUT /v1/rewards/tiers/{tierId}
PUT /v1/spins/{spinId}
PUT /v1/stationLists/{stationListId}/reorder
PUT /v1/stations/{stationId}/categories/{categoryId}
PUT /v1/stations/{stationId}/categories/{categoryId}/addAudioBlocks
PUT /v1/stations/{stationId}/stationRules/{stationRuleId}

Found on 2025-11-23 11:49

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api-dev.git-svcs.com
Port: 443
URL: https://api-dev.git-svcs.com

First seen 2025-10-15 00:45
Last seen 2026-01-09 03:03
Open for 86 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 03:03
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: leads.universe.carruslearn.com
Port: 443
URL: https://leads.universe.carruslearn.com

First seen 2025-11-13 01:33
Last seen 2026-01-09 02:59
Open for 57 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43354301cbefa224f38e8d8a838e8d8a838e8d8a83
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
POST /balboa/lead-outcome
POST /balboa/sf-to-balboa
POST /lead/incoming
```
  Found on 2026-01-09 02:59
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.yufuza.com
Port: 443
URL: https://api.yufuza.com

First seen 2025-11-09 11:59
Last seen 2026-01-09 01:46
Open for 60 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bfb0a1328facd0d794f784b2090fe1d9b59933989

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /api/v1/company/deleteCompany/{id}
DELETE /api/v1/customer/deleteCustomer
DELETE /api/v1/domain/delete
DELETE /api/v1/email/delete
DELETE /api/v1/feedback/deleteByFrom
DELETE /api/v1/feedback/deleteFeedback
DELETE /api/v1/group/delete
DELETE /api/v1/integrations/deleteIntegration
DELETE /api/v1/integrationspecific/delete
DELETE /api/v1/ticket-messaging/deleteMessage
DELETE /api/v1/tickets/deleteTicket
DELETE /api/v1/user/delete
DELETE /api/v1/widget/delete/{widgetId}
GET /api/v1/apikey/create
GET /api/v1/apikey/getKey
GET /api/v1/auth/activate2fa
GET /api/v1/auth/deactivateMfaRequest/{userId}
GET /api/v1/auth/requestMfa
GET /api/v1/auth/resend-verification-token
GET /api/v1/auth/reset-password
GET /api/v1/auth/reset-password-request
GET /api/v1/auth/validateMfa
GET /api/v1/auth/verifyEmail
GET /api/v1/company/getByPlan
GET /api/v1/company/getCompanies/{userId}
GET /api/v1/company/getCompany/{id}
GET /api/v1/customer/getCustomerById
GET /api/v1/customer/getCustomers
GET /api/v1/domain/getDomain
GET /api/v1/domain/getDomains
GET /api/v1/domain/verifyDomain
GET /api/v1/email/getEmail
GET /api/v1/email/getEmails
GET /api/v1/email/isExisting
GET /api/v1/feedback/getFeedback/{feedbackId}
GET /api/v1/feedback/getFeedbackByFrom
GET /api/v1/feedback/getFeedbackByGroup
GET /api/v1/feedback/getFeedbackIdsByFrom
GET /api/v1/feedback/getFeedbacks
GET /api/v1/feedback/getFeedbacksByCompany
GET /api/v1/feedback/getFeedbacksByCompanyAndCustomer
GET /api/v1/generalsettings/getByCompanyId
GET /api/v1/generalsettings/getById
GET /api/v1/group/getAllGroups
GET /api/v1/group/getGroup
GET /api/v1/integrations/getExpiringFacebook
GET /api/v1/integrations/getExpiringGoogle
GET /api/v1/integrations/getForCompany/{companyId}
GET /api/v1/integrations/getForwardingNumber
GET /api/v1/integrations/getIntegration/{id}
GET /api/v1/integrations/getIntegrationByAccessToken
GET /api/v1/integrationspecific/getByCompany
GET /api/v1/ip/getIpForUser
GET /api/v1/notification/getByCompany
GET /api/v1/payment/billing-portal/{companyId}
GET /api/v1/payment/company/{companyId}
GET /api/v1/payment/provider/{provider}
GET /api/v1/payment/verify-payment/{transactionRef}
GET /api/v1/plan/getPlanByName
GET /api/v1/plan/plan
GET /api/v1/plan/plans
GET /api/v1/review-requests/getAllByCompany/{companyId}
GET /api/v1/review-requests/getByCustomer/{customerId}
GET /api/v1/review-requests/getById/{id}
GET /api/v1/sdk/customer/get
GET /api/v1/sdk/customer/getAll
GET /api/v1/sdk/embed/{widgetId}.js
GET /api/v1/stats/ces
GET /api/v1/stats/csat
GET /api/v1/stats/get
GET /api/v1/stats/nps
GET /api/v1/stats/sd
GET /api/v1/stats/sources
GET /api/v1/stats/trends
GET /api/v1/subscription/expiredActive
GET /api/v1/subscription/owner/check
GET /api/v1/subscription/owner/{subscriptionId}
GET /api/v1/subscription/owner/{subscriptionId}/companies
GET /api/v1/subscription/subscription/getAllCompaniesForSubscription/{primaryCompanyId}
GET /api/v1/subscription/subscription/{companyId}
GET /api/v1/subscription/subscription/{companyId}/all
GET /api/v1/tag/getTags
GET /api/v1/ticket-messaging/getMessages
GET /api/v1/tickets/getCompanyTickets/{companyId}
GET /api/v1/tickets/getCustomerTickets/{companyId}/{customerId}
GET /api/v1/tickets/getTicket/{ticketId}
GET /api/v1/user/getAll
GET /api/v1/user/getUser
GET /api/v1/user/getUserForCompany
GET /api/v1/webhookSettings/getHooks
GET /api/v1/widget/embed/{widgetId}.js
GET /api/v1/widget/get/{widgetId}
GET /api/v1/widget/getWidgetsByCompanyId
PATCH /api/v1/ip/blacklist
PATCH /api/v1/plan/updatePlan/{id}
PATCH /api/v1/subscription/deactivate
POST /api/v1/auth/completeMfaActivation
POST /api/v1/auth/login
POST /api/v1/auth/register
POST /api/v1/company/assignCompany
POST /api/v1/company/saveCompany/{userId}
POST /api/v1/customer/saveCustomer/{companyId}
POST /api/v1/domain/create/{companyId}
POST /api/v1/email/create
POST /api/v1/email/handleIncomingEmail
POST /api/v1/feedback/saveFacebookFeedback
POST /api/v1/feedback/saveFeedback/{customerId}
POST /api/v1/generalsettings/save
POST /api/v1/group/create
POST /api/v1/integrations/create/{companyId}
POST /api/v1/integrationspecific/save
POST /api/v1/ip/delete
POST /api/v1/ip/save
POST /api/v1/ip/update
POST /api/v1/ip/verify
POST /api/v1/notification/create/{companyId}
POST /api/v1/payment/handle-webhook
POST /api/v1/plan/savePlan
POST /api/v1/review-requests/delete/{id}
POST /api/v1/review-requests/save
POST /api/v1/review-requests/update
POST /api/v1/sdk/customer/findOrCreate
POST /api/v1/sdk/feedback/create
POST /api/v1/sdk/submitReviewWidget/{widgetId}
POST /api/v1/subscription/owner/assign
POST /api/v1/tag/create
POST /api/v1/ticket-messaging/addMessage
POST /api/v1/tickets/addTicket
POST /api/v1/tickets/appendMessage
POST /api/v1/user/save
POST /api/v1/webhookSettings/add
POST /api/v1/widget/save/{companyId}
PUT /api/v1/auth/change-password
PUT /api/v1/auth/deactivateMfa
PUT /api/v1/company/edit/{id}
PUT /api/v1/customer/updateCustomer/{customerId}
PUT /api/v1/email/editEmail/{id}
PUT /api/v1/feedback/updateFeedback/{feedbackId}
PUT /api/v1/generalsettings/edit/{id}
PUT /api/v1/group/addOrRemove
PUT /api/v1/integrations/reAccessIntegration
PUT /api/v1/integrations/updateIntegration/{id}
PUT /api/v1/integrationspecific/edit/{companyId}
PUT /api/v1/notification/update/{companyId}
PUT /api/v1/tag/updateTag
PUT /api/v1/tickets/assignUser
PUT /api/v1/tickets/changeStatus
PUT /api/v1/user/editUser/{userId}
PUT /api/v1/user/enableOrDisableUser
PUT /api/v1/webhookSettings/remove
PUT /api/v1/widget/update/{id}

Found on 2026-01-09 01:46

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bfb0a1328facd0d794f784b2090fe1d9b9a24d5df

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /api/v1/company/deleteCompany/{id}
DELETE /api/v1/customer/deleteCustomer
DELETE /api/v1/domain/delete
DELETE /api/v1/email/delete
DELETE /api/v1/feedback/deleteByFrom
DELETE /api/v1/feedback/deleteFeedback
DELETE /api/v1/group/delete
DELETE /api/v1/integrations/deleteIntegration
DELETE /api/v1/integrationspecific/delete
DELETE /api/v1/ticket-messaging/deleteMessage
DELETE /api/v1/tickets/deleteTicket
DELETE /api/v1/user/delete
DELETE /api/v1/widget/delete/{widgetId}
GET /api/v1/apikey/create
GET /api/v1/apikey/getKey
GET /api/v1/auth/activate2fa
GET /api/v1/auth/deactivateMfaRequest/{userId}
GET /api/v1/auth/requestMfa
GET /api/v1/auth/resend-verification-token
GET /api/v1/auth/reset-password
GET /api/v1/auth/reset-password-request
GET /api/v1/auth/validateMfa
GET /api/v1/auth/verifyEmail
GET /api/v1/company/getByPlan
GET /api/v1/company/getCompanies/{userId}
GET /api/v1/company/getCompany/{id}
GET /api/v1/customer/getCustomerById
GET /api/v1/customer/getCustomers
GET /api/v1/domain/getDomain
GET /api/v1/domain/getDomains
GET /api/v1/domain/verifyDomain
GET /api/v1/email/getEmail
GET /api/v1/email/getEmails
GET /api/v1/feedback/getFeedback/{feedbackId}
GET /api/v1/feedback/getFeedbackByFrom
GET /api/v1/feedback/getFeedbackByGroup
GET /api/v1/feedback/getFeedbackIdsByFrom
GET /api/v1/feedback/getFeedbacks
GET /api/v1/feedback/getFeedbacksByCompany
GET /api/v1/feedback/getFeedbacksByCompanyAndCustomer
GET /api/v1/generalsettings/getByCompanyId
GET /api/v1/generalsettings/getById
GET /api/v1/group/getAllGroups
GET /api/v1/group/getGroup
GET /api/v1/integrations/getExpiringFacebook
GET /api/v1/integrations/getExpiringGoogle
GET /api/v1/integrations/getForCompany/{companyId}
GET /api/v1/integrations/getForwardingNumber
GET /api/v1/integrations/getIntegration/{id}
GET /api/v1/integrations/getIntegrationByAccessToken
GET /api/v1/integrationspecific/getByCompany
GET /api/v1/ip/getIpForUser
GET /api/v1/notification/getByCompany
GET /api/v1/payment/billing-portal/{companyId}
GET /api/v1/payment/company/{companyId}
GET /api/v1/payment/provider/{provider}
GET /api/v1/payment/verify-payment/{transactionRef}
GET /api/v1/plan/getPlanByName
GET /api/v1/plan/plan
GET /api/v1/plan/plans
GET /api/v1/review-requests/getAllByCompany/{companyId}
GET /api/v1/review-requests/getByCustomer/{customerId}
GET /api/v1/review-requests/getById/{id}
GET /api/v1/sdk/customer/get
GET /api/v1/sdk/customer/getAll
GET /api/v1/sdk/embed/{widgetId}.js
GET /api/v1/stats/ces
GET /api/v1/stats/csat
GET /api/v1/stats/get
GET /api/v1/stats/nps
GET /api/v1/stats/sd
GET /api/v1/stats/sources
GET /api/v1/stats/trends
GET /api/v1/subscription/expiredActive
GET /api/v1/subscription/owner/check
GET /api/v1/subscription/owner/{subscriptionId}
GET /api/v1/subscription/owner/{subscriptionId}/companies
GET /api/v1/subscription/subscription/getAllCompaniesForSubscription/{primaryCompanyId}
GET /api/v1/subscription/subscription/{companyId}
GET /api/v1/subscription/subscription/{companyId}/all
GET /api/v1/tag/getTags
GET /api/v1/ticket-messaging/getMessages
GET /api/v1/tickets/getCompanyTickets/{companyId}
GET /api/v1/tickets/getCustomerTickets/{companyId}/{customerId}
GET /api/v1/tickets/getTicket/{ticketId}
GET /api/v1/user/getAll
GET /api/v1/user/getUser
GET /api/v1/user/getUserForCompany
GET /api/v1/webhookSettings/getHooks
GET /api/v1/widget/embed/{widgetId}.js
GET /api/v1/widget/get/{widgetId}
GET /api/v1/widget/getWidgetsByCompanyId
PATCH /api/v1/ip/blacklist
PATCH /api/v1/plan/updatePlan/{id}
PATCH /api/v1/subscription/deactivate
POST /api/v1/auth/completeMfaActivation
POST /api/v1/auth/login
POST /api/v1/auth/register
POST /api/v1/company/assignCompany
POST /api/v1/company/saveCompany/{userId}
POST /api/v1/customer/saveCustomer/{companyId}
POST /api/v1/domain/create/{companyId}
POST /api/v1/email/create
POST /api/v1/email/handleIncomingEmail
POST /api/v1/feedback/saveFacebookFeedback
POST /api/v1/feedback/saveFeedback/{customerId}
POST /api/v1/generalsettings/save
POST /api/v1/group/create
POST /api/v1/integrations/create/{companyId}
POST /api/v1/integrationspecific/save
POST /api/v1/ip/delete
POST /api/v1/ip/save
POST /api/v1/ip/update
POST /api/v1/ip/verify
POST /api/v1/notification/create/{companyId}
POST /api/v1/payment/handle-webhook
POST /api/v1/plan/savePlan
POST /api/v1/review-requests/delete/{id}
POST /api/v1/review-requests/save
POST /api/v1/review-requests/update
POST /api/v1/sdk/customer/findOrCreate
POST /api/v1/sdk/feedback/create
POST /api/v1/sdk/submitReviewWidget/{widgetId}
POST /api/v1/subscription/owner/assign
POST /api/v1/tag/create
POST /api/v1/ticket-messaging/addMessage
POST /api/v1/tickets/addTicket
POST /api/v1/tickets/appendMessage
POST /api/v1/user/save
POST /api/v1/webhookSettings/add
POST /api/v1/widget/save/{companyId}
PUT /api/v1/auth/change-password
PUT /api/v1/auth/deactivateMfa
PUT /api/v1/company/edit/{id}
PUT /api/v1/customer/updateCustomer/{customerId}
PUT /api/v1/email/editEmail/{id}
PUT /api/v1/feedback/updateFeedback/{feedbackId}
PUT /api/v1/generalsettings/edit/{id}
PUT /api/v1/group/addOrRemove
PUT /api/v1/integrations/reAccessIntegration
PUT /api/v1/integrations/updateIntegration/{id}
PUT /api/v1/integrationspecific/edit/{companyId}
PUT /api/v1/notification/update/{companyId}
PUT /api/v1/tag/updateTag
PUT /api/v1/tickets/assignUser
PUT /api/v1/tickets/changeStatus
PUT /api/v1/user/editUser/{userId}
PUT /api/v1/user/enableOrDisableUser
PUT /api/v1/webhookSettings/remove
PUT /api/v1/widget/update/{id}

Found on 2025-12-18 17:03

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bfb0a1328facd0d794f784b2090fe1d9b3a5fbbf2

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /api/v1/company/deleteCompany/{id}
DELETE /api/v1/customer/deleteCustomer
DELETE /api/v1/domain/delete
DELETE /api/v1/email/delete
DELETE /api/v1/feedback/deleteByFrom
DELETE /api/v1/feedback/deleteFeedback
DELETE /api/v1/group/delete
DELETE /api/v1/integrations/deleteIntegration
DELETE /api/v1/integrationspecific/delete
DELETE /api/v1/ticket-messaging/deleteMessage
DELETE /api/v1/tickets/deleteTicket
DELETE /api/v1/user/delete
DELETE /api/v1/widget/delete/{widgetId}
GET /api/v1/apikey/create
GET /api/v1/apikey/getKey
GET /api/v1/auth/activate2fa
GET /api/v1/auth/deactivateMfaRequest
GET /api/v1/auth/requestMfa
GET /api/v1/auth/resend-verification-token
GET /api/v1/auth/reset-password
GET /api/v1/auth/reset-password-request
GET /api/v1/auth/send-test-emails
GET /api/v1/auth/validateMfa
GET /api/v1/auth/verifyEmail
GET /api/v1/company/getByPlan
GET /api/v1/company/getCompanies/{userId}
GET /api/v1/company/getCompany/{id}
GET /api/v1/customer/getCustomerById
GET /api/v1/customer/getCustomers
GET /api/v1/domain/getDomain
GET /api/v1/domain/getDomains
GET /api/v1/domain/verifyDomain
GET /api/v1/email/getEmail
GET /api/v1/email/getEmails
GET /api/v1/feedback/getFeedback/{feedbackId}
GET /api/v1/feedback/getFeedbackByFrom
GET /api/v1/feedback/getFeedbackByGroup
GET /api/v1/feedback/getFeedbackIdsByFrom
GET /api/v1/feedback/getFeedbacks
GET /api/v1/feedback/getFeedbacksByCompany
GET /api/v1/feedback/getFeedbacksByCompanyAndCustomer
GET /api/v1/generalsettings/getByCompanyId
GET /api/v1/generalsettings/getById
GET /api/v1/group/getAllGroups
GET /api/v1/group/getGroup
GET /api/v1/integrations/getForCompany/{companyId}
GET /api/v1/integrations/getForwardingNumber
GET /api/v1/integrations/getIntegration/{id}
GET /api/v1/integrations/getIntegrationByAccessToken
GET /api/v1/integrationspecific/getByCompany
GET /api/v1/ip/getIpForUser
GET /api/v1/notification/getByCompany
GET /api/v1/payment/billing-portal/{companyId}
GET /api/v1/payment/company/{companyId}
GET /api/v1/payment/provider/{provider}
GET /api/v1/payment/{transactionRef}
GET /api/v1/plan/getPlanByName
GET /api/v1/plan/plan
GET /api/v1/plan/plans
GET /api/v1/review-requests/getAllByCompany/{companyId}
GET /api/v1/review-requests/getByCustomer/{customerId}
GET /api/v1/review-requests/getById/{id}
GET /api/v1/sdk/customer/get
GET /api/v1/sdk/customer/getAll
GET /api/v1/sdk/embed/{widgetId}.js
GET /api/v1/stats/ces
GET /api/v1/stats/csat
GET /api/v1/stats/get
GET /api/v1/stats/nps
GET /api/v1/stats/sd
GET /api/v1/stats/sources
GET /api/v1/stats/trends
GET /api/v1/subscription/expiredActive
GET /api/v1/subscription/owner/check
GET /api/v1/subscription/owner/{subscriptionId}
GET /api/v1/subscription/owner/{subscriptionId}/companies
GET /api/v1/subscription/subscription/getAllCompaniesForSubscription/{primaryCompanyId}
GET /api/v1/subscription/subscription/{companyId}
GET /api/v1/subscription/subscription/{companyId}/all
GET /api/v1/tag/getTags
GET /api/v1/ticket-messaging/getMessages
GET /api/v1/tickets/getCompanyTickets/{companyId}
GET /api/v1/tickets/getCustomerTickets/{companyId}/{customerId}
GET /api/v1/tickets/getTicket/{ticketId}
GET /api/v1/user/getAll
GET /api/v1/user/getUser
GET /api/v1/user/getUserForCompany
GET /api/v1/webhookSettings/getHooks
GET /api/v1/widget/embed/{widgetId}.js
GET /api/v1/widget/get/{widgetId}
GET /api/v1/widget/getWidgetsByCompanyId
PATCH /api/v1/ip/blacklist
PATCH /api/v1/plan/updatePlan/{id}
PATCH /api/v1/subscription/deactivate
POST /api/v1/auth/completeMfaActivation
POST /api/v1/auth/login
POST /api/v1/auth/register
POST /api/v1/company/assignCompany
POST /api/v1/company/saveCompany/{userId}
POST /api/v1/customer/saveCustomer/{companyId}
POST /api/v1/domain/create/{companyId}
POST /api/v1/email/create
POST /api/v1/email/handleIncomingEmail
POST /api/v1/feedback/saveFacebookFeedback
POST /api/v1/feedback/saveFeedback/{customerId}
POST /api/v1/generalsettings/save
POST /api/v1/group/create
POST /api/v1/integrations/create/{companyId}
POST /api/v1/integrationspecific/save
POST /api/v1/ip/delete
POST /api/v1/ip/save
POST /api/v1/ip/update
POST /api/v1/ip/verify
POST /api/v1/notification/create/{companyId}
POST /api/v1/payment/handle-webhook
POST /api/v1/plan/savePlan
POST /api/v1/review-requests/delete/{id}
POST /api/v1/review-requests/save
POST /api/v1/review-requests/update
POST /api/v1/sdk/customer/findOrCreate
POST /api/v1/sdk/feedback/create
POST /api/v1/sdk/submitReviewWidget/{widgetId}
POST /api/v1/subscription/owner/assign
POST /api/v1/tag/create
POST /api/v1/ticket-messaging/addMessage
POST /api/v1/tickets/addTicket
POST /api/v1/tickets/appendMessage
POST /api/v1/user/save
POST /api/v1/webhookSettings/add
POST /api/v1/widget/save/{companyId}
PUT /api/v1/auth/change-password
PUT /api/v1/auth/deactivateMfa
PUT /api/v1/company/edit/{id}
PUT /api/v1/customer/updateCustomer/{customerId}
PUT /api/v1/email/editEmail/{id}
PUT /api/v1/feedback/updateFeedback/{feedbackId}
PUT /api/v1/generalsettings/edit/{id}
PUT /api/v1/group/addOrRemove
PUT /api/v1/integrations/reAccessIntegration
PUT /api/v1/integrations/updateIntegration/{id}
PUT /api/v1/integrationspecific/edit/{companyId}
PUT /api/v1/notification/update/{companyId}
PUT /api/v1/tag/updateTag
PUT /api/v1/tickets/assignUser
PUT /api/v1/tickets/changeStatus
PUT /api/v1/user/editUser/{userId}
PUT /api/v1/user/enableOrDisableUser
PUT /api/v1/webhookSettings/remove
PUT /api/v1/widget/update/{id}

Found on 2025-12-03 14:35

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bfb0a1328facd0d794f784b2090fe1d9bb24db3d2

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /api/v1/company/deleteCompany/{id}
DELETE /api/v1/customer/deleteCustomer
DELETE /api/v1/domain/delete
DELETE /api/v1/email/delete
DELETE /api/v1/feedback/deleteByFrom
DELETE /api/v1/feedback/deleteFeedback
DELETE /api/v1/group/delete
DELETE /api/v1/integrations/deleteIntegration
DELETE /api/v1/integrationspecific/delete
DELETE /api/v1/ticket-messaging/deleteMessage
DELETE /api/v1/tickets/deleteTicket
DELETE /api/v1/user/delete
DELETE /api/v1/widget/delete/{widgetId}
GET /api/v1/apikey/create
GET /api/v1/apikey/getKey
GET /api/v1/auth/activate2fa
GET /api/v1/auth/deactivateMfaRequest
GET /api/v1/auth/requestMfa
GET /api/v1/auth/resend-verification-token
GET /api/v1/auth/reset-password
GET /api/v1/auth/reset-password-request
GET /api/v1/auth/send-test-emails
GET /api/v1/auth/validateMfa
GET /api/v1/auth/verifyEmail
GET /api/v1/company/getByPlan
GET /api/v1/company/getCompanies/{userId}
GET /api/v1/company/getCompany/{id}
GET /api/v1/customer/getCustomerById
GET /api/v1/customer/getCustomers
GET /api/v1/domain/getDomain
GET /api/v1/domain/getDomains
GET /api/v1/domain/verifyDomain
GET /api/v1/email/getEmail
GET /api/v1/email/getEmails
GET /api/v1/feedback/getFeedback/{feedbackId}
GET /api/v1/feedback/getFeedbackByFrom
GET /api/v1/feedback/getFeedbackByGroup
GET /api/v1/feedback/getFeedbackIdsByFrom
GET /api/v1/feedback/getFeedbacks
GET /api/v1/feedback/getFeedbacksByCompany
GET /api/v1/feedback/getFeedbacksByCompanyAndCustomer
GET /api/v1/generalsettings/getByCompanyId
GET /api/v1/generalsettings/getById
GET /api/v1/group/getAllGroups
GET /api/v1/group/getGroup
GET /api/v1/integrations/getForCompany/{companyId}
GET /api/v1/integrations/getForwardingNumber
GET /api/v1/integrations/getIntegration/{id}
GET /api/v1/integrations/getIntegrationByAccessToken
GET /api/v1/integrationspecific/getByCompany
GET /api/v1/ip/getIpForUser
GET /api/v1/notification/getByCompany
GET /api/v1/plan/getPlanByName
GET /api/v1/plan/plan
GET /api/v1/plan/plans
GET /api/v1/review-requests/getAllByCompany/{companyId}
GET /api/v1/review-requests/getByCustomer/{customerId}
GET /api/v1/review-requests/getById/{id}
GET /api/v1/sdk/customer/get
GET /api/v1/sdk/customer/getAll
GET /api/v1/sdk/embed/{widgetId}.js
GET /api/v1/stats/ces
GET /api/v1/stats/csat
GET /api/v1/stats/get
GET /api/v1/stats/nps
GET /api/v1/stats/sd
GET /api/v1/stats/sources
GET /api/v1/stats/trends
GET /api/v1/subscription/expiredActive
GET /api/v1/subscription/owner/check
GET /api/v1/subscription/owner/{subscriptionId}
GET /api/v1/subscription/owner/{subscriptionId}/companies
GET /api/v1/subscription/subscription/getAllCompaniesForSubscription/{primaryCompanyId}
GET /api/v1/subscription/subscription/{companyId}
GET /api/v1/subscription/subscription/{companyId}/all
GET /api/v1/tag/getTags
GET /api/v1/ticket-messaging/getMessages
GET /api/v1/tickets/getCompanyTickets/{companyId}
GET /api/v1/tickets/getCustomerTickets/{companyId}/{customerId}
GET /api/v1/tickets/getTicket/{ticketId}
GET /api/v1/user/getAll
GET /api/v1/user/getUser
GET /api/v1/user/getUserForCompany
GET /api/v1/webhookSettings/getHooks
GET /api/v1/widget/embed/{widgetId}.js
GET /api/v1/widget/get/{widgetId}
GET /api/v1/widget/getWidgetsByCompanyId
PATCH /api/v1/plan/updatePlan/{id}
PATCH /api/v1/subscription/deactivate
POST /api/v1/auth/login
POST /api/v1/auth/register
POST /api/v1/company/assignCompany
POST /api/v1/company/saveCompany/{userId}
POST /api/v1/customer/saveCustomer/{companyId}
POST /api/v1/domain/create/{companyId}
POST /api/v1/email/create
POST /api/v1/email/handleIncomingEmail
POST /api/v1/feedback/saveFacebookFeedback
POST /api/v1/feedback/saveFeedback/{customerId}
POST /api/v1/generalsettings/save
POST /api/v1/group/create
POST /api/v1/integrations/create/{companyId}
POST /api/v1/integrationspecific/save
POST /api/v1/ip/delete
POST /api/v1/ip/save
POST /api/v1/ip/update
POST /api/v1/ip/verify
POST /api/v1/notification/create/{companyId}
POST /api/v1/payment/handle-webhook
POST /api/v1/plan/savePlan
POST /api/v1/review-requests/delete/{id}
POST /api/v1/review-requests/save
POST /api/v1/review-requests/update
POST /api/v1/sdk/customer/findOrCreate
POST /api/v1/sdk/feedback/create
POST /api/v1/sdk/submitReviewWidget/{widgetId}
POST /api/v1/subscription/owner/assign
POST /api/v1/tag/create
POST /api/v1/ticket-messaging/addMessage
POST /api/v1/tickets/addTicket
POST /api/v1/tickets/appendMessage
POST /api/v1/user/save
POST /api/v1/webhookSettings/add
POST /api/v1/widget/save/{companyId}
PUT /api/v1/auth/change-password
PUT /api/v1/auth/deactivateMfa
PUT /api/v1/company/edit/{id}
PUT /api/v1/customer/updateCustomer/{customerId}
PUT /api/v1/email/editEmail/{id}
PUT /api/v1/feedback/updateFeedback/{feedbackId}
PUT /api/v1/generalsettings/edit/{id}
PUT /api/v1/group/addOrRemove
PUT /api/v1/integrations/reAccessIntegration
PUT /api/v1/integrations/updateIntegration/{id}
PUT /api/v1/integrationspecific/edit/{companyId}
PUT /api/v1/notification/update/{companyId}
PUT /api/v1/tag/updateTag
PUT /api/v1/tickets/assignUser
PUT /api/v1/tickets/changeStatus
PUT /api/v1/user/editUser/{userId}
PUT /api/v1/user/enableOrDisableUser
PUT /api/v1/webhookSettings/remove
PUT /api/v1/widget/update/{id}

Found on 2025-11-18 08:11

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bfb0a1328facd0d794f784b2090fe1d9bbc63301e

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /api/v1/company/deleteCompany/{id}
DELETE /api/v1/customer/deleteCustomer
DELETE /api/v1/domain/delete
DELETE /api/v1/email/delete
DELETE /api/v1/feedback/deleteByFrom
DELETE /api/v1/feedback/deleteFeedback
DELETE /api/v1/group/delete
DELETE /api/v1/integrations/deleteIntegration
DELETE /api/v1/integrationspecific/delete
DELETE /api/v1/ticket-messaging/deleteMessage
DELETE /api/v1/tickets/deleteTicket
DELETE /api/v1/user/delete
DELETE /api/v1/widget/delete/{widgetId}
GET /api/v1/apikey/create
GET /api/v1/apikey/getKey
GET /api/v1/auth/activate2fa
GET /api/v1/auth/deactivateMfaRequest
GET /api/v1/auth/requestMfa
GET /api/v1/auth/resend-verification-token
GET /api/v1/auth/reset-password
GET /api/v1/auth/reset-password-request
GET /api/v1/auth/validateMfa
GET /api/v1/auth/verifyEmail
GET /api/v1/company/getByPlan
GET /api/v1/company/getCompanies/{userId}
GET /api/v1/company/getCompany/{id}
GET /api/v1/customer/getCustomerById
GET /api/v1/customer/getCustomers
GET /api/v1/domain/getDomain
GET /api/v1/domain/getDomains
GET /api/v1/domain/verifyDomain
GET /api/v1/email/getEmail
GET /api/v1/email/getEmails
GET /api/v1/feedback/getFeedback/{feedbackId}
GET /api/v1/feedback/getFeedbackByFrom
GET /api/v1/feedback/getFeedbackByGroup
GET /api/v1/feedback/getFeedbackIdsByFrom
GET /api/v1/feedback/getFeedbacks
GET /api/v1/feedback/getFeedbacksByCompany
GET /api/v1/feedback/getFeedbacksByCompanyAndCustomer
GET /api/v1/generalsettings/getByCompanyId
GET /api/v1/generalsettings/getById
GET /api/v1/group/getAllGroups
GET /api/v1/group/getGroup
GET /api/v1/integrations/getForCompany/{companyId}
GET /api/v1/integrations/getForwardingNumber
GET /api/v1/integrations/getIntegration/{id}
GET /api/v1/integrations/getIntegrationByAccessToken
GET /api/v1/integrationspecific/getByCompany
GET /api/v1/ip/getIpForUser
GET /api/v1/notification/getByCompany
GET /api/v1/plan/getPlanByName
GET /api/v1/plan/plan
GET /api/v1/plan/plans
GET /api/v1/review-requests/getAllByCompany/{companyId}
GET /api/v1/review-requests/getByCustomer/{customerId}
GET /api/v1/review-requests/getById/{id}
GET /api/v1/sdk/customer/get
GET /api/v1/sdk/customer/getAll
GET /api/v1/sdk/embed/{widgetId}.js
GET /api/v1/stats/ces
GET /api/v1/stats/csat
GET /api/v1/stats/get
GET /api/v1/stats/nps
GET /api/v1/stats/sd
GET /api/v1/stats/sources
GET /api/v1/stats/trends
GET /api/v1/subscription/expiredActive
GET /api/v1/subscription/owner/check
GET /api/v1/subscription/owner/{subscriptionId}
GET /api/v1/subscription/owner/{subscriptionId}/companies
GET /api/v1/subscription/subscription/getAllCompaniesForSubscription/{primaryCompanyId}
GET /api/v1/subscription/subscription/{companyId}
GET /api/v1/subscription/subscription/{companyId}/all
GET /api/v1/tag/getTags
GET /api/v1/ticket-messaging/getMessages
GET /api/v1/tickets/getCompanyTickets/{companyId}
GET /api/v1/tickets/getCustomerTickets/{companyId}/{customerId}
GET /api/v1/tickets/getTicket/{ticketId}
GET /api/v1/user/getAll
GET /api/v1/user/getUser
GET /api/v1/user/getUserForCompany
GET /api/v1/webhookSettings/getHooks
GET /api/v1/widget/embed/{widgetId}.js
GET /api/v1/widget/get/{widgetId}
GET /api/v1/widget/getWidgetsByCompanyId
PATCH /api/v1/plan/updatePlan/{id}
PATCH /api/v1/subscription/deactivate
POST /api/v1/auth/login
POST /api/v1/auth/register
POST /api/v1/company/assignCompany
POST /api/v1/company/saveCompany/{userId}
POST /api/v1/customer/saveCustomer/{companyId}
POST /api/v1/domain/create/{companyId}
POST /api/v1/email/create
POST /api/v1/email/handleIncomingEmail
POST /api/v1/feedback/saveFacebookFeedback
POST /api/v1/feedback/saveFeedback/{customerId}
POST /api/v1/generalsettings/save
POST /api/v1/group/create
POST /api/v1/integrations/create/{companyId}
POST /api/v1/integrationspecific/save
POST /api/v1/ip/delete
POST /api/v1/ip/save
POST /api/v1/ip/update
POST /api/v1/ip/verify
POST /api/v1/notification/create/{companyId}
POST /api/v1/payment/handle-webhook
POST /api/v1/plan/savePlan
POST /api/v1/review-requests/delete/{id}
POST /api/v1/review-requests/save
POST /api/v1/review-requests/update
POST /api/v1/sdk/customer/findOrCreate
POST /api/v1/sdk/feedback/create
POST /api/v1/sdk/submitReviewWidget/{widgetId}
POST /api/v1/subscription/owner/assign
POST /api/v1/tag/create
POST /api/v1/ticket-messaging/addMessage
POST /api/v1/tickets/addTicket
POST /api/v1/tickets/appendMessage
POST /api/v1/user/save
POST /api/v1/webhookSettings/add
POST /api/v1/widget/save/{companyId}
PUT /api/v1/auth/change-password
PUT /api/v1/auth/deactivateMfa
PUT /api/v1/company/edit/{id}
PUT /api/v1/customer/updateCustomer/{customerId}
PUT /api/v1/email/editEmail/{id}
PUT /api/v1/feedback/updateFeedback/{feedbackId}
PUT /api/v1/generalsettings/edit/{id}
PUT /api/v1/group/addOrRemove
PUT /api/v1/integrations/reAccessIntegration
PUT /api/v1/integrations/updateIntegration/{id}
PUT /api/v1/integrationspecific/edit/{companyId}
PUT /api/v1/notification/update/{companyId}
PUT /api/v1/tag/updateTag
PUT /api/v1/tickets/assignUser
PUT /api/v1/tickets/changeStatus
PUT /api/v1/user/editUser/{userId}
PUT /api/v1/user/enableOrDisableUser
PUT /api/v1/webhookSettings/remove
PUT /api/v1/widget/update/{id}

Found on 2025-11-14 05:19

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bfb0a1328facd0d794f784b2090fe1d9b022afa14

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /api/v1/company/deleteCompany/{id}
DELETE /api/v1/customer/deleteCustomer
DELETE /api/v1/domain/delete
DELETE /api/v1/email/delete
DELETE /api/v1/feedback/deleteByFrom
DELETE /api/v1/feedback/deleteFeedback
DELETE /api/v1/group/delete
DELETE /api/v1/integrations/deleteIntegration
DELETE /api/v1/integrationspecific/delete
DELETE /api/v1/ticket-messaging/deleteMessage
DELETE /api/v1/tickets/deleteTicket
DELETE /api/v1/user/delete
DELETE /api/v1/widget/delete/{widgetId}
GET /api/v1/apikey/create
GET /api/v1/apikey/getKey
GET /api/v1/auth/activate2fa
GET /api/v1/auth/deactivateMfaRequest
GET /api/v1/auth/requestMfa
GET /api/v1/auth/reset-password
GET /api/v1/auth/reset-password-request
GET /api/v1/auth/validateMfa
GET /api/v1/company/getByPlan
GET /api/v1/company/getCompanies/{userId}
GET /api/v1/company/getCompany/{id}
GET /api/v1/customer/getCustomerById
GET /api/v1/customer/getCustomers
GET /api/v1/domain/getDomain
GET /api/v1/domain/getDomains
GET /api/v1/domain/verifyDomain
GET /api/v1/email/getEmail
GET /api/v1/email/getEmails
GET /api/v1/feedback/getFeedback/{feedbackId}
GET /api/v1/feedback/getFeedbackByFrom
GET /api/v1/feedback/getFeedbackByGroup
GET /api/v1/feedback/getFeedbackIdsByFrom
GET /api/v1/feedback/getFeedbacks
GET /api/v1/feedback/getFeedbacksByCompany
GET /api/v1/feedback/getFeedbacksByCompanyAndCustomer
GET /api/v1/generalsettings/getByCompanyId
GET /api/v1/generalsettings/getById
GET /api/v1/group/getAllGroups
GET /api/v1/group/getGroup
GET /api/v1/integrations/getForCompany/{companyId}
GET /api/v1/integrations/getForwardingNumber
GET /api/v1/integrations/getIntegration/{id}
GET /api/v1/integrations/getIntegrationByAccessToken
GET /api/v1/integrationspecific/getByCompany
GET /api/v1/ip/getIpForUser
GET /api/v1/notification/getByCompany
GET /api/v1/plan/getPlanByName
GET /api/v1/plan/plan
GET /api/v1/plan/plans
GET /api/v1/review-requests/getAllByCompany/{companyId}
GET /api/v1/review-requests/getByCustomer/{customerId}
GET /api/v1/review-requests/getById/{id}
GET /api/v1/sdk/customer/get
GET /api/v1/sdk/customer/getAll
GET /api/v1/sdk/embed/{widgetId}.js
GET /api/v1/stats/ces
GET /api/v1/stats/csat
GET /api/v1/stats/get
GET /api/v1/stats/nps
GET /api/v1/stats/sd
GET /api/v1/stats/sources
GET /api/v1/stats/trends
GET /api/v1/subscription/expiredActive
GET /api/v1/subscription/owner/check
GET /api/v1/subscription/owner/{subscriptionId}
GET /api/v1/subscription/owner/{subscriptionId}/companies
GET /api/v1/subscription/subscription/getAllCompaniesForSubscription/{primaryCompanyId}
GET /api/v1/subscription/subscription/{companyId}
GET /api/v1/subscription/subscription/{companyId}/all
GET /api/v1/tag/getTags
GET /api/v1/ticket-messaging/getMessages
GET /api/v1/tickets/getCompanyTickets/{companyId}
GET /api/v1/tickets/getCustomerTickets/{companyId}/{customerId}
GET /api/v1/tickets/getTicket/{ticketId}
GET /api/v1/user/getAll
GET /api/v1/user/getUser
GET /api/v1/user/getUserForCompany
GET /api/v1/webhookSettings/getHooks
GET /api/v1/widget/embed/{widgetId}.js
GET /api/v1/widget/get/{widgetId}
GET /api/v1/widget/getWidgetsByCompanyId
PATCH /api/v1/plan/updatePlan/{id}
PATCH /api/v1/subscription/deactivate
POST /api/v1/auth/login
POST /api/v1/auth/register
POST /api/v1/company/assignCompany
POST /api/v1/company/saveCompany/{userId}
POST /api/v1/customer/saveCustomer/{companyId}
POST /api/v1/domain/create/{companyId}
POST /api/v1/email/create
POST /api/v1/email/handleIncomingEmail
POST /api/v1/feedback/saveFacebookFeedback
POST /api/v1/feedback/saveFeedback/{customerId}
POST /api/v1/generalsettings/save
POST /api/v1/group/create
POST /api/v1/integrations/create/{companyId}
POST /api/v1/integrationspecific/save
POST /api/v1/ip/delete
POST /api/v1/ip/save
POST /api/v1/ip/update
POST /api/v1/ip/verify
POST /api/v1/notification/create/{companyId}
POST /api/v1/payment/handle-webhook
POST /api/v1/plan/savePlan
POST /api/v1/review-requests/delete/{id}
POST /api/v1/review-requests/save
POST /api/v1/review-requests/update
POST /api/v1/sdk/customer/findOrCreate
POST /api/v1/sdk/feedback/create
POST /api/v1/sdk/submitReviewWidget/{widgetId}
POST /api/v1/subscription/owner/assign
POST /api/v1/tag/create
POST /api/v1/ticket-messaging/addMessage
POST /api/v1/tickets/addTicket
POST /api/v1/tickets/appendMessage
POST /api/v1/user/save
POST /api/v1/webhookSettings/add
POST /api/v1/widget/save/{companyId}
PUT /api/v1/auth/change-password
PUT /api/v1/auth/deactivateMfa
PUT /api/v1/company/edit/{id}
PUT /api/v1/customer/updateCustomer/{customerId}
PUT /api/v1/email/editEmail/{id}
PUT /api/v1/feedback/updateFeedback/{feedbackId}
PUT /api/v1/generalsettings/edit/{id}
PUT /api/v1/group/addOrRemove
PUT /api/v1/integrations/reAccessIntegration
PUT /api/v1/integrations/updateIntegration/{id}
PUT /api/v1/integrationspecific/edit/{companyId}
PUT /api/v1/notification/update/{companyId}
PUT /api/v1/tag/updateTag
PUT /api/v1/tickets/assignUser
PUT /api/v1/tickets/changeStatus
PUT /api/v1/user/editUser/{userId}
PUT /api/v1/user/enableOrDisableUser
PUT /api/v1/webhookSettings/remove
PUT /api/v1/widget/update/{id}

Found on 2025-11-09 11:59

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: www.carryconfidential.com
Port: 443
URL: https://www.carryconfidential.com

First seen 2025-11-22 00:25
Last seen 2026-01-09 00:50
Open for 48 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-09 00:50
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: tv.reigniteyourheart.com
Port: 80
URL: http://tv.reigniteyourheart.com

First seen 2025-10-29 00:38
Last seen 2026-01-08 22:34
Open for 71 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-08 22:34
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: sharingjesus.bmidigital.online
Port: 80
URL: http://sharingjesus.bmidigital.online

First seen 2025-11-13 02:44
Last seen 2026-01-08 22:26
Open for 56 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-08 22:26
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: app.step0.xyz
Port: 80
URL: http://app.step0.xyz

First seen 2025-11-14 01:13
Last seen 2026-01-08 22:22
Open for 55 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-08 22:22
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: consensus.askfortransparency.com
Port: 443
URL: https://consensus.askfortransparency.com

First seen 2025-10-18 00:06
Last seen 2026-01-08 22:14
Open for 82 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-08 22:14
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: plataforma.soulbilingue.com
Port: 80
URL: http://plataforma.soulbilingue.com

First seen 2025-10-22 00:34
Last seen 2026-01-08 22:12
Open for 78 days

Severity: info
Fingerprint: 5733ddf49ff49cd18553ecf703b9cbeb631e777d6b65f1b9e60bee285f904ea2

Public Swagger UI/API detected at path: /swagger-ui.html - sample paths:
DELETE /api/admin/mentoring/{id}
GET /api/admin/activitys
GET /api/admin/archives/{hash}
GET /api/admin/archives/{hash}/download
GET /api/admin/certification
GET /api/admin/countries
GET /api/admin/donation/download/{engagementId}
GET /api/admin/donation/kpis
GET /api/admin/engagement/search
GET /api/admin/engagement/{id}
GET /api/admin/mentor/{id}
GET /api/admin/mentoring/mentor/{id}/students
GET /api/admin/mentoring/student/{id}/mentor
GET /api/admin/months
GET /api/admin/notification-types
GET /api/admin/notifications
GET /api/admin/notifications/{id}
GET /api/admin/occurrences/categories
GET /api/admin/programactivitys/program/{idProgram}
GET /api/admin/programenglishlevels/program/{idProgram}
GET /api/admin/programs
GET /api/admin/programs/actives
GET /api/admin/programs/{id}
GET /api/admin/ranking/last/{program}
GET /api/admin/ranking/program/{programId}/students
GET /api/admin/ranking/search
GET /api/admin/reports/mentor/{fileName}
GET /api/admin/reports/mentoring/{fileName}
GET /api/admin/reports/occurrence/{fileName}
GET /api/admin/reports/reportcard/{fileName}
GET /api/admin/reports/{id}
GET /api/admin/reportstudents/activity/{idActivity}/user/{idUser}
GET /api/admin/reportstudents/program/{idProgram}/user/{idUser}
GET /api/admin/reportstudents/reportcard
GET /api/admin/reportstudents/reportcard/{idReportCard}/activity/{idActivity}
GET /api/admin/schooling
GET /api/admin/states
GET /api/admin/student/{id}
GET /api/admin/users
GET /api/admin/users/cpf
GET /api/admin/users/login
GET /api/admin/users/roles
GET /api/admin/users/{id}
GET /api/areas-of-interest
GET /api/level-period-day
GET /public/archive/{hash}
GET /public/donation/{uuid}
GET /public/login
POST /api/admin/archives
POST /api/admin/donation/search
POST /api/admin/donation/search/grouped
POST /api/admin/engagement
POST /api/admin/mentor
POST /api/admin/mentoring
POST /api/admin/mentoring/count
POST /api/admin/mentoring/mentor/{id}/available-students
POST /api/admin/mentoring/mentors/search
POST /api/admin/mentoring/search
POST /api/admin/mentoring/students/search
POST /api/admin/notification-previews
POST /api/admin/notifications/search
POST /api/admin/occurrences
POST /api/admin/occurrences/search
POST /api/admin/programs/search
POST /api/admin/ranking/program
POST /api/admin/reports
POST /api/admin/reports/bulk/process
POST /api/admin/reports/bulk/save
POST /api/admin/reports/mentor/search
POST /api/admin/reports/mentoring/search
POST /api/admin/reports/occurrence/search
POST /api/admin/reports/reportcard/search
POST /api/admin/reports/search
POST /api/admin/reportstudents
POST /api/admin/student/search
POST /api/admin/users/bulkSave
POST /api/admin/users/photo
POST /api/admin/users/search
POST /api/admin/users/security
POST /public/donation
POST /public/news-letter
POST /public/resetpassword
PUT /api/admin/donation/student/share/{userId}/{engagementId}
PUT /api/admin/notifications/{id}/preview
PUT /api/admin/occurrences/{id}
PUT /api/admin/programs/finish/{id}
PUT /api/admin/student/disable-enable/{id}
PUT /api/admin/users/disable-enable/{id}
PUT /api/admin/users/profile/{id}

Found on 2026-01-08 22:12

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: tv.daughtersunited.org
Port: 443
URL: https://tv.daughtersunited.org

First seen 2025-10-29 00:48
Last seen 2026-01-08 21:00
Open for 71 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2026-01-08 21:00
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.integraehs.com.br
Port: 443
URL: https://api.integraehs.com.br

First seen 2025-11-03 01:18
Last seen 2026-01-08 20:39
Open for 66 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-08 20:39
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: qa.fleetpanda.com
Port: 443
URL: https://qa.fleetpanda.com

First seen 2025-11-05 00:51
Last seen 2026-01-04 01:09
Open for 60 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-04 01:09
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa35b6522d4e2acbd180025f4554e579ad03d040e88
```
GraphQL introspection enabled at /graphql
Types: 1366 (by kind: ENUM: 144, INPUT_OBJECT: 610, OBJECT: 593, SCALAR: 9, UNION: 10)
Operations:
- Query: Query | fields: appVersion, appliedPricings, asset, assetInventories, assetInventorySummary
- Mutation: Mutation | fields: accountingAsync, acknowledgeNote, addAssetToDeliveryOrder, addCodeToAsset, addFeeToOrderGroup
Directives: deprecated, include, skip (total: 3)
```
  Found on 2025-11-06 23:17
  
  1.6 MBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 15.197.149.68
Domain: admin.pathwayrenewables.com
Port: 443
URL: https://admin.pathwayrenewables.com

First seen 2025-11-17 19:16
Last seen 2026-01-04 00:09
Open for 47 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30aff7eeaae9f535a37f89e5448210f5e387e078a

GraphQL introspection enabled at /graphql
Types: 209 (by kind: ENUM: 11, INPUT_OBJECT: 109, OBJECT: 82, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-04 00:09

250.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa376142ed0fb6c14146108d94e83a1aa9035ef758a

GraphQL introspection enabled at /graphql
Types: 178 (by kind: ENUM: 12, INPUT_OBJECT: 91, OBJECT: 68, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : status=healthy version=0.0.1 environment=production

Found on 2025-12-27 01:19

215.8 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa376142ed0fb6c14146108d94e83a1aa904c31f848

GraphQL introspection enabled at /graphql
Types: 178 (by kind: ENUM: 12, INPUT_OBJECT: 91, OBJECT: 68, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : version=0.0.1 environment=production status=healthy

Found on 2025-12-25 04:23

215.1 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30229b75e19a8ffce2c401b00b324f70acaab7e3a

GraphQL introspection enabled at /graphql
Types: 151 (by kind: ENUM: 8, INPUT_OBJECT: 79, OBJECT: 57, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-23 04:18

186.8 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b7d92a7d1316b49f5f0127139eafe9fc457a6f70

GraphQL introspection enabled at /graphql
Types: 139 (by kind: ENUM: 7, INPUT_OBJECT: 69, OBJECT: 56, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, admin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-21 10:11

163.8 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3daf6556b5dd0a0299dc6d086f31953951bdc58ef

GraphQL introspection enabled at /graphql
Types: 113 (by kind: ENUM: 6, INPUT_OBJECT: 54, OBJECT: 46, SCALAR: 7)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-19 00:05

126.1 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f45dea3f29f26e8d4c6a7e72a5d4dd319b19b50b

GraphQL introspection enabled at /graphql
Types: 106 (by kind: ENUM: 8, INPUT_OBJECT: 47, OBJECT: 45, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-17 03:39

117.0 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a29c3fadb4b04f0f9678a460f7551f1392d10f7b

GraphQL introspection enabled at /graphql
Types: 106 (by kind: ENUM: 8, INPUT_OBJECT: 48, OBJECT: 44, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : status=healthy version=0.0.1 environment=production

Found on 2025-12-14 13:06

131.8 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a29c3fadb4b04f0f9678a460f7551f135211dcc1

GraphQL introspection enabled at /graphql
Types: 106 (by kind: ENUM: 8, INPUT_OBJECT: 48, OBJECT: 44, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-13 18:49

131.8 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa311041bdc18ae5560ba98d64303adea626b89f0e2

GraphQL introspection enabled at /graphql
Types: 91 (by kind: ENUM: 7, INPUT_OBJECT: 37, OBJECT: 41, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-01 12:55

94.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa37ad8661b042a2f59a6061a568b4e4b455296187b

GraphQL introspection enabled at /graphql
Types: 89 (by kind: ENUM: 6, INPUT_OBJECT: 36, OBJECT: 41, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : version=0.0.1 environment=production status=healthy

Found on 2025-11-28 20:42

92.7 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa395722c6b53f03d294913b586071e2e713aa5be4b

GraphQL introspection enabled at /graphql
Types: 86 (by kind: ENUM: 6, INPUT_OBJECT: 34, OBJECT: 40, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authGoogleLogin, authLogin, authRegister
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-27 03:32

83.4 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e8d2c6d3986e0d911693b2a6adc51c51f3c6cc2b

GraphQL introspection enabled at /graphql
Types: 77 (by kind: ENUM: 4, INPUT_OBJECT: 30, OBJECT: 37, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, billingMethods, currentUser, customerTypes, geoStates
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authGoogleLogin, authLogin, authRegister
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-23 12:41

74.3 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c475bccd43d18c6fe7503e3cc9b89a332be782c5

GraphQL introspection enabled at /graphql
Types: 76 (by kind: ENUM: 3, INPUT_OBJECT: 30, OBJECT: 37, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, billingMethods, currentUser, customerTypes, geoStates
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authGoogleLogin, authLogin, authRegister
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : version=0.0.1 environment=production status=healthy

Found on 2025-11-21 12:01

73.9 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c66f0a293cea3c8b8da9b85982b81eb264a65532

GraphQL introspection enabled at /graphql
Types: 64 (by kind: ENUM: 3, INPUT_OBJECT: 24, OBJECT: 31, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, customerTypes, geoStates, health
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authLogin, authRegister, authRequestVerifyEmail
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-17 19:16

57.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c66f0a293cea3c8b8da9b85982b81eb2a09d52f0

GraphQL introspection enabled at /graphql
Types: 64 (by kind: ENUM: 3, INPUT_OBJECT: 24, OBJECT: 31, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, customerTypes, geoStates, health
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authLogin, authRegister, authRequestVerifyEmail
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : status=healthy version=0.0.1 environment=production

Found on 2025-11-17 19:16

57.6 kBytes 3 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.theleap-staging.com
Port: 443
URL: https://api.theleap-staging.com

First seen 2025-11-04 01:02
Last seen 2026-01-04 00:08
Open for 60 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa348e0bdcd233c376f371818e61d312537f683468f

GraphQL introspection enabled at /graphql
Types: 318 (by kind: ENUM: 38, INPUT_OBJECT: 38, INTERFACE: 3, OBJECT: 223, SCALAR: 15, UNION: 1)
Operations:
- Query: Query | fields: admin, countries, creator, creatorByReferralCode, featureFlags
- Mutation: Mutation | fields: addFeatureToLeapProduct, confirmSubscription, connectIdentity, createAssistantMessage, createAssistantThread
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-04 00:08

394.8 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.pathwayrenewables.com
Port: 80
URL: http://api.pathwayrenewables.com

First seen 2025-11-04 14:49
Last seen 2026-01-04 00:08
Open for 60 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30aff7eeaae9f535a37f89e5448210f5e387e078a

GraphQL introspection enabled at /graphql
Types: 209 (by kind: ENUM: 11, INPUT_OBJECT: 109, OBJECT: 82, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-04 00:08

250.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3add47107a1a130b56f8e9a21eea805d9f6331345

GraphQL introspection enabled at /graphql
Types: 181 (by kind: ENUM: 11, INPUT_OBJECT: 94, OBJECT: 69, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-30 05:41

219.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa376142ed0fb6c14146108d94e83a1aa90491f89b4

GraphQL introspection enabled at /graphql
Types: 178 (by kind: ENUM: 12, INPUT_OBJECT: 91, OBJECT: 68, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-27 01:41

215.1 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30229b75e19a8ffce2c401b00b324f70acaab7e3a

GraphQL introspection enabled at /graphql
Types: 151 (by kind: ENUM: 8, INPUT_OBJECT: 79, OBJECT: 57, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-23 01:20

186.8 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b7d92a7d1316b49f5f0127139eafe9fc457a6f70

GraphQL introspection enabled at /graphql
Types: 139 (by kind: ENUM: 7, INPUT_OBJECT: 69, OBJECT: 56, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, admin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-20 22:29

163.9 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3694e34d9bcc61cbbd8f6252422553a0753db4a85

GraphQL introspection enabled at /graphql
Types: 107 (by kind: ENUM: 7, INPUT_OBJECT: 48, OBJECT: 45, SCALAR: 7)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-18 13:43

119.3 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa399c63ad1f982a613c8856a6cd5dc5b3fa6f2faad

GraphQL introspection enabled at /graphql
Types: 107 (by kind: ENUM: 8, INPUT_OBJECT: 48, OBJECT: 45, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-16 10:57

132.5 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a29c3fadb4b04f0f9678a460f7551f135211dcc1

GraphQL introspection enabled at /graphql
Types: 106 (by kind: ENUM: 8, INPUT_OBJECT: 48, OBJECT: 44, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-14 07:03

131.8 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a29c3fadb4b04f0f9678a460f7551f1392d10f7b

GraphQL introspection enabled at /graphql
Types: 106 (by kind: ENUM: 8, INPUT_OBJECT: 48, OBJECT: 44, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : status=healthy version=0.0.1 environment=production

Found on 2025-12-13 08:38

131.8 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa340a4720d8c29252f2a5be700196a9fb3a95a1961

GraphQL introspection enabled at /graphql
Types: 103 (by kind: ENUM: 7, INPUT_OBJECT: 46, OBJECT: 44, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-10 23:14

116.3 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa32185dbaf4391e9fdaf6d4f4278f073217f5cc607

GraphQL introspection enabled at /graphql
Types: 102 (by kind: ENUM: 7, INPUT_OBJECT: 45, OBJECT: 44, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : version=0.0.1 environment=production status=healthy

Found on 2025-12-08 08:03

110.7 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa311041bdc18ae5560ba98d64303adea626b89f0e2

GraphQL introspection enabled at /graphql
Types: 91 (by kind: ENUM: 7, INPUT_OBJECT: 37, OBJECT: 41, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-01 04:06

94.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa311041bdc18ae5560ba98d64303adea62b0ea7e60

GraphQL introspection enabled at /graphql
Types: 91 (by kind: ENUM: 7, INPUT_OBJECT: 37, OBJECT: 41, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : status=healthy version=0.0.1 environment=production

Found on 2025-11-29 00:24

94.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa395722c6b53f03d294913b586071e2e713aa5be4b

GraphQL introspection enabled at /graphql
Types: 86 (by kind: ENUM: 6, INPUT_OBJECT: 34, OBJECT: 40, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authGoogleLogin, authLogin, authRegister
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-27 01:26

83.4 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e8d2c6d3986e0d911693b2a6adc51c51f3c6cc2b

GraphQL introspection enabled at /graphql
Types: 77 (by kind: ENUM: 4, INPUT_OBJECT: 30, OBJECT: 37, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, billingMethods, currentUser, customerTypes, geoStates
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authGoogleLogin, authLogin, authRegister
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-23 11:40

74.3 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c475bccd43d18c6fe7503e3cc9b89a33fc8584e1

GraphQL introspection enabled at /graphql
Types: 76 (by kind: ENUM: 3, INPUT_OBJECT: 30, OBJECT: 37, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, billingMethods, currentUser, customerTypes, geoStates
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authGoogleLogin, authLogin, authRegister
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-21 06:23

73.9 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c66f0a293cea3c8b8da9b85982b81eb264a65532

GraphQL introspection enabled at /graphql
Types: 64 (by kind: ENUM: 3, INPUT_OBJECT: 24, OBJECT: 31, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, customerTypes, geoStates, health
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authLogin, authRegister, authRequestVerifyEmail
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-16 17:54

52.9 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39de7a33bc7b020b91c3b11f31c60f9486f022bf0

GraphQL introspection enabled at /graphql
Types: 58 (by kind: ENUM: 3, INPUT_OBJECT: 20, OBJECT: 29, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, customerTypes, geoStates, health
- Mutation: Mutation | fields: authChangePassword, authLogin, authRegister, authRequestVerifyEmail, authResetPassword
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : version=0.0.1 environment=production status=healthy

Found on 2025-11-10 17:55

47.8 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e51484bcf22f8c807439c02b2d91b5a0611ff004

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 3, INPUT_OBJECT: 16, OBJECT: 25, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, geoStates, health
- Mutation: Mutation | fields: authChangePassword, authLogin, authRegister, authRequestVerifyEmail, authResetPassword
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-08 18:45

43.2 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa390426c83e8fb0f81de68bd7be2c605b028fd78d4

GraphQL introspection enabled at /graphql
Types: 34 (by kind: ENUM: 2, INPUT_OBJECT: 8, OBJECT: 20, SCALAR: 4)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, health
- Mutation: Mutation | fields: authChangePassword, authLogin, authRegister, authRequestVerifyEmail, authResetPassword
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-06 14:11

32.7 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34b9ce8816967eb037bf8ba4924dee28c46e2dc40

GraphQL introspection enabled at /graphql
Types: 27 (by kind: ENUM: 2, INPUT_OBJECT: 4, OBJECT: 17, SCALAR: 4)
Operations:
- Query: Query | fields: health
- Mutation: Mutation | fields: authLogin, authRegister, requestVerifyEmail, verifyEmail
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-04 14:49

27.7 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34b9ce8816967eb037bf8ba4924dee28c3e988d16

GraphQL introspection enabled at /graphql
Types: 27 (by kind: ENUM: 2, INPUT_OBJECT: 4, OBJECT: 17, SCALAR: 4)
Operations:
- Query: Query | fields: health
- Mutation: Mutation | fields: authLogin, authRegister, requestVerifyEmail, verifyEmail
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : status=healthy version=0.0.1 environment=production

Found on 2025-11-04 14:49

27.7 kBytes 3 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 15.197.149.68
Domain: api.pathwayrenewables.com
Port: 443
URL: https://api.pathwayrenewables.com

First seen 2025-11-04 14:49
Last seen 2026-01-04 00:08
Open for 60 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30aff7eeaae9f535a37f89e5448210f5e387e078a

GraphQL introspection enabled at /graphql
Types: 209 (by kind: ENUM: 11, INPUT_OBJECT: 109, OBJECT: 82, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-04 00:08

250.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa376142ed0fb6c14146108d94e83a1aa90491f89b4

GraphQL introspection enabled at /graphql
Types: 178 (by kind: ENUM: 12, INPUT_OBJECT: 91, OBJECT: 68, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-26 14:20

215.1 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4715bfddb59451f5b2dfc93aa0ec6bb1d9f5fbd

GraphQL introspection enabled at /graphql
Types: 155 (by kind: ENUM: 8, INPUT_OBJECT: 81, OBJECT: 59, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : version=0.0.1 environment=production status=healthy

Found on 2025-12-24 10:16

191.9 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa39d91e634446b2fb8a6d7d8ca5d98595ca93cf9d0

GraphQL introspection enabled at /graphql
Types: 150 (by kind: ENUM: 7, INPUT_OBJECT: 79, OBJECT: 57, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, acquisitionOpportunityCreateAndPublish
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-22 10:34

185.9 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b7d92a7d1316b49f5f0127139eafe9fc08f61c86

GraphQL introspection enabled at /graphql
Types: 139 (by kind: ENUM: 7, INPUT_OBJECT: 69, OBJECT: 56, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, acquisitionOpportunities, acquisitionOpportunity, admin
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, admin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : status=healthy version=0.0.1 environment=production

Found on 2025-12-21 10:58

163.8 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33ecd56ed15eb8ccf1e3689e6d0d7dd555c69a2af

GraphQL introspection enabled at /graphql
Types: 121 (by kind: ENUM: 6, INPUT_OBJECT: 58, OBJECT: 50, SCALAR: 7)
Operations:
- Query: Query | fields: acquisitionOperateState, acquisitionOperateStates, admin, authValidateResetToken, billingMethods
- Mutation: Mutation | fields: acquisitionOnboarding, acquisitionOperateStateCreate, acquisitionOperateStateDelete, acquisitionOperateStateUpdate, admin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-19 08:16

135.2 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30df4f70bab545d092053ab6685898df5a89bb94f

GraphQL introspection enabled at /graphql
Types: 104 (by kind: ENUM: 8, INPUT_OBJECT: 45, OBJECT: 45, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-17 00:02

115.7 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a29c3fadb4b04f0f9678a460f7551f135211dcc1

GraphQL introspection enabled at /graphql
Types: 106 (by kind: ENUM: 8, INPUT_OBJECT: 48, OBJECT: 44, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-14 11:21

131.8 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa311041bdc18ae5560ba98d64303adea626b89f0e2

GraphQL introspection enabled at /graphql
Types: 91 (by kind: ENUM: 7, INPUT_OBJECT: 37, OBJECT: 41, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, admin, authChangePassword, authGoogleLogin, authLogin
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-12-01 01:33

94.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa395722c6b53f03d294913b586071e2e7149025bbd

GraphQL introspection enabled at /graphql
Types: 86 (by kind: ENUM: 6, INPUT_OBJECT: 34, OBJECT: 40, SCALAR: 6)
Operations:
- Query: Query | fields: admin, authValidateResetToken, billingMethods, currentUser, customerTypes
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authGoogleLogin, authLogin, authRegister
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : status=healthy version=0.0.1 environment=production

Found on 2025-11-27 12:25

83.4 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e8d2c6d3986e0d911693b2a6adc51c51f3c6cc2b

GraphQL introspection enabled at /graphql
Types: 77 (by kind: ENUM: 4, INPUT_OBJECT: 30, OBJECT: 37, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, billingMethods, currentUser, customerTypes, geoStates
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authGoogleLogin, authLogin, authRegister
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-23 15:29

74.3 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c475bccd43d18c6fe7503e3cc9b89a3393054d9b

GraphQL introspection enabled at /graphql
Types: 76 (by kind: ENUM: 3, INPUT_OBJECT: 30, OBJECT: 37, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, billingMethods, currentUser, customerTypes, geoStates
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authGoogleLogin, authLogin, authRegister
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : status=healthy version=0.0.1 environment=production

Found on 2025-11-20 23:28

73.9 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c475bccd43d18c6fe7503e3cc9b89a33fc8584e1

GraphQL introspection enabled at /graphql
Types: 76 (by kind: ENUM: 3, INPUT_OBJECT: 30, OBJECT: 37, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, billingMethods, currentUser, customerTypes, geoStates
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authGoogleLogin, authLogin, authRegister
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-20 18:19

73.9 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c66f0a293cea3c8b8da9b85982b81eb2fa354f2e

GraphQL introspection enabled at /graphql
Types: 64 (by kind: ENUM: 3, INPUT_OBJECT: 24, OBJECT: 31, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, customerTypes, geoStates, health
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authLogin, authRegister, authRequestVerifyEmail
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : version=0.0.1 environment=production status=healthy

Found on 2025-11-16 11:37

57.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c66f0a293cea3c8b8da9b85982b81eb264a65532

GraphQL introspection enabled at /graphql
Types: 64 (by kind: ENUM: 3, INPUT_OBJECT: 24, OBJECT: 31, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, customerTypes, geoStates, health
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authLogin, authRegister, authRequestVerifyEmail
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-14 12:55

52.9 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c66f0a293cea3c8b8da9b85982b81eb2a09d52f0

GraphQL introspection enabled at /graphql
Types: 64 (by kind: ENUM: 3, INPUT_OBJECT: 24, OBJECT: 31, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, customerTypes, geoStates, health
- Mutation: Mutation | fields: acquisitionOnboarding, authChangePassword, authLogin, authRegister, authRequestVerifyEmail
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : status=healthy version=0.0.1 environment=production

Found on 2025-11-12 10:43

52.9 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3e51484bcf22f8c807439c02b2d91b5a0611ff004

GraphQL introspection enabled at /graphql
Types: 50 (by kind: ENUM: 3, INPUT_OBJECT: 16, OBJECT: 25, SCALAR: 6)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, geoStates, health
- Mutation: Mutation | fields: authChangePassword, authLogin, authRegister, authRequestVerifyEmail, authResetPassword
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-10 11:49

43.2 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3297b25dfc97d89edc6f78408b1b67b312cbd5f0b

GraphQL introspection enabled at /graphql
Types: 43 (by kind: ENUM: 3, INPUT_OBJECT: 12, OBJECT: 23, SCALAR: 5)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, geoStates, health
- Mutation: Mutation | fields: authChangePassword, authLogin, authRegister, authRequestVerifyEmail, authResetPassword
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-08 07:32

38.3 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa390426c83e8fb0f81de68bd7be2c605b028fd78d4

GraphQL introspection enabled at /graphql
Types: 34 (by kind: ENUM: 2, INPUT_OBJECT: 8, OBJECT: 20, SCALAR: 4)
Operations:
- Query: Query | fields: authValidateResetToken, currentUser, health
- Mutation: Mutation | fields: authChangePassword, authLogin, authRegister, authRequestVerifyEmail, authResetPassword
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-06 14:57

32.7 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34b9ce8816967eb037bf8ba4924dee28c46e2dc40

GraphQL introspection enabled at /graphql
Types: 27 (by kind: ENUM: 2, INPUT_OBJECT: 4, OBJECT: 17, SCALAR: 4)
Operations:
- Query: Query | fields: health
- Mutation: Mutation | fields: authLogin, authRegister, requestVerifyEmail, verifyEmail
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
health (args: none) : environment=production status=healthy version=0.0.1

Found on 2025-11-04 14:49

27.7 kBytes 3 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.goodjujuhk.com
Port: 443
URL: https://app.goodjujuhk.com

First seen 2025-03-08 00:32
Last seen 2026-01-03 01:26
Open for 301 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-03 01:26
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-28 21:00
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: www.itec-cms.com
Port: 443
URL: https://www.itec-cms.com

First seen 2025-11-11 03:36
Last seen 2026-01-03 00:35
Open for 52 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3724ccd3bc3cd2eb95fd343579bf3853adf6d4acc
```
GraphQL introspection enabled at /graphql
Types: 275 (by kind: ENUM: 3, INPUT_OBJECT: 86, OBJECT: 172, SCALAR: 12, UNION: 2)
Operations:
- Query: Query | fields: area1, area2, area3Project, area3Projects, area3ProjectsConnection
- Mutation: Mutation | fields: createArea3Project, deleteArea1, deleteArea2, updateArea1, updateArea2
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-03 00:35
  
