Host 3.77.115.210
Germany
-
GraphQL introspection is enabled.
GraphQL introspection is enabled.
This could leak to data leak if not properly configured.
IP: 3.77.115.210
Domain: candidates-backend.mdwng.dev
Port: 443
URL: https://candidates-backend.mdwng.devFirst seen 2025-10-30 23:29
Last seen 2026-01-02 06:20
Open for 63 days-
Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d63f93f2b12cbeafb3aeffb202fb94476d1c2d50f6GraphQL introspection enabled at /api/graphql Types: 268 (by kind: ENUM: 12, INPUT_OBJECT: 13, OBJECT: 233, SCALAR: 8, UNION: 2) Operations: - Query: RootQueryType | fields: aboutUsPage, allBlogArticles, allBlogArticlesPayload, allBlogCategories, allCompanyPlaces - Mutation: RootMutationType | fields: articleEngagement, atkGrant, candidateCallBack, createCandidate, createCandidateDegree - Subscription: RootSubscriptionType | fields: onCandidateCompletionStatusUpdated Directives: include, skip (total: 2)
Found on 2026-01-02 06:20524.4 kBytes
-
-
Open service 3.77.115.210:443 · candidates-backend.mdwng.dev
2026-01-09 18:38
HTTP/1.