  234.4 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.apy.app.br
Port: 443
URL: https://www.apy.app.br

First seen 2025-05-06 19:22
Last seen 2026-01-03 00:26
Open for 241 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-03 00:26
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-28 17:45
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.farmersmarketsocal.com
Port: 443
URL: https://app.farmersmarketsocal.com

First seen 2025-05-03 00:48
Last seen 2026-01-02 23:57
Open for 244 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 23:57
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-29 05:22
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.permithistory.ca
Port: 443
URL: https://www.permithistory.ca

First seen 2024-11-03 22:02
Last seen 2026-01-02 23:25
Open for 425 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f661bc6c8fd1c9a9e1bf6a6401bf6a640
```
Found 3 files trough .DS_Store spidering:

/images
/javascript
/stylesheets
```
  Found on 2026-01-02 23:25
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.natural-extremo.taller.work
Port: 443
URL: https://api.natural-extremo.taller.work

First seen 2025-11-12 02:23
Last seen 2026-01-02 22:53
Open for 51 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa37a9b2ea74885b6157aa46c275542649f094a4007
```
GraphQL introspection enabled at /graphql
Types: 77 (by kind: ENUM: 8, INPUT_OBJECT: 2, OBJECT: 60, SCALAR: 7)
Operations:
- Query: Query | fields: additionalServices, adventurer, combo, combos, experience
- Mutation: Mutation | fields: acceptInvitation, addAdditionalServiceToItem, addDiscountCoupon, addOrderTerm, assignAdventurer
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 22:53
  
  125.2 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: strapi.thesacredfig.com
Port: 443
URL: https://strapi.thesacredfig.com

First seen 2025-11-07 01:26
Last seen 2026-01-02 22:19
Open for 56 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3ab0ef54bfc3445c9303cb2d64c2ff7fe56d72a0e
```
GraphQL introspection enabled at /graphql
Types: 676 (by kind: ENUM: 9, INPUT_OBJECT: 158, OBJECT: 461, SCALAR: 29, UNION: 19)
Operations:
- Query: Query | fields: about, application, applications, applicationsConnection, blog
- Mutation: Mutation | fields: createApplication, deleteAbout, deleteApplication, updateAbout, updateApplication
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 22:19
  
  587.5 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: qa.alamere.io
Port: 443
URL: https://qa.alamere.io

First seen 2025-10-27 19:22
Last seen 2026-01-02 22:15
Open for 67 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa320fecf6303de34a198a1052f28e53cd635937d77

GraphQL introspection enabled at /graphql
Types: 131 (by kind: ENUM: 16, INPUT_OBJECT: 67, OBJECT: 42, SCALAR: 6)
Operations:
- Query: Query | fields: bonusStructureCountryGroups, bonusStructureGroups, bonusStructures, compBandCountryGroup, compBandCountryGroups
- Mutation: Mutation | fields: acceptInvitation, acceptInvitationWithGoogle, bonusStructureCountryGroupDelete, bonusStructureCountryGroupsSave, bonusStructureGroupCreate
Directives: deprecated, include, oneOf, skip, specifiedBy, upper (total: 6)

Found on 2026-01-02 22:15

244.1 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: strapi.stag.zippi.com.br
Port: 80
URL: http://strapi.stag.zippi.com.br

First seen 2025-11-23 02:11
Last seen 2026-01-02 22:00
Open for 40 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa382e289760136b4665b67de5677f934386f72e3aa
```
GraphQL introspection enabled at /graphql
Types: 344 (by kind: ENUM: 5, INPUT_OBJECT: 114, OBJECT: 210, SCALAR: 11, UNION: 4)
Operations:
- Query: Query | fields: slugifySlug, uploadFile, uploadFiles, uploadFolder, uploadFolders
- Mutation: Mutation | fields: createUploadFile, createUploadFolder, deleteUploadFile, updateUploadFile, updateUploadFolder
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 22:00
  
  397.2 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: graph-beta.movecounselors.com
Port: 80
URL: http://graph-beta.movecounselors.com

First seen 2025-11-22 00:44
Last seen 2026-01-02 21:53
Open for 41 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3b0d5a466c7883c167d87d760f28ed5e11a2f3c21
```
GraphQL introspection enabled at /graphql
Types: 193 (by kind: ENUM: 12, INPUT_OBJECT: 65, INTERFACE: 1, OBJECT: 105, SCALAR: 9, UNION: 1)
Operations:
- Query: Query | fields: RMCSearch, admin, counselor, counselors, gitSha
- Mutation: Mutation | fields: addEmail, addRMCToCounselor, addRMCToSponsor, addRMCToSupplier, addSuggestedSupplier
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 21:53
  
  182.7 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.mythari.com
Port: 443
URL: https://www.mythari.com

First seen 2025-04-05 01:52
Last seen 2026-01-02 21:45
Open for 272 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 21:45
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-28 09:43
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: m.cocoburry.com
Port: 443
URL: https://m.cocoburry.com

First seen 2024-10-15 10:29
Last seen 2026-01-02 21:45
Open for 444 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8686a774850

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/gamergrl
/images/brands/gamergrl/email-header.png
/images/brands/gamergrl/gamergrl-grid.jpeg
/images/brands/gamergrl/gamergrl-header.png
/images/brands/gamergrl/gridsix-min.jpeg
/images/brands/gamergrl/lauren.jpg
/images/brands/gamergrl/phone-min.jpeg
/images/brands/gamergrl/profile.jpeg
/images/brands/gamergrl/rates-min.png
/images/brands/gamergrl/storecard50-btn.jpeg
/images/brands/gamergrl/storecard50.jpeg
/images/brands/gamergrl/storecard60-btn.jpeg
/images/brands/gamergrl/storecard60.jpeg
/images/brands/gamergrl/storecard70-btn.jpeg
/images/brands/gamergrl/storecard70.jpeg
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png

Found on 2026-01-02 21:45

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86836fe3514

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/gamergrl
/images/brands/gamergrl/email-header.png
/images/brands/gamergrl/gamergrl-grid.jpeg
/images/brands/gamergrl/gamergrl-header.png
/images/brands/gamergrl/gridsix-min.jpeg
/images/brands/gamergrl/lauren.jpg
/images/brands/gamergrl/phone-min.jpeg
/images/brands/gamergrl/profile.jpeg
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultfavicon.png
/images/defaultfeature.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg

Found on 2025-12-01 08:39

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868acae4038

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/gamergrl
/images/brands/gamergrl/lauren.jpg
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultfavicon.png
/images/defaultfeature.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg

Found on 2025-11-29 09:12

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86814d6419f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultfavicon.png
/images/defaultfeature.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png

Found on 2025-11-27 08:01

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86813dad31e

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/islandsunclub.png
/images/jessica.jpeg
/images/justlikehero.png
/images/locations
/images/modeling-id-logo.png
/images/modelingid

Found on 2025-11-07 10:34

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868492fef9f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg

Found on 2025-11-05 04:25

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868c1c95076

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg

Found on 2025-10-30 19:46

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86853eb4e2d

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/isabella.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png

Found on 2025-10-22 10:59

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868f8ca0d58

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg

Found on 2025-10-13 10:20

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868a2ca9be8

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/elite-profile-thinner.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg

Found on 2025-10-10 22:56

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8688a8a822d

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-modeling-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-modeling-flow.webp
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/elite-profile-thinner.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg

Found on 2025-10-09 05:25

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8681777a540

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/elite-profile-thinner.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg

Found on 2025-09-29 06:24

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868cad540fe

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/elite-profile-thinner.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/agency-w-filled.svg
/images/icons/agency-w-outline.svg
/images/icons/agency.svg

Found on 2025-09-27 02:12

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8685eae0c41

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/creators
/images/creators/1take.jay02.jpeg
/images/creators/chelsi_mckeal.jpeg
/images/creators/chloe.merkley.jpeg
/images/creators/dietrickr_.jpeg
/images/creators/h.ai.da.jpeg
/images/creators/jia.yyi_.jpeg
/images/creators/mikalabars.jpeg
/images/creators/nevandouglas.jpeg
/images/creators/randilynnquigley.jpeg
/images/creators/sonvellle.jpeg
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg

Found on 2025-09-20 17:58

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86819bb97f1

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/creators
/images/creators/1take.jay02.jpeg
/images/creators/chelsi_mckeal.jpeg
/images/creators/chloe.merkley.jpeg
/images/creators/dietrickr_.jpeg
/images/creators/h.ai.da.jpeg
/images/creators/jia.yyi_.jpeg
/images/creators/mikalabars.jpeg
/images/creators/nevandouglas.jpeg
/images/creators/randilynnquigley.jpeg
/images/creators/sonvellle.jpeg
/images/defaultbrand.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg

Found on 2025-08-17 10:15

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86829ca66ac

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash-1.jpeg
/images/burbayne-splash-2.jpeg
/images/burbayne-splash-3.jpeg
/images/burbayne-splash-4.jpeg
/images/burbayne-splash-5.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry

Found on 2025-07-20 04:06

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868d691f8e6

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash-1.jpeg
/images/burbayne-splash-2.jpeg
/images/burbayne-splash-3.jpeg
/images/burbayne-splash-4.jpeg
/images/burbayne-splash-5.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry

Found on 2025-07-13 00:50

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8686f8057b8

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry

Found on 2025-05-10 11:22

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868853367c2

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg

Found on 2025-05-04 20:23

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868d9fe2418

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg

Found on 2025-04-28 12:04

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8685809f076

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/gridsix-min.png
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg

Found on 2025-04-24 18:15

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868013a25d7

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png

Found on 2025-03-22 06:51

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86876043a9f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg

Found on 2025-02-02 17:25

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86885ca3d0d

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg

Found on 2025-02-01 19:33

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8684d6f9d71

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg

Found on 2025-01-26 12:36

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86889b64af5

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg

Found on 2024-11-18 19:08

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8688fd1058a

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/burbayne.png.sb-cd78268b-WCDQKX
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.png
/images/habanaheights.png.sb-cd78268b-k4KwP2
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg

Found on 2024-11-16 22:37

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8682fbc2d32

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/burbayne.png.sb-cd78268b-WCDQKX
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.png
/images/habanaheights.png.sb-cd78268b-k4KwP2
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change-w.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/complete.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/email_click.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg

Found on 2024-11-08 17:59

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868db97dc77

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/burbayne.png.sb-cd78268b-WCDQKX
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.png
/images/habanaheights.png.sb-cd78268b-k4KwP2
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change-w.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/complete.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/email_click.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg

Found on 2024-10-26 13:36

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868f52dd56a

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/burbayne.png.sb-cd78268b-WCDQKX
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.png
/images/habanaheights.png.sb-cd78268b-k4KwP2
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change-w.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/complete.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/email_click.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/facebook-w.svg
/images/icons/favicon-b.png
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-b.svg
/images/icons/ig-verified-g.svg

Found on 2024-10-24 16:14

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86856cdbf6e

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/burbayne.png.sb-cd78268b-WCDQKX
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.png
/images/habanaheights.png.sb-cd78268b-k4KwP2
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change-w.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/complete.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/email_click.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/facebook-w.svg
/images/icons/favicon-b.png
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-b.svg
/images/icons/ig-verified-g.svg
/images/icons/inbox-outline.svg
/images/icons/inbox-w-filled.svg
/images/icons/inbox-w-outline.svg
/images/icons/instagram-filled.svg

Found on 2024-10-22 22:08

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8689058b93f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change-w.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/complete.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/email_click.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/facebook-w.svg
/images/icons/favicon-b.png
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-b.svg
/images/icons/ig-verified-g.svg
/images/icons/inbox-outline.svg
/images/icons/inbox-w-filled.svg
/images/icons/inbox-w-outline.svg
/images/icons/instagram-filled.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg

Found on 2024-10-19 01:00

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86817ff23b0

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/feature.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/burbayne.png.sb-cd78268b-WCDQKX
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.png
/images/habanaheights.png.sb-cd78268b-k4KwP2
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change-w.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/complete.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/email_click.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/facebook-w.svg
/images/icons/favicon-b.png
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-b.svg
/images/icons/ig-verified-g.svg
/images/icons/inbox-outline.svg
/images/icons/inbox-w-filled.svg
/images/icons/inbox-w-outline.svg
/images/icons/instagram-filled.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/laptop.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg

Found on 2024-10-17 04:44

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868f0962a40

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/brands
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/burbayne.png.sb-cd78268b-WCDQKX
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.png
/images/habanaheights.png.sb-cd78268b-k4KwP2
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change-w.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/complete.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/email_click.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon-b.png
/images/icons/favicon-justlikehero.png
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-b.svg
/images/icons/ig-verified-g.svg
/images/icons/inbox-outline.svg
/images/icons/inbox-w-filled.svg
/images/icons/inbox-w-outline.svg
/images/icons/instagram-filled.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/laptop.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg

Found on 2024-10-15 10:29

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.livingcoastal.life
Port: 443
URL: https://www.livingcoastal.life

First seen 2024-12-04 18:10
Last seen 2026-01-02 21:33
Open for 394 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db83f9a45b83f9a45b83f9a45b83f9a45
```
Found 1 files trough .DS_Store spidering:

/assets123
```
  Found on 2026-01-02 21:33
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: decodrop.tangram.co
Port: 443
URL: https://decodrop.tangram.co

First seen 2024-11-24 18:44
Last seen 2026-01-02 21:27
Open for 404 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 21:27
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-28 21:49
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: shop.checkatrade.com
Port: 443
URL: https://shop.checkatrade.com

First seen 2025-04-05 01:53
Last seen 2026-01-02 21:17
Open for 272 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 21:17
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-28 20:29
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 76.223.57.73
Domain: www.districtconnect.app
Port: 80
URL: http://www.districtconnect.app

First seen 2025-05-29 20:53
Last seen 2026-01-02 21:05
Open for 218 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c51be605a51be605a9400b7f5423a5c30847237387d8de36d

Found 103 files trough .DS_Store spidering:

/documents
/documents/parent_handbook
/documents/parent_handbook/district_wide
/documents/parent_handbook/district_wide/scholarships
/documents/parent_handbook/district_wide/scholarships/scholarships 6.14.00 PM.xlsx
/documents/parent_handbook/district_wide/tuition_and_fees
/documents/parent_handbook/district_wide/tuition_and_fees/district_wide
/documents/parent_handbook/district_wide/tuition_and_fees/ensign
/hyper
/hyper/Admin
/hyper/Admin/dist
/hyper/Admin/dist/saas
/hyper/Admin/dist/saas/assets
/hyper/Admin/dist/saas/assets/css
/hyper/Admin/dist/saas/assets/data
/hyper/Admin/dist/saas/assets/fonts
/hyper/Admin/dist/saas/assets/images
/hyper/Admin/dist/saas/assets/images/logo-district
/hyper/Admin/dist/saas/assets/images/logo-district/old
/hyper/Admin/dist/saas/assets/images/logo-hyper
/hyper/Admin/dist/saas/assets/images/logo-hyper/logo-dark.png
/hyper/Admin/dist/saas/assets/js
/hyper/Admin/dist/saas/assets/js/maps
/hyper/Admin/dist/saas/assets/js/pages
/hyper/Admin/dist/saas/assets/js/ui
/hyper/Admin/dist/saas/assets/vendor
/hyper/Admin/dist/saas/assets/vendor/apexcharts
/hyper/Admin/dist/saas/assets/vendor/blueimp-file-upload
/hyper/Admin/dist/saas/assets/vendor/bootstrap
/hyper/Admin/dist/saas/assets/vendor/bootstrap-datepicker
/hyper/Admin/dist/saas/assets/vendor/bootstrap-maxlength
/hyper/Admin/dist/saas/assets/vendor/bootstrap-timepicker
/hyper/Admin/dist/saas/assets/vendor/bootstrap-touchspin
/hyper/Admin/dist/saas/assets/vendor/britecharts
/hyper/Admin/dist/saas/assets/vendor/chart.js
/hyper/Admin/dist/saas/assets/vendor/clipboard
/hyper/Admin/dist/saas/assets/vendor/d3
/hyper/Admin/dist/saas/assets/vendor/datatables.net
/hyper/Admin/dist/saas/assets/vendor/datatables.net-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-buttons
/hyper/Admin/dist/saas/assets/vendor/datatables.net-buttons-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedcolumns
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedcolumns-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedheader
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedheader-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-keytable
/hyper/Admin/dist/saas/assets/vendor/datatables.net-keytable-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-responsive
/hyper/Admin/dist/saas/assets/vendor/datatables.net-responsive-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-select
/hyper/Admin/dist/saas/assets/vendor/datatables.net-select-bs5
/hyper/Admin/dist/saas/assets/vendor/daterangepicker
/hyper/Admin/dist/saas/assets/vendor/dragula
/hyper/Admin/dist/saas/assets/vendor/dropzone
/hyper/Admin/dist/saas/assets/vendor/flatpickr
/hyper/Admin/dist/saas/assets/vendor/frappe-gantt
/hyper/Admin/dist/saas/assets/vendor/fullcalendar
/hyper/Admin/dist/saas/assets/vendor/glightbox
/hyper/Admin/dist/saas/assets/vendor/gmaps
/hyper/Admin/dist/saas/assets/vendor/handlebars
/hyper/Admin/dist/saas/assets/vendor/highlightjs
/hyper/Admin/dist/saas/assets/vendor/ion-rangeslider
/hyper/Admin/dist/saas/assets/vendor/jquery
/hyper/Admin/dist/saas/assets/vendor/jquery-datatables-checkboxes
/hyper/Admin/dist/saas/assets/vendor/jquery-mask-plugin
/hyper/Admin/dist/saas/assets/vendor/jquery-sparkline
/hyper/Admin/dist/saas/assets/vendor/jquery-toast-plugin
/hyper/Admin/dist/saas/assets/vendor/jquery-ui
/hyper/Admin/dist/saas/assets/vendor/jquery.rateit
/hyper/Admin/dist/saas/assets/vendor/jstree
/hyper/Admin/dist/saas/assets/vendor/jsvectormap
/hyper/Admin/dist/saas/assets/vendor/lucide
/hyper/Admin/dist/saas/assets/vendor/moment
/hyper/Admin/dist/saas/assets/vendor/quill
/hyper/Admin/dist/saas/assets/vendor/select2
/hyper/Admin/dist/saas/assets/vendor/simplebar
/hyper/Admin/dist/saas/assets/vendor/simplemde
/hyper/Admin/dist/saas/assets/vendor/twitter-bootstrap-wizard
/hyper/Admin/dist/saas/assets/vendor/typeahead.js
/hyper/Admin/src
/hyper/Admin/src/assets
/hyper/Admin/src/assets/data
/hyper/Admin/src/assets/fonts
/hyper/Admin/src/assets/images
/hyper/Admin/src/assets/images/brands
/hyper/Admin/src/assets/images/flags
/hyper/Admin/src/assets/images/layouts
/hyper/Admin/src/assets/images/payments
/hyper/Admin/src/assets/images/products
/hyper/Admin/src/assets/images/projects
/hyper/Admin/src/assets/images/small
/hyper/Admin/src/assets/images/svg
/hyper/Admin/src/assets/images/users
/hyper/Admin/src/assets/js
/hyper/Admin/src/assets/js/maps
/hyper/Admin/src/assets/js/pages
/hyper/Admin/src/assets/js/ui
/hyper/Admin/src/assets/scss
/hyper/Admin/src/assets/scss/config
/hyper/Admin/src/assets/scss/custom
/hyper/Admin/src/creative
/hyper/Admin/src/modern
/hyper/Admin/src/saas

Found on 2026-01-02 21:05

Severity: medium
Fingerprint: 5f32cf5d6962f09c23a8a26f23a8a26f793740987a87e2b54050cfad9c7ed65b

Found 98 files trough .DS_Store spidering:

/documents
/documents/parent_handbook
/documents/parent_handbook/district_wide
/documents/parent_handbook/district_wide/scholarships
/documents/parent_handbook/district_wide/scholarships/scholarships 6.14.00 PM.xlsx
/documents/parent_handbook/district_wide/tuition_and_fees
/documents/parent_handbook/district_wide/tuition_and_fees/district_wide
/documents/parent_handbook/district_wide/tuition_and_fees/ensign
/hyper
/hyper/Admin
/hyper/Admin/dist
/hyper/Admin/dist/saas
/hyper/Admin/dist/saas/assets
/hyper/Admin/dist/saas/assets/css
/hyper/Admin/dist/saas/assets/data
/hyper/Admin/dist/saas/assets/fonts
/hyper/Admin/dist/saas/assets/images
/hyper/Admin/dist/saas/assets/images/logo-district
/hyper/Admin/dist/saas/assets/images/logo-district/old
/hyper/Admin/dist/saas/assets/images/logo-hyper
/hyper/Admin/dist/saas/assets/images/logo-hyper/logo-dark.png
/hyper/Admin/dist/saas/assets/js
/hyper/Admin/dist/saas/assets/js/maps
/hyper/Admin/dist/saas/assets/js/pages
/hyper/Admin/dist/saas/assets/js/ui
/hyper/Admin/dist/saas/assets/vendor
/hyper/Admin/dist/saas/assets/vendor/apexcharts
/hyper/Admin/dist/saas/assets/vendor/blueimp-file-upload
/hyper/Admin/dist/saas/assets/vendor/bootstrap
/hyper/Admin/dist/saas/assets/vendor/bootstrap-datepicker
/hyper/Admin/dist/saas/assets/vendor/bootstrap-maxlength
/hyper/Admin/dist/saas/assets/vendor/bootstrap-timepicker
/hyper/Admin/dist/saas/assets/vendor/bootstrap-touchspin
/hyper/Admin/dist/saas/assets/vendor/britecharts
/hyper/Admin/dist/saas/assets/vendor/chart.js
/hyper/Admin/dist/saas/assets/vendor/clipboard
/hyper/Admin/dist/saas/assets/vendor/d3
/hyper/Admin/dist/saas/assets/vendor/datatables.net
/hyper/Admin/dist/saas/assets/vendor/datatables.net-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-buttons
/hyper/Admin/dist/saas/assets/vendor/datatables.net-buttons-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedcolumns
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedcolumns-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedheader
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedheader-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-keytable
/hyper/Admin/dist/saas/assets/vendor/datatables.net-keytable-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-responsive
/hyper/Admin/dist/saas/assets/vendor/datatables.net-responsive-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-select
/hyper/Admin/dist/saas/assets/vendor/datatables.net-select-bs5
/hyper/Admin/dist/saas/assets/vendor/daterangepicker
/hyper/Admin/dist/saas/assets/vendor/dragula
/hyper/Admin/dist/saas/assets/vendor/dropzone
/hyper/Admin/dist/saas/assets/vendor/flatpickr
/hyper/Admin/dist/saas/assets/vendor/frappe-gantt
/hyper/Admin/dist/saas/assets/vendor/fullcalendar
/hyper/Admin/dist/saas/assets/vendor/glightbox
/hyper/Admin/dist/saas/assets/vendor/gmaps
/hyper/Admin/dist/saas/assets/vendor/handlebars
/hyper/Admin/dist/saas/assets/vendor/highlightjs
/hyper/Admin/dist/saas/assets/vendor/ion-rangeslider
/hyper/Admin/dist/saas/assets/vendor/jquery
/hyper/Admin/dist/saas/assets/vendor/jquery-datatables-checkboxes
/hyper/Admin/dist/saas/assets/vendor/jquery-mask-plugin
/hyper/Admin/dist/saas/assets/vendor/jquery-sparkline
/hyper/Admin/dist/saas/assets/vendor/jquery-toast-plugin
/hyper/Admin/dist/saas/assets/vendor/jquery-ui
/hyper/Admin/dist/saas/assets/vendor/jquery.rateit
/hyper/Admin/dist/saas/assets/vendor/jstree
/hyper/Admin/dist/saas/assets/vendor/jsvectormap
/hyper/Admin/dist/saas/assets/vendor/lucide
/hyper/Admin/dist/saas/assets/vendor/moment
/hyper/Admin/dist/saas/assets/vendor/quill
/hyper/Admin/dist/saas/assets/vendor/select2
/hyper/Admin/dist/saas/assets/vendor/simplebar
/hyper/Admin/dist/saas/assets/vendor/simplemde
/hyper/Admin/dist/saas/assets/vendor/twitter-bootstrap-wizard
/hyper/Admin/dist/saas/assets/vendor/typeahead.js
/hyper/Admin/src
/hyper/Admin/src/assets
/hyper/Admin/src/assets/data
/hyper/Admin/src/assets/fonts
/hyper/Admin/src/assets/images
/hyper/Admin/src/assets/images/brands
/hyper/Admin/src/assets/images/flags
/hyper/Admin/src/assets/images/layouts
/hyper/Admin/src/assets/images/payments
/hyper/Admin/src/assets/images/products
/hyper/Admin/src/assets/images/projects
/hyper/Admin/src/assets/images/small
/hyper/Admin/src/assets/images/svg
/hyper/Admin/src/assets/images/users
/hyper/Admin/src/assets/js
/hyper/Admin/src/assets/scss
/hyper/Admin/src/creative
/hyper/Admin/src/modern
/hyper/Admin/src/saas

Found on 2025-12-27 03:28

Severity: low
Fingerprint: 5f32cf5d6962f09c3838040e3838040e72892fb9b11f9e8cfc1e475c2b58008b

Found 20 files trough .DS_Store spidering:

/documents
/documents/parent_handbook
/documents/parent_handbook/district_wide
/documents/parent_handbook/district_wide/scholarships
/documents/parent_handbook/district_wide/scholarships/scholarships 6.14.00 PM.xlsx
/documents/parent_handbook/district_wide/tuition_and_fees
/documents/parent_handbook/district_wide/tuition_and_fees/district_wide
/documents/parent_handbook/district_wide/tuition_and_fees/ensign
/hyper
/hyper/Admin
/hyper/Admin/dist
/hyper/Admin/dist/saas
/hyper/Admin/dist/saas/assets
/hyper/Admin/dist/saas/assets/css
/hyper/Admin/dist/saas/assets/data
/hyper/Admin/dist/saas/assets/fonts
/hyper/Admin/dist/saas/assets/images
/hyper/Admin/dist/saas/assets/js
/hyper/Admin/dist/saas/assets/vendor
/hyper/Admin/src

Found on 2025-11-26 03:47

Severity: medium
Fingerprint: 5f32cf5d6962f09cef4a0ce8ef4a0ce86c41bef7dedc29fad16ceb127c114e07

Found 80 files trough .DS_Store spidering:

/documents
/documents/parent_handbook
/documents/parent_handbook/district_wide
/documents/parent_handbook/district_wide/scholarships
/documents/parent_handbook/district_wide/scholarships/scholarships 6.14.00 PM.xlsx
/documents/parent_handbook/district_wide/tuition_and_fees
/documents/parent_handbook/district_wide/tuition_and_fees/district_wide
/documents/parent_handbook/district_wide/tuition_and_fees/ensign
/hyper
/hyper/Admin
/hyper/Admin/dist
/hyper/Admin/dist/saas
/hyper/Admin/dist/saas/assets
/hyper/Admin/dist/saas/assets/css
/hyper/Admin/dist/saas/assets/data
/hyper/Admin/dist/saas/assets/fonts
/hyper/Admin/dist/saas/assets/images
/hyper/Admin/dist/saas/assets/images/logo-district
/hyper/Admin/dist/saas/assets/images/logo-district/old
/hyper/Admin/dist/saas/assets/images/logo-hyper
/hyper/Admin/dist/saas/assets/images/logo-hyper/logo-dark.png
/hyper/Admin/dist/saas/assets/js
/hyper/Admin/dist/saas/assets/js/maps
/hyper/Admin/dist/saas/assets/js/pages
/hyper/Admin/dist/saas/assets/js/ui
/hyper/Admin/dist/saas/assets/vendor
/hyper/Admin/dist/saas/assets/vendor/apexcharts
/hyper/Admin/dist/saas/assets/vendor/blueimp-file-upload
/hyper/Admin/dist/saas/assets/vendor/bootstrap
/hyper/Admin/dist/saas/assets/vendor/bootstrap-datepicker
/hyper/Admin/dist/saas/assets/vendor/bootstrap-maxlength
/hyper/Admin/dist/saas/assets/vendor/bootstrap-timepicker
/hyper/Admin/dist/saas/assets/vendor/bootstrap-touchspin
/hyper/Admin/dist/saas/assets/vendor/britecharts
/hyper/Admin/dist/saas/assets/vendor/chart.js
/hyper/Admin/dist/saas/assets/vendor/clipboard
/hyper/Admin/dist/saas/assets/vendor/d3
/hyper/Admin/dist/saas/assets/vendor/datatables.net
/hyper/Admin/dist/saas/assets/vendor/datatables.net-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-buttons
/hyper/Admin/dist/saas/assets/vendor/datatables.net-buttons-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedcolumns
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedcolumns-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedheader
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedheader-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-keytable
/hyper/Admin/dist/saas/assets/vendor/datatables.net-keytable-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-responsive
/hyper/Admin/dist/saas/assets/vendor/datatables.net-responsive-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-select
/hyper/Admin/dist/saas/assets/vendor/datatables.net-select-bs5
/hyper/Admin/dist/saas/assets/vendor/daterangepicker
/hyper/Admin/dist/saas/assets/vendor/dragula
/hyper/Admin/dist/saas/assets/vendor/dropzone
/hyper/Admin/dist/saas/assets/vendor/flatpickr
/hyper/Admin/dist/saas/assets/vendor/frappe-gantt
/hyper/Admin/dist/saas/assets/vendor/fullcalendar
/hyper/Admin/dist/saas/assets/vendor/glightbox
/hyper/Admin/dist/saas/assets/vendor/gmaps
/hyper/Admin/dist/saas/assets/vendor/handlebars
/hyper/Admin/dist/saas/assets/vendor/highlightjs
/hyper/Admin/dist/saas/assets/vendor/ion-rangeslider
/hyper/Admin/dist/saas/assets/vendor/jquery
/hyper/Admin/dist/saas/assets/vendor/jquery-datatables-checkboxes
/hyper/Admin/dist/saas/assets/vendor/jquery-mask-plugin
/hyper/Admin/dist/saas/assets/vendor/jquery-sparkline
/hyper/Admin/dist/saas/assets/vendor/jquery-toast-plugin
/hyper/Admin/dist/saas/assets/vendor/jquery-ui
/hyper/Admin/dist/saas/assets/vendor/jquery.rateit
/hyper/Admin/dist/saas/assets/vendor/jstree
/hyper/Admin/dist/saas/assets/vendor/jsvectormap
/hyper/Admin/dist/saas/assets/vendor/lucide
/hyper/Admin/dist/saas/assets/vendor/moment
/hyper/Admin/dist/saas/assets/vendor/quill
/hyper/Admin/dist/saas/assets/vendor/select2
/hyper/Admin/dist/saas/assets/vendor/simplebar
/hyper/Admin/dist/saas/assets/vendor/simplemde
/hyper/Admin/dist/saas/assets/vendor/twitter-bootstrap-wizard
/hyper/Admin/dist/saas/assets/vendor/typeahead.js
/hyper/Admin/src

Found on 2025-11-26 01:42

Severity: medium
Fingerprint: 5f32cf5d6962f09c6e6dc6946e6dc6944d688a831e90f58e91c8a6ae2b7a272e

Found 84 files trough .DS_Store spidering:

/documents
/documents/parent_handbook
/documents/parent_handbook/district_wide
/documents/parent_handbook/district_wide/scholarships
/documents/parent_handbook/district_wide/scholarships/scholarships 6.14.00 PM.xlsx
/documents/parent_handbook/district_wide/tuition_and_fees
/documents/parent_handbook/district_wide/tuition_and_fees/district_wide
/documents/parent_handbook/district_wide/tuition_and_fees/ensign
/hyper
/hyper/Admin
/hyper/Admin/dist
/hyper/Admin/dist/saas
/hyper/Admin/dist/saas/assets
/hyper/Admin/dist/saas/assets/css
/hyper/Admin/dist/saas/assets/data
/hyper/Admin/dist/saas/assets/fonts
/hyper/Admin/dist/saas/assets/images
/hyper/Admin/dist/saas/assets/images/logo-district
/hyper/Admin/dist/saas/assets/images/logo-district/old
/hyper/Admin/dist/saas/assets/images/logo-hyper
/hyper/Admin/dist/saas/assets/images/logo-hyper/logo-dark.png
/hyper/Admin/dist/saas/assets/js
/hyper/Admin/dist/saas/assets/js/maps
/hyper/Admin/dist/saas/assets/js/pages
/hyper/Admin/dist/saas/assets/js/ui
/hyper/Admin/dist/saas/assets/vendor
/hyper/Admin/dist/saas/assets/vendor/apexcharts
/hyper/Admin/dist/saas/assets/vendor/blueimp-file-upload
/hyper/Admin/dist/saas/assets/vendor/bootstrap
/hyper/Admin/dist/saas/assets/vendor/bootstrap-datepicker
/hyper/Admin/dist/saas/assets/vendor/bootstrap-maxlength
/hyper/Admin/dist/saas/assets/vendor/bootstrap-timepicker
/hyper/Admin/dist/saas/assets/vendor/bootstrap-touchspin
/hyper/Admin/dist/saas/assets/vendor/britecharts
/hyper/Admin/dist/saas/assets/vendor/chart.js
/hyper/Admin/dist/saas/assets/vendor/clipboard
/hyper/Admin/dist/saas/assets/vendor/d3
/hyper/Admin/dist/saas/assets/vendor/datatables.net
/hyper/Admin/dist/saas/assets/vendor/datatables.net-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-buttons
/hyper/Admin/dist/saas/assets/vendor/datatables.net-buttons-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedcolumns
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedcolumns-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedheader
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedheader-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-keytable
/hyper/Admin/dist/saas/assets/vendor/datatables.net-keytable-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-responsive
/hyper/Admin/dist/saas/assets/vendor/datatables.net-responsive-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-select
/hyper/Admin/dist/saas/assets/vendor/datatables.net-select-bs5
/hyper/Admin/dist/saas/assets/vendor/daterangepicker
/hyper/Admin/dist/saas/assets/vendor/dragula
/hyper/Admin/dist/saas/assets/vendor/dropzone
/hyper/Admin/dist/saas/assets/vendor/flatpickr
/hyper/Admin/dist/saas/assets/vendor/frappe-gantt
/hyper/Admin/dist/saas/assets/vendor/fullcalendar
/hyper/Admin/dist/saas/assets/vendor/glightbox
/hyper/Admin/dist/saas/assets/vendor/gmaps
/hyper/Admin/dist/saas/assets/vendor/handlebars
/hyper/Admin/dist/saas/assets/vendor/highlightjs
/hyper/Admin/dist/saas/assets/vendor/ion-rangeslider
/hyper/Admin/dist/saas/assets/vendor/jquery
/hyper/Admin/dist/saas/assets/vendor/jquery-datatables-checkboxes
/hyper/Admin/dist/saas/assets/vendor/jquery-mask-plugin
/hyper/Admin/dist/saas/assets/vendor/jquery-sparkline
/hyper/Admin/dist/saas/assets/vendor/jquery-toast-plugin
/hyper/Admin/dist/saas/assets/vendor/jquery-ui
/hyper/Admin/dist/saas/assets/vendor/jquery.rateit
/hyper/Admin/dist/saas/assets/vendor/jstree
/hyper/Admin/dist/saas/assets/vendor/jsvectormap
/hyper/Admin/dist/saas/assets/vendor/lucide
/hyper/Admin/dist/saas/assets/vendor/moment
/hyper/Admin/dist/saas/assets/vendor/quill
/hyper/Admin/dist/saas/assets/vendor/select2
/hyper/Admin/dist/saas/assets/vendor/simplebar
/hyper/Admin/dist/saas/assets/vendor/simplemde
/hyper/Admin/dist/saas/assets/vendor/twitter-bootstrap-wizard
/hyper/Admin/dist/saas/assets/vendor/typeahead.js
/hyper/Admin/src
/hyper/Admin/src/assets
/hyper/Admin/src/creative
/hyper/Admin/src/modern
/hyper/Admin/src/saas

Found on 2025-10-30 18:34

Severity: low
Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea971f5b90ef154ddfbcfb64ff37dfd2a31

Found 23 files trough .DS_Store spidering:

/documents
/documents/parent_handbook
/documents/parent_handbook/district_wide
/documents/parent_handbook/district_wide/scholarships
/documents/parent_handbook/district_wide/scholarships/scholarships 6.14.00 PM.xlsx
/documents/parent_handbook/district_wide/tuition_and_fees
/documents/parent_handbook/district_wide/tuition_and_fees/district_wide
/documents/parent_handbook/district_wide/tuition_and_fees/ensign
/hyper
/hyper/Admin
/hyper/Admin/dist
/hyper/Admin/dist/saas
/hyper/Admin/dist/saas/assets
/hyper/Admin/dist/saas/assets/css
/hyper/Admin/dist/saas/assets/data
/hyper/Admin/dist/saas/assets/fonts
/hyper/Admin/dist/saas/assets/images
/hyper/Admin/dist/saas/assets/images/logo-district
/hyper/Admin/dist/saas/assets/images/logo-district/old
/hyper/Admin/dist/saas/assets/images/logo-hyper
/hyper/Admin/dist/saas/assets/js
/hyper/Admin/dist/saas/assets/vendor
/hyper/Admin/src

Found on 2025-10-22 22:11

Severity: low
Fingerprint: 5f32cf5d6962f09c684e525d684e525d78dbbdc21606c4d72eec06a7a7ed6269

Found 27 files trough .DS_Store spidering:

/documents
/documents/parent_handbook
/documents/parent_handbook/district_wide
/documents/parent_handbook/district_wide/scholarships
/documents/parent_handbook/district_wide/scholarships/scholarships 6.14.00 PM.xlsx
/documents/parent_handbook/district_wide/tuition_and_fees
/documents/parent_handbook/district_wide/tuition_and_fees/district_wide
/documents/parent_handbook/district_wide/tuition_and_fees/ensign
/hyper
/hyper/Admin
/hyper/Admin/dist
/hyper/Admin/dist/saas
/hyper/Admin/dist/saas/assets
/hyper/Admin/dist/saas/assets/css
/hyper/Admin/dist/saas/assets/data
/hyper/Admin/dist/saas/assets/fonts
/hyper/Admin/dist/saas/assets/images
/hyper/Admin/dist/saas/assets/images/logo-district
/hyper/Admin/dist/saas/assets/images/logo-district/old
/hyper/Admin/dist/saas/assets/images/logo-hyper
/hyper/Admin/dist/saas/assets/images/logo-hyper/logo-dark.png
/hyper/Admin/dist/saas/assets/js
/hyper/Admin/dist/saas/assets/js/maps
/hyper/Admin/dist/saas/assets/js/pages
/hyper/Admin/dist/saas/assets/js/ui
/hyper/Admin/dist/saas/assets/vendor
/hyper/Admin/src

Found on 2025-10-10 06:15

Severity: low
Fingerprint: 5f32cf5d6962f09c9e04c3bc9e04c3bcb93acaabe7f59796e15686a62da0f981

Found 22 files trough .DS_Store spidering:

/documents
/documents/parent_handbook
/documents/parent_handbook/district_wide
/documents/parent_handbook/district_wide/scholarships
/documents/parent_handbook/district_wide/scholarships/scholarships 6.14.00 PM.xlsx
/documents/parent_handbook/district_wide/tuition_and_fees
/documents/parent_handbook/district_wide/tuition_and_fees/district_wide
/documents/parent_handbook/district_wide/tuition_and_fees/ensign
/hyper
/hyper/Admin
/hyper/Admin/dist
/hyper/Admin/dist/saas
/hyper/Admin/dist/saas/assets
/hyper/Admin/dist/saas/assets/css
/hyper/Admin/dist/saas/assets/data
/hyper/Admin/dist/saas/assets/fonts
/hyper/Admin/dist/saas/assets/images
/hyper/Admin/dist/saas/assets/images/logo-district
/hyper/Admin/dist/saas/assets/images/logo-hyper
/hyper/Admin/dist/saas/assets/js
/hyper/Admin/dist/saas/assets/vendor
/hyper/Admin/src

Found on 2025-09-27 00:55

Severity: medium
Fingerprint: 5f32cf5d6962f09cdc8bf8eddc8bf8ed08d08432944a0a6745f531d7c585e41f

Found 89 files trough .DS_Store spidering:

/documents
/documents/parent_handbook
/documents/parent_handbook/district_wide
/documents/parent_handbook/district_wide/scholarships
/documents/parent_handbook/district_wide/scholarships/scholarships 6.14.00 PM.xlsx
/documents/parent_handbook/district_wide/tuition_and_fees
/documents/parent_handbook/district_wide/tuition_and_fees/district_wide
/documents/parent_handbook/district_wide/tuition_and_fees/ensign
/hyper
/hyper/Admin
/hyper/Admin/dist
/hyper/Admin/dist/saas
/hyper/Admin/dist/saas/assets
/hyper/Admin/dist/saas/assets/css
/hyper/Admin/dist/saas/assets/data
/hyper/Admin/dist/saas/assets/fonts
/hyper/Admin/dist/saas/assets/images
/hyper/Admin/dist/saas/assets/images/logo-district
/hyper/Admin/dist/saas/assets/images/logo-district/old
/hyper/Admin/dist/saas/assets/images/logo-hyper
/hyper/Admin/dist/saas/assets/images/logo-hyper/logo-dark.png
/hyper/Admin/dist/saas/assets/js
/hyper/Admin/dist/saas/assets/js/maps
/hyper/Admin/dist/saas/assets/js/pages
/hyper/Admin/dist/saas/assets/js/ui
/hyper/Admin/dist/saas/assets/vendor
/hyper/Admin/dist/saas/assets/vendor/apexcharts
/hyper/Admin/dist/saas/assets/vendor/blueimp-file-upload
/hyper/Admin/dist/saas/assets/vendor/bootstrap
/hyper/Admin/dist/saas/assets/vendor/bootstrap-datepicker
/hyper/Admin/dist/saas/assets/vendor/bootstrap-maxlength
/hyper/Admin/dist/saas/assets/vendor/bootstrap-timepicker
/hyper/Admin/dist/saas/assets/vendor/bootstrap-touchspin
/hyper/Admin/dist/saas/assets/vendor/britecharts
/hyper/Admin/dist/saas/assets/vendor/chart.js
/hyper/Admin/dist/saas/assets/vendor/clipboard
/hyper/Admin/dist/saas/assets/vendor/d3
/hyper/Admin/dist/saas/assets/vendor/datatables.net
/hyper/Admin/dist/saas/assets/vendor/datatables.net-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-buttons
/hyper/Admin/dist/saas/assets/vendor/datatables.net-buttons-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedcolumns
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedcolumns-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedheader
/hyper/Admin/dist/saas/assets/vendor/datatables.net-fixedheader-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-keytable
/hyper/Admin/dist/saas/assets/vendor/datatables.net-keytable-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-responsive
/hyper/Admin/dist/saas/assets/vendor/datatables.net-responsive-bs5
/hyper/Admin/dist/saas/assets/vendor/datatables.net-select
/hyper/Admin/dist/saas/assets/vendor/datatables.net-select-bs5
/hyper/Admin/dist/saas/assets/vendor/daterangepicker
/hyper/Admin/dist/saas/assets/vendor/dragula
/hyper/Admin/dist/saas/assets/vendor/dropzone
/hyper/Admin/dist/saas/assets/vendor/flatpickr
/hyper/Admin/dist/saas/assets/vendor/frappe-gantt
/hyper/Admin/dist/saas/assets/vendor/fullcalendar
/hyper/Admin/dist/saas/assets/vendor/glightbox
/hyper/Admin/dist/saas/assets/vendor/gmaps
/hyper/Admin/dist/saas/assets/vendor/handlebars
/hyper/Admin/dist/saas/assets/vendor/highlightjs
/hyper/Admin/dist/saas/assets/vendor/ion-rangeslider
/hyper/Admin/dist/saas/assets/vendor/jquery
/hyper/Admin/dist/saas/assets/vendor/jquery-datatables-checkboxes
/hyper/Admin/dist/saas/assets/vendor/jquery-mask-plugin
/hyper/Admin/dist/saas/assets/vendor/jquery-sparkline
/hyper/Admin/dist/saas/assets/vendor/jquery-toast-plugin
/hyper/Admin/dist/saas/assets/vendor/jquery-ui
/hyper/Admin/dist/saas/assets/vendor/jquery.rateit
/hyper/Admin/dist/saas/assets/vendor/jstree
/hyper/Admin/dist/saas/assets/vendor/jsvectormap
/hyper/Admin/dist/saas/assets/vendor/lucide
/hyper/Admin/dist/saas/assets/vendor/moment
/hyper/Admin/dist/saas/assets/vendor/quill
/hyper/Admin/dist/saas/assets/vendor/select2
/hyper/Admin/dist/saas/assets/vendor/simplebar
/hyper/Admin/dist/saas/assets/vendor/simplemde
/hyper/Admin/dist/saas/assets/vendor/twitter-bootstrap-wizard
/hyper/Admin/dist/saas/assets/vendor/typeahead.js
/hyper/Admin/src
/hyper/Admin/src/assets
/hyper/Admin/src/assets/data
/hyper/Admin/src/assets/fonts
/hyper/Admin/src/assets/images
/hyper/Admin/src/assets/js
/hyper/Admin/src/assets/scss
/hyper/Admin/src/creative
/hyper/Admin/src/modern
/hyper/Admin/src/saas

Found on 2025-09-01 19:38

Severity: low
Fingerprint: 5f32cf5d6962f09c3af247253af24725bcda38ea2fd3d07f8705ef3f456f8787

Found 9 files trough .DS_Store spidering:

/documents
/documents/parent_handbook
/documents/parent_handbook/district_wide
/documents/parent_handbook/district_wide/scholarships
/documents/parent_handbook/district_wide/scholarships/scholarships 6.14.00 PM.xlsx
/documents/parent_handbook/district_wide/tuition_and_fees
/documents/parent_handbook/district_wide/tuition_and_fees/district_wide
/documents/parent_handbook/district_wide/tuition_and_fees/ensign
/hyper

Found on 2025-06-04 06:37

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: app.workkerapp.com
Port: 443
URL: https://app.workkerapp.com

First seen 2025-11-11 01:56
Last seen 2026-01-02 20:38
Open for 52 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa382e028af3d6058fd8a011e7341e6c63d67a90415
```
GraphQL introspection enabled at /graphql
Types: 38 (by kind: ENUM: 2, INPUT_OBJECT: 2, OBJECT: 28, SCALAR: 6)
Operations:
- Query: Query | fields: Job, _allJobsMeta, adminOptions, allAdminUsers, allJobs
- Mutation: Mutation | fields: createJob, deleteJob, signinUser, updateDailyOrderTeams, updateJob
Directives: deprecated, include, oneOf, skip (total: 4)
```
  Found on 2026-01-02 20:38
  
  40.4 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: ai.stitch.cx
Port: 443
URL: https://ai.stitch.cx

First seen 2025-05-28 18:11
Last seen 2026-01-02 20:37
Open for 219 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e975a091b79ee2280816b3a5597741436b
```
Found 5 files trough .DS_Store spidering:

/assets
/audio
/pyodide
/static
/themes
```
  Found on 2026-01-02 20:37
- Severity: low
  Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d86bfb45c823b2a453f6afde7e4ac2bf6a
```
Found 8 files trough .DS_Store spidering:

/assets
/audio
/pyodide
/static
/static/assets
/static/fonts
/static/swagger-ui
/themes
```
  Found on 2025-08-04 15:28
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: www.studio1way.com
Port: 443
URL: https://www.studio1way.com

First seen 2025-10-23 00:53
Last seen 2026-01-02 20:26
Open for 71 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b1a7f0c61472693630db65c09a916ab09a916ab0

GraphQL introspection enabled at /graphql
Types: 21 (by kind: ENUM: 2, INTERFACE: 1, OBJECT: 14, SCALAR: 4)
Operations:
- Query: Query | fields: ceramicWare, otherProject, painting, projects, woodWork
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 20:26

31.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b1a7f0c614726936e65367e8d674f108d674f108

GraphQL introspection enabled at /graphql
Types: 21 (by kind: ENUM: 2, INTERFACE: 1, OBJECT: 14, SCALAR: 4)
Operations:
- Query: Query | fields: otherProject, otherProjects, painting, paintings, projects
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-22 01:10

32.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b1a7f0c614726936ed15a3084341266843412668

GraphQL introspection enabled at /graphql
Types: 21 (by kind: ENUM: 2, INTERFACE: 1, OBJECT: 14, SCALAR: 4)
Operations:
- Query: Query | fields: ceramicWares, otherProject, otherProjects, painting, paintings
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-21 08:05

32.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b600a0504d356494caa3c5b29a9ce04e9a9ce04e

GraphQL introspection enabled at /graphql
Types: 20 (by kind: ENUM: 2, INTERFACE: 1, OBJECT: 13, SCALAR: 4)
Operations:
- Query: Query | fields: ceramicWares, otherProject, otherProjects, painting, paintings
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-19 06:12

31.1 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: app.bounceinsurance.co.nz
Port: 443
URL: https://app.bounceinsurance.co.nz

First seen 2025-10-25 00:58
Last seen 2026-01-02 19:55
Open for 69 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa389a981970b18c145262f49c539eea00bffeec98b
```
GraphQL introspection enabled at /graphql
Types: 80 (by kind: ENUM: 10, INPUT_OBJECT: 27, INTERFACE: 1, OBJECT: 37, SCALAR: 5)
Operations:
- Query: Query | fields: checkoutPrice, coupon, currentUser, policy, productPrices
- Mutation: Mutation | fields: addressCreate, addressUpdate, cardCreate, cardUpdate, endorsementCreate
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 19:55
  
  91.3 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: www.zetto.plus
Port: 443
URL: https://www.zetto.plus

First seen 2025-11-15 02:20
Last seen 2026-01-02 19:50
Open for 48 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdd557e0f6

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I'm a human who creates t... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus id=1
inspiration (args: optional/default) : opt1=<p><br></p> opt2=Ryuichi-Sakamoto id=17
media (args: optional/default) : rootID=172 rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1

Found on 2026-01-02 19:50

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdea1159b2

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2025-12-26 08:58

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdbdf11f10

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : id=1 bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates...
convo (args: optional/default) : id=30
info (args: optional/default) : state=NY tax=950 about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=-
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172

Found on 2025-12-24 09:36

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdf8b34802

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about=
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing

Found on 2025-12-23 09:01

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abddab31a90

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image id=290

Found on 2025-12-19 07:11

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd02278572

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172

Found on 2025-12-17 00:52

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd649536e0

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing

Found on 2025-12-13 19:11

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abde4ae2712

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus id=1
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom

Found on 2025-12-11 14:59

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd673e1f0a

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : order=1 rootID=172 rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg

Found on 2025-12-01 17:02

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
Found on 2025-12-01 04:15

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd5e594730

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : id=1 bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates...
convo (args: optional/default) : id=30
info (args: optional/default) : tax=950 about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2025-12-01 04:15

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd4f7a3ce2

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : tax=950 about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : rootID=172 rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1

Found on 2025-12-01 04:15

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd5155b466

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : rootID=172 rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1

Found on 2025-11-29 06:14

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdf9e449d8

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : id=1 bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates...
convo (args: optional/default) : id=30
info (args: optional/default) : about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2025-11-26 05:37

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd4b9293aa

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2025-11-24 09:26

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd4592cbf0

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about=
inspiration (args: optional/default) : opt2=Ryuichi-Sakamoto id=17 opt1=<p><br></p>
media (args: optional/default) : name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image id=290

Found on 2025-11-16 23:37

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdb656a31a

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : rootID=172 rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1

Found on 2025-11-15 02:20

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd3dee73e6

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2025-11-15 02:20

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdcc176514

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about=
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2025-11-15 02:20

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd9b06f792

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom

Found on 2025-11-15 02:20

60.6 kBytes 21 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: start-staging.gofreddie.com
Port: 443
URL: https://start-staging.gofreddie.com

First seen 2025-11-11 00:56
Last seen 2026-01-02 19:42
Open for 52 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30824c1aa4c28d29a34b730b6181a905fe693cdc7

GraphQL introspection enabled at /graphql
Types: 411 (by kind: ENUM: 32, INPUT_OBJECT: 125, INTERFACE: 7, OBJECT: 237, SCALAR: 8, UNION: 2)
Operations:
- Query: Query | fields: activeAnnouncement, acuityAccounts, acuityAppointmentTypes, acuityCalendars, appointment
- Mutation: Mutation | fields: abortTreatmentCycle, activateUserAccount, bookAppointment, cancelAppointment, completeAssessment
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 19:42

528.3 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3563f3dfc2e5ed840009dd0347437cd4d75cf52e9

GraphQL introspection enabled at /graphql
Types: 400 (by kind: ENUM: 32, INPUT_OBJECT: 124, INTERFACE: 7, OBJECT: 227, SCALAR: 8, UNION: 2)
Operations:
- Query: Query | fields: activeAnnouncement, acuityAccounts, acuityAppointmentTypes, acuityCalendars, appointment
- Mutation: Mutation | fields: abortTreatmentCycle, activateUserAccount, bookAppointment, cancelAppointment, completeAssessment
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-01 13:50

512.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a3c9366269a05a326e03cebe7a06c4d7ae14076f

GraphQL introspection enabled at /graphql
Types: 393 (by kind: ENUM: 32, INPUT_OBJECT: 121, INTERFACE: 6, OBJECT: 224, SCALAR: 8, UNION: 2)
Operations:
- Query: Query | fields: activeAnnouncement, acuityAccounts, acuityAppointmentTypes, acuityCalendars, appointment
- Mutation: Mutation | fields: abortTreatmentCycle, activateUserAccount, bookAppointment, cancelAppointment, completeAssessment
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-24 11:01

500.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a674c9f2fe9a6f02b1c81aaece2551a77d3bc07f

GraphQL introspection enabled at /graphql
Types: 392 (by kind: ENUM: 32, INPUT_OBJECT: 121, INTERFACE: 6, OBJECT: 223, SCALAR: 8, UNION: 2)
Operations:
- Query: Query | fields: activeAnnouncement, acuityAccounts, acuityAppointmentTypes, acuityCalendars, appointment
- Mutation: Mutation | fields: abortTreatmentCycle, activateUserAccount, bookAppointment, cancelAppointment, completeAssessment
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-12 22:52

499.3 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: uat.fleetpanda.com
Port: 443
URL: https://uat.fleetpanda.com

First seen 2025-10-21 00:51
Last seen 2026-01-02 19:10
Open for 73 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-02 19:10

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3491ad6da8d36d7ca0080a3f39cf812500e732608

GraphQL introspection enabled at /graphql
Types: 1385 (by kind: ENUM: 145, INPUT_OBJECT: 619, OBJECT: 602, SCALAR: 9, UNION: 10)
Operations:
- Query: Query | fields: appVersion, appliedPricings, asset, assetInventories, assetInventorySummary
- Mutation: Mutation | fields: accountingAsync, acknowledgeNote, addAssetForWarehouse, addAssetToDeliveryOrder, addCodeToAsset
Directives: deprecated, include, skip (total: 3)

Found on 2025-11-27 11:26

1.6 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa32a5622b1cba4bfb3585cd57aeb83aca7f5087697

GraphQL introspection enabled at /graphql
Types: 1372 (by kind: ENUM: 144, INPUT_OBJECT: 613, OBJECT: 596, SCALAR: 9, UNION: 10)
Operations:
- Query: Query | fields: appVersion, appliedPricings, asset, assetInventories, assetInventorySummary
- Mutation: Mutation | fields: accountingAsync, acknowledgeNote, addAssetToDeliveryOrder, addCodeToAsset, addFeeToOrderGroup
Directives: deprecated, include, skip (total: 3)

Found on 2025-11-01 23:10

1.6 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa35b6522d4e2acbd180025f4554e579ad03d040e88

GraphQL introspection enabled at /graphql
Types: 1366 (by kind: ENUM: 144, INPUT_OBJECT: 610, OBJECT: 593, SCALAR: 9, UNION: 10)
Operations:
- Query: Query | fields: appVersion, appliedPricings, asset, assetInventories, assetInventorySummary
- Mutation: Mutation | fields: accountingAsync, acknowledgeNote, addAssetToDeliveryOrder, addCodeToAsset, addFeeToOrderGroup
Directives: deprecated, include, skip (total: 3)

Found on 2025-10-27 05:02

1.6 MBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.deco-drop.com
Port: 443
URL: https://app.deco-drop.com

First seen 2025-01-05 19:13
Last seen 2026-01-02 19:05
Open for 361 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 19:05
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-29 04:29
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.highestgood.app
Port: 80
URL: http://api.highestgood.app

First seen 2025-11-10 22:57
Last seen 2026-01-02 18:36
Open for 52 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3847217f423ed84f805da6cdc679f8122e0ce8ea0

GraphQL introspection enabled at /graphql
Types: 95 (by kind: ENUM: 9, INPUT_OBJECT: 18, INTERFACE: 1, OBJECT: 58, SCALAR: 9)
Operations:
- Query: Query | fields: journalEntry, journeyEntries, me, meditationSessions, node
- Mutation: Mutation | fields: emailSignupCreate, oauthLogin, userLogin, userLogout, waitingListJoin
- Subscription: Subscription | fields: newMeditationSession, notifications
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-02 18:36

103.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fe71baa63d5d7ad6759ea11af30df47cd89f88ea

GraphQL introspection enabled at /graphql
Types: 92 (by kind: ENUM: 8, INPUT_OBJECT: 17, INTERFACE: 1, OBJECT: 57, SCALAR: 9)
Operations:
- Query: Query | fields: journalEntry, journeyEntries, me, meditationSessions, node
- Mutation: Mutation | fields: emailSignupCreate, oauthLogin, userCreate, userLogin, userLogout
- Subscription: Subscription | fields: newMeditationSession, notifications
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2025-11-16 21:44

98.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa399530acb03ec224977030f8346f043377f10558f

GraphQL introspection enabled at /graphql
Types: 77 (by kind: ENUM: 6, INPUT_OBJECT: 14, INTERFACE: 1, OBJECT: 48, SCALAR: 8)
Operations:
- Query: Query | fields: journalEntry, journeyEntries, me, meditationSessions, node
- Mutation: Mutation | fields: emailSignupCreate, oauthLogin, userCreate, userLogin, userLogout
- Subscription: Subscription | fields: newMeditationSession, notifications
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2025-11-12 20:47

82.8 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.248.213.92
Domain: zetto.plus
Port: 443
URL: https://zetto.plus

First seen 2025-11-15 02:21
Last seen 2026-01-02 18:34
Open for 48 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd9f2bdeea

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I'm a human who creates t... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2026-01-02 18:34

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdf9e449d8

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : id=1 bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates...
convo (args: optional/default) : id=30
info (args: optional/default) : about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2025-12-26 21:29

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd9b06f792

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom

Found on 2025-12-24 06:53

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd360597f6

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus id=1
inspiration (args: optional/default) : opt2=Ryuichi-Sakamoto id=17 opt1=<p><br></p>
media (args: optional/default) : name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image id=290

Found on 2025-12-22 23:17

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdd5b83b20

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus id=1
inspiration (args: optional/default) : opt2=Ryuichi-Sakamoto id=17 opt1=<p><br></p>
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2025-12-21 01:16

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd27d65128

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950
inspiration (args: optional/default) : opt2=Ryuichi-Sakamoto id=17 opt1=<p><br></p>
media (args: optional/default) : rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172

Found on 2025-12-18 20:34

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd11912cbc

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing

Found on 2025-12-16 16:27

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abda8833838

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about=
inspiration (args: optional/default) : opt1=<p><br></p> opt2=Ryuichi-Sakamoto id=17
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2025-12-14 06:42

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdd9d53d30

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about=
inspiration (args: optional/default) : opt1=<p><br></p> opt2=Ryuichi-Sakamoto id=17
media (args: optional/default) : rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172

Found on 2025-12-13 05:56

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd85627abd

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-01 04:16

60.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abde4ae2712

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus id=1
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom

Found on 2025-12-01 04:16

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd44f53208

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : tax=950 about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY
inspiration (args: optional/default) : opt2=Ryuichi-Sakamoto id=17 opt1=<p><br></p>
media (args: optional/default) : rootID=172 rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1

Found on 2025-12-01 04:16

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdc949fe54

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about=
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : order=1 rootID=172 rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg

Found on 2025-12-01 04:16

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd574edbb6

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus id=1
inspiration (args: optional/default) : opt1=<p><br></p> opt2=Ryuichi-Sakamoto id=17
media (args: optional/default) : rootID=172 rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1

Found on 2025-11-28 16:08

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd00815bca

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : id=1 bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates...
convo (args: optional/default) : id=30
info (args: optional/default) : city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about=
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom

Found on 2025-11-26 20:14

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdf8b34802

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about=
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing

Found on 2025-11-24 10:53

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdb981f24a

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : rootID=172 rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1

Found on 2025-11-23 00:10

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdc4643208

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus id=1
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image id=290

Found on 2025-11-21 06:09

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd4b9293aa

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2025-11-16 23:02

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abdc1ebb076

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : phone=- state=NY tax=950 about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172

Found on 2025-11-15 02:21

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd037b63c2

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : tax=950 about= city=New York email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY
inspiration (args: optional/default) : id=17 opt1=<p><br></p> opt2=Ryuichi-Sakamoto
media (args: optional/default) : rootPage=landing section=zoom type=image id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172

Found on 2025-11-15 02:21

60.6 kBytes 21 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a85c7f796b22141b67ecece185627abd85b25dde

GraphQL introspection enabled at /api/graphql
Types: 29 (by kind: ENUM: 2, OBJECT: 22, SCALAR: 5)
Operations:
- Query: Query | fields: about, abouts, convo, convos, info
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 5
about (args: optional/default) : bio=<h1>My name is Z.</h1><p><br></p><p>I’m a human who creates... id=1
convo (args: optional/default) : id=30
info (args: optional/default) : email=contact@zetto.plus id=1 instagram=https://www.instagram.com/zetto.plus phone=- state=NY tax=950 about= city=New York
inspiration (args: optional/default) : opt1=<p><br></p> opt2=Ryuichi-Sakamoto id=17
media (args: optional/default) : id=290 name=image/128202282920_tokyo_graphic_new_color.svg order=1 rootID=172 rootPage=landing section=zoom type=image

Found on 2025-11-15 02:21

60.6 kBytes 21 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: internal.addyinvest-integration.com
Port: 443
URL: https://internal.addyinvest-integration.com

First seen 2025-11-15 01:30
Last seen 2026-01-02 18:11
Open for 48 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b876022d053fba8ffe61a7271228a4f6cb7c5192

GraphQL introspection enabled at /graphql
Types: 71 (by kind: ENUM: 2, INPUT_OBJECT: 11, OBJECT: 47, SCALAR: 11)
Operations:
- Query: Query | fields: addyDcr, dcrDocument, dcrTransactions, distributionDcrAgreement, fundsFlowAgreement
- Mutation: Mutation | fields: addyDcrSigned, confidentialityAgreementSigned, countersignedSubscriptionAgreementAttach, dcrAgreementSigned, distributionDcrAgreementSigned
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 18:11

87.2 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: geniol.stagecliengo.com
Port: 80
URL: http://geniol.stagecliengo.com

First seen 2025-12-01 01:08
Last seen 2026-01-02 17:59
Open for 32 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3f85aa9c30421b6414e500e137b64383b7b64383b
```
GraphQL introspection enabled at /graphql
Types: 20 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 4)
Operations:
- Query: Query | fields: addLabToCompany, getCliengoCompanysTriggers, getCliengoIAReports, getMetrics, migrateLeadToCocos
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 17:59
  
  30.9 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: back.ideasboost.com
Port: 80
URL: http://back.ideasboost.com

First seen 2025-11-21 03:08
Last seen 2026-01-02 17:42
Open for 42 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa34e9e9bc6b431a2360cdab355f98aa9b6e9a99552

GraphQL introspection enabled at /graphql
Types: 160 (by kind: ENUM: 13, INPUT_OBJECT: 6, INTERFACE: 22, OBJECT: 106, SCALAR: 11, UNION: 2)
Operations:
- Query: Query | fields: convertibleTests, currentUser, newIdeaTests, quickTestAreas, quickTests
- Mutation: Mutation | fields: login, logout, register, tokenAuth, tokenVerify
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 17:42

178.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa30a893fb3356a30b1684a2522c32fc46d68aa83c9

GraphQL introspection enabled at /graphql
Types: 155 (by kind: ENUM: 13, INPUT_OBJECT: 6, INTERFACE: 22, OBJECT: 101, SCALAR: 11, UNION: 2)
Operations:
- Query: Query | fields: convertibleTests, currentUser, newIdeaTests, quickTestAreas, quickTests
- Mutation: Mutation | fields: login, logout, register, tokenAuth, tokenVerify
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-01 20:02

169.3 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api-mtx-dev.bairesdevai.com
Port: 443
URL: https://api-mtx-dev.bairesdevai.com

First seen 2025-10-22 02:40
Last seen 2026-01-02 17:39
Open for 72 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b571938e6585c57ed32bf3abbccf0b616e54cd1e

GraphQL introspection enabled at /graphql
Types: 110 (by kind: ENUM: 3, INPUT_OBJECT: 21, OBJECT: 76, SCALAR: 9, UNION: 1)
Operations:
- Query: Query | fields: companies, companies_aggregated, companies_by_id, companies_tags, companies_tags_by_id
- Mutation: Mutation | fields: create_quiz_vizits_item, create_quiz_vizits_items, update_quiz_vizits_batch, update_quiz_vizits_item, update_quiz_vizits_items
- Subscription: Subscription | fields: blocks_templates_mutated, companies_companies_tags_mutated, companies_mutated, companies_tags_mutated, directus_files_mutated
Directives: deprecated, include, skip (total: 3)

Readable stores: 0

Found on 2026-01-02 17:39

204.8 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.treppid.com
Port: 443
URL: https://api.treppid.com

First seen 2025-10-23 00:24
Last seen 2026-01-02 16:44
Open for 71 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b8889e8344f07581ab0ac90091231089d7d453e8

GraphQL introspection enabled at /graphql
Types: 45 (by kind: ENUM: 2, INPUT_OBJECT: 15, OBJECT: 22, SCALAR: 6)
Operations:
- Query: query | fields: trip_start_available, trip_start_availables
- Mutation: mutations | fields: create_booking, create_extra_available_age, create_subscriber, create_ticket_machupicchu, create_trip_available
- Subscription: subscription | fields: numberIncremented
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-02 16:44

49.3 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: app.withfriends.co
Port: 443
URL: https://app.withfriends.co

First seen 2025-11-22 02:54
Last seen 2026-01-02 16:38
Open for 41 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3800898f2ca34b402edcc98e11c3ef26c4c2e80cb

GraphQL introspection enabled at /graphql
Types: 34 (by kind: ENUM: 4, OBJECT: 23, SCALAR: 6, UNION: 1)
Operations:
- Query: Query | fields: _entities, _service, customerWithfriendsIdByShopifyCustomerId, deliveryMethodByWithfriendsMembershipId, jobFinished
- Mutation: Mutation | fields: businessSyncToShopify, cancelMembershipShopifySubscriptionContract, changeMembershipShopifySubscriptionContractNextBillingDate, changeSubscriptionContractAddress, createAccountForShop
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 1
_service (args: none) : sdl=extend schema
  @link(url: "https://specs.apollo.dev/federati...

Found on 2026-01-02 16:38

51.2 kBytes 1 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.vantademo.com
Port: 443
URL: https://api.vantademo.com

First seen 2025-12-02 01:02
Last seen 2026-01-02 16:22
Open for 31 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d9c8e569ed0ef14b9851432646cc0eab4f0012c3

GraphQL introspection enabled at /graphql
Types: 197 (by kind: ENUM: 7, INPUT_OBJECT: 5, OBJECT: 171, SCALAR: 14)
Operations:
- Query: Query | fields: arcadeGame, arcadeGames, associations, availablePlayersPrivateCoachingFreeTrial, availablePrivateCoachingFreeTrial
- Mutation: Mutation | fields: applyDiscountCode, bulkInvitePlayers, cancelEvent, createBreakoutRooms, createCheckIn
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 16:22

273.3 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: test.mindcette.com
Port: 443
URL: https://test.mindcette.com

First seen 2025-11-23 01:51
Last seen 2026-01-02 15:49
Open for 40 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa37808bef7da2762e59eca660cac6bc8e07788d710
```
GraphQL introspection enabled at /graphql
Types: 110 (by kind: ENUM: 5, INPUT_OBJECT: 51, OBJECT: 49, SCALAR: 5)
Operations:
- Query: Query | fields: fetchAllRoles, fetchAllUsers, fetchUser, me, searchUser
- Mutation: Mutation | fields: forgotPassword, login, registerUser, resendVerificationEmail, verifyEmail
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 15:49
  
  110.2 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: www.studio1way.com
Port: 80
URL: http://www.studio1way.com

First seen 2025-10-23 00:53
Last seen 2026-01-02 15:15
Open for 71 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b1a7f0c61472693630db65c09a916ab09a916ab0

GraphQL introspection enabled at /graphql
Types: 21 (by kind: ENUM: 2, INTERFACE: 1, OBJECT: 14, SCALAR: 4)
Operations:
- Query: Query | fields: ceramicWare, otherProject, painting, projects, woodWork
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 15:15

31.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b1a7f0c614726936e65367e8d674f108d674f108

GraphQL introspection enabled at /graphql
Types: 21 (by kind: ENUM: 2, INTERFACE: 1, OBJECT: 14, SCALAR: 4)
Operations:
- Query: Query | fields: otherProject, otherProjects, painting, paintings, projects
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-22 01:10

32.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b1a7f0c614726936ed15a3084341266843412668

GraphQL introspection enabled at /graphql
Types: 21 (by kind: ENUM: 2, INTERFACE: 1, OBJECT: 14, SCALAR: 4)
Operations:
- Query: Query | fields: ceramicWares, otherProject, otherProjects, painting, paintings
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-20 21:41

32.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b600a0504d356494caa3c5b29a9ce04e9a9ce04e

GraphQL introspection enabled at /graphql
Types: 20 (by kind: ENUM: 2, INTERFACE: 1, OBJECT: 13, SCALAR: 4)
Operations:
- Query: Query | fields: ceramicWares, otherProject, otherProjects, painting, paintings
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-18 17:59

31.1 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.itsourhub.com
Port: 443
URL: https://app.itsourhub.com

First seen 2024-12-11 13:15
Last seen 2026-01-02 15:04
Open for 387 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 15:04
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-28 21:34
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: graph-staging.movecounselors.com
Port: 80
URL: http://graph-staging.movecounselors.com

First seen 2025-11-19 01:32
Last seen 2026-01-02 14:56
Open for 44 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3b0d5a466c7883c167d87d760f28ed5e11a2f3c21
```
GraphQL introspection enabled at /graphql
Types: 193 (by kind: ENUM: 12, INPUT_OBJECT: 65, INTERFACE: 1, OBJECT: 105, SCALAR: 9, UNION: 1)
Operations:
- Query: Query | fields: RMCSearch, admin, counselor, counselors, gitSha
- Mutation: Mutation | fields: addEmail, addRMCToCounselor, addRMCToSponsor, addRMCToSupplier, addSuggestedSupplier
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 14:56
  
  182.7 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.containeralliance.com
Port: 443
URL: https://api.containeralliance.com

First seen 2025-11-12 00:43
Last seen 2026-01-02 14:56
Open for 51 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3610fd47530f94f77de1d8a433e4b64c2ca6072d2
```
GraphQL introspection enabled at /graphql
Types: 290 (by kind: ENUM: 2, INPUT_OBJECT: 59, INTERFACE: 1, OBJECT: 217, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: address, addresses, adminDashboard, areaSubscription, areaSubscriptions
- Mutation: Mutation | fields: addOrderBillingAddress, authGmail, cloneOrder, closeLead, createAddress
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 14:56
  
  440.5 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.cosplaypro.app
Port: 80
URL: http://api.cosplaypro.app

First seen 2025-11-27 00:49
Last seen 2026-01-02 14:39
Open for 36 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa32fc881f1af933b732cf9274cfc92751894a086a8

GraphQL introspection enabled at /graphql
Types: 102 (by kind: ENUM: 10, INPUT_OBJECT: 21, INTERFACE: 1, OBJECT: 63, SCALAR: 7)
Operations:
- Query: Query | fields: entries, events, me, node, users
- Mutation: Mutation | fields: googleLogin, requestPasswordResetCode, resetPasswordWithCode, userLogin, userLogout
- Subscription: Subscription | fields: notifications
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-02 14:39

199.3 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 54.221.251.148
Domain: store-api.saragabriel.com
Port: 80
URL: http://store-api.saragabriel.com

First seen 2025-10-16 15:21
Last seen 2026-01-02 14:34
Open for 77 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a54bdb289

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.767364505785e+12

Found on 2026-01-02 14:34

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a299221f8

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.766814276474e+12

Found on 2025-12-27 05:44

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a6c67fb04

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.766814276346e+12

Found on 2025-12-27 05:44

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a13fdcb51

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.766639533025e+12

Found on 2025-12-25 05:12

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a41889085

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.766600052041e+12

Found on 2025-12-24 18:14

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a1c23f665

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.766441285871e+12

Found on 2025-12-22 22:07

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a5225d178

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.766441285733e+12

Found on 2025-12-22 22:07

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ae7cd3135

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.766309817947e+12

Found on 2025-12-21 09:36

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a34146571

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.766309815677e+12

Found on 2025-12-21 09:36

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a55aacfa2

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.766142890553e+12

Found on 2025-12-19 11:14

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a321daabb

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.766142616578e+12

Found on 2025-12-19 11:10

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a172577d9

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.765940249647e+12

Found on 2025-12-17 02:57

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ae10d0e5b

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.765940250395e+12

Found on 2025-12-17 02:57

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a8bffb761

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.765626497995e+12

Found on 2025-12-13 11:48

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99acf62946c

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.765626498007e+12

Found on 2025-12-13 11:48

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a751a6a96

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.764569848076e+12

Found on 2025-12-01 06:17

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99aadcb0777

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.764569848158e+12

Found on 2025-12-01 06:17

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a2d0e69de

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.764388997485e+12

Found on 2025-11-29 04:03

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a997cc5dc

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.764388995489e+12

Found on 2025-11-29 04:03

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a07f5f882

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.764241506652e+12

Found on 2025-11-27 11:05

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a1fa68fdb

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.764241507508e+12

Found on 2025-11-27 11:05

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a914337a8

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.763896087428e+12

Found on 2025-11-23 11:08

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a9275b779

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.763896088613e+12

Found on 2025-11-23 11:08

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ad01f6eb0

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.763759220371e+12

Found on 2025-11-21 21:06

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99acb9c291d

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.763759218658e+12

Found on 2025-11-21 21:06

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99afff3d357

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.76297701686e+12

Found on 2025-11-12 19:50

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a9a1fc632

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.762788669609e+12

Found on 2025-11-10 15:30

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a1ef34e2a

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762788631482e+12

Found on 2025-11-10 15:30

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99abe5dd83a

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762609909974e+12

Found on 2025-11-08 13:51

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a080774d8

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.762609908359e+12

Found on 2025-11-08 13:51

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a2dbe2aa1

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.76247401376e+12

Found on 2025-11-07 00:06

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ab2f1f46b

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.762474014015e+12

Found on 2025-11-07 00:06

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a2e91a5fe

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.762474005269e+12

Found on 2025-11-07 00:06

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a52a8f99b

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762474005592e+12

Found on 2025-11-07 00:06

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a34dd0c55

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762298402955e+12

Found on 2025-11-04 23:19

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a50abd71a

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.762298402956e+12

Found on 2025-11-04 23:19

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ae20ee79a

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.762136157455e+12

Found on 2025-11-03 02:15

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a7ea4c12a

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762122826114e+12

Found on 2025-11-02 22:33

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a818b8f4a

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.762014247623e+12

Found on 2025-11-01 16:24

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a4e7a72fc

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762014247687e+12

Found on 2025-11-01 16:24

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ac1672f36

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.761667570311e+12

Found on 2025-10-28 16:05

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a211f1f88

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.761667565474e+12

Found on 2025-10-28 16:05

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a4eece403

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.761481792703e+12

Found on 2025-10-26 12:29

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a97037a5a

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.761481790964e+12

Found on 2025-10-26 12:29

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99aa2a393c2

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.761319348437e+12

Found on 2025-10-24 15:22

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ae93f5c8b

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.76131934654e+12

Found on 2025-10-24 15:22

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4e0b24a4349897a878dd130c3827d182795c622

GraphQL introspection enabled at /graphql
Types: 567 (by kind: ENUM: 48, INPUT_OBJECT: 208, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.760977816898e+12

Found on 2025-10-20 16:30

493.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4e0b24a4349897a878dd130c3827d18830965a2

GraphQL introspection enabled at /graphql
Types: 567 (by kind: ENUM: 48, INPUT_OBJECT: 208, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.760977812058e+12

Found on 2025-10-20 16:30

493.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4e0b24a4349897a878dd130c3827d186f332970

GraphQL introspection enabled at /graphql
Types: 567 (by kind: ENUM: 48, INPUT_OBJECT: 208, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.760804905175e+12

Found on 2025-10-18 16:28

493.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4e0b24a4349897a878dd130c3827d18bb0cbf9c

GraphQL introspection enabled at /graphql
Types: 567 (by kind: ENUM: 48, INPUT_OBJECT: 208, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.760628112607e+12

Found on 2025-10-16 15:21

493.7 kBytes 5 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.fitnesscare.com.au
Port: 443
URL: https://www.fitnesscare.com.au

First seen 2025-12-08 00:21
Last seen 2026-01-02 14:26
Open for 25 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176423f3e94dee53e19e1e53e19e1e53e19e1
```
Found 2 files trough .DS_Store spidering:

/assets
/uploads
```
  Found on 2026-01-02 14:26
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.permithistory.ca
Port: 80
URL: http://www.permithistory.ca

First seen 2024-11-03 22:02
Last seen 2026-01-02 14:14
Open for 424 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f661bc6c8fd1c9a9e1bf6a6401bf6a640
```
Found 3 files trough .DS_Store spidering:

/images
/javascript
/stylesheets
```
  Found on 2026-01-02 14:14
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.havenwith.com
Port: 443
URL: https://app.havenwith.com

First seen 2025-07-28 21:47
Last seen 2026-01-02 13:52
Open for 157 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 13:52
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: www.marmosetmusic.com
Port: 443
URL: https://www.marmosetmusic.com

First seen 2025-10-31 00:59
Last seen 2026-01-02 13:36
Open for 63 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d6684f896c438585f0bcfbd82b4b3622e2603802b2
```
GraphQL introspection enabled at /api/graphql
Types: 73 (by kind: ENUM: 2, INPUT_OBJECT: 5, OBJECT: 62, SCALAR: 4)
Operations:
- Query: Query | fields: account, featuredArtists, projectSearch, searchRound, searchRoundSongVersion
- Mutation: Mutation | fields: addClientNote, addDirection, addSongVersionStems, cancelAccount, createSearchRound
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 13:36
  
  92.4 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: test.mindcette.com
Port: 80
URL: http://test.mindcette.com

First seen 2025-11-23 01:51
Last seen 2026-01-02 13:32
Open for 40 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa37808bef7da2762e59eca660cac6bc8e07788d710
```
GraphQL introspection enabled at /graphql
Types: 110 (by kind: ENUM: 5, INPUT_OBJECT: 51, OBJECT: 49, SCALAR: 5)
Operations:
- Query: Query | fields: fetchAllRoles, fetchAllUsers, fetchUser, me, searchUser
- Mutation: Mutation | fields: forgotPassword, login, registerUser, resendVerificationEmail, verifyEmail
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 13:32
  
  110.2 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: staging.thebusinessbrain.co.uk
Port: 80
URL: http://staging.thebusinessbrain.co.uk

First seen 2025-11-11 01:16
Last seen 2026-01-02 13:27
Open for 52 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa32ffd3f23d80a6be1ef979a9ad1a3c27ae925cfa6
```
GraphQL introspection enabled at /graphql
Types: 97 (by kind: ENUM: 2, INPUT_OBJECT: 2, OBJECT: 86, SCALAR: 7)
Operations:
- Query: Query | fields: migrateUsers, products, user, userDetails, users
- Mutation: Mutation | fields: deactivateUser, deleteUser, login, requestReset, signup
- Subscription: Subscription | fields: currency, id, lastBillDate, nextBillDate, price
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 13:27
  
  174.2 kBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-11-20 10:47
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: app.drumroom.io
Port: 443
URL: https://app.drumroom.io

First seen 2025-11-04 11:12
Last seen 2026-01-02 13:26
Open for 59 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa33a1c9f05bd01f4c7d758ab4943ebb95b6d0a44bb
```
GraphQL introspection enabled at /graphql
Types: 64 (by kind: ENUM: 3, OBJECT: 57, SCALAR: 4)
Operations:
- Query: Query | fields: allBeats, allStudentAssignments, getBeat, getBeatWithUUID, studentAssignments
- Mutation: Mutation | fields: createAssignment, createBeat, deleteBeat, overwriteBeat, shareBeat
Directives: cacheControl, deprecated, include, skip (total: 4)
```
  Found on 2026-01-02 13:26
  
  85.2 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: tailcollective.com
Port: 80
URL: http://tailcollective.com

First seen 2025-02-17 19:34
Last seen 2026-01-02 13:21
Open for 318 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642f59365a35b3b376e5b3b376e5b3b376e
```
Found 2 files trough .DS_Store spidering:

/images
/sitemaps
```
  Found on 2026-01-02 13:21
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: doublegdp.morazan.city
Port: 443
URL: https://doublegdp.morazan.city

First seen 2025-10-31 15:35
Last seen 2026-01-02 13:11
Open for 62 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3b84be33d89384fdfe3023b718676a5e6ce400686
```
GraphQL introspection enabled at /graphql
Types: 232 (by kind: ENUM: 2, INPUT_OBJECT: 3, OBJECT: 220, SCALAR: 7)
Operations:
- Query: Query | fields: actionFields, actionFlows, actions, adminUsers, allEventLogs
- Mutation: Mutation | fields: PropertyCreate, actionFlowCreate, actionFlowDelete, actionFlowUpdate, activityLogAdd
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 13:11
  
  397.1 kBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-12-22 18:10
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.cloudora.ch
Port: 443
URL: https://app.cloudora.ch

First seen 2024-11-16 14:37
Last seen 2026-01-02 13:01
Open for 411 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 13:01
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-29 00:29
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: mgmmarco.com
Port: 80
URL: http://mgmmarco.com

First seen 2025-12-03 01:27
Last seen 2026-01-02 13:00
Open for 30 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa341eaef48fc0d1cec546944dc654e294a6dccfc1a
```
GraphQL introspection enabled at /graphql
Types: 17 (by kind: ENUM: 2, OBJECT: 11, SCALAR: 4)
Operations:
- Query: Query | fields: companies, company
- Mutation: Mutation | fields: addCompany, deleteCompany, updateCompany
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
companies (args: optional/default) : total=3
```
  Found on 2026-01-02 13:00
  
  25.1 kBytes 1 rows
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 76.223.57.73
Domain: carloscalderonreyes.engineer
Port: 80
URL: http://carloscalderonreyes.engineer

First seen 2025-12-05 11:21
Last seen 2026-01-02 12:55
Open for 28 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce9486482bdcb5

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : location=Bogotá, Colombia locationLink=https://www.google.com/maps/place/bogota about=Ingeniero de Datos y Desarrollador Python enfocado en solucio... summary=Ingeniero de Datos con amplia experiencia en el diseño y opt... avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4 personalWebsiteUrl= name=Carlos Calderon Reyes initials=CC

Found on 2026-01-02 12:55

25.2 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce9486ee3e2055

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : name=Carlos Calderon Reyes initials=CC location=Bogotá, Colombia locationLink=https://www.google.com/maps/place/bogota about=Ingeniero de Datos y Desarrollador Python enfocado en solucio... summary=Ingeniero de Datos con amplia experiencia en el diseño y opt... avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4 personalWebsiteUrl=

Found on 2025-12-26 10:42

25.2 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce948647ab6ecb

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : personalWebsiteUrl= name=Carlos Calderon Reyes initials=CC location=Bogotá, Colombia locationLink=https://www.google.com/maps/place/bogota about=Ingeniero de Datos y Desarrollador Python enfocado en solucio... summary=Ingeniero de Datos con amplia experiencia en el diseño y opt... avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4

Found on 2025-12-24 05:24

25.2 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce94860dc1b7d1

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : about=Ingeniero de Datos y Desarrollador Python enfocado en solucio... summary=Ingeniero de Datos con amplia experiencia en el diseño y opt... avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4 personalWebsiteUrl= name=Carlos Calderon Reyes initials=CC location=Bogotá, Colombia locationLink=https://www.google.com/maps/place/bogota

Found on 2025-12-20 20:05

25.2 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce9486fcf1ea6b

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : locationLink=https://www.google.com/maps/place/bogota about=Ingeniero de Datos y Desarrollador Python enfocado en solucio... summary=Ingeniero de Datos con amplia experiencia en el diseño y opt... avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4 personalWebsiteUrl= name=Carlos Calderon Reyes initials=CC location=Bogotá, Colombia

Found on 2025-12-14 22:48

25.2 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce94863edcb2a9

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : initials=CC location=Bogotá, Colombia locationLink=https://www.google.com/maps/place/bogota about=Ingeniero de Datos y Desarrollador Python enfocado en solucio... summary=Ingeniero de Datos con amplia experiencia en el diseño y opt... avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4 personalWebsiteUrl= name=Carlos Calderon Reyes

Found on 2025-12-14 09:35

25.2 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce948696490893

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4 personalWebsiteUrl= name=Carlos Calderon Reyes initials=CC location=Bogotá, Colombia locationLink=https://www.google.com/maps/place/bogota about=Ingeniero de Datos y Desarrollador Python enfocado en solucio... summary=Ingeniero de Datos con amplia experiencia en el diseño y opt...

Found on 2025-12-08 02:06

25.2 kBytes 8 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: ahead.activate360.io
Port: 80
URL: http://ahead.activate360.io

First seen 2025-10-21 16:18
Last seen 2026-01-02 12:45
Open for 72 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
Found on 2026-01-02 12:45

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6abda15b2f09c8c42adce4c635f6f9bf93d73636d

GraphQL introspection enabled at /api/graphql
Types: 3897 (by kind: ENUM: 18, INPUT_OBJECT: 1418, OBJECT: 2452, SCALAR: 8, UNION: 1)
Operations:
- Query: Query | fields: WelcomeWallAwardsModuleMedia, WelcomeWallLogoModuleMedia, WelcomeWallLogoModuleMedias, countWelcomeWallLogoModuleMedias, docAccessWelcomeWallLogoModuleMedia
- Mutation: Mutation | fields: createWelcomeWallAwardsModuleMedia, createWelcomeWallLogoModuleMedia, deleteWelcomeWallLogoModuleMedia, updateWelcomeWallAwardsModuleMedia, updateWelcomeWallLogoModuleMedia
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2025-11-30 16:41

3.3 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.tozensushi.ca
Port: 80
URL: http://api.tozensushi.ca

First seen 2025-11-09 01:11
Last seen 2026-01-02 12:39
Open for 54 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33694b824d8bd93a846a921e6c658460870708dda

GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 5, INPUT_OBJECT: 33, OBJECT: 78, SCALAR: 8, UNION: 1)
Operations:
- Query: Query | fields: i18NLocale, uploadFile, uploadFiles, uploadFolder, uploadFolders
- Mutation: Mutation | fields: createUploadFile, createUploadFolder, deleteUploadFile, updateUploadFile, updateUploadFolder
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-02 12:39

174.3 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: sunray-dev.ionexenergy.com
Port: 80
URL: http://sunray-dev.ionexenergy.com

First seen 2025-11-06 01:26
Last seen 2026-01-02 12:32
Open for 57 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3db76ad31f6c3c333cb73996d975dc83082d11752

GraphQL introspection enabled at /graphql
Types: 251 (by kind: ENUM: 41, INPUT_OBJECT: 63, INTERFACE: 1, OBJECT: 127, SCALAR: 17, UNION: 2)
Operations:
- Query: Query | fields: Emergency, Social, UUID, _dummy, blockedCreations
- Mutation: Mutation | fields: EmergencyMutation, MapMutation, MileageMutation, SocialMutation, _dummy
- Subscription: Subscription | fields: _dummy, activityChanged, creationCollectsChanged, creationCommentsChanged, creationLikesChanged
Directives: deprecated, include, skip (total: 3)

Found on 2026-01-02 12:32

249.4 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: gateway.hera.marketing
Port: 443
URL: https://gateway.hera.marketing

First seen 2025-11-13 03:33
Last seen 2026-01-02 12:14
Open for 50 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3a9854fb013a6ac34f4192359234ba740541b8d18
```
GraphQL introspection enabled at /graphql
Types: 406 (by kind: ENUM: 2, INPUT_OBJECT: 166, INTERFACE: 1, OBJECT: 229, SCALAR: 8)
Operations:
- Query: Query | fields: articleSummaries, articleSummary, audienceGroup, audienceGroups, campaign
- Mutation: Mutation | fields: addAudienceGroup, addCampaign, addCampaignForm, addChannelMembers, addChatChannel
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 12:14
  
  544.0 kBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-11-28 21:43
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: staging.instamenu.cc
Port: 443
URL: https://staging.instamenu.cc

First seen 2025-11-14 02:14
Last seen 2026-01-02 12:13
Open for 49 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa39866f3cdbab8496f7b53fbd5abae6f6ea37ade9a
```
GraphQL introspection enabled at /graphql
Types: 115 (by kind: ENUM: 16, INPUT_OBJECT: 18, OBJECT: 73, SCALAR: 8)
Operations:
- Query: Query | fields: authType, deliveryQuote, giftCard, invoice, item
- Mutation: Mutation | fields: addOrderItem, createAvatarUpload, createOrder, createPayment, createSetupIntent
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 12:13
  
  194.1 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.zardoz.scarecrowvideo.org
Port: 80
URL: http://api.zardoz.scarecrowvideo.org

First seen 2025-12-10 00:37
Last seen 2026-01-02 11:58
Open for 23 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 11:58
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.stg.paradise-nature.wine
Port: 80
URL: http://api.stg.paradise-nature.wine

First seen 2025-10-20 08:23
Last seen 2026-01-02 11:56
Open for 74 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa346294c995e242dfbcfb9a76923a9a8ae0db9216a
```
GraphQL introspection enabled at /graphql
Types: 128 (by kind: ENUM: 2, INPUT_OBJECT: 59, OBJECT: 59, SCALAR: 8)
Operations:
- Query: Query | fields: assignmentCandidates, banners, categories, closestDeliveryDateForGoods, customer
- Mutation: Mutation | fields: accountDelete, activateCustomer, addBottleToOrder, addWaiting, applyCoupon
Directives: deprecated, include, skip (total: 3)

Readable stores: 0
```
  Found on 2026-01-02 11:56
  
  185.2 kBytes
Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 15.197.149.68
Domain: www.liebergroup.ca
Port: 80
URL: http://www.liebergroup.ca

First seen 2024-11-25 00:11
Last seen 2026-01-02 11:56
Open for 403 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f1697202f1697203092aab88aef95409d7bc0d13207b145

Found 116 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/slider-revolution/assets
/plugins/slider-revolution/assets/gridimages
/plugins/slider-revolution/assets/images
/plugins/slider-revolution/assets/svg
/plugins/slider-revolution/assets/videos
/plugins/slider-revolution/css
/plugins/slider-revolution/css/navigation-skins
/plugins/slider-revolution/fonts
/plugins/slider-revolution/images
/plugins/slider-revolution/js
/plugins/slider-revolution/php
/plugins/slider-revolution/php/facebook
/plugins/slider-revolution/php/flickr
/plugins/slider-revolution/php/instagram
/plugins/slider-revolution/php/twitter
/plugins/slider-revolution/php/twitter/connection
/plugins/slider-revolution/php/vimeo
/plugins/slider-revolution/php/youtube
/plugins/slider-revolution/revolution-addons
/plugins/slider-revolution/revolution-addons/beforeafter
/plugins/slider-revolution/revolution-addons/beforeafter/css
/plugins/slider-revolution/revolution-addons/beforeafter/js
/plugins/slider-revolution/revolution-addons/countdown
/plugins/slider-revolution/revolution-addons/filmstrip
/plugins/slider-revolution/revolution-addons/panorama
/plugins/slider-revolution/revolution-addons/panorama/css
/plugins/slider-revolution/revolution-addons/panorama/js
/plugins/slider-revolution/revolution-addons/particles
/plugins/slider-revolution/revolution-addons/polyfold
/plugins/slider-revolution/revolution-addons/slicey
/plugins/slider-revolution/revolution-addons/snow
/plugins/slider-revolution/revolution-addons/typewriter
/plugins/slider-revolution/revolution-addons/typewriter/css
/plugins/slider-revolution/revolution-addons/typewriter/js
/plugins/slider-revolution/revolution-addons/weather
/plugins/slider-revolution/revolution-addons/weather/css
/plugins/slider-revolution/revolution-addons/weather/css/fonts
/plugins/slider-revolution/revolution-addons/weather/js
/plugins/slider-revolution/revolution-addons/weather/partials
/plugins/slider-revolution/revolution-addons/whiteboard
/plugins/slider-revolution/revolution-addons/whiteboard/assets
/plugins/slider-revolution/revolution-addons/whiteboard/assets/css
/plugins/slider-revolution/revolution-addons/whiteboard/js
/plugins/slider-revolution/revolution-addons/whiteboard/js/source
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/scss/base
/scss/components
/scss/customization
/scss/elements
/scss/plugins
/webfonts

Found on 2026-01-02 11:56

Severity: medium
Fingerprint: 5f32cf5d6962f09ccbc000d9cbc000d9c48166890098c3d5c16f34ce9a503c58

Found 49 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-11-29 13:28

Severity: medium
Fingerprint: 5f32cf5d6962f09c09f5afde09f5afde63119566934c7e423fb43da3402e99a7

Found 64 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-11-24 01:45

Severity: medium
Fingerprint: 5f32cf5d6962f09c20f30ab920f30ab934875d69c3a0c935f5dc39ae8a46f70f

Found 67 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-11-24 01:45

Severity: medium
Fingerprint: 5f32cf5d6962f09c92dfb71592dfb71545f0dd8d3b40a7714299c742b80ec643

Found 45 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-11-22 14:33

Severity: low
Fingerprint: 5f32cf5d6962f09cdafa5447dafa54476f97dfefe739b18760934c6083bbbda9

Found 18 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/scss
/webfonts

Found on 2025-11-20 17:44

Severity: medium
Fingerprint: 5f32cf5d6962f09c51be605a51be605a8a2b396afa20c17e3de476075a2a015a

Found 103 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/slider-revolution/assets
/plugins/slider-revolution/assets/gridimages
/plugins/slider-revolution/assets/images
/plugins/slider-revolution/assets/svg
/plugins/slider-revolution/assets/videos
/plugins/slider-revolution/css
/plugins/slider-revolution/css/navigation-skins
/plugins/slider-revolution/fonts
/plugins/slider-revolution/images
/plugins/slider-revolution/js
/plugins/slider-revolution/php
/plugins/slider-revolution/php/facebook
/plugins/slider-revolution/php/flickr
/plugins/slider-revolution/php/instagram
/plugins/slider-revolution/php/twitter
/plugins/slider-revolution/php/twitter/connection
/plugins/slider-revolution/php/vimeo
/plugins/slider-revolution/php/youtube
/plugins/slider-revolution/revolution-addons
/plugins/slider-revolution/revolution-addons/beforeafter
/plugins/slider-revolution/revolution-addons/beforeafter/css
/plugins/slider-revolution/revolution-addons/beforeafter/js
/plugins/slider-revolution/revolution-addons/countdown
/plugins/slider-revolution/revolution-addons/filmstrip
/plugins/slider-revolution/revolution-addons/panorama
/plugins/slider-revolution/revolution-addons/panorama/css
/plugins/slider-revolution/revolution-addons/panorama/js
/plugins/slider-revolution/revolution-addons/particles
/plugins/slider-revolution/revolution-addons/polyfold
/plugins/slider-revolution/revolution-addons/slicey
/plugins/slider-revolution/revolution-addons/snow
/plugins/slider-revolution/revolution-addons/typewriter
/plugins/slider-revolution/revolution-addons/typewriter/css
/plugins/slider-revolution/revolution-addons/typewriter/js
/plugins/slider-revolution/revolution-addons/weather
/plugins/slider-revolution/revolution-addons/whiteboard
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-11-14 09:22

Severity: medium
Fingerprint: 5f32cf5d6962f09c5d6424645d642464daec63542a1f9f04f53a62cd0cd65ddf

Found 79 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/slider-revolution/assets
/plugins/slider-revolution/assets/gridimages
/plugins/slider-revolution/assets/images
/plugins/slider-revolution/assets/svg
/plugins/slider-revolution/assets/videos
/plugins/slider-revolution/css
/plugins/slider-revolution/css/navigation-skins
/plugins/slider-revolution/fonts
/plugins/slider-revolution/images
/plugins/slider-revolution/js
/plugins/slider-revolution/php
/plugins/slider-revolution/revolution-addons
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-11-10 09:36

Severity: medium
Fingerprint: 5f32cf5d6962f09c1e3ea8c61e3ea8c6e815cc9e7772d6aa3d233ceb5f45ee4d

Found 86 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/slider-revolution/assets
/plugins/slider-revolution/assets/gridimages
/plugins/slider-revolution/assets/images
/plugins/slider-revolution/assets/svg
/plugins/slider-revolution/assets/videos
/plugins/slider-revolution/css
/plugins/slider-revolution/css/navigation-skins
/plugins/slider-revolution/fonts
/plugins/slider-revolution/images
/plugins/slider-revolution/js
/plugins/slider-revolution/php
/plugins/slider-revolution/php/facebook
/plugins/slider-revolution/php/flickr
/plugins/slider-revolution/php/instagram
/plugins/slider-revolution/php/twitter
/plugins/slider-revolution/php/twitter/connection
/plugins/slider-revolution/php/vimeo
/plugins/slider-revolution/php/youtube
/plugins/slider-revolution/revolution-addons
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-10-25 10:48

Severity: medium
Fingerprint: 5f32cf5d6962f09ca29b58f1a29b58f11d3cc0710a9c6b4df062036638104097

Found 78 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/slider-revolution/assets
/plugins/slider-revolution/assets/gridimages
/plugins/slider-revolution/assets/images
/plugins/slider-revolution/assets/svg
/plugins/slider-revolution/assets/videos
/plugins/slider-revolution/css
/plugins/slider-revolution/fonts
/plugins/slider-revolution/images
/plugins/slider-revolution/js
/plugins/slider-revolution/php
/plugins/slider-revolution/revolution-addons
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-10-13 13:14

Severity: medium
Fingerprint: 5f32cf5d6962f09cac85b122ac85b122e8c13ae23da763464aaff5cfe695db38

Found 99 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/slider-revolution/assets
/plugins/slider-revolution/assets/gridimages
/plugins/slider-revolution/assets/images
/plugins/slider-revolution/assets/svg
/plugins/slider-revolution/assets/videos
/plugins/slider-revolution/css
/plugins/slider-revolution/css/navigation-skins
/plugins/slider-revolution/fonts
/plugins/slider-revolution/images
/plugins/slider-revolution/js
/plugins/slider-revolution/php
/plugins/slider-revolution/php/facebook
/plugins/slider-revolution/php/flickr
/plugins/slider-revolution/php/instagram
/plugins/slider-revolution/php/twitter
/plugins/slider-revolution/php/twitter/connection
/plugins/slider-revolution/php/vimeo
/plugins/slider-revolution/php/youtube
/plugins/slider-revolution/revolution-addons
/plugins/slider-revolution/revolution-addons/beforeafter
/plugins/slider-revolution/revolution-addons/beforeafter/css
/plugins/slider-revolution/revolution-addons/beforeafter/js
/plugins/slider-revolution/revolution-addons/countdown
/plugins/slider-revolution/revolution-addons/filmstrip
/plugins/slider-revolution/revolution-addons/panorama
/plugins/slider-revolution/revolution-addons/particles
/plugins/slider-revolution/revolution-addons/polyfold
/plugins/slider-revolution/revolution-addons/slicey
/plugins/slider-revolution/revolution-addons/snow
/plugins/slider-revolution/revolution-addons/typewriter
/plugins/slider-revolution/revolution-addons/weather
/plugins/slider-revolution/revolution-addons/whiteboard
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-10-06 22:24

Severity: medium
Fingerprint: 5f32cf5d6962f09cfb7dc6fdfb7dc6fd29e23b4515002dd9f92d50aac981b593

Found 74 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/slider-revolution/assets
/plugins/slider-revolution/css
/plugins/slider-revolution/fonts
/plugins/slider-revolution/images
/plugins/slider-revolution/js
/plugins/slider-revolution/php
/plugins/slider-revolution/revolution-addons
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-09-19 07:42

Severity: medium
Fingerprint: 5f32cf5d6962f09c9ff0dc619ff0dc61f3217221f5387c9dd9e23b364cbf08f1

Found 85 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/slider-revolution/assets
/plugins/slider-revolution/assets/gridimages
/plugins/slider-revolution/assets/images
/plugins/slider-revolution/assets/svg
/plugins/slider-revolution/assets/videos
/plugins/slider-revolution/css
/plugins/slider-revolution/css/navigation-skins
/plugins/slider-revolution/fonts
/plugins/slider-revolution/images
/plugins/slider-revolution/js
/plugins/slider-revolution/php
/plugins/slider-revolution/php/facebook
/plugins/slider-revolution/php/flickr
/plugins/slider-revolution/php/instagram
/plugins/slider-revolution/php/twitter
/plugins/slider-revolution/php/vimeo
/plugins/slider-revolution/php/youtube
/plugins/slider-revolution/revolution-addons
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-09-11 19:33

Severity: medium
Fingerprint: 5f32cf5d6962f09cf118c228f118c228f1a47d70f8e19ec863eef659daa2ad1c

Found 101 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/slider-revolution/assets
/plugins/slider-revolution/assets/gridimages
/plugins/slider-revolution/assets/images
/plugins/slider-revolution/assets/svg
/plugins/slider-revolution/assets/videos
/plugins/slider-revolution/css
/plugins/slider-revolution/css/navigation-skins
/plugins/slider-revolution/fonts
/plugins/slider-revolution/images
/plugins/slider-revolution/js
/plugins/slider-revolution/php
/plugins/slider-revolution/php/facebook
/plugins/slider-revolution/php/flickr
/plugins/slider-revolution/php/instagram
/plugins/slider-revolution/php/twitter
/plugins/slider-revolution/php/twitter/connection
/plugins/slider-revolution/php/vimeo
/plugins/slider-revolution/php/youtube
/plugins/slider-revolution/revolution-addons
/plugins/slider-revolution/revolution-addons/beforeafter
/plugins/slider-revolution/revolution-addons/beforeafter/css
/plugins/slider-revolution/revolution-addons/beforeafter/js
/plugins/slider-revolution/revolution-addons/countdown
/plugins/slider-revolution/revolution-addons/filmstrip
/plugins/slider-revolution/revolution-addons/panorama
/plugins/slider-revolution/revolution-addons/panorama/css
/plugins/slider-revolution/revolution-addons/panorama/js
/plugins/slider-revolution/revolution-addons/particles
/plugins/slider-revolution/revolution-addons/polyfold
/plugins/slider-revolution/revolution-addons/slicey
/plugins/slider-revolution/revolution-addons/snow
/plugins/slider-revolution/revolution-addons/typewriter
/plugins/slider-revolution/revolution-addons/weather
/plugins/slider-revolution/revolution-addons/whiteboard
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-08-25 05:21

Severity: medium
Fingerprint: 5f32cf5d6962f09c9be405db9be405db3f131cbb6ab6830b6ee77c7c63f674ff

Found 111 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/slider-revolution/assets
/plugins/slider-revolution/assets/gridimages
/plugins/slider-revolution/assets/images
/plugins/slider-revolution/assets/svg
/plugins/slider-revolution/assets/videos
/plugins/slider-revolution/css
/plugins/slider-revolution/css/navigation-skins
/plugins/slider-revolution/fonts
/plugins/slider-revolution/images
/plugins/slider-revolution/js
/plugins/slider-revolution/php
/plugins/slider-revolution/php/facebook
/plugins/slider-revolution/php/flickr
/plugins/slider-revolution/php/instagram
/plugins/slider-revolution/php/twitter
/plugins/slider-revolution/php/twitter/connection
/plugins/slider-revolution/php/vimeo
/plugins/slider-revolution/php/youtube
/plugins/slider-revolution/revolution-addons
/plugins/slider-revolution/revolution-addons/beforeafter
/plugins/slider-revolution/revolution-addons/beforeafter/css
/plugins/slider-revolution/revolution-addons/beforeafter/js
/plugins/slider-revolution/revolution-addons/countdown
/plugins/slider-revolution/revolution-addons/filmstrip
/plugins/slider-revolution/revolution-addons/panorama
/plugins/slider-revolution/revolution-addons/panorama/css
/plugins/slider-revolution/revolution-addons/panorama/js
/plugins/slider-revolution/revolution-addons/particles
/plugins/slider-revolution/revolution-addons/polyfold
/plugins/slider-revolution/revolution-addons/slicey
/plugins/slider-revolution/revolution-addons/snow
/plugins/slider-revolution/revolution-addons/typewriter
/plugins/slider-revolution/revolution-addons/typewriter/css
/plugins/slider-revolution/revolution-addons/typewriter/js
/plugins/slider-revolution/revolution-addons/weather
/plugins/slider-revolution/revolution-addons/weather/css
/plugins/slider-revolution/revolution-addons/weather/css/fonts
/plugins/slider-revolution/revolution-addons/weather/js
/plugins/slider-revolution/revolution-addons/weather/partials
/plugins/slider-revolution/revolution-addons/whiteboard
/plugins/slider-revolution/revolution-addons/whiteboard/assets
/plugins/slider-revolution/revolution-addons/whiteboard/assets/css
/plugins/slider-revolution/revolution-addons/whiteboard/js
/plugins/slider-revolution/revolution-addons/whiteboard/js/source
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-08-21 06:01

Severity: medium
Fingerprint: 5f32cf5d6962f09c88c2190688c219061d32035ec632256a0d5b542b01ae57be

Found 107 files trough .DS_Store spidering:

/css
/favicon.ico
/images
/images/about
/images/construction
/images/electrical
/images/fireproofing
/images/home
/images/international
/images/logos
/images/logos/dark
/images/logos/default
/images/mechanical
/images/parallax
/js
/plugins
/plugins/amcharts
/plugins/amcharts/geodata
/plugins/amcharts/lang
/plugins/amcharts/plugins
/plugins/amcharts/themes
/plugins/bootstrap-datetimepicker
/plugins/bootstrap-switch
/plugins/chartjs
/plugins/clipboard
/plugins/datatables
/plugins/datatables/AutoFill-2.3.3
/plugins/datatables/Buttons-1.5.6
/plugins/datatables/ColReorder-1.5.0
/plugins/datatables/DataTables-1.10.18
/plugins/datatables/exampleData
/plugins/datatables/FixedColumns-3.2.5
/plugins/datatables/FixedHeader-3.1.4
/plugins/datatables/JSZip-2.5.0
/plugins/datatables/KeyTable-2.5.0
/plugins/datatables/pdfmake-0.1.36
/plugins/datatables/Responsive-2.2.2
/plugins/datatables/RowGroup-1.1.0
/plugins/datatables/RowReorder-1.2.4
/plugins/datatables/Scroller-2.0.0
/plugins/datatables/Select-1.3.0
/plugins/daterangepicker
/plugins/dropzone
/plugins/fontawesome
/plugins/fullcalendar
/plugins/fullcalendar/demos
/plugins/fullcalendar/lib
/plugins/fullcalendar/locale
/plugins/gmap3
/plugins/jquery-steps
/plugins/metafizzy
/plugins/moment
/plugins/morrisjs
/plugins/multiscroll
/plugins/pageloader
/plugins/particles
/plugins/popper
/plugins/range-slider
/plugins/rateit
/plugins/retinajs
/plugins/slider-revolution
/plugins/slider-revolution/assets
/plugins/slider-revolution/assets/gridimages
/plugins/slider-revolution/assets/images
/plugins/slider-revolution/assets/svg
/plugins/slider-revolution/assets/videos
/plugins/slider-revolution/css
/plugins/slider-revolution/css/navigation-skins
/plugins/slider-revolution/fonts
/plugins/slider-revolution/images
/plugins/slider-revolution/js
/plugins/slider-revolution/php
/plugins/slider-revolution/php/facebook
/plugins/slider-revolution/php/flickr
/plugins/slider-revolution/php/instagram
/plugins/slider-revolution/php/twitter
/plugins/slider-revolution/php/twitter/connection
/plugins/slider-revolution/php/vimeo
/plugins/slider-revolution/php/youtube
/plugins/slider-revolution/revolution-addons
/plugins/slider-revolution/revolution-addons/beforeafter
/plugins/slider-revolution/revolution-addons/beforeafter/css
/plugins/slider-revolution/revolution-addons/beforeafter/js
/plugins/slider-revolution/revolution-addons/countdown
/plugins/slider-revolution/revolution-addons/filmstrip
/plugins/slider-revolution/revolution-addons/panorama
/plugins/slider-revolution/revolution-addons/panorama/css
/plugins/slider-revolution/revolution-addons/panorama/js
/plugins/slider-revolution/revolution-addons/particles
/plugins/slider-revolution/revolution-addons/polyfold
/plugins/slider-revolution/revolution-addons/slicey
/plugins/slider-revolution/revolution-addons/snow
/plugins/slider-revolution/revolution-addons/typewriter
/plugins/slider-revolution/revolution-addons/typewriter/css
/plugins/slider-revolution/revolution-addons/typewriter/js
/plugins/slider-revolution/revolution-addons/weather
/plugins/slider-revolution/revolution-addons/weather/css
/plugins/slider-revolution/revolution-addons/weather/css/fonts
/plugins/slider-revolution/revolution-addons/weather/js
/plugins/slider-revolution/revolution-addons/weather/partials
/plugins/slider-revolution/revolution-addons/whiteboard
/plugins/validate
/plugins/vegas
/plugins/vimeo-player
/plugins/youtube-player
/scss
/webfonts

Found on 2025-02-16 11:45

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: preprod-api.prescient-ai.io
Port: 80
URL: http://preprod-api.prescient-ai.io

First seen 2025-11-07 00:46
Last seen 2026-01-02 11:49
Open for 56 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa35466a4370e7cb9a5a333c963d1a9bd8bd1a9bd8b
```
GraphQL introspection enabled at /graphql
Types: 23 (by kind: ENUM: 4, OBJECT: 13, SCALAR: 6)
Operations:
- Query: Query | fields: channelNames, modeledMetricTimeSeries, modeledMetrics, models
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 11:49
  
  31.8 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api-dev.devoutsourcing.com
Port: 443
URL: https://api-dev.devoutsourcing.com

First seen 2025-11-14 02:22
Last seen 2026-01-02 11:42
Open for 49 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b01c8f669f2235167c1ada53a56c4489a58a2d3d

GraphQL introspection enabled at /graphql
Types: 124 (by kind: ENUM: 3, INPUT_OBJECT: 22, OBJECT: 89, SCALAR: 9, UNION: 1)
Operations:
- Query: Query | fields: authors, authors_aggregated, authors_by_id, authors_by_version, blocks_templates
- Mutation: Mutation | fields: create_quiz_vizits_item, create_quiz_vizits_items, update_quiz_vizits_batch, update_quiz_vizits_item, update_quiz_vizits_items
- Subscription: Subscription | fields: authors_mutated, blocks_templates_mutated, companies_companies_tags_mutated, companies_mutated, companies_tags_mutated
Directives: deprecated, include, skip (total: 3)

Readable stores: 0

Found on 2026-01-02 11:42

240.4 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 15.197.149.68
Domain: api.uat.pathfinder.dfhcc.org
Port: 443
URL: https://api.uat.pathfinder.dfhcc.org

First seen 2025-10-18 00:07
Last seen 2026-01-02 10:59
Open for 76 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 10:59
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3d72a48ac550906b0a79bc61d8a86000b404e298b
```
GraphQL introspection enabled at /graphql
Types: 206 (by kind: ENUM: 37, INPUT_OBJECT: 43, INTERFACE: 23, OBJECT: 89, SCALAR: 10, UNION: 4)
Operations:
- Query: Query | fields: audiences, domains, event, events, feed
- Mutation: Mutation | fields: activateOpportunity, activateRecord, archiveOpportunity, archiveRecord, createEvent
Directives: deprecated, include, skip (total: 3)
```
  Found on 2025-12-20 20:38
  
  340.6 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 76.223.57.73
Domain: www.homeaglowstaging.com
Port: 80
URL: http://www.homeaglowstaging.com

First seen 2025-11-23 02:41
Last seen 2026-01-02 10:41
Open for 40 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
Found on 2026-01-02 10:41

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d662107f92ab4ca962533192ac6cd5c1c3e264300f

GraphQL introspection enabled at /api/graphql
Types: 425 (by kind: ENUM: 61, INPUT_OBJECT: 102, INTERFACE: 4, OBJECT: 237, SCALAR: 9, UNION: 12)
Operations:
- Query: Query | fields: categoryQueues, terms, ticket, ticketCategories, tickets
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Found on 2025-12-26 16:29

484.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b9da2b9a5

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nearbyCities=[Los Angeles, CA Austin, TX New York, NY Chicago, IL] accuracyRadius=100

Found on 2025-12-01 19:50

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b8418d169

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : accuracyRadius=20 nearbyZipcode=07014 nearbyState=NJ nearbyCities=[Clifton, NJ New York, NY Brooklyn, NY Newark, NJ] nearbyRecentJobs=9 memberHourlyRate=19 nonmemberHourlyRate=49

Found on 2025-11-29 10:38

433.2 kBytes 7 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b90437092

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : accuracyRadius=20 nearbyCities=[Central Park, WA Lindsay, CA Glenwood, NY Duncannon, PA]

Found on 2025-11-27 21:15

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439bd95f2ecc

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : accuracyRadius=20 nearbyCities=[Central Park, WA Lindsay, CA Duncannon, PA Glenwood, NY]

Found on 2025-11-27 21:15

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b7a52adfa

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nearbyCities=[Central Park, WA Lindsay, CA Glenwood, NY Vinita, OK] accuracyRadius=20

Found on 2025-11-27 21:15

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b787501d1

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : accuracyRadius=1000 nearbyCities=[Los Angeles, CA Austin, TX New York, NY Chicago, IL]

Found on 2025-11-27 21:15

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b6f6d2120

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nearbyCities=[Youngstown, NY Los Angeles, CA Austin, TX New York, NY] accuracyRadius=1000

Found on 2025-11-24 10:11

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b7cf993a3

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nearbyCities=[Central Park, WA Lindsay, CA Vinita, OK Duncannon, PA] accuracyRadius=20

Found on 2025-11-23 02:41

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439bf4b3d47e

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nearbyCities=[Central Park, WA Lindsay, CA Glenwood, NY Duncannon, PA] accuracyRadius=20

Found on 2025-11-23 02:41

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b54edc9ce

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : accuracyRadius=20 nearbyCities=[Lindsay, CA Central Park, WA Vinita, OK]

Found on 2025-11-23 02:41

433.2 kBytes 2 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: custom-ecommerce.gemnote.com
Port: 443
URL: https://custom-ecommerce.gemnote.com

First seen 2025-05-31 00:15
Last seen 2026-01-02 10:39
Open for 216 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf176422b63f4825bdb4d635bdb4d635bdb4d63
```
Found 2 files trough .DS_Store spidering:

/css
/images
```
  Found on 2026-01-02 10:39
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: wiki.campfirestreamteam.com
Port: 443
URL: https://wiki.campfirestreamteam.com

First seen 2025-12-05 01:17
Last seen 2026-01-02 10:26
Open for 28 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3dec863f59258a9f72eacd4d9eb5bbc5a957af4f2

GraphQL introspection enabled at /graphql
Types: 134 (by kind: ENUM: 10, INPUT_OBJECT: 12, OBJECT: 107, SCALAR: 5)
Operations:
- Query: Query | fields: analytics, assets, authentication, comments, contribute
- Mutation: Mutation | fields: analytics, assets, authentication, comments, groups
- Subscription: Subscription | fields: loggingLiveTrail
Directives: auth, cacheControl, deprecated, include, rateLimit, skip, specifiedBy (total: 7)

Found on 2026-01-02 10:26

190.9 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.craft-a-lotta.com
Port: 443
URL: https://app.craft-a-lotta.com

First seen 2025-06-20 16:49
Last seen 2026-01-02 10:21
Open for 195 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 10:21
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: invdb-backend.protocol.ooo
Port: 443
URL: https://invdb-backend.protocol.ooo

First seen 2025-11-13 02:43
Last seen 2026-01-02 10:01
Open for 50 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa38450f3c761a3fdf5398964582ffdd332698bc5ce
```
GraphQL introspection enabled at /graphql
Types: 131 (by kind: ENUM: 23, INPUT_OBJECT: 39, OBJECT: 62, SCALAR: 7)
Operations:
- Query: Query | fields: angel, angels, article, articles, attackLists
- Mutation: Mutation | fields: addAngelLists, addCommentToAngel, addCommentToCorporateInvestor, addCorporateInvestorLists, addMemberInvitation
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 10:01
  
  150.5 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.redadhd.com
Port: 443
URL: https://www.redadhd.com

First seen 2025-09-19 08:25
Last seen 2026-01-02 09:56
Open for 105 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 09:56
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 76.223.57.73
Domain: api.offerwand.com
Port: 80
URL: http://api.offerwand.com

First seen 2025-11-05 23:29
Last seen 2026-01-02 09:54
Open for 57 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3cab849389da5f0dc586c729ae4c3c7d2ab02d19d

GraphQL introspection enabled at /graphql
Types: 43 (by kind: ENUM: 8, INPUT_OBJECT: 1, OBJECT: 28, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, subscriptions, vacancyGet
- Mutation: Mutation | fields: analyticsTrackEvent, attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 09:54

42.3 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c7528c09c653a72baf028ddbe1811bf7d64ea2a4

GraphQL introspection enabled at /graphql
Types: 39 (by kind: ENUM: 6, INPUT_OBJECT: 1, OBJECT: 26, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, subscriptions, vacancyGet
- Mutation: Mutation | fields: analyticsTrackEvent, attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-19 06:43

39.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa357efd19da5abb2ffec1569385dbb30bce1ec46f3

GraphQL introspection enabled at /graphql
Types: 38 (by kind: ENUM: 6, INPUT_OBJECT: 1, OBJECT: 25, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: analyticsTrackEvent, attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-05 01:29

37.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d79daa648753ed68ab214a197bf9e839f3b780da

GraphQL introspection enabled at /graphql
Types: 41 (by kind: ENUM: 6, INPUT_OBJECT: 2, OBJECT: 27, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: analyticsTrackEvent, attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-01 05:01

39.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa379c438a2a60450f2604f5f8badd195476a3e8294

GraphQL introspection enabled at /graphql
Types: 42 (by kind: ENUM: 6, INPUT_OBJECT: 2, OBJECT: 28, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: analyticsTrackEvent, attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-20 18:54

40.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31bdf9d043fdae148e64f9bf98bb762b84c6a513f

GraphQL introspection enabled at /graphql
Types: 40 (by kind: ENUM: 6, INPUT_OBJECT: 1, OBJECT: 27, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout, authOnboardingComplete
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-16 10:06

38.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c7528c09c653a72ba0a5a3446ca1d43382616db0

GraphQL introspection enabled at /graphql
Types: 39 (by kind: ENUM: 6, INPUT_OBJECT: 1, OBJECT: 26, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout, authOnboardingComplete
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-12 06:05

38.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ce4c006eca60409e72b7d197dce99382d8219dad

GraphQL introspection enabled at /graphql
Types: 40 (by kind: ENUM: 7, INPUT_OBJECT: 1, OBJECT: 26, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout, authOnboardingComplete
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-10 06:53

38.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa357efd19da5abb2ffec15693880e1f92711c996b4

GraphQL introspection enabled at /graphql
Types: 38 (by kind: ENUM: 6, INPUT_OBJECT: 1, OBJECT: 25, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout, authOnboardingComplete
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-08 03:43

36.9 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 15.197.149.68
Domain: api.offerwand.com
Port: 443
URL: https://api.offerwand.com

First seen 2025-11-05 23:29
Last seen 2026-01-02 09:54
Open for 57 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3cab849389da5f0dc586c729ae4c3c7d2ab02d19d

GraphQL introspection enabled at /graphql
Types: 43 (by kind: ENUM: 8, INPUT_OBJECT: 1, OBJECT: 28, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, subscriptions, vacancyGet
- Mutation: Mutation | fields: analyticsTrackEvent, attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 09:54

42.3 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c7528c09c653a72baf028ddbe1811bf7d64ea2a4

GraphQL introspection enabled at /graphql
Types: 39 (by kind: ENUM: 6, INPUT_OBJECT: 1, OBJECT: 26, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, subscriptions, vacancyGet
- Mutation: Mutation | fields: analyticsTrackEvent, attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-19 06:43

39.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa357efd19da5abb2ffec1569385dbb30bce1ec46f3

GraphQL introspection enabled at /graphql
Types: 38 (by kind: ENUM: 6, INPUT_OBJECT: 1, OBJECT: 25, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: analyticsTrackEvent, attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-05 01:29

37.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3d79daa648753ed68ab214a197bf9e839f3b780da

GraphQL introspection enabled at /graphql
Types: 41 (by kind: ENUM: 6, INPUT_OBJECT: 2, OBJECT: 27, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: analyticsTrackEvent, attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-01 05:01

39.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa379c438a2a60450f2604f5f8badd195476a3e8294

GraphQL introspection enabled at /graphql
Types: 42 (by kind: ENUM: 6, INPUT_OBJECT: 2, OBJECT: 28, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: analyticsTrackEvent, attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-20 18:54

40.2 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31bdf9d043fdae148e64f9bf98bb762b84c6a513f

GraphQL introspection enabled at /graphql
Types: 40 (by kind: ENUM: 6, INPUT_OBJECT: 1, OBJECT: 27, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout, authOnboardingComplete
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-16 10:06

38.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c7528c09c653a72ba0a5a3446ca1d43382616db0

GraphQL introspection enabled at /graphql
Types: 39 (by kind: ENUM: 6, INPUT_OBJECT: 1, OBJECT: 26, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout, authOnboardingComplete
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-12 06:05

38.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ce4c006eca60409e72b7d197dce99382d8219dad

GraphQL introspection enabled at /graphql
Types: 40 (by kind: ENUM: 7, INPUT_OBJECT: 1, OBJECT: 26, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout, authOnboardingComplete
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-10 06:53

38.6 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa357efd19da5abb2ffec15693880e1f92711c996b4

GraphQL introspection enabled at /graphql
Types: 38 (by kind: ENUM: 6, INPUT_OBJECT: 1, OBJECT: 25, SCALAR: 6)
Operations:
- Query: Query | fields: attachmentGet, authMe, profileGetResume, vacancyGet, vacancyList
- Mutation: Mutation | fields: attachmentUploadInitiate, authEmailInitiate, authEmailVerify, authLogout, authOnboardingComplete
- Subscription: Subscription | fields: countdown
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-08 03:43

36.9 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: appintelai.com
Port: 80
URL: http://appintelai.com

First seen 2025-01-10 03:18
Last seen 2026-01-02 09:27
Open for 357 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f628630a751367c76d24505b0d24505b0
```
Found 3 files trough .DS_Store spidering:

/js
/qr-codes
/Resources
```
  Found on 2026-01-02 09:27
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642f37146e065d1808f65d1808f65d1808f
```
Found 2 files trough .DS_Store spidering:

/js
/qr-codes
```
  Found on 2025-10-20 06:34
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: lavorly.com
Port: 443
URL: https://lavorly.com

First seen 2025-03-07 13:26
Last seen 2026-01-02 09:19
Open for 300 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 09:19
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-28 16:47
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.248.213.92
Domain: ahead.activate360.io
Port: 443
URL: https://ahead.activate360.io

First seen 2025-10-21 16:18
Last seen 2026-01-02 08:59
Open for 72 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
Found on 2026-01-02 08:59

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6abda15b2f09c8c42adce4c635f6f9bf93d73636d

GraphQL introspection enabled at /api/graphql
Types: 3897 (by kind: ENUM: 18, INPUT_OBJECT: 1418, OBJECT: 2452, SCALAR: 8, UNION: 1)
Operations:
- Query: Query | fields: WelcomeWallAwardsModuleMedia, WelcomeWallLogoModuleMedia, WelcomeWallLogoModuleMedias, countWelcomeWallLogoModuleMedias, docAccessWelcomeWallLogoModuleMedia
- Mutation: Mutation | fields: createWelcomeWallAwardsModuleMedia, createWelcomeWallLogoModuleMedia, deleteWelcomeWallLogoModuleMedia, updateWelcomeWallAwardsModuleMedia, updateWelcomeWallLogoModuleMedia
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2025-12-01 15:36

3.3 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.248.213.92
Domain: carloscalderonreyes.engineer
Port: 443
URL: https://carloscalderonreyes.engineer

First seen 2025-12-05 11:21
Last seen 2026-01-02 08:57
Open for 27 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce9486ee3e2055

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : name=Carlos Calderon Reyes initials=CC location=Bogotá, Colombia locationLink=https://www.google.com/maps/place/bogota about=Ingeniero de Datos y Desarrollador Python enfocado en solucio... summary=Ingeniero de Datos con amplia experiencia en el diseño y opt... avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4 personalWebsiteUrl=

Found on 2026-01-02 08:57

25.2 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce94860dc1b7d1

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : about=Ingeniero de Datos y Desarrollador Python enfocado en solucio... summary=Ingeniero de Datos con amplia experiencia en el diseño y opt... avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4 personalWebsiteUrl= name=Carlos Calderon Reyes initials=CC location=Bogotá, Colombia locationLink=https://www.google.com/maps/place/bogota

Found on 2025-12-27 02:45

25.2 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce9486f06d20d7

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : summary=Ingeniero de Datos con amplia experiencia en el diseño y opt... avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4 personalWebsiteUrl= name=Carlos Calderon Reyes initials=CC location=Bogotá, Colombia locationLink=https://www.google.com/maps/place/bogota about=Ingeniero de Datos y Desarrollador Python enfocado en solucio...

Found on 2025-12-24 21:12

25.2 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce94863edcb2a9

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : initials=CC location=Bogotá, Colombia locationLink=https://www.google.com/maps/place/bogota about=Ingeniero de Datos y Desarrollador Python enfocado en solucio... summary=Ingeniero de Datos con amplia experiencia en el diseño y opt... avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4 personalWebsiteUrl= name=Carlos Calderon Reyes

Found on 2025-12-19 04:25

25.2 kBytes 8 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3685e5cd824cba73cd99e588c19ce9486fcf1ea6b

GraphQL introspection enabled at /graphql
Types: 18 (by kind: ENUM: 2, OBJECT: 14, SCALAR: 2)
Operations:
- Query: Query | fields: me
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
me (args: none) : locationLink=https://www.google.com/maps/place/bogota about=Ingeniero de Datos y Desarrollador Python enfocado en solucio... summary=Ingeniero de Datos con amplia experiencia en el diseño y opt... avatarUrl=https://avatars.githubusercontent.com/u/25339238?v=4 personalWebsiteUrl= name=Carlos Calderon Reyes initials=CC location=Bogotá, Colombia

Found on 2025-12-10 19:37

25.2 kBytes 8 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: shopify-papi.golo.com
Port: 80
URL: http://shopify-papi.golo.com

First seen 2025-12-13 00:01
Last seen 2026-01-02 08:54
Open for 20 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3c08d6242153a8e525bcfb8b34e57377890cc1eea

GraphQL introspection enabled at /graphql
Types: 103 (by kind: ENUM: 13, INPUT_OBJECT: 24, INTERFACE: 1, OBJECT: 56, SCALAR: 9)
Operations:
- Query: Query | fields: behavioralQuiz, behavioralQuizCategories, behavioralQuizQuestions, files, filesShopify
- Mutation: Mutation | fields: activateUser, createBehavioralQuiz, createFileShopify, createHealthAssessment, createUser
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-02 08:54

123.9 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.countylocal.ca
Port: 443
URL: https://www.countylocal.ca

First seen 2025-08-14 21:48
Last seen 2026-01-02 08:49
Open for 140 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 08:49
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.appintelai.com
Port: 443
URL: https://www.appintelai.com

First seen 2025-03-13 01:29
Last seen 2026-01-02 08:09
Open for 295 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f628630a751367c76d24505b0d24505b0
```
Found 3 files trough .DS_Store spidering:

/js
/qr-codes
/Resources
```
  Found on 2026-01-02 08:09
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642f37146e065d1808f65d1808f65d1808f
```
Found 2 files trough .DS_Store spidering:

/js
/qr-codes
```
  Found on 2025-10-19 12:17
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: itsourhub.com
Port: 443
URL: https://itsourhub.com

First seen 2024-12-28 03:09
Last seen 2026-01-02 07:57
Open for 370 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 07:57
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-28 12:32
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: aviation.triangleservices.com
Port: 80
URL: http://aviation.triangleservices.com

First seen 2025-11-24 16:29
Last seen 2026-01-02 06:44
Open for 38 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc5e6c7c680a89b7f9a70e0b7ee0dcc142
```
Found 4 files trough .DS_Store spidering:

/flags
/images
/packs
/reports
```
  Found on 2026-01-02 06:44
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.baby-mint.com
Port: 443
URL: https://app.baby-mint.com

First seen 2025-04-12 18:27
Last seen 2026-01-02 06:27
Open for 264 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 06:27
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-29 00:27
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: barkly.lt
Port: 443
URL: https://barkly.lt

First seen 2025-09-06 00:13
Last seen 2026-01-02 06:01
Open for 118 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 06:01
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: abbott-labs-staging.telegeography.com
Port: 443
URL: https://abbott-labs-staging.telegeography.com

First seen 2025-12-05 12:36
Last seen 2026-01-02 06:01
Open for 27 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2026-01-02 06:01
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.highestgood.app
Port: 443
URL: https://api.highestgood.app

First seen 2025-11-10 22:57
Last seen 2026-01-02 05:26
Open for 52 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-02 05:26

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3847217f423ed84f805da6cdc679f8122e0ce8ea0

GraphQL introspection enabled at /graphql
Types: 95 (by kind: ENUM: 9, INPUT_OBJECT: 18, INTERFACE: 1, OBJECT: 58, SCALAR: 9)
Operations:
- Query: Query | fields: journalEntry, journeyEntries, me, meditationSessions, node
- Mutation: Mutation | fields: emailSignupCreate, oauthLogin, userLogin, userLogout, waitingListJoin
- Subscription: Subscription | fields: newMeditationSession, notifications
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2025-12-26 11:14

103.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3fe71baa63d5d7ad6759ea11af30df47cd89f88ea

GraphQL introspection enabled at /graphql
Types: 92 (by kind: ENUM: 8, INPUT_OBJECT: 17, INTERFACE: 1, OBJECT: 57, SCALAR: 9)
Operations:
- Query: Query | fields: journalEntry, journeyEntries, me, meditationSessions, node
- Mutation: Mutation | fields: emailSignupCreate, oauthLogin, userCreate, userLogin, userLogout
- Subscription: Subscription | fields: newMeditationSession, notifications
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2025-11-16 22:28

98.8 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa399530acb03ec224977030f8346f043377f10558f

GraphQL introspection enabled at /graphql
Types: 77 (by kind: ENUM: 6, INPUT_OBJECT: 14, INTERFACE: 1, OBJECT: 48, SCALAR: 8)
Operations:
- Query: Query | fields: journalEntry, journeyEntries, me, meditationSessions, node
- Mutation: Mutation | fields: emailSignupCreate, oauthLogin, userCreate, userLogin, userLogout
- Subscription: Subscription | fields: newMeditationSession, notifications
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2025-11-12 21:48

82.8 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: propigskinpool.net
Port: 443
URL: https://propigskinpool.net

First seen 2025-09-13 01:34
Last seen 2026-01-02 05:15
Open for 111 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d325beceb325beceb325beceb325beceb
```
Found 1 files trough .DS_Store spidering:

/assets
```
  Found on 2026-01-02 05:15
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.hemlane.com
Port: 443
URL: https://api.hemlane.com

First seen 2025-11-30 01:12
Last seen 2026-01-02 05:11
Open for 33 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 05:11
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.findmyyard.com
Port: 443
URL: https://app.findmyyard.com

First seen 2025-03-14 19:34
Last seen 2026-01-02 05:05
Open for 293 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 05:05
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-28 04:24
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.lalatampa.com
Port: 443
URL: https://api.lalatampa.com

First seen 2025-10-17 00:11
Last seen 2026-01-02 04:46
Open for 77 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa38a2bcde1af554b23e9e42d04eb3ada16136c095a
```
GraphQL introspection enabled at /graphql
Types: 74 (by kind: ENUM: 12, INPUT_OBJECT: 22, OBJECT: 33, SCALAR: 7)
Operations:
- Query: Query | fields: admin, admins, extras, room, rooms
- Mutation: Mutation | fields: adminCreate, adminDelete, adminUpdate, login, logout
Directives: admin, cacheControl, deprecated, include, skip, specifiedBy (total: 6)
```
  Found on 2026-01-02 04:46
  
  93.9 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: tailfig.com
Port: 443
URL: https://tailfig.com

First seen 2025-02-17 19:37
Last seen 2026-01-02 04:41
Open for 318 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c7cf176427cf17642f59365a35b3b376e5b3b376e5b3b376e
```
Found 2 files trough .DS_Store spidering:

/images
/sitemaps
```
  Found on 2026-01-02 04:41
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 13.248.213.92
Domain: strapi.thesacredfig.com
Port: 80
URL: http://strapi.thesacredfig.com

First seen 2025-11-07 01:26
Last seen 2026-01-02 04:30
Open for 56 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3ab0ef54bfc3445c9303cb2d64c2ff7fe56d72a0e
```
GraphQL introspection enabled at /graphql
Types: 676 (by kind: ENUM: 9, INPUT_OBJECT: 158, OBJECT: 461, SCALAR: 29, UNION: 19)
Operations:
- Query: Query | fields: about, application, applications, applicationsConnection, blog
- Mutation: Mutation | fields: createApplication, deleteAbout, deleteApplication, updateAbout, updateApplication
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 04:30
  
  587.5 kBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-11-07 01:26
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.zardoz.scarecrowvideo.org
Port: 443
URL: https://api.zardoz.scarecrowvideo.org

First seen 2025-12-10 00:37
Last seen 2026-01-02 04:25
Open for 23 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 04:25
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: checklist.arpcentral.net
Port: 443
URL: https://checklist.arpcentral.net

First seen 2025-10-17 23:31
Last seen 2026-01-02 04:21
Open for 76 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0ff409caf1821195c2af4a670caf4a670c
```
Found 3 files trough .DS_Store spidering:

/assets
/images
/stylesheets
```
  Found on 2026-01-02 04:21
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: salesforce.production.despertaenergia.com
Port: 443
URL: https://salesforce.production.despertaenergia.com

First seen 2025-11-21 00:39
Last seen 2026-01-02 04:14
Open for 42 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa306f94c0fa66e721da4b0cb97715b26de077d970a

GraphQL introspection enabled at /graphql
Types: 577 (by kind: ENUM: 73, INPUT_OBJECT: 232, OBJECT: 264, SCALAR: 7, UNION: 1)
Operations:
- Query: Query | fields: accessControlGet, accessControlList, actionList, affiliatePartnerGetMe, affiliatePartnerGetMyPartner
- Mutation: Mutation | fields: accessControlCreate, accessControlDelete, accessControlUpdate, activateBulkContract, activateContract
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2026-01-02 04:14

690.4 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa312890b0d23e4582fb2147729c278604490c1ee64

GraphQL introspection enabled at /graphql
Types: 576 (by kind: ENUM: 72, INPUT_OBJECT: 232, OBJECT: 264, SCALAR: 7, UNION: 1)
Operations:
- Query: Query | fields: accessControlGet, accessControlList, actionList, affiliatePartnerGetMe, affiliatePartnerGetMyPartner
- Mutation: Mutation | fields: accessControlCreate, accessControlDelete, accessControlUpdate, activateBulkContract, activateContract
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-02 05:05

687.0 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-11-23 09:16

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: salesforce.production.despertaenergia.com
Port: 443
URL: https://salesforce.production.despertaenergia.com

First seen 2025-11-21 00:39
Last seen 2026-01-02 04:14
Open for 42 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-02 04:14
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.manyagents.io
Port: 443
URL: https://api.manyagents.io

First seen 2025-10-24 04:58
Last seen 2026-01-02 04:07
Open for 69 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3617f5ebb2d8ddf397cffa843e1578770117af330
```
GraphQL introspection enabled at /graphql
Types: 33 (by kind: ENUM: 3, INPUT_OBJECT: 5, INTERFACE: 1, OBJECT: 19, SCALAR: 5)
Operations:
- Query: Query | fields: me
- Mutation: Mutation | fields: oauthLogin, userCreate, userForgotPassword, userLogin, userLogout
- Subscription: Subscription | fields: notifications
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-02 04:07
  
  32.4 kBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: dev.workkerapp.com
Port: 443
URL: https://dev.workkerapp.com

First seen 2025-11-11 01:47
Last seen 2026-01-02 03:59
Open for 52 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa382e028af3d6058fd8a011e7341e6c63d67a90415
```
GraphQL introspection enabled at /graphql
Types: 38 (by kind: ENUM: 2, INPUT_OBJECT: 2, OBJECT: 28, SCALAR: 6)
Operations:
- Query: Query | fields: Job, _allJobsMeta, adminOptions, allAdminUsers, allJobs
- Mutation: Mutation | fields: createJob, deleteJob, signinUser, updateDailyOrderTeams, updateJob
Directives: deprecated, include, oneOf, skip (total: 4)
```
  Found on 2026-01-02 03:59
  
  40.4 kBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-12-01 13:05
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: staging-api.reviewpoint.com
Port: 443
URL: https://staging-api.reviewpoint.com

First seen 2025-11-22 00:24
Last seen 2026-01-02 03:39
Open for 41 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
  Found on 2026-01-02 03:39
- Severity: medium
  Fingerprint: c2db3a1c40d490db2337d3d6fcfaa9d3abc5ae913fd06a497772ba2eaa5da338
```
GraphQL introspection enabled at /api/graphql
Types: 1509 (by kind: ENUM: 10, INPUT_OBJECT: 1427, OBJECT: 65, SCALAR: 7)
Operations:
- Query: Query | fields: companyContacts, companyContactsCount, contact, contactByEmail, contactByPhoneNumber
- Mutation: Mutation | fields: changePassword, deleteOneContact, requestPasswordReset, resetPassword, updateOneOffCampaignContact
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2025-11-30 14:19
  
  2.4 MBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: app.camaron.pro
Port: 443
URL: https://app.camaron.pro

First seen 2025-11-11 01:26
Last seen 2026-01-02 03:06
Open for 52 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3efd0ef8760603035140947d12a139ed0a49b1288
```
GraphQL introspection enabled at /graphql
Types: 69 (by kind: ENUM: 2, OBJECT: 59, SCALAR: 8)
Operations:
- Query: Query | fields: aguajes, barges, comments, farm, mobileFarm
- Mutation: Mutation | fields: addComment, changeRunType, createFeedType, createMeasurement, createScheduledHarvest
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-02 03:06
  
  112.8 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: stayfairway.com
Port: 443
URL: https://stayfairway.com

First seen 2025-09-16 16:47
Last seen 2026-01-02 02:55
Open for 107 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2026-01-02 02:55
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: ai.stitch.cx
Port: 80
URL: http://ai.stitch.cx

First seen 2025-05-28 18:11
Last seen 2026-01-02 02:53
Open for 218 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3c1fc5e93c1fc5e975a091b79ee2280816b3a5597741436b
```
Found 5 files trough .DS_Store spidering:

/assets
/audio
/pyodide
/static
/themes
```
  Found on 2026-01-02 02:53
- Severity: low
  Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d86bfb45c823b2a453f6afde7e4ac2bf6a
```
Found 8 files trough .DS_Store spidering:

/assets
/audio
/pyodide
/static
/static/assets
/static/fonts
/static/swagger-ui
/themes
```
  Found on 2025-08-05 05:45
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: saleor.services.qa.dotmall.jp
Port: 443
URL: https://saleor.services.qa.dotmall.jp

First seen 2025-11-24 00:46
Last seen 2026-01-02 02:32
Open for 39 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2026-01-02 02:32
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3606faf5747346c85124df520e240f560033d9b47
```
GraphQL introspection enabled at /graphql
Types: 740 (by kind: ENUM: 115, INPUT_OBJECT: 119, INTERFACE: 4, OBJECT: 477, SCALAR: 17, UNION: 8)
Operations:
- Query: Query | fields: supplies, supply, supplyLine, supplyLineWithdrawApplications, supplyLines
- Mutation: Mutation | fields: supplyCreate, supplyLineComplete, supplyLineUpdateByMall, supplyLineUpdateByShop, supplyLineWithdrawApplicationCreate
- Subscription: Subscription | fields: event
Directives: deprecated, doc, include, skip (total: 4)
```
  Found on 2025-11-27 06:47
  
  1.4 MBytes
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: ru.bossaz-pr-1275.azstage.in
Port: 80
URL: http://ru.bossaz-pr-1275.azstage.in

First seen 2025-12-11 09:46
Last seen 2026-01-02 02:29
Open for 21 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182
```
GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-02 02:29
  
  140.1 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 54.209.91.188
Domain: store-api.saragabriel.com
Port: 443
URL: https://store-api.saragabriel.com

First seen 2025-10-17 07:55
Last seen 2026-01-02 02:11
Open for 76 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a685e71e0

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.76731988256e+12

Found on 2026-01-02 02:11

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a17aef9fa

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.76707261374e+12

Found on 2025-12-30 05:30

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ae62c3958

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.76680160202e+12

Found on 2025-12-27 02:13

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a5817c133

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.766756984609e+12

Found on 2025-12-26 13:49

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ac31a13da

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.766643644453e+12

Found on 2025-12-25 06:20

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a490920c8

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.766625468716e+12

Found on 2025-12-25 01:17

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a6aa71cc2

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.766466424805e+12

Found on 2025-12-23 05:07

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a18427ca9

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.766450423152e+12

Found on 2025-12-23 00:40

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a1ad98716

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.766306577331e+12

Found on 2025-12-21 08:42

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a961a28ac

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.766286956892e+12

Found on 2025-12-21 03:15

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ad96b9741

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.766134731449e+12

Found on 2025-12-19 08:58

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ac1f6411b

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.76610879162e+12

Found on 2025-12-19 01:46

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a0f9c919e

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.765911130207e+12

Found on 2025-12-16 18:52

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a1c970fe1

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.76586804197e+12

Found on 2025-12-16 06:53

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ae4288677

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.765687126931e+12

Found on 2025-12-14 04:38

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a19949cc6

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.765564334371e+12

Found on 2025-12-12 18:32

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99aee77344b

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.765523449369e+12

Found on 2025-12-12 07:10

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a809af9ad

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.764540719112e+12

Found on 2025-11-30 22:11

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ae221defb

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.764523682484e+12

Found on 2025-11-30 17:27

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a63a6ea71

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.764337531857e+12

Found on 2025-11-28 13:45

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a636ffbab

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.764318634908e+12

Found on 2025-11-28 08:30

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a5a72d15a

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.764166621519e+12

Found on 2025-11-26 14:16

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ab9807990

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.764131232687e+12

Found on 2025-11-26 04:27

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a1f5b082f

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.76390965701e+12

Found on 2025-11-23 14:54

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a576ce008

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.763903202088e+12

Found on 2025-11-23 13:06

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-11-12 19:57

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99afa780454

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762772481987e+12

Found on 2025-11-10 11:00

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a533a00bb

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762641797736e+12

Found on 2025-11-08 22:43

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a876b8e7b

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762587888615e+12

Found on 2025-11-08 07:44

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99af640ad07

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762509489603e+12

Found on 2025-11-07 09:58

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a9b755e52

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762474011783e+12

Found on 2025-11-07 00:06

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99ae5a28aa2

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762474011974e+12

Found on 2025-11-07 00:06

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a6185536e

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762474002453e+12

Found on 2025-11-07 00:06

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99af4467f9d

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762474001886e+12

Found on 2025-11-07 00:06

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a66aa00d7

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762431919098e+12

Found on 2025-11-06 12:25

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a288efa1e

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762190016745e+12

Found on 2025-11-03 17:13

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a83cf27e3

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.762075018919e+12

Found on 2025-11-02 09:16

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a3661555c

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.761735796812e+12

Found on 2025-10-29 11:03

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a158b3150

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.761728831988e+12

Found on 2025-10-29 09:07

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a9d7b8d1d

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.761560290306e+12

Found on 2025-10-27 10:18

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a0c8527e3

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.761554587753e+12

Found on 2025-10-27 08:43

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a8bda49bc

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.761391703728e+12

Found on 2025-10-25 11:28

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3ef0d41f05b2826f4d86d03f619a7a99a706f7e23

GraphQL introspection enabled at /graphql
Types: 568 (by kind: ENUM: 48, INPUT_OBJECT: 209, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.761378946408e+12

Found on 2025-10-25 07:55

494.3 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4e0b24a4349897a878dd130c3827d1853b1808e

GraphQL introspection enabled at /graphql
Types: 567 (by kind: ENUM: 48, INPUT_OBJECT: 208, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.761234871986e+12

Found on 2025-10-23 15:54

493.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4e0b24a4349897a878dd130c3827d18b1a6a0c5

GraphQL introspection enabled at /graphql
Types: 567 (by kind: ENUM: 48, INPUT_OBJECT: 208, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.761221352798e+12

Found on 2025-10-23 12:09

493.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4e0b24a4349897a878dd130c3827d1825b7e5a9

GraphQL introspection enabled at /graphql
Types: 567 (by kind: ENUM: 48, INPUT_OBJECT: 208, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.761047362892e+12

Found on 2025-10-21 11:49

493.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4e0b24a4349897a878dd130c3827d18d8989855

GraphQL introspection enabled at /graphql
Types: 567 (by kind: ENUM: 48, INPUT_OBJECT: 208, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.760944742833e+12

Found on 2025-10-20 07:18

493.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4e0b24a4349897a878dd130c3827d1884063e6b

GraphQL introspection enabled at /graphql
Types: 567 (by kind: ENUM: 48, INPUT_OBJECT: 208, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeHash=si05j28jyo storeReferenceId=1002016435 id=bc/store/store/si05j28jyo
system (args: none) : time=1.760844209551e+12

Found on 2025-10-19 03:23

493.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4e0b24a4349897a878dd130c3827d1847e94714

GraphQL introspection enabled at /graphql
Types: 567 (by kind: ENUM: 48, INPUT_OBJECT: 208, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : id=bc/store/store/si05j28jyo storeHash=si05j28jyo storeReferenceId=1002016435
system (args: none) : time=1.760814246415e+12

Found on 2025-10-18 19:04

493.7 kBytes 5 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3f4e0b24a4349897a878dd130c3827d18b8537e36

GraphQL introspection enabled at /graphql
Types: 567 (by kind: ENUM: 48, INPUT_OBJECT: 208, INTERFACE: 15, OBJECT: 270, SCALAR: 7, UNION: 19)
Operations:
- Query: Query | fields: client, node, nodes, store, system
- Mutation: Mutation | fields: appExtension, channel, product, sharedProductModifiers, sharedProductOptions
Directives: deprecated, include, oneOf, oneOf, skip (total: 5)

Readable stores: 3
client (args: none) : clientId=en1ic64wh70n99s6llpim7wk2wey69o
store (args: none) : storeReferenceId=1002016435 id=bc/store/store/si05j28jyo storeHash=si05j28jyo
system (args: none) : time=1.760687732778e+12

Found on 2025-10-17 07:55

493.7 kBytes 5 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 15.197.149.68
Domain: safespace-production.io12.net
Port: 443
URL: https://safespace-production.io12.net

First seen 2025-11-27 00:27
Last seen 2026-01-02 01:58
Open for 36 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa381952ab1e94717b37060a4b0a00b61e516a3a03d

GraphQL introspection enabled at /graphql
Types: 31 (by kind: ENUM: 3, OBJECT: 23, SCALAR: 5)
Operations:
- Query: Query | fields: reflections, resource, resources, stories, story
- Mutation: AddUpdateData | fields: createReflection, initDevice, updateDevice
Directives: deprecated, include, skip (total: 3)

Readable stores: 0

Found on 2026-01-02 01:58

41.9 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa381952ab1e94717b37060a4b0a00b61e5f7032ca5

GraphQL introspection enabled at /graphql
Types: 31 (by kind: ENUM: 3, OBJECT: 23, SCALAR: 5)
Operations:
- Query: Query | fields: reflections, resource, resources, stories, story
- Mutation: AddUpdateData | fields: createReflection, initDevice, updateDevice
Directives: deprecated, include, skip (total: 3)

Found on 2025-12-30 12:15

41.9 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api-production.hapigig.com
Port: 80
URL: http://api-production.hapigig.com

First seen 2025-11-11 01:37
Last seen 2026-01-02 01:54
Open for 52 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2026-01-02 01:54

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa337fa9fb6af062926e61d1f93e1c76bacd6c59776

GraphQL introspection enabled at /graphql
Types: 1452 (by kind: ENUM: 64, INPUT_OBJECT: 1056, INTERFACE: 1, OBJECT: 323, SCALAR: 8)
Operations:
- Query: Query | fields: availabilitiesForEmp, availabilitiesForEmpConnection, internalAvailabilitiesForEmp, internalAvailabilitiesForEmpConnection, myAvailabilities
- Mutation: Mutation | fields: cancelAvailability, createAvailability, createMultiAva, updateMyAvailability, workerDeleteAvailabilities
- Subscription: Subscription | fields: activitylog, base, notification, referral, worker
Directives: deprecated, include, skip (total: 3)

Found on 2025-11-29 10:45

3.2 MBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api-editor.motrixsolutions.com
Port: 80
URL: http://api-editor.motrixsolutions.com

First seen 2025-10-16 00:11
Last seen 2026-01-02 00:38
Open for 78 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3b571938e6585c57ecdd50714f0d343306aecf453

GraphQL introspection enabled at /graphql
Types: 110 (by kind: ENUM: 3, INPUT_OBJECT: 21, OBJECT: 76, SCALAR: 9, UNION: 1)
Operations:
- Query: Query | fields: blocks_templates, blocks_templates_aggregated, blocks_templates_by_id, companies, companies_by_id
- Mutation: Mutation | fields: create_quiz_vizits_item, create_quiz_vizits_items, update_quiz_vizits_batch, update_quiz_vizits_item, update_quiz_vizits_items
- Subscription: Subscription | fields: blocks_templates_mutated, companies_companies_tags_mutated, companies_mutated, companies_tags_mutated, directus_files_mutated
Directives: deprecated, include, skip (total: 3)

Readable stores: 0

Found on 2026-01-02 00:38

204.8 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.openrangegallery.com
Port: 443
URL: https://www.openrangegallery.com

First seen 2025-03-13 01:59
Last seen 2026-01-01 23:50
Open for 294 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2026-01-01 23:50
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: notas-api.netflu.com.br
Port: 443
URL: https://notas-api.netflu.com.br

First seen 2025-11-15 01:40
Last seen 2026-01-01 23:46
Open for 47 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3cd84d4336242e2314dba629d852fb513b29e3edf
```
GraphQL introspection enabled at /graphql
Types: 204 (by kind: ENUM: 3, INPUT_OBJECT: 44, OBJECT: 145, SCALAR: 11, UNION: 1)
Operations:
- Query: Query | fields: campeonato, campeonatos, campeonatosConnection, jogadore, jogadores
- Mutation: Mutation | fields: createCampeonato, createJogadore, deleteCampeonato, updateCampeonato, updateJogadore
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2026-01-01 23:46
  
  175.9 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.tozensushibar.ca
Port: 80
URL: http://api.tozensushibar.ca

First seen 2025-11-15 01:40
Last seen 2026-01-01 23:46
Open for 47 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa33694b824d8bd93a846a921e6c658460870708dda

GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 5, INPUT_OBJECT: 33, OBJECT: 78, SCALAR: 8, UNION: 1)
Operations:
- Query: Query | fields: i18NLocale, uploadFile, uploadFiles, uploadFolder, uploadFolders
- Mutation: Mutation | fields: createUploadFile, createUploadFolder, deleteUploadFile, updateUploadFile, updateUploadFolder
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2026-01-01 23:46

174.3 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: bossaz-pr-1275.azstage.in
Port: 443
URL: https://bossaz-pr-1275.azstage.in

First seen 2025-12-11 09:45
Last seen 2026-01-01 23:45
Open for 21 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182
```
GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2026-01-01 23:45
  
  140.1 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 76.223.57.73
Domain: www.homeaglowstaging.com
Port: 443
URL: https://www.homeaglowstaging.com

First seen 2025-11-23 02:41
Last seen 2026-01-01 21:55
Open for 39 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
Found on 2026-01-01 21:55

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d662107f92ab4ca962533192ac6cd5c1c3e264300f

GraphQL introspection enabled at /api/graphql
Types: 425 (by kind: ENUM: 61, INPUT_OBJECT: 102, INTERFACE: 4, OBJECT: 237, SCALAR: 9, UNION: 12)
Operations:
- Query: Query | fields: categoryQueues, terms, ticket, ticketCategories, tickets
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Found on 2025-12-24 15:11

484.1 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b6f6d2120

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nearbyCities=[Youngstown, NY Los Angeles, CA Austin, TX New York, NY] accuracyRadius=1000

Found on 2025-12-02 10:27

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b7cf993a3

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nearbyCities=[Central Park, WA Lindsay, CA Vinita, OK Duncannon, PA] accuracyRadius=20

Found on 2025-11-30 14:02

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b434819e0

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : accuracyRadius=20 nearbyCities=[Central Park, WA Lindsay, CA Vinita, OK Glenwood, NY]

Found on 2025-11-28 19:26

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b787501d1

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : accuracyRadius=1000 nearbyCities=[Los Angeles, CA Austin, TX New York, NY Chicago, IL]

Found on 2025-11-27 21:15

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b9f144969

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nearbyCities=[Central Park, WA Lindsay, CA Duncannon, PA Vinita, OK] accuracyRadius=20

Found on 2025-11-27 21:15

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b723748e7

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : accuracyRadius=20 nearbyCities=[Central Park, WA Lindsay, CA Vinita, OK Duncannon, PA]

Found on 2025-11-27 21:15

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b9da2b9a5

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nearbyCities=[Los Angeles, CA Austin, TX New York, NY Chicago, IL] accuracyRadius=100

Found on 2025-11-27 04:31

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b3e1c2161

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nonmemberHourlyRate=49 accuracyRadius=20 nearbyZipcode=07014 nearbyState=NJ nearbyCities=[Clifton, NJ New York, NY Brooklyn, NY Newark, NJ] nearbyRecentJobs=9 memberHourlyRate=19

Found on 2025-11-23 02:41

433.2 kBytes 7 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b54edc9ce

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : accuracyRadius=20 nearbyCities=[Lindsay, CA Central Park, WA Vinita, OK]

Found on 2025-11-23 02:41

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b881675e2

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nearbyCities=[Lindsay, CA Vinita, OK Central Park, WA] accuracyRadius=20

Found on 2025-11-23 02:41

433.2 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d69692dbae57f67f5e5dce5474639c439b7a52adfa

GraphQL introspection enabled at /api/graphql
Types: 383 (by kind: ENUM: 52, INPUT_OBJECT: 95, INTERFACE: 4, OBJECT: 214, SCALAR: 7, UNION: 11)
Operations:
- Query: Query | fields: campaign, experiments, nativeAppUpgradeAction, postPurchaseCustomerSurveySources, terms
- Mutation: Mutation | fields: cancelJob, claimJob, createCleanerJobCheckin, createCleanerTravelLog, updateEtaForJob
Directives: include, skip (total: 2)

Readable stores: 1
estimatedBrowserLocation (args: none) : nearbyCities=[Central Park, WA Lindsay, CA Glenwood, NY Vinita, OK] accuracyRadius=20

Found on 2025-11-23 02:41

433.2 kBytes 2 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: models.islandsunclub.com
Port: 80
URL: http://models.islandsunclub.com

First seen 2025-02-02 14:13
Last seen 2026-01-01 19:41
Open for 333 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8686a774850

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/gamergrl
/images/brands/gamergrl/email-header.png
/images/brands/gamergrl/gamergrl-grid.jpeg
/images/brands/gamergrl/gamergrl-header.png
/images/brands/gamergrl/gridsix-min.jpeg
/images/brands/gamergrl/lauren.jpg
/images/brands/gamergrl/phone-min.jpeg
/images/brands/gamergrl/profile.jpeg
/images/brands/gamergrl/rates-min.png
/images/brands/gamergrl/storecard50-btn.jpeg
/images/brands/gamergrl/storecard50.jpeg
/images/brands/gamergrl/storecard60-btn.jpeg
/images/brands/gamergrl/storecard60.jpeg
/images/brands/gamergrl/storecard70-btn.jpeg
/images/brands/gamergrl/storecard70.jpeg
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png

Found on 2026-01-01 19:41

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868481ecb3f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/gamergrl
/images/brands/gamergrl/email-header.png
/images/brands/gamergrl/gamergrl-grid.jpeg
/images/brands/gamergrl/gamergrl-header.png
/images/brands/gamergrl/gridsix-min.jpeg
/images/brands/gamergrl/lauren.jpg
/images/brands/gamergrl/phone-min.jpeg
/images/brands/gamergrl/profile.jpeg
/images/brands/gamergrl/storecard50-btn.jpeg
/images/brands/gamergrl/storecard50.jpeg
/images/brands/gamergrl/storecard60-btn.jpeg
/images/brands/gamergrl/storecard60.jpeg
/images/brands/gamergrl/storecard70-btn.jpeg
/images/brands/gamergrl/storecard70.jpeg
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg

Found on 2025-12-01 18:10

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868c4c364d0

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/gamergrl
/images/brands/gamergrl/email-header.png
/images/brands/gamergrl/gamergrl-grid.jpeg
/images/brands/gamergrl/gamergrl-header.png
/images/brands/gamergrl/gridsix-min.jpeg
/images/brands/gamergrl/lauren.jpg
/images/brands/gamergrl/phone-min.jpeg
/images/brands/gamergrl/profile.jpeg
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultfavicon.png
/images/defaultfeature.png
/images/defaultoffer.png

Found on 2025-12-01 00:18

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868acae4038

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/gamergrl
/images/brands/gamergrl/lauren.jpg
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultfavicon.png
/images/defaultfeature.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg

Found on 2025-11-29 00:50

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86814d6419f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultfavicon.png
/images/defaultfeature.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png

Found on 2025-11-27 05:27

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868492fef9f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg

Found on 2025-11-06 23:58

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868c1c95076

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg

Found on 2025-10-28 16:08

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86853eb4e2d

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/isabella.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png

Found on 2025-10-20 18:59

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868f8ca0d58

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg

Found on 2025-10-13 05:34

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8688a8a822d

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-modeling-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-modeling-flow.webp
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/elite-profile-thinner.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg

Found on 2025-10-08 22:22

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8681777a540

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/elite-profile-thinner.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg

Found on 2025-09-29 06:30

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868cad540fe

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/elite-profile-thinner.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/agency-w-filled.svg
/images/icons/agency-w-outline.svg
/images/icons/agency.svg

Found on 2025-09-27 06:13

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8685eae0c41

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/creators
/images/creators/1take.jay02.jpeg
/images/creators/chelsi_mckeal.jpeg
/images/creators/chloe.merkley.jpeg
/images/creators/dietrickr_.jpeg
/images/creators/h.ai.da.jpeg
/images/creators/jia.yyi_.jpeg
/images/creators/mikalabars.jpeg
/images/creators/nevandouglas.jpeg
/images/creators/randilynnquigley.jpeg
/images/creators/sonvellle.jpeg
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg

Found on 2025-09-21 06:57

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86819bb97f1

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/creators
/images/creators/1take.jay02.jpeg
/images/creators/chelsi_mckeal.jpeg
/images/creators/chloe.merkley.jpeg
/images/creators/dietrickr_.jpeg
/images/creators/h.ai.da.jpeg
/images/creators/jia.yyi_.jpeg
/images/creators/mikalabars.jpeg
/images/creators/nevandouglas.jpeg
/images/creators/randilynnquigley.jpeg
/images/creators/sonvellle.jpeg
/images/defaultbrand.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg

Found on 2025-08-16 18:53

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86829ca66ac

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash-1.jpeg
/images/burbayne-splash-2.jpeg
/images/burbayne-splash-3.jpeg
/images/burbayne-splash-4.jpeg
/images/burbayne-splash-5.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry

Found on 2025-07-20 10:35

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868d691f8e6

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash-1.jpeg
/images/burbayne-splash-2.jpeg
/images/burbayne-splash-3.jpeg
/images/burbayne-splash-4.jpeg
/images/burbayne-splash-5.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry

Found on 2025-07-12 09:46

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8686f8057b8

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry

Found on 2025-05-10 17:11

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868853367c2

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg

Found on 2025-05-04 15:34

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868d9fe2418

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg

Found on 2025-04-30 10:44

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8685809f076

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/gridsix-min.png
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg

Found on 2025-04-24 22:47

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868b8a3c683

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg

Found on 2025-04-04 03:36

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868013a25d7

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png

Found on 2025-03-22 09:56

Severity: medium
Fingerprint: 5f32cf5d6962f09c6e6dc6946e6dc694a4e8201e6ae322480cf041cd77a2aa88

Found 84 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/islandsunclub
/images/brands/justlikehero
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/islandsunclub.png
/images/justlikehero.png
/images/navbar-logo-w.svg
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/shop-cocoburry.jpeg
/images/shop-hiddenhills.jpeg
/images/shop-islandsunclub.jpeg
/images/shop-justlikehero.jpeg
/images/splash
/images/splash-back-b.webp
/images/splash-back.webp
/images/verifiedmodel.jpeg
/images/verifiedmodel.png
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2025-03-04 16:02

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86885ca3d0d

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg

Found on 2025-02-02 14:13

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.burbayne.com
Port: 443
URL: https://www.burbayne.com

First seen 2024-06-27 17:58
Last seen 2026-01-01 19:34
Open for 553 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8686a774850

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/gamergrl
/images/brands/gamergrl/email-header.png
/images/brands/gamergrl/gamergrl-grid.jpeg
/images/brands/gamergrl/gamergrl-header.png
/images/brands/gamergrl/gridsix-min.jpeg
/images/brands/gamergrl/lauren.jpg
/images/brands/gamergrl/phone-min.jpeg
/images/brands/gamergrl/profile.jpeg
/images/brands/gamergrl/rates-min.png
/images/brands/gamergrl/storecard50-btn.jpeg
/images/brands/gamergrl/storecard50.jpeg
/images/brands/gamergrl/storecard60-btn.jpeg
/images/brands/gamergrl/storecard60.jpeg
/images/brands/gamergrl/storecard70-btn.jpeg
/images/brands/gamergrl/storecard70.jpeg
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png

Found on 2026-01-01 19:34

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868481ecb3f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/gamergrl
/images/brands/gamergrl/email-header.png
/images/brands/gamergrl/gamergrl-grid.jpeg
/images/brands/gamergrl/gamergrl-header.png
/images/brands/gamergrl/gridsix-min.jpeg
/images/brands/gamergrl/lauren.jpg
/images/brands/gamergrl/phone-min.jpeg
/images/brands/gamergrl/profile.jpeg
/images/brands/gamergrl/storecard50-btn.jpeg
/images/brands/gamergrl/storecard50.jpeg
/images/brands/gamergrl/storecard60-btn.jpeg
/images/brands/gamergrl/storecard60.jpeg
/images/brands/gamergrl/storecard70-btn.jpeg
/images/brands/gamergrl/storecard70.jpeg
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg

Found on 2025-12-01 19:25

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868acae4038

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/gamergrl
/images/brands/gamergrl/lauren.jpg
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultfavicon.png
/images/defaultfeature.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg

Found on 2025-11-29 11:41

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86814d6419f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultfavicon.png
/images/defaultfeature.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png

Found on 2025-11-27 07:34

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8683d063eca

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultfavicon.png
/images/defaultfeature.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/islandsunclub.png
/images/jessica.jpeg
/images/justlikehero.png
/images/locations

Found on 2025-11-14 13:23

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868492fef9f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/profile.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg

Found on 2025-11-06 18:14

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868c1c95076

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/email-signature.png
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/rachel.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg

Found on 2025-10-28 21:28

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86853eb4e2d

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/brands/modelingid
/images/brands/modelingid/feature.jpeg
/images/brands/modelingid/isabella.jpg
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png

Found on 2025-10-22 11:21

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868f8ca0d58

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thinest.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg

Found on 2025-10-14 06:19

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868a2ca9be8

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-model-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/ugc-model-flow.webp
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-model-flow.webp
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/elite-profile-thinner.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg

Found on 2025-10-10 19:20

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8688a8a822d

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/cocoburry/ugc-modeling-flow.webp
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/islandsunclub/ugc-modeling-flow.webp
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/elite-profile-thinner.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg

Found on 2025-10-08 23:27

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8681777a540

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/profile.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/profile.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/profile.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/elite-profile-thinner.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg

Found on 2025-09-29 05:26

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868cad540fe

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/elite-profile-thinner.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-filled.svg
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/agency-w-filled.svg
/images/icons/agency-w-outline.svg
/images/icons/agency.svg

Found on 2025-09-27 08:29

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8685eae0c41

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/creators
/images/creators/1take.jay02.jpeg
/images/creators/chelsi_mckeal.jpeg
/images/creators/chloe.merkley.jpeg
/images/creators/dietrickr_.jpeg
/images/creators/h.ai.da.jpeg
/images/creators/jia.yyi_.jpeg
/images/creators/mikalabars.jpeg
/images/creators/nevandouglas.jpeg
/images/creators/randilynnquigley.jpeg
/images/creators/sonvellle.jpeg
/images/defaultbrand.png
/images/defaultoffer.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg

Found on 2025-09-21 08:28

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86819bb97f1

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/burbayne-black.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/creators
/images/creators/1take.jay02.jpeg
/images/creators/chelsi_mckeal.jpeg
/images/creators/chloe.merkley.jpeg
/images/creators/dietrickr_.jpeg
/images/creators/h.ai.da.jpeg
/images/creators/jia.yyi_.jpeg
/images/creators/mikalabars.jpeg
/images/creators/nevandouglas.jpeg
/images/creators/randilynnquigley.jpeg
/images/creators/sonvellle.jpeg
/images/defaultbrand.png
/images/defaultprofile.png
/images/elite-header-logo.svg
/images/elite-profile-min.png
/images/elite-profile-thin.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg

Found on 2025-08-12 05:50

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86829ca66ac

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/makayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash-1.jpeg
/images/burbayne-splash-2.jpeg
/images/burbayne-splash-3.jpeg
/images/burbayne-splash-4.jpeg
/images/burbayne-splash-5.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry

Found on 2025-07-20 23:26

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868d691f8e6

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash-1.jpeg
/images/burbayne-splash-2.jpeg
/images/burbayne-splash-3.jpeg
/images/burbayne-splash-4.jpeg
/images/burbayne-splash-5.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry

Found on 2025-07-13 00:18

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8686f8057b8

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/watch-marina.jpeg
/images/brands/hiddenhills/watch-millennia.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry

Found on 2025-05-12 08:52

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868853367c2

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard60-btn.jpeg
/images/brands/hiddenhills/storecard60.jpeg
/images/brands/hiddenhills/storecard65-btn.jpeg
/images/brands/hiddenhills/storecard65.jpeg
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg

Found on 2025-05-04 19:39

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868d9fe2418

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg

Found on 2025-04-28 06:04

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8685809f076

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/store-paid.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/gridsix-min.png
/images/brands/islandsunclub/Instagram-Emblem.svg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg

Found on 2025-04-24 23:36

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868013a25d7

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/islandsunclub
/images/brands/islandsunclub/alex.jpg
/images/brands/islandsunclub/cover.jpg
/images/brands/islandsunclub/email-header.png
/images/brands/islandsunclub/gridsix-min.jpeg
/images/brands/islandsunclub/isc-grid.jpeg
/images/brands/islandsunclub/islandsunclub-favicon.png
/images/brands/islandsunclub/islandsunclub-feature-min.jpeg
/images/brands/islandsunclub/islandsunclub-header.png
/images/brands/islandsunclub/phone-min.jpeg
/images/brands/islandsunclub/rates-min.png
/images/brands/islandsunclub/storecard60-btn.jpeg
/images/brands/islandsunclub/storecard60.jpeg
/images/brands/islandsunclub/storecard70-btn.jpeg
/images/brands/islandsunclub/storecard70.jpeg
/images/brands/islandsunclub/storecard75-btn.jpeg
/images/brands/islandsunclub/storecard75.jpeg
/images/brands/islandsunclub/sunglass-min.png
/images/brands/islandsunclub/sunglasses-table.png
/images/brands/islandsunclub/sunglasses.jpg
/images/brands/islandsunclub/testimonials
/images/brands/islandsunclub/testimonials/lexireign.tv.png
/images/brands/islandsunclub/testimonials/mandolyne38.png
/images/brands/islandsunclub/testimonials/mirandahayes__.png
/images/brands/islandsunclub/testimonials/touchofgrace139.png
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png

Found on 2025-03-22 12:56

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86885ca3d0d

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg

Found on 2025-02-02 13:47

Severity: medium
Fingerprint: 5f32cf5d6962f09c51be605a51be605a8ed571a8b654949e0d02be57b4f1ff5f

Found 103 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/justlikehero
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/islandsunclub.png
/images/justlikehero.png
/images/navbar-logo-w.svg
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/shop-cocoburry.jpeg
/images/shop-hiddenhills.jpeg
/images/shop-islandsunclub.jpeg
/images/shop-justlikehero.jpeg
/images/splash
/images/splash-back-b.webp
/images/splash-back.webp
/images/verifiedmodel.jpeg
/images/verifiedmodel.png
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2025-01-30 07:25

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8684d6f9d71

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/brands
/images/brands/cocoburry
/images/brands/cocoburry/ad-ig-min.png
/images/brands/cocoburry/cb-grid-2.jpeg
/images/brands/cocoburry/cb-grid-men.jpeg
/images/brands/cocoburry/cb-grid-women.jpeg
/images/brands/cocoburry/cb-grid.jpeg
/images/brands/cocoburry/clothing-m.jpg
/images/brands/cocoburry/clothing-w.jpg
/images/brands/cocoburry/cocoburry-favicon.png
/images/brands/cocoburry/cocoburry-feature.jpeg
/images/brands/cocoburry/cover-men.jpg
/images/brands/cocoburry/cover.jpg
/images/brands/cocoburry/email-header.png
/images/brands/cocoburry/header-logo.svg
/images/brands/cocoburry/header-text.png
/images/brands/cocoburry/kayla.jpg
/images/brands/cocoburry/phone-ex-m.jpeg
/images/brands/cocoburry/phone-ex-w.jpeg
/images/brands/cocoburry/rates-min.png
/images/brands/cocoburry/storecard60-btn.jpeg
/images/brands/cocoburry/storecard60.jpeg
/images/brands/cocoburry/storecard70-btn.jpeg
/images/brands/cocoburry/storecard70.jpeg
/images/brands/cocoburry/storecard75-btn.jpeg
/images/brands/cocoburry/storecard75.jpeg
/images/brands/cocoburry/testimonials
/images/brands/cocoburry/testimonials/dexter.png
/images/brands/cocoburry/testimonials/dwayne.png
/images/brands/cocoburry/testimonials/francesca.png
/images/brands/cocoburry/testimonials/matilda.png
/images/brands/cocoburry/testimonials/robert.png
/images/brands/cocoburry/testimonials/zyaila.png
/images/brands/hiddenhills
/images/brands/hiddenhills/cover-men.jpg
/images/brands/hiddenhills/cover.jpg
/images/brands/hiddenhills/email-header.png
/images/brands/hiddenhills/grid-men.jpeg
/images/brands/hiddenhills/grid-women.jpeg
/images/brands/hiddenhills/grid.jpeg
/images/brands/hiddenhills/hiddenhills-favicon.png
/images/brands/hiddenhills/hiddenhills-feature.jpeg
/images/brands/hiddenhills/kayla.jpg
/images/brands/hiddenhills/phone-ex-m.jpeg
/images/brands/hiddenhills/phone-ex-w.jpeg
/images/brands/hiddenhills/rates-min.png
/images/brands/hiddenhills/serialcard-min.png
/images/brands/hiddenhills/store-paid.png
/images/brands/hiddenhills/storecard70-btn.jpeg
/images/brands/hiddenhills/storecard70.jpeg
/images/brands/hiddenhills/storecard75-btn.jpeg
/images/brands/hiddenhills/storecard75.jpeg
/images/brands/hiddenhills/storecard80-btn.jpeg
/images/brands/hiddenhills/storecard80.jpeg
/images/brands/justlikehero
/images/brands/justlikehero/clothing-m.jpg
/images/brands/justlikehero/clothing-w.jpg
/images/brands/justlikehero/clothing.jpeg
/images/brands/justlikehero/cover.jpg
/images/brands/justlikehero/email-header.png
/images/brands/justlikehero/gridsix-min.jpeg
/images/brands/justlikehero/jenna.jpg
/images/brands/justlikehero/jlh-grid-men.jpeg
/images/brands/justlikehero/jlh-grid.jpeg
/images/brands/justlikehero/justlikehero-favicon.png
/images/brands/justlikehero/justlikehero-feature-min.jpeg
/images/brands/justlikehero/justlikehero-header.svg
/images/brands/justlikehero/kayla.jpg
/images/brands/justlikehero/phone-men-min.jpeg
/images/brands/justlikehero/phone-women-min.jpeg
/images/brands/justlikehero/rates-min.png
/images/brands/justlikehero/storecard40-btn.jpeg
/images/brands/justlikehero/storecard40.jpeg
/images/brands/justlikehero/storecard50-btn.jpeg
/images/brands/justlikehero/storecard50.jpeg
/images/brands/justlikehero/storecard60-btn.jpeg
/images/brands/justlikehero/storecard60.jpeg
/images/brands/justlikehero/storecard70-btn.jpeg
/images/brands/justlikehero/storecard70.jpeg
/images/brands/justlikehero/storecard75-btn.jpeg
/images/brands/justlikehero/storecard75.jpeg
/images/brands/justlikehero/storepaid-min.png
/images/burbayne-black.jpeg
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/card-w.svg
/images/icons/card.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg

Found on 2025-01-26 19:41

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868882a61b9

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/burbayne.png.sb-cd78268b-WCDQKX
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.png
/images/habanaheights.png.sb-cd78268b-k4KwP2
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/email_click.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon-b.png
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-b.svg
/images/icons/ig-verified-g.svg
/images/icons/inbox-outline.svg
/images/icons/inbox-w-filled.svg
/images/icons/inbox-w-outline.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/laptop.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/schedule-w-filled.svg
/images/icons/schedule-w-outline.svg
/images/icons/search.svg
/images/icons/settings-w.svg

Found on 2024-09-28 16:52

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8683a85b999

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/burbayne.png.sb-cd78268b-WCDQKX
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.png
/images/habanaheights.png.sb-cd78268b-k4KwP2
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon-b.png
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-b.svg
/images/icons/ig-verified-g.svg
/images/icons/inbox-outline.svg
/images/icons/inbox-w-filled.svg
/images/icons/inbox-w-outline.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/laptop.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/schedule-w-filled.svg
/images/icons/schedule-w-outline.svg
/images/icons/search.svg
/images/icons/settings-w.svg
/images/icons/settings.svg

Found on 2024-09-20 11:41

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868812b3bdf

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.png
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon-b.png
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-g.svg
/images/icons/inbox-outline.svg
/images/icons/inbox-w-filled.svg
/images/icons/inbox-w-outline.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/laptop.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/schedule-w-filled.svg
/images/icons/schedule-w-outline.svg
/images/icons/search.svg
/images/icons/settings-w.svg
/images/icons/settings.svg
/images/icons/shopify-w.svg
/images/icons/shopify.svg
/images/icons/start-lg.svg
/images/icons/trash.svg

Found on 2024-09-18 13:15

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868e06a5abb

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/burbayne.png.sb-cd78268b-WCDQKX
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.png
/images/habanaheights.png.sb-cd78268b-k4KwP2
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon-b.png
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-g.svg
/images/icons/inbox-outline.svg
/images/icons/inbox-w-filled.svg
/images/icons/inbox-w-outline.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/laptop.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/schedule-w-filled.svg
/images/icons/schedule-w-outline.svg
/images/icons/search.svg
/images/icons/settings-w.svg
/images/icons/settings.svg
/images/icons/shopify-w.svg

Found on 2024-09-14 09:46

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868f867a22c

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.jpeg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.jpeg
/images/habanaheights.png
/images/halifornia.jpeg
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon-b.png
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-g.svg
/images/icons/inbox-outline.svg
/images/icons/inbox-w-filled.svg
/images/icons/inbox-w-outline.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/laptop.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/schedule-w-filled.svg
/images/icons/schedule-w-outline.svg
/images/icons/search.svg
/images/icons/settings-w.svg
/images/icons/settings.svg

Found on 2024-09-08 05:43

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8685826e95f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.jpeg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.jpeg
/images/habanaheights.png
/images/halifornia.jpeg
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back-w.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon-b.png
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-g.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/laptop.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/schedule-w-filled.svg
/images/icons/schedule-w-outline.svg
/images/icons/search.svg
/images/icons/settings-w.svg
/images/icons/settings.svg
/images/icons/shopify-w.svg
/images/icons/shopify.svg
/images/icons/start-lg.svg
/images/icons/trash.svg

Found on 2024-09-01 17:11

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8687d75306f

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.jpeg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.jpeg
/images/habanaheights.png
/images/halifornia.jpeg
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-g.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/laptop.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/schedule-w-filled.svg
/images/icons/schedule-w-outline.svg
/images/icons/search.svg
/images/icons/settings-w.svg
/images/icons/settings.svg
/images/icons/shopify-w.svg
/images/icons/shopify.svg
/images/icons/start-lg.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg

Found on 2024-08-30 23:22

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868d4a27d81

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.jpeg
/images/cocoburry.png
/images/defaultbrand.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/feature.png
/images/habanaheights.jpeg
/images/habanaheights.png
/images/halifornia.jpeg
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-g.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/schedule-w-filled.svg
/images/icons/schedule-w-outline.svg
/images/icons/search.svg
/images/icons/settings-w.svg
/images/icons/settings.svg
/images/icons/shopify-w.svg
/images/icons/start-lg.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg

Found on 2024-08-28 23:17

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868131b91f4

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cb-trio-w-min.png
/images/cocoburry/cocoburry-ad-w-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry/header-text.svg
/images/cocoburry.jpeg
/images/cocoburry.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.jpeg
/images/habanaheights.png
/images/halifornia.jpeg
/images/halifornia.png
/images/headerlogo-blk.svg
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-g.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/start-lg.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified-lg.svg
/images/icons/verified.svg
/images/icons/view-g.svg
/images/icons/work-outline.svg
/images/islandsunclub.jpeg
/images/islandsunclub.png

Found on 2024-08-27 00:04

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8680e9f8a60

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid-3.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/feature-cb.jpeg
/images/cocoburry.jpeg
/images/cocoburry.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.jpeg
/images/habanaheights.png
/images/halifornia.jpeg
/images/halifornia.png
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/ig-verified-g.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/start-lg.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified-lg.svg
/images/icons/verified.svg
/images/icons/view-g.svg
/images/icons/work-outline.svg
/images/islandsunclub.jpeg
/images/islandsunclub.png
/images/navbar-logo-w.svg
/images/navbar-logo.png
/images/pwaicons
/images/screenshots

Found on 2024-08-24 07:11

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da8684cb26fe0

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/burbayne.jpeg
/images/burbayne.png
/images/cocoburry
/images/cocoburry/cb-grid-2.jpeg
/images/cocoburry/cb-grid.jpeg
/images/cocoburry/cb-trio-min.png
/images/cocoburry/cocoburry-ad1-min.png
/images/cocoburry/grid3_cb.jpeg
/images/cocoburry.jpeg
/images/cocoburry.png
/images/defaultprofile.png
/images/email-signature.jpeg
/images/feature.jpeg
/images/habanaheights.jpeg
/images/habanaheights.png
/images/halifornia.jpeg
/images/halifornia.png
/images/headerlogo.svg
/images/hiddenhills.jpeg
/images/hiddenhills.png
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/start-lg.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified-lg.svg
/images/icons/verified.svg
/images/icons/view-g.svg
/images/icons/work-outline.svg
/images/islandsunclub.jpeg
/images/islandsunclub.png
/images/navbar-logo-w.svg
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp

Found on 2024-08-22 09:23

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f6ba4dc2f6ba4dc46826ca6d939ac302c490bf53ba66cfa

Found 127 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/burbayne-splash.001-min.jpeg
/images/burbayne-splash.002-min.jpeg
/images/burbayne-splash.003-min.jpeg
/images/burbayne-splash.004-min.jpeg
/images/burbayne-splash.005-min.jpeg
/images/defaultprofile.png
/images/feature.jpeg
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logo-b.png
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/start-lg.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified-lg.svg
/images/icons/verified.svg
/images/icons/view-g.svg
/images/icons/work-outline.svg
/images/navbar-logo-w.svg
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2024-08-20 07:38

Severity: medium
Fingerprint: 5f32cf5d6962f09c47a1e7ef47a1e7ef909f916b75fd2b879c627740aae6c5cf

Found 120 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/defaultprofile.png
/images/feature.jpeg
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/start-lg.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified-lg.svg
/images/icons/verified.svg
/images/icons/view-g.svg
/images/icons/work-outline.svg
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2024-08-18 03:58

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da86840404dfc

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/courses
/images/courses/course-1-min.jpeg
/images/courses/course-2-min.jpeg
/images/courses/course-3-min.jpeg
/images/courses/course-4-min.jpeg
/images/courses/course-5-min.jpeg
/images/courses/course-6-min.jpeg
/images/courses/course-7-min.jpeg
/images/courses/course-8-min.jpeg
/images/courses/course-9-min.jpeg
/images/defaultcourse.png
/images/defaultprofile.png
/images/email-header.png
/images/feature.jpeg
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/start-lg.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified-lg.svg
/images/icons/verified.svg
/images/icons/view-g.svg
/images/icons/work-outline.svg
/images/navbar-bwc.png
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png

Found on 2024-08-16 03:51

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868459edd18

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/courses
/images/courses/course-1-min.jpeg
/images/courses/course-2-min.jpeg
/images/courses/course-3-min.jpeg
/images/courses/course-4-min.jpeg
/images/courses/course-5-min.jpeg
/images/courses/course-6-min.jpeg
/images/courses/course-7-min.jpeg
/images/courses/course-8-min.jpeg
/images/courses/course-9-min.jpeg
/images/defaultcourse.png
/images/defaultprofile.png
/images/email-header.png
/images/feature.jpeg
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/portfolio-w-filled.svg
/images/icons/portfolio-w-outline.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/start-lg.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified.svg
/images/icons/view-g.svg
/images/icons/work-outline.svg
/images/navbar-bwc.png
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png

Found on 2024-07-28 16:03

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868d4c93b11

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/courses
/images/courses/course-1-min.jpeg
/images/courses/course-2-min.jpeg
/images/courses/course-3-min.jpeg
/images/courses/course-4-min.jpeg
/images/courses/course-5-min.jpeg
/images/courses/course-6-min.jpeg
/images/courses/course-7-min.jpeg
/images/courses/course-8-min.jpeg
/images/courses/course-9-min.jpeg
/images/defaultcourse.png
/images/defaultprofile.png
/images/email-header.png
/images/feature.jpeg
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/invest-w-filled.svg
/images/icons/invest-w-outline.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/start-lg.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified.svg
/images/icons/view-g.svg
/images/icons/work-outline.svg
/images/navbar-bwc.png
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png
/images/splash-back.webp
/images/trips

Found on 2024-07-18 08:36

Severity: medium
Fingerprint: 5f32cf5d6962f09c8c9af8b78c9af8b7abf60e5353930a2f012da868646a7df6

Found 128 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/courses
/images/courses/course-1-min.jpeg
/images/courses/course-2-min.jpeg
/images/courses/course-3-min.jpeg
/images/courses/course-4-min.jpeg
/images/courses/course-5-min.jpeg
/images/courses/course-6-min.jpeg
/images/courses/course-7-min.jpeg
/images/courses/course-8-min.jpeg
/images/courses/course-9-min.jpeg
/images/defaultcourse.png
/images/defaultprofile.png
/images/email-header.png
/images/feature.jpeg
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/certificate-lg.svg
/images/icons/certificate-w.svg
/images/icons/certificate.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/complete-w.svg
/images/icons/copy.svg
/images/icons/days-g-outline.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit-g.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-outline.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/pdf-w.svg
/images/icons/pdf.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/print.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/start-lg.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified.svg
/images/icons/view-g.svg
/images/icons/work-outline.svg
/images/navbar-bwc.png
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png
/images/splash-back.webp
/images/trips
/images/trips/1.webp
/images/trips/2.webp

Found on 2024-07-16 09:35

Severity: medium
Fingerprint: 5f32cf5d6962f09c8ee05d8b8ee05d8b98883807d3c3d3ebf15d033c7f112c7a

Found 124 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/courses
/images/courses/course-1-min.jpeg
/images/courses/course-10-min.jpeg
/images/courses/course-2-min.jpeg
/images/courses/course-3-min.jpeg
/images/courses/course-4-min.jpeg
/images/courses/course-5-min.jpeg
/images/courses/course-6-min.jpeg
/images/courses/course-7-min.jpeg
/images/courses/course-8-min.jpeg
/images/courses/course-9-min.jpeg
/images/defaultcourse.png
/images/defaultprofile.png
/images/email-header.png
/images/feature.jpeg
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/copy.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-w.svg
/images/icons/notes.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/play-g-outline.svg
/images/icons/play-g.svg
/images/icons/plus-w.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified.svg
/images/icons/view-g.svg
/images/icons/work-outline.svg
/images/navbar-bwc.png
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png
/images/splash-back.webp
/images/trips
/images/trips/1.webp
/images/trips/2.webp
/images/trips/3.webp
/images/trips/4.webp
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2024-07-12 07:50

Severity: medium
Fingerprint: 5f32cf5d6962f09cd07ef6a2d07ef6a29341e8703e854246951295df54f28464

Found 121 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/courses
/images/courses/course-1-min.jpeg
/images/courses/course-10-min.jpeg
/images/courses/course-2-min.jpeg
/images/courses/course-3-min.jpeg
/images/courses/course-4-min.jpeg
/images/courses/course-5-min.jpeg
/images/courses/course-6-min.jpeg
/images/courses/course-7-min.jpeg
/images/courses/course-8-min.jpeg
/images/courses/course-9-min.jpeg
/images/defaultcourse.png
/images/defaultprofile.png
/images/email-header.png
/images/feature.jpeg
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/change.svg
/images/icons/complete-g.svg
/images/icons/copy.svg
/images/icons/days-outline.svg
/images/icons/dropdown.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/lock-w.svg
/images/icons/lock.svg
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-g-outline.svg
/images/icons/notes-g.svg
/images/icons/notes-w.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-outline.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/plus-w.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/progress.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified.svg
/images/icons/view-g.svg
/images/icons/work-outline.svg
/images/navbar-bwc.png
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png
/images/splash-back.webp
/images/trips
/images/trips/1.webp
/images/trips/2.webp
/images/trips/3.webp
/images/trips/4.webp
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2024-07-10 19:33

Severity: medium
Fingerprint: 5f32cf5d6962f09c88c2190688c2190619917d34dab05742d31f0ff36b5a18da

Found 107 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/courses
/images/courses/course-1-min.jpeg
/images/courses/course-10-min.jpeg
/images/courses/course-2-min.jpeg
/images/courses/course-3-min.jpeg
/images/courses/course-4-min.jpeg
/images/courses/course-5-min.jpeg
/images/courses/course-6-min.jpeg
/images/courses/course-7-min.jpeg
/images/courses/course-8-min.jpeg
/images/courses/course-9-min.jpeg
/images/defaultcourse.png
/images/defaultprofile.png
/images/email-header.png
/images/feature.jpeg
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/change.svg
/images/icons/copy.svg
/images/icons/dropdown.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/external.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/hide-w.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/location-outline.svg
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-w.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/plus-w.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified.svg
/images/icons/work-outline.svg
/images/navbar-bwc.png
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png
/images/splash-back.webp
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2024-07-08 14:52

Severity: medium
Fingerprint: 5f32cf5d6962f09c575112a7575112a72eb2ac232b79895f7b2bcaf879f86cb9

Found 102 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/courses
/images/courses/course-1-min.jpeg
/images/courses/course-10-min.jpeg
/images/courses/course-2-min.jpeg
/images/courses/course-3-min.jpeg
/images/courses/course-4-min.jpeg
/images/courses/course-5-min.jpeg
/images/courses/course-6-min.jpeg
/images/courses/course-7-min.jpeg
/images/courses/course-8-min.jpeg
/images/courses/course-9-min.jpeg
/images/defaultcourse.png
/images/defaultprofile.png
/images/email-header.png
/images/feature.jpeg
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/copy.svg
/images/icons/dropdown.svg
/images/icons/edit.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/link.svg
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/notes-w.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plane-w-filled.svg
/images/icons/plane-w-outline.svg
/images/icons/plus-w.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/usernamecheck.svg
/images/icons/usernameclose.svg
/images/icons/verified.svg
/images/navbar-bwc.png
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png
/images/splash-back.webp
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2024-07-06 17:09

Severity: medium
Fingerprint: 5f32cf5d6962f09c62fb79d662fb79d6eb3d4c24e5ecf612d5469ae31645382e

Found 95 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/courses
/images/courses/course-1-min.jpeg
/images/courses/course-10-min.jpeg
/images/courses/course-2-min.jpeg
/images/courses/course-3-min.jpeg
/images/courses/course-4-min.jpeg
/images/courses/course-5-min.jpeg
/images/courses/course-6-min.jpeg
/images/courses/course-7-min.jpeg
/images/courses/course-8-min.jpeg
/images/courses/course-9-min.jpeg
/images/defaultcourse.png
/images/defaultprofile.png
/images/email-header.png
/images/feature.jpeg
/images/icons
/images/icons/admin-outline.svg
/images/icons/admin-w-filled.svg
/images/icons/admin-w-outline.svg
/images/icons/back.svg
/images/icons/copy.svg
/images/icons/dropdown.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/fullscreen.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/learn-outline.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/logout.svg
/images/icons/lounge-outline.svg
/images/icons/lounge-w-filled.svg
/images/icons/lounge-w-outline.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/partscreen.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/plus-w.svg
/images/icons/profile-outline.svg
/images/icons/profile-w-filled.svg
/images/icons/profile-w-outline.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/verified.svg
/images/navbar-bwc.png
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png
/images/splash-back.webp
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2024-07-04 14:38

Severity: medium
Fingerprint: 5f32cf5d6962f09c8ef2655c8ef2655ca7cb26266861c0b062b48175661f3388

Found 71 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/defaultprofile.png
/images/email-header.png
/images/feature.jpeg
/images/icons
/images/icons/back.svg
/images/icons/copy.svg
/images/icons/dropdown.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-g.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/learn-w-filled.svg
/images/icons/learn-w-outline.svg
/images/icons/linechart-up.svg
/images/icons/logo.svg
/images/icons/logout.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu-w.svg
/images/icons/menu.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/verified.svg
/images/navbar-bwc.png
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png
/images/splash-back.webp
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2024-06-30 20:50

Severity: medium
Fingerprint: 5f32cf5d6962f09c2f72f5fb2f72f5fbe1a0fa9712cb699b2195464ce814cd0c

Found 65 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/email-header.png
/images/feature.jpeg
/images/icons
/images/icons/back.svg
/images/icons/copy.svg
/images/icons/dropdown.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-w.svg
/images/icons/external-y.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/linechart-up.svg
/images/icons/logo.svg
/images/icons/logout.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/verified.svg
/images/navbar-logo.png
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/images/splash/1080x2340-min.png
/images/splash/1125x2436-min.png
/images/splash/1170x2532-min.png
/images/splash/1179x2556-min.png
/images/splash/1242x2208-min.png
/images/splash/1242x2688-min.png
/images/splash/1284x2778-min.png
/images/splash/1290x2796-min.png
/images/splash/750x1334-min.png
/images/splash/828x1792-min.png
/images/splash-back.webp
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2024-06-28 23:05

Severity: medium
Fingerprint: 5f32cf5d6962f09c75d69a7675d69a7692f047c4ff20f132ebe18e83f481379c

Found 51 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/favicon.ico
/images
/images/feature.jpeg
/images/icons
/images/icons/back.svg
/images/icons/copy.svg
/images/icons/dropdown.svg
/images/icons/email-w.svg
/images/icons/email.svg
/images/icons/external-w.svg
/images/icons/favicon.png
/images/icons/filter.svg
/images/icons/instagram-white.svg
/images/icons/instagram.svg
/images/icons/linechart-up.svg
/images/icons/logo.svg
/images/icons/logout.svg
/images/icons/manager-w.svg
/images/icons/manager.svg
/images/icons/megaphone.svg
/images/icons/menu.svg
/images/icons/pass-hidden.svg
/images/icons/pass-visible.svg
/images/icons/people-w.svg
/images/icons/people.svg
/images/icons/reload.svg
/images/icons/save-w.svg
/images/icons/save.svg
/images/icons/search.svg
/images/icons/settings.svg
/images/icons/trash.svg
/images/icons/unsubscribe.svg
/images/icons/verified.svg
/images/pwaicons
/images/screenshots
/images/screenshots/screenshot1.jpeg
/images/screenshots/screenshot1.webp
/images/screenshots/screenshot2.jpeg
/images/screenshots/screenshot2.webp
/images/screenshots/screenshot3.jpeg
/images/screenshots/screenshot3.webp
/images/splash
/manifest.json
/offline.html
/robots.txt
/service-worker.js

Found on 2024-06-27 17:58

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: staff.starstock.com
Port: 443
URL: https://staff.starstock.com

First seen 2025-11-12 00:13
Last seen 2026-01-01 19:28
Open for 50 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa350fcdb3da0e5f7dfc0962ad928573f799b29e19d
```
GraphQL introspection enabled at /graphql
Types: 264 (by kind: ENUM: 50, INPUT_OBJECT: 1, INTERFACE: 1, OBJECT: 202, SCALAR: 10)
Operations:
- Query: Query | fields: channel, channels, myPaymentMethods, stream, streams
- Mutation: Mutation | fields: addAllItemsToDraftShippingRequest, addItemsToDraftShippingRequest, removeAllItemsFromDraftShippingRequest, removeItemsFromDraftShippingRequest, submitDraftShippingRequest
Directives: include, skip (total: 2)
```
  Found on 2026-01-01 19:28
  
  410.9 kBytes
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-12-24 17:12
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.webpunch12.com
Port: 443
URL: https://api.webpunch12.com

First seen 2025-11-01 06:59
Last seen 2026-01-01 00:42
Open for 60 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa36d534a8fb521f19d9017c964e0ab0b160387ac16
```
GraphQL introspection enabled at /graphql
Types: 20 (by kind: ENUM: 2, OBJECT: 11, SCALAR: 7)
Operations:
- Query: Query | fields: getCompanies, getCompany, getLocation, getLocations, me
- Mutation: Mutation | fields: testField
Directives: deprecated, include, skip (total: 3)
```
  Found on 2026-01-01 00:42
  
  42.3 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.sheilaswardrobe.com
Port: 443
URL: https://app.sheilaswardrobe.com

First seen 2025-05-03 16:55
Last seen 2025-12-31 00:29
Open for 241 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-12-31 00:29
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-28 20:43
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: www.tachyo.org
Port: 80
URL: http://www.tachyo.org

First seen 2025-11-18 01:28
Last seen 2025-12-30 14:15
Open for 42 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3a590b4bf8f82320d03d408d88d2c4af6d829590e
```
GraphQL introspection enabled at /graphql
Types: 41 (by kind: ENUM: 4, OBJECT: 31, SCALAR: 6)
Operations:
- Query: Query | fields: handshape, handshapes, sign, signDetails, signs
- Mutation: Mutation | fields: addSign, removeSign, requestSignUpdate, updateSign, updateSignSet
Directives: cacheControl, deprecated, include, skip (total: 4)

Readable stores: 0
```
  Found on 2025-12-30 14:15
  
  43.4 kBytes
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.barkly.lt
Port: 443
URL: https://app.barkly.lt

First seen 2025-06-13 16:43
Last seen 2025-12-30 12:54
Open for 199 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-12-30 12:54
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: www.mgmmarco.com
Port: 80
URL: http://www.mgmmarco.com

First seen 2025-12-03 01:36
Last seen 2025-12-30 12:51
Open for 27 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa341eaef48fc0d1cec546944dc654e294a6dccfc1a

GraphQL introspection enabled at /graphql
Types: 17 (by kind: ENUM: 2, OBJECT: 11, SCALAR: 4)
Operations:
- Query: Query | fields: companies, company
- Mutation: Mutation | fields: addCompany, deleteCompany, updateCompany
Directives: deprecated, include, skip, specifiedBy (total: 4)

Readable stores: 1
companies (args: optional/default) : total=3

Found on 2025-12-30 12:51

25.1 kBytes 1 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa341eaef48fc0d1cec546944dc654e294a5155cabc

GraphQL introspection enabled at /graphql
Types: 17 (by kind: ENUM: 2, OBJECT: 11, SCALAR: 4)
Operations:
- Query: Query | fields: companies, company
- Mutation: Mutation | fields: addCompany, deleteCompany, updateCompany
Directives: deprecated, include, skip, specifiedBy (total: 4)

Found on 2025-12-16 16:12

25.1 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: development.seneri.net
Port: 443
URL: https://development.seneri.net

First seen 2025-07-28 14:10
Last seen 2025-12-30 10:41
Open for 154 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-12-30 10:41
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: ssign.api.test.sdocs.com
Port: 443
URL: https://ssign.api.test.sdocs.com

First seen 2025-10-30 00:20
Last seen 2025-12-29 00:57
Open for 60 days

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bce42db947c37314315ebc104a4c55fc6ffca5392

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{id}
DELETE /envelope/{envelopeId}/documents/{documentId}/recipient/{recipientId}
GET /documents
GET /documents/documentCards
GET /documents/generatedDocument/{documentId}
GET /documents/{documentId}
GET /documents/{hubId}/template/{templateId}/object/{objectId}
GET /email-template
GET /envelope
GET /envelope/envelopeCards
GET /envelope/getCode/test
GET /envelope/getFile/test
GET /envelope/{envelopeId}/documents
GET /envelope/{envelopeId}/documents/recipient
GET /envelope/{envelopeId}/documents/{documentId}
GET /envelope/{envelopeId}/documents/{documentId}/envelopeDocumentField/completed-fields
GET /envelope/{envelopeId}/documents/{documentId}/envelopeDocumentField/getAll
GET /envelope/{envelopeId}/documents/{documentId}/envelopeDocumentField/{envelopeDocumentFieldId}
GET /envelope/{envelopeId}/documents/{documentId}/generatePDF
GET /envelope/{envelopeId}/recipients
GET /envelope/{envelopeId}/recipients/{recipientId}/validate
GET /envelope/{envelopeId}/{envelopeDocumentId}/auditTrail
GET /envelope/{id}
GET /envelopeDocument/{envelopeDocumentId}/fieldConfig
GET /envelopeDocument/{envelopeDocumentId}/fieldConfig/{id}
GET /help/category
GET /help/category/{id}
GET /help/knowledgeArticle
GET /help/video
GET /help/{id}
GET /sender/copyRecipientSignerLink/{envelopeId}/{recipientMailId}
GET /ssign/envelop
GET /ssign/envelop/{id}
GET /ssign/v1/envelop
PATCH /envelope/{envelopeId}/documents/{documentId}/envelopeDocumentField/inputfield
PATCH /envelope/{envelopeId}/documents/{documentId}/recipients
PATCH /sender/{id}/submitEnvelop
PATCH /ssign/save
PATCH /ssign/submit
POST /authenticate
POST /document
POST /document/invite/validate
POST /document/user/verifyOTP
POST /encryptedKey
POST /envelope/create
POST /envelope/multi
POST /envelope/send/test
POST /envelope/workflow/create
POST /envelope/{envelopeId}/documents/multiple
POST /envelope/{envelopeId}/documents/uploadFile
POST /envelope/{envelopeId}/documents/{documentId}/envelopeDocumentField
POST /envelope/{envelopeId}/documents/{documentId}/recipient
POST /envelope/{envelopeId}/recipients/submit
POST /sender/email
POST /sender/envelop
POST /sender/inviteUser
POST /sender/resendEnvelope
POST /sender/userInvite
POST /sender/workflow/notification
POST /ssign/init
POST /ssign/initializeSession
POST /ssign/send2FACode
POST /ssign/submitConsent
POST /ssign/verify2FA

Found on 2025-12-29 00:57

Severity: info
Fingerprint: 5733ddf49ff49cd151e75e4bce42db947c37314315ebc104a4c55fc6692ed80d

Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
DELETE /document/{id}
DELETE /envelope/{envelopeId}/documents/{documentId}/recipient/{recipientId}
GET /documents
GET /documents/documentCards
GET /documents/{documentId}
GET /documents/{hubId}/template/{templateId}/object/{objectId}
GET /email-template
GET /envelope
GET /envelope/envelopeCards
GET /envelope/getCode/test
GET /envelope/getFile/test
GET /envelope/{envelopeId}/documents
GET /envelope/{envelopeId}/documents/recipient
GET /envelope/{envelopeId}/documents/{documentId}
GET /envelope/{envelopeId}/documents/{documentId}/envelopeDocumentField/completed-fields
GET /envelope/{envelopeId}/documents/{documentId}/envelopeDocumentField/getAll
GET /envelope/{envelopeId}/documents/{documentId}/envelopeDocumentField/{envelopeDocumentFieldId}
GET /envelope/{envelopeId}/documents/{documentId}/generatePDF
GET /envelope/{envelopeId}/recipients
GET /envelope/{envelopeId}/recipients/{recipientId}/validate
GET /envelope/{envelopeId}/{envelopeDocumentId}/auditTrail
GET /envelope/{id}
GET /envelopeDocument/{envelopeDocumentId}/fieldConfig
GET /envelopeDocument/{envelopeDocumentId}/fieldConfig/{id}
GET /help/category
GET /help/category/{id}
GET /help/knowledgeArticle
GET /help/video
GET /help/{id}
GET /sender/copyRecipientSignerLink/{envelopeId}/{recipientMailId}
GET /ssign/envelop
GET /ssign/envelop/{id}
GET /ssign/v1/envelop
PATCH /envelope/{envelopeId}/documents/{documentId}/envelopeDocumentField/inputfield
PATCH /envelope/{envelopeId}/documents/{documentId}/recipients
PATCH /sender/{id}/submitEnvelop
PATCH /ssign/save
PATCH /ssign/submit
POST /authenticate
POST /document
POST /document/invite/validate
POST /document/user/verifyOTP
POST /encryptedKey
POST /envelope/create
POST /envelope/multi
POST /envelope/send/test
POST /envelope/workflow/create
POST /envelope/{envelopeId}/documents/multiple
POST /envelope/{envelopeId}/documents/uploadFile
POST /envelope/{envelopeId}/documents/{documentId}/envelopeDocumentField
POST /envelope/{envelopeId}/documents/{documentId}/recipient
POST /envelope/{envelopeId}/recipients/submit
POST /sender/email
POST /sender/envelop
POST /sender/inviteUser
POST /sender/resendEnvelope
POST /sender/userInvite
POST /sender/workflow/notification
POST /ssign/init
POST /ssign/initializeSession
POST /ssign/send2FACode
POST /ssign/submitConsent
POST /ssign/verify2FA

Found on 2025-12-11 09:56

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api-gateway-qa.codementor.io
Port: 443
URL: https://api-gateway-qa.codementor.io

First seen 2025-10-27 00:21
Last seen 2025-12-27 06:24
Open for 61 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3d62456e99bfd41cbbe7e5e30257594aa8a495e1c
```
GraphQL introspection enabled at /graphql
Types: 134 (by kind: ENUM: 2, INTERFACE: 1, OBJECT: 122, SCALAR: 7, UNION: 2)
Operations:
- Query: Query | fields: contract, defaultContractRates, developerGroups, jobRequest, mentor
- Mutation: Mutation | fields: testField
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2025-12-27 06:24
  
  226.8 kBytes
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: staging-active.api.sonik.fm
Port: 80
URL: http://staging-active.api.sonik.fm

First seen 2025-11-13 02:24
Last seen 2025-12-26 21:09
Open for 43 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2025-12-26 21:09
Create report
GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: learning.artcompiler.com
Port: 443
URL: https://learning.artcompiler.com

First seen 2025-11-30 00:51
Last seen 2025-12-23 08:19
Open for 23 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db84e0e3509359fac05d0d3d0467b0624c654b451c654b451c
```
GraphQL introspection enabled at /api
Types: 11 (by kind: ENUM: 2, OBJECT: 7, SCALAR: 2)
Operations:
- Query: Query | fields: signRequest, test
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-12-23 08:19
  
  18.0 kBytes
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: dev-api-beam.protpulse.com
Port: 80
URL: http://dev-api-beam.protpulse.com

First seen 2025-11-14 03:43
Last seen 2025-12-23 03:18
Open for 38 days

Severity: info
Fingerprint: 5733ddf49ff49cd1a8bcc6e5d1a5beb2743bf7bd14e53edf4bee8e5e59f93294

Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html - sample paths:
DELETE /api/v1/employee/profile/certifications/{certificationId}
DELETE /api/v1/employee/profile/dependants/{dependantId}
DELETE /api/v1/employee/profile/education/{educationId}
DELETE /api/v1/employee/profile/memberships/{membershipId}
DELETE /api/v1/employee/profile/previous-employment/{previousEmploymentId}
DELETE /api/v1/employee/profile/referee/{refereeId}
GET /api/reference/employee-status
GET /api/reference/system-roles
GET /api/v1/auth/companies
GET /api/v1/auth/get-token
GET /api/v1/auth/public-key
GET /api/v1/bulk-upload/download-template
GET /api/v1/certificate/detail
GET /api/v1/certificate/download-certificate
GET /api/v1/certificate/overview
GET /api/v1/company/subscription-plans
GET /api/v1/company/verify-subscription
GET /api/v1/company/{companyId}
GET /api/v1/delay/detail
GET /api/v1/delay/overview
GET /api/v1/document_category/overview
GET /api/v1/employee
GET /api/v1/employee/profile
GET /api/v1/employee/search
GET /api/v1/employee/summary
GET /api/v1/employee/{staffId}
GET /api/v1/expense
GET /api/v1/expense/basic-overview
GET /api/v1/expense/overview
GET /api/v1/funds/all
GET /api/v1/funds/detail
GET /api/v1/hse/hoc/detail
GET /api/v1/hse/hoc/overview
GET /api/v1/hse/inventory/detail
GET /api/v1/hse/inventory/items
GET /api/v1/hse/inventory/overview
GET /api/v1/hse/inventory/project/{projectId}/overview
GET /api/v1/hse/inventory/request/detail
GET /api/v1/hse/inventory/request/overview
GET /api/v1/hse/inventory/waybill/detail
GET /api/v1/hse/inventory/waybill/overview
GET /api/v1/hse/investigation/detail
GET /api/v1/hse/investigation/overview
GET /api/v1/hse/procurement/detail
GET /api/v1/hse/procurement/overview
GET /api/v1/inventory/detail
GET /api/v1/inventory/logs
GET /api/v1/inventory/machine-overview
GET /api/v1/inventory/names
GET /api/v1/inventory/non-machinery-distribution
GET /api/v1/inventory/overview
GET /api/v1/inventory/project-logs
GET /api/v1/inventory/project/machinery/detail
GET /api/v1/inventory/project/non-machinery/detail
GET /api/v1/inventory/project/overview
GET /api/v1/inventory/project/purchase/detail
GET /api/v1/inventory/project/purchase/overview
GET /api/v1/inventory/request
GET /api/v1/inventory/request-detail
GET /api/v1/inventory/request-overview
GET /api/v1/job_log/detail
GET /api/v1/job_log/overview
GET /api/v1/job_log/project-details
GET /api/v1/leave/config
GET /api/v1/leave/config/{configId}
GET /api/v1/maintenance/equipment-full-details
GET /api/v1/maintenance/equipments
GET /api/v1/maintenance/equipments-detail-list
GET /api/v1/maintenance/equipments-detail-search
GET /api/v1/maintenance/order-type-names
GET /api/v1/maintenance/ticket-detail
GET /api/v1/maintenance/ticket-overview
GET /api/v1/procurement/detail
GET /api/v1/procurement/overview
GET /api/v1/procurement/preview
GET /api/v1/project
GET /api/v1/project/all
GET /api/v1/project/summary
GET /api/v1/repository
GET /api/v1/repository/download
GET /api/v1/task
GET /api/v1/task/{taskId}
GET /api/v1/ticket/
GET /api/v1/ticket/all
GET /api/v1/vendor
GET /api/v1/vendor/all
GET /api/v1/vendor/names
GET /api/v1/waybill
GET /api/v1/waybill/all
GET /api/v1/waybill/locations
GET /api/v1/waybill/materials/location/{projectId}
GET /api/v1/waybill/{waybillId}
GET /api/v1/workflow/requests
GET /api/v1/workflow/requests/{requestId}
GET /beam/api/v1/hse_assignment/detail
GET /beam/api/v1/hse_assignment/overview
GET /beam/api/v1/mgt_dashboard/employee_chart
GET /beam/api/v1/mgt_dashboard/main_cards
GET /beam/api/v1/mgt_dashboard/project_progress_chart
POST /api/v1/auth/login
POST /api/v1/auth/logout
POST /api/v1/auth/verify-token
POST /api/v1/certificate
POST /api/v1/certificate/approve
POST /api/v1/certificate/review
POST /api/v1/company/complete-registration
POST /api/v1/company/register
POST /api/v1/company/subscribe
POST /api/v1/company/{companyId}/resend-verification-code
POST /api/v1/company/{companyId}/verify
POST /api/v1/delay
POST /api/v1/delay/approve
POST /api/v1/delay/close
POST /api/v1/document_category/
POST /api/v1/document_category/update
POST /api/v1/employee/profile/certifications
POST /api/v1/employee/profile/dependants
POST /api/v1/employee/profile/educations
POST /api/v1/employee/profile/memberships
POST /api/v1/employee/profile/next-of-kin
POST /api/v1/employee/profile/previous-employment
POST /api/v1/employee/profile/referee
POST /api/v1/expense/approve
POST /api/v1/expense/review
POST /api/v1/files
POST /api/v1/funds/approve
POST /api/v1/funds/request
POST /api/v1/funds/review
POST /api/v1/hse/hoc/behaviour
POST /api/v1/hse/hoc/nearHazard
POST /api/v1/hse/hoc/treat-nearHazard
POST /api/v1/hse/inventory
POST /api/v1/hse/inventory/approve
POST /api/v1/hse/inventory/project/request
POST /api/v1/hse/inventory/project/request/approve
POST /api/v1/hse/inventory/project/request/treat
POST /api/v1/hse/inventory/project/request/treat-approve
POST /api/v1/hse/inventory/quantity
POST /api/v1/hse/inventory/update
POST /api/v1/hse/inventory/waybill
POST /api/v1/hse/inventory/waybill/approve
POST /api/v1/hse/inventory/waybill/receive
POST /api/v1/hse/investigation
POST /api/v1/hse/investigation/approve
POST /api/v1/hse/investigation/edit
POST /api/v1/hse/investigation/review
POST /api/v1/hse/procurement/
POST /api/v1/hse/procurement/approve
POST /api/v1/hse/procurement/review
POST /api/v1/inventory/approve-addition
POST /api/v1/inventory/approve-request
POST /api/v1/inventory/approve-type
POST /api/v1/inventory/machinery
POST /api/v1/inventory/non-machinery
POST /api/v1/inventory/project/alert-level/approve
POST /api/v1/inventory/project/alert-level/update
POST /api/v1/inventory/project/purchase
POST /api/v1/inventory/project/purchase/approve
POST /api/v1/inventory/project/purchase/treat
POST /api/v1/inventory/treat-request
POST /api/v1/inventory/type
POST /api/v1/inventory/usage/collections
POST /api/v1/inventory/usage/consumables
POST /api/v1/inventory/usage/machine
POST /api/v1/inventory/usage/returns
POST /api/v1/job_log
POST /api/v1/job_log/approve
POST /api/v1/leave/apply
POST /api/v1/leave/config/{requestId}/approve
POST /api/v1/leave/profile
POST /api/v1/leave/{applicationId}/approve
POST /api/v1/maintenance/acknowledge-ticket
POST /api/v1/maintenance/approve-equipment
POST /api/v1/maintenance/approve-order-type
POST /api/v1/maintenance/approve-ticket
POST /api/v1/maintenance/approve-ticket-treat
POST /api/v1/maintenance/close-ticket
POST /api/v1/maintenance/edit-order-type
POST /api/v1/maintenance/equipment
POST /api/v1/maintenance/order-type
POST /api/v1/maintenance/ticket
POST /api/v1/maintenance/treat-ticket
POST /api/v1/procurement
POST /api/v1/procurement/approve
POST /api/v1/procurement/review
POST /api/v1/project/create/{requestId}/approve
POST /api/v1/project/create/{requestId}/review
POST /api/v1/project/{projectId}/close-out
POST /api/v1/project/{projectId}/resume
POST /api/v1/project/{projectId}/suspend
POST /api/v1/task/{taskId}/close-out
POST /api/v1/task/{taskId}/feedback
POST /api/v1/ticket
POST /api/v1/vendor/approve
POST /api/v1/vendor/review
POST /api/v1/vendor/update
POST /api/v1/waybill/approve
POST /api/v1/waybill/external
POST /api/v1/waybill/internal
POST /api/v1/waybill/receive
POST /beam/api/v1/hse_assignment/
POST /beam/api/v1/hse_assignment/return
PUT /api/v1/auth/reset-password
PUT /api/v1/auth/set-forgot-password
PUT /api/v1/employee/{staffId}/admin
PUT /api/v1/funds/edit_request
PUT /api/v1/project/create/{requestId}/update
PUT /api/v1/project/{projectId}/update
PUT /api/v1/ticket/approve
PUT /api/v1/ticket/edit
PUT /api/v1/ticket/review

Found on 2025-12-23 03:18

Severity: info
Fingerprint: 5733ddf49ff49cd1926e27d0926e27d0926e27d0926e27d0926e27d0926e27d0
```
Public Swagger UI/API detected at path: /webjars/swagger-ui/index.html
```
Found on 2025-11-30 17:11

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.better-img.com
Port: 443
URL: https://www.better-img.com

First seen 2025-10-17 12:13
Last seen 2025-12-22 13:24
Open for 66 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d80f953e867c1e15b42445646f068dc9b5
```
Found 8 files trough .DS_Store spidering:

/400.html
/404.html
/406-unsupported-browser.html
/422.html
/500.html
/icon.png
/icon.svg
/robots.txt
```
  Found on 2025-12-22 13:24
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: ospex.org
Port: 443
URL: https://ospex.org

First seen 2025-11-12 03:23
Last seen 2025-12-18 15:37
Open for 36 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d67e8efd66df1faf16180322d794ecad951b7f3382

GraphQL introspection enabled at /api/graphql
Types: 34 (by kind: ENUM: 11, INPUT_OBJECT: 6, OBJECT: 7, SCALAR: 10)
Operations:
- Query: Query | fields: contest, contests, position, speculation, speculations
Directives: derivedFrom, entity, include, skip, subgraphId (total: 5)

Readable stores: 1
_meta (args: optional/default) : deployment=QmWLAfhB3xDkBAbANBi9SHNjjcZMi4bEENYdkzVN2scvda hasIndexingErrors=false

Found on 2025-12-18 15:37

118.4 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d67e8efd66df1faf16180322d794ecad955e2a3c4a

GraphQL introspection enabled at /api/graphql
Types: 34 (by kind: ENUM: 11, INPUT_OBJECT: 6, OBJECT: 7, SCALAR: 10)
Operations:
- Query: Query | fields: contest, contests, position, speculation, speculations
Directives: derivedFrom, entity, include, skip, subgraphId (total: 5)

Readable stores: 1
_meta (args: optional/default) : hasIndexingErrors=false deployment=QmWLAfhB3xDkBAbANBi9SHNjjcZMi4bEENYdkzVN2scvda

Found on 2025-11-12 03:23

118.4 kBytes 2 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: www.ospex.org
Port: 443
URL: https://www.ospex.org

First seen 2025-11-12 03:13
Last seen 2025-12-17 01:38
Open for 34 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d67e8efd66df1faf16180322d794ecad951b7f3382

GraphQL introspection enabled at /api/graphql
Types: 34 (by kind: ENUM: 11, INPUT_OBJECT: 6, OBJECT: 7, SCALAR: 10)
Operations:
- Query: Query | fields: contest, contests, position, speculation, speculations
Directives: derivedFrom, entity, include, skip, subgraphId (total: 5)

Readable stores: 1
_meta (args: optional/default) : deployment=QmWLAfhB3xDkBAbANBi9SHNjjcZMi4bEENYdkzVN2scvda hasIndexingErrors=false

Found on 2025-12-17 01:38

118.4 kBytes 2 rows

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d67e8efd66df1faf16180322d794ecad955e2a3c4a

GraphQL introspection enabled at /api/graphql
Types: 34 (by kind: ENUM: 11, INPUT_OBJECT: 6, OBJECT: 7, SCALAR: 10)
Operations:
- Query: Query | fields: contest, contests, position, speculation, speculations
Directives: derivedFrom, entity, include, skip, subgraphId (total: 5)

Readable stores: 1
_meta (args: optional/default) : hasIndexingErrors=false deployment=QmWLAfhB3xDkBAbANBi9SHNjjcZMi4bEENYdkzVN2scvda

Found on 2025-11-12 03:13

118.4 kBytes 2 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.better-img.com
Port: 80
URL: http://www.better-img.com

First seen 2025-11-22 03:44
Last seen 2025-12-12 07:05
Open for 20 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c4239b3d84239b3d80f953e867c1e15b42445646f068dc9b5
```
Found 8 files trough .DS_Store spidering:

/400.html
/404.html
/406-unsupported-browser.html
/422.html
/500.html
/icon.png
/icon.svg
/robots.txt
```
  Found on 2025-12-12 07:05
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.rankings.iclouds.com.br
Port: 80
URL: http://api.rankings.iclouds.com.br

First seen 2025-11-29 00:46
Last seen 2025-12-11 03:16
Open for 12 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b6e67656b6e67656b6e67656b6e67656b6e67656b6e67656
```
Public Swagger UI/API detected at path: /swagger-ui.html
```
  Found on 2025-12-11 03:16
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: ebscocms.flxsystems.com
Port: 443
URL: https://ebscocms.flxsystems.com

First seen 2024-12-12 15:50
Last seen 2025-12-09 00:22
Open for 361 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2025-12-09 00:22
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: ebscocms.flxsystems.com
Port: 80
URL: http://ebscocms.flxsystems.com

First seen 2025-08-10 00:45
Last seen 2025-12-09 00:22
Open for 120 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9db7f4c636b7f4c636b7f4c636b7f4c636
```
Found 1 files trough .DS_Store spidering:

/images
```
  Found on 2025-12-09 00:22
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: ru.bossaz-pr-1267.azstage.in
Port: 443
URL: https://ru.bossaz-pr-1267.azstage.in

First seen 2025-12-03 11:43

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182

GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-03 11:43

140.0 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: ru.bossaz-pr-1264.azstage.in
Port: 80
URL: http://ru.bossaz-pr-1264.azstage.in

First seen 2025-12-02 09:03

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182

GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-12-02 09:03

140.0 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: ru.bossaz-pr-1262.azstage.in
Port: 443
URL: https://ru.bossaz-pr-1262.azstage.in

First seen 2025-11-24 09:19
Last seen 2025-12-01 07:04
Open for 6 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3edcd2f02dd1cea9285e39de80e5d532613018182
```
GraphQL introspection enabled at /graphql
Types: 125 (by kind: ENUM: 22, INPUT_OBJECT: 20, INTERFACE: 2, OBJECT: 69, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createContactEmail, createInvoice, createPayment, createResume
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-12-01 07:04
  
  140.0 kBytes
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: url-short-be.izi-logistics.com
Port: 80
URL: http://url-short-be.izi-logistics.com

First seen 2025-10-21 01:10
Last seen 2025-11-29 04:40
Open for 39 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3cbe965b83d487a5c7390563c84997a9d4aea46cc

GraphQL introspection enabled at /graphql
Types: 471 (by kind: ENUM: 26, INPUT_OBJECT: 171, OBJECT: 259, SCALAR: 11, UNION: 4)
Operations:
- Query: Query | fields: affiliateUsers, emitAction, healthy, sessions, warehouseCompanyList
- Mutation: Mutation | fields: createLogEmailNotification, deleteAllSessions, updateOrderPreparing, updateOrderPreparingStatuses, updateWarehouseCompany
Directives: admin, auth, authRestrictedAccess, carrier, customer, forwarder, forwarderCarrier, guest, orderEdit, restricted_access_auth (total: 16)

Found on 2025-11-29 04:40

935.7 kBytes

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3165850873f1efb35146c35c2c690503e31885ecd

GraphQL introspection enabled at /graphql
Types: 451 (by kind: ENUM: 23, INPUT_OBJECT: 161, OBJECT: 251, SCALAR: 12, UNION: 4)
Operations:
- Query: Query | fields: _emty, emitAction, healthy, sessions, warehouseCompanyList
- Mutation: Mutation | fields: _emty, deleteAllSessions, updateOrderPreparing, updateOrderPreparingStatuses, updateWarehouseCompany
Directives: admin, auth, carrier, concat, customer, extends, forwarder, forwarderCarrier, guest, restricted_access_auth (total: 16)

Found on 2025-11-16 05:54

849.5 kBytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: jallan.in
Port: 80
URL: http://jallan.in

First seen 2025-11-15 11:41
Last seen 2025-11-28 09:53
Open for 12 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c92dfb71592dfb715cc83e01d922a0cbd24c579aa80a1658f

Found 45 files trough .DS_Store spidering:

/404.html
/422.html
/500.html
/apple-touch-icon-precomposed.png
/apple-touch-icon.png
/assets
/assets/css
/assets/fonts
/assets/images
/assets/images/about-banner.jpg
/assets/images/background-heading-page.png
/assets/images/banner
/assets/images/banner/Slide-1.jpg
/assets/images/banner/Slide-2.jpg
/assets/images/banner/Slide-3.jpg
/assets/images/breadcrumb-bg
/assets/images/breadcrumb-bg/01.jpg
/assets/images/breadcrumb-bg/background-heading-page.png
/assets/images/favicon.ico
/assets/images/icons
/assets/images/logo-alt.png
/assets/images/logo-big.png
/assets/images/logo-icon.png
/assets/images/logo.png
/assets/js
/assets/php
/assets/revolution
/assets/revolution/assets
/assets/revolution/css
/assets/revolution/css/navigation-skins
/assets/revolution/fonts
/assets/revolution/images
/assets/revolution/js
/assets/revolution/php
/assets/revolution/php/facebook
/assets/revolution/php/flickr
/assets/revolution/php/instagram
/assets/revolution/php/twitter
/assets/revolution/php/twitter/connection
/assets/revolution/php/vimeo
/assets/revolution/php/youtube
/assets/scss
/favicon.ico
/robots.txt
/uploads

Found on 2025-11-28 09:53

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 15.197.149.68
Domain: saleor.services.qa.dotmall.jp
Port: 80
URL: http://saleor.services.qa.dotmall.jp

First seen 2025-11-24 00:46
Last seen 2025-11-24 00:46

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
Found on 2025-11-24 00:46

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3606faf5747346c85124df520e240f560033d9b47

GraphQL introspection enabled at /graphql
Types: 740 (by kind: ENUM: 115, INPUT_OBJECT: 119, INTERFACE: 4, OBJECT: 477, SCALAR: 17, UNION: 8)
Operations:
- Query: Query | fields: supplies, supply, supplyLine, supplyLineWithdrawApplications, supplyLines
- Mutation: Mutation | fields: supplyCreate, supplyLineComplete, supplyLineUpdateByMall, supplyLineUpdateByShop, supplyLineWithdrawApplicationCreate
- Subscription: Subscription | fields: event
Directives: deprecated, doc, include, skip (total: 4)

Found on 2025-11-24 00:46

1.4 MBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: api.aprendeconlumi.com
Port: 80
URL: http://api.aprendeconlumi.com

First seen 2025-11-10 01:11
Last seen 2025-11-22 12:43
Open for 12 days
- Severity: medium
  Fingerprint: c2db3a1c40d490db84e0e350e1bb2810604979d468a520c3c6af88f6315bc220
```
GraphQL introspection enabled at /api
Types: 70 (by kind: ENUM: 2, INPUT_OBJECT: 22, OBJECT: 41, SCALAR: 5)
Operations:
- Query: RootQuery | fields: cases, courses, glossary, lessons, programs
- Mutation: RootMutation | fields: createCase, createCases, createGlossaries, createGlossary, createProgram
Directives: deprecated, include, skip, specifiedBy (total: 4)
```
  Found on 2025-11-22 12:43
  
  100.7 kBytes
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.gameapi.gg
Port: 443
URL: https://api.gameapi.gg

First seen 2025-10-20 00:36
Last seen 2025-11-12 19:07
Open for 23 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd151e75e4bf6dc8a1bf6dc8a1bf6dc8a1bf6dc8a1bf6dc8a1b
```
Public Swagger UI/API detected at path: /v3/api-docs - sample paths:
GET /api/v1/platforms
```
  Found on 2025-11-12 19:07
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: api.geniall.uk
Port: 80
URL: http://api.geniall.uk

First seen 2025-11-05 20:32
- Severity: info
  Fingerprint: 5733ddf49ff49cd1bf890109bf890109bf890109bf890109bf890109bf890109
```
Public Swagger UI/API detected at path: /api-docs/swagger.json
```
  Found on 2025-11-05 20:32
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: bossaz-pr-1249.azstage.in
Port: 443
URL: https://bossaz-pr-1249.azstage.in

First seen 2025-10-29 13:11

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a1e646a4475e43281334f282a3462dcb7af4e923

GraphQL introspection enabled at /graphql
Types: 115 (by kind: ENUM: 21, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 64, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-10-29 13:11

131.6 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: ru.bossaz-pr-1249.azstage.in
Port: 443
URL: https://ru.bossaz-pr-1249.azstage.in

First seen 2025-10-29 13:11

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a1e646a4475e43281334f282a3462dcb7af4e923

GraphQL introspection enabled at /graphql
Types: 115 (by kind: ENUM: 21, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 64, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-10-29 13:11

131.6 kBytes

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: en.bossaz-pr-1246.azstage.in
Port: 443
URL: https://en.bossaz-pr-1246.azstage.in

First seen 2025-10-29 08:23

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa3a1e646a4475e43281334f282a3462dcb7af4e923

GraphQL introspection enabled at /graphql
Types: 115 (by kind: ENUM: 21, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 64, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-10-29 08:23

131.6 kBytes

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 76.223.57.73
Domain: bossaz-pr-1246.azstage.in
Port: 443
URL: https://bossaz-pr-1246.azstage.in

First seen 2025-10-29 08:23
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-10-29 08:23
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa3a1e646a4475e43281334f282a3462dcb7af4e923
```
GraphQL introspection enabled at /graphql
Types: 115 (by kind: ENUM: 21, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 64, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: balanceHistory, bookmarks, categories, company, draftResume
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)
```
  Found on 2025-10-29 08:23
  
  131.6 kBytes
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 3.33.241.96
Domain: staging1-api.spotandtango.com
Port: 80
URL: http://staging1-api.spotandtango.com

First seen 2025-10-19 00:49
Last seen 2025-10-29 04:33
Open for 10 days

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43d98b7dbe3cf105fc43ea83b2924d3a4b8c013740

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /pets/{id}/delete-image/
GET /accounts/
GET /accounts/{id}/
GET /accounts/{id}/can_update_pet/
GET /accounts/{id}/marketing_profile_subscriptions/
GET /accounts/{id}/shipping_dates_by_method/
GET /accounts/{id}/shipping_estimates_by_method_from_plan_info/
GET /accounts/{id}/user_treatments/
GET /active_promotions/
GET /active_promotions/{id}/
GET /addresses/
GET /addresses/{id}/
GET /bark_user
GET /body_types/
GET /body_types/{id}/
GET /breeds/
GET /breeds/{id}/
GET /buffer_bags/
GET /buffer_bags/{id}/
GET /calculator/plan_options/
GET /claims/
GET /claims/order/{order_id}/
GET /claims/{id}/
GET /customer_changelog/{id}/
GET /decagon_search
GET /discount/
GET /discounts/
GET /discounts/{id}/
GET /feeding_guidelines/
GET /get_agent/{agent_id}
GET /health_conditions/
GET /health_conditions/{id}/
GET /impersonate/
GET /items/
GET /items/skus/
GET /items/{id}/
GET /items_export/
GET /items_export/{id}/
GET /lifestyles/
GET /lifestyles/{id}/
GET /nutrient_analysis/
GET /nutrient_analysis/{id}/
GET /orders/
GET /orders/{id}/
GET /orders/{id}/addon_products/
GET /orders/{id}/estimated_shipping_dates/
GET /orders/{id}/manifest/
GET /orders/{id}/shipping_estimates_by_method/
GET /orders/{id}/shipping_rates_with_estimates/
GET /packing_slips/
GET /payment_methods/
GET /pet_form_options/
GET /pet_plans/
GET /pet_plans/{id}/
GET /pet_plans/{id}/products/
GET /pet_plans/{id}/reactivation_preview/
GET /pets/
GET /pets/{id}/
GET /plan_sizes/
GET /plan_sizes/{id}/
GET /prices/
GET /prices/meals_per_size/
GET /prices/{id}/
GET /product_items/
GET /product_items/{id}/
GET /product_items_export/
GET /product_items_export/{id}/
GET /product_summary/
GET /product_summary/{id}/
GET /products/
GET /products/codes/
GET /products/discount-eligible-codes/
GET /products/free/
GET /products/merchandise/
GET /products/one-time-codes/
GET /products/one-time-order-products/
GET /products/{code}/
GET /promotions/
GET /promotions/{id}/
GET /recipes/
GET /recipes/daily_essentials/
GET /recipes/fresh/
GET /recipes/ids/
GET /recipes/marketing_recipes/
GET /recipes/pupgum/
GET /recipes/snacks/
GET /recipes/supplements/
GET /recipes/unkibble/
GET /recipes/{id}/
GET /returns/
GET /returns/order/{order_id}/
GET /returns/{id}/
GET /sessions/
GET /sessions/{id}/
GET /sessions/{id}/plan_options/
GET /sessions/{id}/products/
GET /sessions/{id}/shipping_rates_with_estimates/
GET /snacks/
GET /snacks/{id}/
GET /system_changelog/{id}/
GET /track_event/
GET /track_event/{id}/
PATCH /orders/{id}/update_shipping_method/
PATCH /sessions/{id}/clear/
PATCH /sessions/{id}/partial_update_pet_answers/
POST /accounts/{id}/activate/
POST /accounts/{id}/add_new_dog_preview/
POST /accounts/{id}/cancel/
POST /accounts/{id}/change_plan_frequency/
POST /accounts/{id}/create_exclusive_discount/
POST /accounts/{id}/is_eligible_for_exclusive_discount/
POST /accounts/{id}/should_receive_treatment/
POST /addresses/validate_address/
POST /addresses/validate_state/
POST /addresses/validate_street_address/
POST /addresses/validate_zip/
POST /anonymous_user/
POST /anonymous_user/get_or_create/
POST /calculator/build_plan/
POST /calculator/build_plans_for_recipes/
POST /calculator/build_plans_for_size/
POST /customer_search
POST /default_password_request/
POST /delete_pii/
POST /discounts/bulk_create/
POST /discounts/generate_exclusive_discount/
POST /fulfillments/{id}/split/
POST /generate_pr
POST /login/
POST /orders/calculate_shipping_rates_with_estimates/
POST /orders/charge_on_hold/
POST /orders/{id}/apply_discount/
POST /orders/{id}/remove_discount/
POST /password_reset_request/
POST /payment_methods/create_setup_intent/
POST /payment_methods/delete/
POST /payment_methods/set_default/
POST /payment_methods/switch_payment_processor/
POST /pet_plans/create_pet_and_pet_plan/
POST /pet_plans/update_plan_dates/
POST /pet_plans/{id}/update_with_exclusive_discount/
POST /pets/{id}/cancel/
POST /pets/{id}/reactivate/
POST /pets/{id}/upload-image/
POST /product_items/{id}/add_items/
POST /refunds/
POST /reset_password/
POST /sessions/check_valid_email/
POST /sessions/get_or_create_by_anonymous_id/
POST /sessions/get_or_create_by_email/
POST /sessions/{id}/add_survey_response/
POST /sessions/{id}/apply_discount/
POST /sessions/{id}/apply_discounts/
POST /sessions/{id}/build_plans/
POST /sessions/{id}/finalize/
POST /sessions/{id}/get_shipping_rates_zipcode_items/
POST /sessions/{id}/prepare_checkout/
POST /sessions/{id}/remove_discount/
POST /sessions/{id}/should_receive_treatment/
POST /sessions/{id}/update_email/
POST /sessions/{id}/validate_checkout/
POST /totp/
POST /update_password/
POST /webhooks/aftership/
POST /webhooks/braintree/revoke/
POST /webhooks/gladly/
POST /webhooks/orderdesk/
POST /webhooks/shipfusion/
PUT /accounts/mark_viewed_portal_tutorial/
PUT /accounts/{id}/update_customer_email/
PUT /accounts/{id}/update_proactive_customer_support/
PUT /orders/mark_fulfillment_delivery_failed/
PUT /orders/mark_order_cancelled/

Found on 2025-10-29 04:33

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43d98b7dbe3cf105fc43ea83b2924d3a4bd303ce22

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /pets/{id}/delete-image/
GET /accounts/
GET /accounts/{id}/
GET /accounts/{id}/can_update_pet/
GET /accounts/{id}/marketing_profile_subscriptions/
GET /accounts/{id}/shipping_estimates_by_method_from_plan_info/
GET /accounts/{id}/user_treatments/
GET /active_promotions/
GET /active_promotions/{id}/
GET /addresses/
GET /addresses/{id}/
GET /bark_user
GET /body_types/
GET /body_types/{id}/
GET /breeds/
GET /breeds/{id}/
GET /buffer_bags/
GET /buffer_bags/{id}/
GET /calculator/plan_options/
GET /claims/
GET /claims/order/{order_id}/
GET /claims/{id}/
GET /customer_changelog/{id}/
GET /decagon_search
GET /discount/
GET /discounts/
GET /discounts/{id}/
GET /feeding_guidelines/
GET /get_agent/{agent_id}
GET /health_conditions/
GET /health_conditions/{id}/
GET /impersonate/
GET /items/
GET /items/skus/
GET /items/{id}/
GET /items_export/
GET /items_export/{id}/
GET /lifestyles/
GET /lifestyles/{id}/
GET /nutrient_analysis/
GET /nutrient_analysis/{id}/
GET /orders/
GET /orders/{id}/
GET /orders/{id}/addon_products/
GET /orders/{id}/estimated_shipping_dates/
GET /orders/{id}/manifest/
GET /orders/{id}/shipping_estimates_by_method/
GET /orders/{id}/shipping_rates_with_estimates/
GET /packing_slips/
GET /payment_methods/
GET /pet_form_options/
GET /pet_plans/
GET /pet_plans/{id}/
GET /pet_plans/{id}/products/
GET /pet_plans/{id}/reactivation_preview/
GET /pets/
GET /pets/{id}/
GET /plan_sizes/
GET /plan_sizes/{id}/
GET /prices/
GET /prices/meals_per_size/
GET /prices/{id}/
GET /product_items/
GET /product_items/{id}/
GET /product_items_export/
GET /product_items_export/{id}/
GET /product_summary/
GET /product_summary/{id}/
GET /products/
GET /products/codes/
GET /products/discount-eligible-codes/
GET /products/free/
GET /products/merchandise/
GET /products/one-time-codes/
GET /products/one-time-order-products/
GET /products/{code}/
GET /promotions/
GET /promotions/{id}/
GET /recipes/
GET /recipes/daily_essentials/
GET /recipes/fresh/
GET /recipes/ids/
GET /recipes/marketing_recipes/
GET /recipes/pupgum/
GET /recipes/snacks/
GET /recipes/supplements/
GET /recipes/unkibble/
GET /recipes/{id}/
GET /sessions/
GET /sessions/{id}/
GET /sessions/{id}/plan_options/
GET /sessions/{id}/products/
GET /sessions/{id}/shipping_rates_with_estimates/
GET /snacks/
GET /snacks/{id}/
GET /system_changelog/{id}/
GET /track_event/
GET /track_event/{id}/
PATCH /orders/{id}/update_shipping_method/
PATCH /sessions/{id}/clear/
PATCH /sessions/{id}/partial_update_pet_answers/
POST /accounts/{id}/activate/
POST /accounts/{id}/add_new_dog_preview/
POST /accounts/{id}/cancel/
POST /accounts/{id}/change_plan_frequency/
POST /accounts/{id}/create_exclusive_discount/
POST /accounts/{id}/is_eligible_for_exclusive_discount/
POST /accounts/{id}/should_receive_treatment/
POST /addresses/validate_address/
POST /addresses/validate_state/
POST /addresses/validate_street_address/
POST /addresses/validate_zip/
POST /anonymous_user/
POST /anonymous_user/get_or_create/
POST /calculator/build_plan/
POST /calculator/build_plans_for_recipes/
POST /calculator/build_plans_for_size/
POST /customer_search
POST /default_password_request/
POST /delete_pii/
POST /discounts/bulk_create/
POST /discounts/generate_exclusive_discount/
POST /fulfillments/{id}/split/
POST /generate_pr
POST /login/
POST /orders/calculate_shipping_rates_with_estimates/
POST /orders/charge_on_hold/
POST /orders/{id}/apply_discount/
POST /orders/{id}/remove_discount/
POST /password_reset_request/
POST /payment_methods/create_setup_intent/
POST /payment_methods/delete/
POST /payment_methods/set_default/
POST /payment_methods/switch_payment_processor/
POST /pet_plans/create_pet_and_pet_plan/
POST /pet_plans/update_plan_dates/
POST /pet_plans/{id}/update_with_exclusive_discount/
POST /pets/{id}/cancel/
POST /pets/{id}/reactivate/
POST /pets/{id}/upload-image/
POST /product_items/{id}/add_items/
POST /refunds/
POST /reset_password/
POST /sessions/check_valid_email/
POST /sessions/get_or_create_by_anonymous_id/
POST /sessions/get_or_create_by_email/
POST /sessions/{id}/add_survey_response/
POST /sessions/{id}/apply_discount/
POST /sessions/{id}/apply_discounts/
POST /sessions/{id}/build_plans/
POST /sessions/{id}/finalize/
POST /sessions/{id}/get_shipping_rates_zipcode_items/
POST /sessions/{id}/prepare_checkout/
POST /sessions/{id}/remove_discount/
POST /sessions/{id}/should_receive_treatment/
POST /sessions/{id}/update_email/
POST /sessions/{id}/validate_checkout/
POST /totp/
POST /update_password/
POST /webhooks/aftership/
POST /webhooks/braintree/revoke/
POST /webhooks/gladly/
POST /webhooks/orderdesk/
POST /webhooks/shipfusion/
PUT /accounts/mark_viewed_portal_tutorial/
PUT /accounts/{id}/update_customer_email/
PUT /accounts/{id}/update_proactive_customer_support/
PUT /orders/mark_fulfillment_delivery_failed/
PUT /orders/mark_order_cancelled/

Found on 2025-10-27 05:53

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43d98b7dbe3cf105fc43ea83b2924d3a4b580d187a

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /pets/{id}/delete-image/
GET /accounts/
GET /accounts/{id}/
GET /accounts/{id}/can_update_pet/
GET /accounts/{id}/marketing_profile_subscriptions/
GET /accounts/{id}/shipping_estimates_by_method_from_plan_info/
GET /accounts/{id}/user_treatments/
GET /active_promotions/
GET /active_promotions/{id}/
GET /addresses/
GET /addresses/{id}/
GET /bark_user
GET /body_types/
GET /body_types/{id}/
GET /breeds/
GET /breeds/{id}/
GET /buffer_bags/
GET /buffer_bags/{id}/
GET /calculator/plan_options/
GET /claims/
GET /claims/order/{order_id}/
GET /claims/{id}/
GET /customer_changelog/{id}/
GET /decagon_search
GET /discount/
GET /discounts/
GET /discounts/{id}/
GET /feeding_guidelines/
GET /get_agent/{agent_id}
GET /health_conditions/
GET /health_conditions/{id}/
GET /impersonate/
GET /items/
GET /items/skus/
GET /items/{id}/
GET /items_export/
GET /items_export/{id}/
GET /lifestyles/
GET /lifestyles/{id}/
GET /nutrient_analysis/
GET /nutrient_analysis/{id}/
GET /orders/
GET /orders/{id}/
GET /orders/{id}/addon_products/
GET /orders/{id}/estimated_shipping_dates/
GET /orders/{id}/manifest/
GET /orders/{id}/shipping_estimates_by_method/
GET /orders/{id}/shipping_rates_with_estimates/
GET /packing_slips/
GET /payment_methods/
GET /pet_form_options/
GET /pet_plans/
GET /pet_plans/{id}/
GET /pet_plans/{id}/products/
GET /pet_plans/{id}/reactivation_preview/
GET /pets/
GET /pets/{id}/
GET /plan_sizes/
GET /plan_sizes/{id}/
GET /prices/
GET /prices/meals_per_size/
GET /prices/{id}/
GET /product_items/
GET /product_items/{id}/
GET /product_items_export/
GET /product_items_export/{id}/
GET /product_summary/
GET /product_summary/{id}/
GET /products/
GET /products/codes/
GET /products/discount-eligible-codes/
GET /products/free/
GET /products/merchandise/
GET /products/one-time-codes/
GET /products/one-time-order-products/
GET /products/{code}/
GET /promotions/
GET /promotions/{id}/
GET /recipes/
GET /recipes/daily_essentials/
GET /recipes/fresh/
GET /recipes/ids/
GET /recipes/marketing_recipes/
GET /recipes/pupgum/
GET /recipes/snacks/
GET /recipes/supplements/
GET /recipes/unkibble/
GET /recipes/{id}/
GET /sessions/
GET /sessions/{id}/
GET /sessions/{id}/plan_options/
GET /sessions/{id}/products/
GET /sessions/{id}/shipping_rates_with_estimates/
GET /snacks/
GET /snacks/{id}/
GET /system_changelog/{id}/
GET /track_event/
GET /track_event/{id}/
PATCH /orders/{id}/update_shipping_method/
PATCH /sessions/{id}/clear/
PATCH /sessions/{id}/partial_update_pet_answers/
POST /accounts/{id}/activate/
POST /accounts/{id}/add_new_dog_preview/
POST /accounts/{id}/cancel/
POST /accounts/{id}/change_plan_frequency/
POST /accounts/{id}/create_exclusive_discount/
POST /accounts/{id}/is_eligible_for_exclusive_discount/
POST /accounts/{id}/should_receive_treatment/
POST /addresses/validate_address/
POST /addresses/validate_state/
POST /addresses/validate_street_address/
POST /addresses/validate_zip/
POST /anonymous_user/
POST /anonymous_user/get_or_create/
POST /calculator/build_plan/
POST /calculator/build_plans_for_recipes/
POST /calculator/build_plans_for_size/
POST /customer_search
POST /default_password_request/
POST /delete_pii/
POST /discounts/bulk_create/
POST /discounts/generate_exclusive_discount/
POST /fulfillments/{id}/split/
POST /generate_pr
POST /login/
POST /orders/calculate_shipping_rates_with_estimates/
POST /orders/charge_on_hold/
POST /orders/{id}/apply_discount/
POST /orders/{id}/remove_discount/
POST /password_reset_request/
POST /payment_methods/create_setup_intent/
POST /payment_methods/delete/
POST /payment_methods/set_default/
POST /payment_methods/switch_payment_processor/
POST /pet_plans/create_pet_and_pet_plan/
POST /pet_plans/update_plan_dates/
POST /pet_plans/{id}/update_with_exclusive_discount/
POST /pets/{id}/cancel/
POST /pets/{id}/reactivate/
POST /pets/{id}/upload-image/
POST /product_items/{id}/add_items/
POST /refunds/
POST /reset_password/
POST /sessions/check_valid_email/
POST /sessions/get_or_create_by_anonymous_id/
POST /sessions/get_or_create_by_email/
POST /sessions/{id}/add_survey_response/
POST /sessions/{id}/apply_discount/
POST /sessions/{id}/apply_discounts/
POST /sessions/{id}/build_plans/
POST /sessions/{id}/finalize/
POST /sessions/{id}/get_shipping_rates_zipcode_items/
POST /sessions/{id}/prepare_checkout/
POST /sessions/{id}/remove_discount/
POST /sessions/{id}/should_receive_treatment/
POST /sessions/{id}/update_email/
POST /sessions/{id}/validate_checkout/
POST /totp/
POST /update_password/
POST /webhooks/braintree/revoke/
PUT /accounts/mark_viewed_portal_tutorial/
PUT /accounts/{id}/update_customer_email/
PUT /accounts/{id}/update_proactive_customer_support/
PUT /orders/mark_fulfillment_delivery_failed/
PUT /orders/mark_order_cancelled/

Found on 2025-10-21 09:07

Create report

GraphQL introspection is enabled.

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: bossaz-pr-1245.azstage.in
Port: 443
URL: https://bossaz-pr-1245.azstage.in

First seen 2025-10-27 07:20
- Severity: medium
  Fingerprint: c2db3a1c40d490db1a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa31a0bbaa3
```
GraphQL introspection enabled at /graphql
```
  Found on 2025-10-27 07:20
Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: ru.bossaz-pr-1239.azstage.in
Port: 443
URL: https://ru.bossaz-pr-1239.azstage.in

First seen 2025-10-17 11:20
Last seen 2025-10-23 01:21
Open for 5 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa348415a04d811204847c06fc6720daa7f0f70d6bd

GraphQL introspection enabled at /graphql
Types: 113 (by kind: ENUM: 20, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 63, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: bookmarks, categories, company, draftResume, draftVacancy
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 3
bookmarks (args: optional/default) : totalCount=0
resumes (args: optional/default) : totalCount=788
vacancies (args: optional/default) : totalCount=594

Found on 2025-10-23 01:21

129.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa348415a04d811204847c06fc6720daa7ffaefd869

GraphQL introspection enabled at /graphql
Types: 113 (by kind: ENUM: 20, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 63, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: bookmarks, categories, company, draftResume, draftVacancy
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 3
bookmarks (args: optional/default) : totalCount=0
resumes (args: optional/default) : totalCount=878
vacancies (args: optional/default) : totalCount=633

Found on 2025-10-21 09:50

129.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa348415a04d811204847c06fc6720daa7f006ec0c0

GraphQL introspection enabled at /graphql
Types: 113 (by kind: ENUM: 20, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 63, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: bookmarks, categories, company, draftResume, draftVacancy
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 3
bookmarks (args: optional/default) : totalCount=0
resumes (args: optional/default) : totalCount=904
vacancies (args: optional/default) : totalCount=658

Found on 2025-10-19 09:59

129.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa348415a04d811204847c06fc6720daa7fd6bc4733

GraphQL introspection enabled at /graphql
Types: 113 (by kind: ENUM: 20, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 63, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: bookmarks, categories, company, draftResume, draftVacancy
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 3
bookmarks (args: optional/default) : totalCount=0
resumes (args: optional/default) : totalCount=955
vacancies (args: optional/default) : totalCount=710

Found on 2025-10-17 11:20

129.6 kBytes 3 rows

Create report

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 3.33.241.96
Domain: en.bossaz-pr-1239.azstage.in
Port: 443
URL: https://en.bossaz-pr-1239.azstage.in

First seen 2025-10-17 11:20
Last seen 2025-10-22 06:40
Open for 4 days

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa348415a04d811204847c06fc6720daa7ff0e49e08

GraphQL introspection enabled at /graphql
Types: 113 (by kind: ENUM: 20, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 63, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: bookmarks, categories, company, draftResume, draftVacancy
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 3
bookmarks (args: optional/default) : totalCount=0
resumes (args: optional/default) : totalCount=856
vacancies (args: optional/default) : totalCount=625

Found on 2025-10-22 06:40

129.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa348415a04d811204847c06fc6720daa7f42210377

GraphQL introspection enabled at /graphql
Types: 113 (by kind: ENUM: 20, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 63, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: bookmarks, categories, company, draftResume, draftVacancy
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 3
bookmarks (args: optional/default) : totalCount=0
resumes (args: optional/default) : totalCount=881
vacancies (args: optional/default) : totalCount=639

Found on 2025-10-20 07:53

129.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa348415a04d811204847c06fc6720daa7f5e292f87

GraphQL introspection enabled at /graphql
Types: 113 (by kind: ENUM: 20, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 63, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: bookmarks, categories, company, draftResume, draftVacancy
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 3
bookmarks (args: optional/default) : totalCount=0
resumes (args: optional/default) : totalCount=916
vacancies (args: optional/default) : totalCount=672

Found on 2025-10-19 02:11

129.6 kBytes 3 rows

Severity: medium
Fingerprint: c2db3a1c40d490db1a0bbaa348415a04d811204847c06fc6720daa7fd6bc4733

GraphQL introspection enabled at /graphql
Types: 113 (by kind: ENUM: 20, INPUT_OBJECT: 16, INTERFACE: 2, OBJECT: 63, SCALAR: 10, UNION: 2)
Operations:
- Query: Query | fields: bookmarks, categories, company, draftResume, draftVacancy
- Mutation: Mutation | fields: createBookmark, createInvoice, createPayment, createResume, createVacancy
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Readable stores: 3
bookmarks (args: optional/default) : totalCount=0
resumes (args: optional/default) : totalCount=955
vacancies (args: optional/default) : totalCount=710

Found on 2025-10-17 11:20

129.6 kBytes 3 rows

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.threerandomwords.com
Port: 80
URL: http://www.threerandomwords.com

First seen 2024-12-08 06:47
Last seen 2025-09-26 15:11
Open for 292 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c6cdae1676cdae167fab98a13c6a235df396da240047f2261

Found 69 files trough .DS_Store spidering:

/examples
/fc
/icons
/images
/pendingSvg
/pendingSvg/tokenr0.svg
/pendingSvg/tokenr1.svg
/pendingSvg/tokenr10.svg
/pendingSvg/tokenr11.svg
/pendingSvg/tokenr12.svg
/pendingSvg/tokenr13.svg
/pendingSvg/tokenr14.svg
/pendingSvg/tokenr15.svg
/pendingSvg/tokenr16.svg
/pendingSvg/tokenr17.svg
/pendingSvg/tokenr18.svg
/pendingSvg/tokenr19.svg
/pendingSvg/tokenr2.svg
/pendingSvg/tokenr20.svg
/pendingSvg/tokenr21.svg
/pendingSvg/tokenr22.svg
/pendingSvg/tokenr23.svg
/pendingSvg/tokenr24.svg
/pendingSvg/tokenr25.svg
/pendingSvg/tokenr26.svg
/pendingSvg/tokenr27.svg
/pendingSvg/tokenr28.svg
/pendingSvg/tokenr29.svg
/pendingSvg/tokenr3.svg
/pendingSvg/tokenr30.svg
/pendingSvg/tokenr31.svg
/pendingSvg/tokenr32.svg
/pendingSvg/tokenr33.svg
/pendingSvg/tokenr34.svg
/pendingSvg/tokenr35.svg
/pendingSvg/tokenr36.svg
/pendingSvg/tokenr37.svg
/pendingSvg/tokenr38.svg
/pendingSvg/tokenr39.svg
/pendingSvg/tokenr4.svg
/pendingSvg/tokenr40.svg
/pendingSvg/tokenr41.svg
/pendingSvg/tokenr42.svg
/pendingSvg/tokenr43.svg
/pendingSvg/tokenr44.svg
/pendingSvg/tokenr45.svg
/pendingSvg/tokenr46.svg
/pendingSvg/tokenr47.svg
/pendingSvg/tokenr48.svg
/pendingSvg/tokenr49.svg
/pendingSvg/tokenr5.svg
/pendingSvg/tokenr50.svg
/pendingSvg/tokenr51.svg
/pendingSvg/tokenr52.svg
/pendingSvg/tokenr53.svg
/pendingSvg/tokenr54.svg
/pendingSvg/tokenr55.svg
/pendingSvg/tokenr56.svg
/pendingSvg/tokenr57.svg
/pendingSvg/tokenr58.svg
/pendingSvg/tokenr59.svg
/pendingSvg/tokenr6.svg
/pendingSvg/tokenr60.svg
/pendingSvg/tokenr61.svg
/pendingSvg/tokenr62.svg
/pendingSvg/tokenr63.svg
/pendingSvg/tokenr7.svg
/pendingSvg/tokenr8.svg
/pendingSvg/tokenr9.svg

Found on 2025-09-26 15:11

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: threerandomwords.com
Port: 443
URL: https://threerandomwords.com

First seen 2025-02-07 00:14
Last seen 2025-09-26 04:59
Open for 231 days

Severity: medium
Fingerprint: 5f32cf5d6962f09c6cdae1676cdae167fab98a13c6a235df396da240047f2261

Found 69 files trough .DS_Store spidering:

/examples
/fc
/icons
/images
/pendingSvg
/pendingSvg/tokenr0.svg
/pendingSvg/tokenr1.svg
/pendingSvg/tokenr10.svg
/pendingSvg/tokenr11.svg
/pendingSvg/tokenr12.svg
/pendingSvg/tokenr13.svg
/pendingSvg/tokenr14.svg
/pendingSvg/tokenr15.svg
/pendingSvg/tokenr16.svg
/pendingSvg/tokenr17.svg
/pendingSvg/tokenr18.svg
/pendingSvg/tokenr19.svg
/pendingSvg/tokenr2.svg
/pendingSvg/tokenr20.svg
/pendingSvg/tokenr21.svg
/pendingSvg/tokenr22.svg
/pendingSvg/tokenr23.svg
/pendingSvg/tokenr24.svg
/pendingSvg/tokenr25.svg
/pendingSvg/tokenr26.svg
/pendingSvg/tokenr27.svg
/pendingSvg/tokenr28.svg
/pendingSvg/tokenr29.svg
/pendingSvg/tokenr3.svg
/pendingSvg/tokenr30.svg
/pendingSvg/tokenr31.svg
/pendingSvg/tokenr32.svg
/pendingSvg/tokenr33.svg
/pendingSvg/tokenr34.svg
/pendingSvg/tokenr35.svg
/pendingSvg/tokenr36.svg
/pendingSvg/tokenr37.svg
/pendingSvg/tokenr38.svg
/pendingSvg/tokenr39.svg
/pendingSvg/tokenr4.svg
/pendingSvg/tokenr40.svg
/pendingSvg/tokenr41.svg
/pendingSvg/tokenr42.svg
/pendingSvg/tokenr43.svg
/pendingSvg/tokenr44.svg
/pendingSvg/tokenr45.svg
/pendingSvg/tokenr46.svg
/pendingSvg/tokenr47.svg
/pendingSvg/tokenr48.svg
/pendingSvg/tokenr49.svg
/pendingSvg/tokenr5.svg
/pendingSvg/tokenr50.svg
/pendingSvg/tokenr51.svg
/pendingSvg/tokenr52.svg
/pendingSvg/tokenr53.svg
/pendingSvg/tokenr54.svg
/pendingSvg/tokenr55.svg
/pendingSvg/tokenr56.svg
/pendingSvg/tokenr57.svg
/pendingSvg/tokenr58.svg
/pendingSvg/tokenr59.svg
/pendingSvg/tokenr6.svg
/pendingSvg/tokenr60.svg
/pendingSvg/tokenr61.svg
/pendingSvg/tokenr62.svg
/pendingSvg/tokenr63.svg
/pendingSvg/tokenr7.svg
/pendingSvg/tokenr8.svg
/pendingSvg/tokenr9.svg

Found on 2025-09-26 04:59

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: demo.mozoya.app
Port: 80
URL: http://demo.mozoya.app

First seen 2025-05-28 21:29
Last seen 2025-09-08 20:35
Open for 102 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c39aac35b39aac35b92ff58330851146f9668d50a03db5775
```
Found 14 files trough .DS_Store spidering:

/400.html
/404.html
/406-unsupported-browser.html
/422.html
/500.html
/assets
/icon.png
/icon.svg
/icons
/landing.html
/mozoya-logo.png
/robots.txt
/sounds
/whatsapp-preview.jpg
```
  Found on 2025-09-08 20:35
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a01fed2bee22f5fe7c43385907fd5ff81a
```
Found 13 files trough .DS_Store spidering:

/400.html
/404.html
/406-unsupported-browser.html
/422.html
/500.html
/icon.png
/icon.svg
/icons
/landing.html
/mozoya-logo.png
/robots.txt
/sounds
/whatsapp-preview.jpg
```
  Found on 2025-06-06 13:07
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: don-julio.mozoya.app
Port: 80
URL: http://don-julio.mozoya.app

First seen 2025-05-29 21:55
Last seen 2025-09-08 18:08
Open for 101 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c39aac35b39aac35b92ff58330851146f9668d50a03db5775
```
Found 14 files trough .DS_Store spidering:

/400.html
/404.html
/406-unsupported-browser.html
/422.html
/500.html
/assets
/icon.png
/icon.svg
/icons
/landing.html
/mozoya-logo.png
/robots.txt
/sounds
/whatsapp-preview.jpg
```
  Found on 2025-09-08 18:08
- Severity: low
  Fingerprint: 5f32cf5d6962f09cccdd54a0ccdd54a01fed2bee22f5fe7c43385907fd5ff81a
```
Found 13 files trough .DS_Store spidering:

/400.html
/404.html
/406-unsupported-browser.html
/422.html
/500.html
/icon.png
/icon.svg
/icons
/landing.html
/mozoya-logo.png
/robots.txt
/sounds
/whatsapp-preview.jpg
```
  Found on 2025-06-04 06:36
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.justwriteaway.com
Port: 80
URL: http://www.justwriteaway.com

First seen 2025-08-07 18:44
Last seen 2025-08-22 11:24
Open for 14 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc51fa561cca5bd8c5e8a308fd30925ba5
```
Found 4 files trough .DS_Store spidering:

/css
/images
/js
/pdfs
```
  Found on 2025-08-22 11:24
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: staging.gromble.me
Port: 80
URL: http://staging.gromble.me

First seen 2025-06-16 00:27
Last seen 2025-07-08 10:10
Open for 22 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d325beceb325beceb325beceb325beceb
```
Found 1 files trough .DS_Store spidering:

/assets
```
  Found on 2025-07-08 10:10
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: app.wildsyt.com
Port: 443
URL: https://app.wildsyt.com

First seen 2025-05-05 15:55
Last seen 2025-06-16 13:29
Open for 41 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c8329733f8329733f93b77d9b240ac757bb18cb8317310bd8
```
Found 10 files trough .DS_Store spidering:

/404.html
/422.html
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-06-16 13:29
- Severity: low
  Fingerprint: 5f32cf5d6962f09cec7f8772ec7f8772159855a0eb5bbe5662f82d32553b6d83
```
Found 11 files trough .DS_Store spidering:

/404.html
/422.html
/assets
/blank.png
/confirmation.html
/favicon.ico
/packs
/portraits
/pulse.svg
/spinner.svg
/tangrams
```
  Found on 2025-05-29 05:17
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: reservas.trilheiroscampinas.com.br
Port: 443
URL: https://reservas.trilheiroscampinas.com.br

First seen 2025-05-13 19:44
Last seen 2025-05-28 18:45
Open for 14 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d89a8fd6d89a8fd6d89a8fd6d89a8fd6d
```
Found 1 files trough .DS_Store spidering:

/img
```
  Found on 2025-05-28 18:45
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: reservas.donjuantour.com
Port: 443
URL: https://reservas.donjuantour.com

First seen 2024-10-15 23:38
Last seen 2025-05-28 15:23
Open for 224 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d89a8fd6d89a8fd6d89a8fd6d89a8fd6d
```
Found 1 files trough .DS_Store spidering:

/img
```
  Found on 2025-05-28 15:23
- Severity: low
  Fingerprint: 5f32cf5d6962f09c3af247253af247259b6c8633d82c28f00c9839941da5b9a4
```
Found 9 files trough .DS_Store spidering:

/assets
/fonts
/img
/js
/summernote
/summernote/font
/summernote/lang
/summernote/plugin
/uploads
```
  Found on 2025-03-20 19:09
- Severity: low
  Fingerprint: 5f32cf5d6962f09cae99eea9ae99eea97dac2af7dcba0a5c353d13080d85894d
```
Found 23 files trough .DS_Store spidering:

/assets
/fonts
/img
/js
/summernote
/summernote/font
/summernote/lang
/summernote/plugin
/summernote/plugin/databasic
/summernote/plugin/hello
/summernote/plugin/specialchars
/uploads
/uploads/tmp
/uploads/tmp/1640271210-94224-0007-2082
/uploads/tmp/1648828557-12535-0004-0380
/uploads/tmp/1655549931-90893-0001-6389
/uploads/tmp/1655549932-90893-0002-5403
/uploads/tmp/1660679560-68748-0003-1143
/uploads/tmp/1660679608-68748-0004-8247
/uploads/tmp/1660680169-68748-0005-7656
/uploads/tmp/1666457290-42742-0001-5950
/uploads/tmp/1671051034-21419-0001-9030
/uploads/tmp/1671051546-21419-0003-0875
```
  Found on 2025-03-16 21:49
- Severity: low
  Fingerprint: 5f32cf5d6962f09c11d3744d11d3744d336cbabb79547b88a251dcfcf38d3d5d
```
Found 12 files trough .DS_Store spidering:

/assets
/fonts
/img
/js
/summernote
/summernote/font
/summernote/lang
/summernote/plugin
/summernote/plugin/databasic
/summernote/plugin/hello
/summernote/plugin/specialchars
/uploads
```
  Found on 2025-02-04 04:24
- Severity: low
  Fingerprint: 5f32cf5d6962f09c2eda814e2eda814e2cd21bea58de8099011c5f818555f724
```
Found 6 files trough .DS_Store spidering:

/assets
/fonts
/img
/js
/summernote
/uploads
```
  Found on 2024-12-20 10:12
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: developerproai.com
Port: 80
URL: http://developerproai.com

First seen 2024-11-06 05:17
Last seen 2025-05-08 07:11
Open for 183 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c63442d9d63442d9d13be143c13be143c13be143c13be143c
```
Found 1 files trough .DS_Store spidering:

/qr-codes
```
  Found on 2025-05-08 07:11
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: cec-zonaoeste.creativelions.com.br
Port: 80
URL: http://cec-zonaoeste.creativelions.com.br

First seen 2025-02-26 14:18
Last seen 2025-03-10 19:03
Open for 12 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc0363d38caf1e6e4b6d09f0917dcb21f6
```
Found 4 files trough .DS_Store spidering:

/assets
/modelo_de_tabela_para_importar_alunos.xlsx
/system
/uploads
```
  Found on 2025-03-10 19:03
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: cec-grajau.creativelions.com.br
Port: 80
URL: http://cec-grajau.creativelions.com.br

First seen 2025-02-26 14:16
Last seen 2025-03-09 07:08
Open for 10 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c0215adfc0215adfc0363d38caf1e6e4b6d09f0917dcb21f6
```
Found 4 files trough .DS_Store spidering:

/assets
/modelo_de_tabela_para_importar_alunos.xlsx
/system
/uploads
```
  Found on 2025-03-09 07:08
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: apptvnovo.credsisbank.com
Port: 443
URL: https://apptvnovo.credsisbank.com

First seen 2025-01-14 21:31
Last seen 2025-02-02 13:11
Open for 18 days
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f8cd17557c3af78e06550e0a26550e0a2
```
Found 3 files trough .DS_Store spidering:

/alerts
/alerts/1.ogg
/alerts/2.ogg
```
  Found on 2025-02-02 13:11
Create report
MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: fitbite.me
Port: 443
URL: https://fitbite.me

First seen 2025-01-20 02:31
- Severity: low
  Fingerprint: 5f32cf5d6962f09c1a5d9b0f1a5d9b0f6c79163670fb2e8f34f2eb4e34f2eb4e
```
Found 3 files trough .DS_Store spidering:

/imgs
/imgs/mobile_default.png
/vids
```
  Found on 2025-01-20 02:31
Create report

Git configuration and history exposed

The following URL (usually /.git/config) is publicly accessible and is leaking source code and repository configuration.

IP: 3.33.241.96
Domain: thisjobdoesnotexistyet.com
Port: 443
URL: https://thisjobdoesnotexistyet.com

First seen 2024-11-07 06:10
Last seen 2025-01-18 16:36
Open for 72 days

Severity: medium
Fingerprint: 2580fa947178c88602b1737db148c044b81b03713d63bb82370a65221a85bbdb

[core]
	repositoryformatversion = 0
	filemode = true
	bare = false
	logallrefupdates = true
	ignorecase = true
	precomposeunicode = true
[remote "origin"]
	url = git@github.com:KazumaWada/thisjobdoesnotexistyet.git
	fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
	remote = origin
	merge = refs/heads/main
	vscode-merge-base = origin/main
[remote "heroku"]
	url = https://git.heroku.com/stormy-wildwood-83913.git
	fetch = +refs/heads/*:refs/remotes/heroku/*

Found on 2025-01-18 16:36

470 Bytes

Create report

MacOS file listing through .DS_Store file

.DS_Store” is an abbreviation for “Desktop Services Store”. These files are created automatically by Apples “Finder” software (which is part of their OS).

They store information about the files within a folder, including display options of folders, such as icon positions and view settings.

It may happen that .DS_Store files inadvertently leak filenames such as database backups or private administration panels.

IP: 3.33.241.96
Domain: www.thecourts.pk
Port: 80
URL: http://www.thecourts.pk

First seen 2024-12-14 16:24

Severity: medium
Fingerprint: 5f32cf5d6962f09c1f1b52f11f1b52f195d1ef98e9960933e22f5c62054d5917

Found 96 files trough .DS_Store spidering:

/accounts
/accounts/__pycache__
/accounts/migrations
/accounts/migrations/__pycache__
/accounts/templates
/accounts/templates/accounts
/admin_portal
/api
/api/migrations
/bootstrap.bundle.min.js
/core
/courts
/courts/__init__.py
/courts/__pycache__
/courts/admin.py
/courts/apps.py
/courts/management
/courts/migrations
/courts/models.py
/courts/notifications.py
/courts/permissions.py
/courts/serializers.py
/courts/static
/courts/static/courts
/courts/static/courts/css
/courts/static/courts/css/booking.css
/courts/static/courts/css/style.css
/courts/static/courts/images
/courts/static/courts/images/pickle-court.jpg
/courts/static/courts/images/portrait-happy-excited-man-holding-laptop-computer.png
/courts/static/courts/images/projects
/courts/static/courts/images/projects/the-5th-IQYR7N67dhM-unsplash.jpg
/courts/static/courts/images/projects/true-agency-9Bjog5FZ-oc-unsplash.jpg
/courts/static/courts/images/the-courts-logo.png
/courts/static/courts/js
/courts/static/images
/courts/static/images/pickle-court.jpg
/courts/static/images/portrait-happy-excited-man-holding-laptop-computer.png
/courts/static/images/projects
/courts/static/images/projects/the-5th-IQYR7N67dhM-unsplash.jpg
/courts/static/images/projects/true-agency-9Bjog5FZ-oc-unsplash.jpg
/courts/static/images/the-courts-logo.png
/courts/templates
/courts/templates/courts
/courts/templates/courts/emails
/courts/tests.py
/courts/urls.py
/courts/views.py
/jquery.min.js
/manage.py
/management_portal
/Procfile
/project
/requirements.txt
/runtime.txt
/settings.py
/static
/static/courts
/static/courts/css
/static/courts/css/booking.css
/static/courts/css/style.css
/static/courts/images
/static/courts/images/pickle-court.jpg
/static/courts/images/portrait-happy-excited-man-holding-laptop-computer.png
/static/courts/images/projects
/static/courts/images/projects/the-5th-IQYR7N67dhM-unsplash.jpg
/static/courts/images/projects/true-agency-9Bjog5FZ-oc-unsplash.jpg
/static/courts/images/the-courts-logo.png
/static/courts/js
/static/images
/static/images/pickle-court.jpg
/static/images/portrait-happy-excited-man-holding-laptop-computer.png
/static/images/projects
/static/images/projects/the-5th-IQYR7N67dhM-unsplash.jpg
/static/images/projects/true-agency-9Bjog5FZ-oc-unsplash.jpg
/static/images/the-courts-logo.png
/staticfiles
/staticfiles/admin
/staticfiles/admin/css
/staticfiles/admin/img
/staticfiles/admin/js
/staticfiles/courts
/staticfiles/courts/css
/staticfiles/courts/fonts
/staticfiles/courts/images
/staticfiles/courts/js
/staticfiles/images
/staticfiles/rest_framework
/staticfiles/staticfiles.json
/templates
/tests
/venv
/venv/bin
/venv/include
/venv/lib
/venv/lib/python3.9

Found on 2024-12-14 16:24

Create report

Open service 3.33.241.96:443 · storybook.dev.harmonyanalytics.org

2026-01-12 01:03

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 2012
Content-Type: text/html; charset=UTF-8
Date: Mon, 12 Jan 2026 01:03:51 GMT
Etag: "6565ffcd-7dc"
Last-Modified: Tue, 28 Nov 2023 14:57:17 GMT
Nel: {"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To: {"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=g3mE95E0sAO95icEiKqjnklNUA%2FKX4mJi49lUsPN%2Fko%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1768179831"}],"max_age":3600}
Reporting-Endpoints: heroku-nel="https://nel.heroku.com/reports?s=g3mE95E0sAO95icEiKqjnklNUA%2FKX4mJi49lUsPN%2Fko%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1768179831"
Server: Heroku
Vary: Accept-Encoding
Via: 1.1 heroku-router
Connection: close

Page title: Webpack App

<!doctype html><html lang="en"><head><meta charset="utf-8"/><title>Webpack App</title><meta name="viewport" content="width=device-width,initial-scale=1"/><style>html, body {
    overflow: hidden;
    height: 100%;
    width: 100%;
    margin: 0;
    padding: 0;
  }

  * {
    box-sizing: border-box;
  }</style><script>/* globals window */
  /* eslint-disable no-underscore-dangle */
  try {
    if (window.top !== window) {
      window.__REACT_DEVTOOLS_GLOBAL_HOOK__ = window.top.__REACT_DEVTOOLS_GLOBAL_HOOK__;
    }
  } catch (e) {
    // eslint-disable-next-line no-console
    console.warn('unable to connect to top frame for connecting dev tools');
  }

  window.onerror = function onerror(message, source, line, column, err) {
    if (window.CONFIG_TYPE !== 'DEVELOPMENT') return;
    // eslint-disable-next-line no-var, vars-on-top
    var xhr = new window.XMLHttpRequest();
    xhr.open('POST', '/runtime-error');
    xhr.setRequestHeader('Content-Type', 'application/json;charset=UTF-8');
    xhr.send(
      JSON.stringify({
        /* eslint-disable object-shorthand */
        message: message,
        source: source,
        line: line,
        column: column,
        error: err && { message: err.message, name: err.name, stack: err.stack },
        origin: 'manager',
        /* eslint-enable object-shorthand */
      })
    );
  };</script><style>#root[hidden],
      #docs-root[hidden] {
        display: none !important;
      }</style></head><body><div id="root"></div><div id="docs-root"></div><script>window['CONFIG_TYPE'] = "PRODUCTION";
          
      
          
            window['LOGLEVEL'] = "info";
          
      
          
            window['FEATURES'] = {"postcss":true,"emotionAlias":true,"warnOnLegacyHierarchySeparator":true};</script><script src="runtime~main.91a0c7330ab317d35c4a.manager.bundle.js"></script><script src="vendors~main.f7f16cebbf3aa96a4f89.manager.bundle.js"></script><script src="main.7b4aec9c4352d4bb535b.manager.bundle.js"></script></body></html>

Found 11 seconds ago by HttpPlugin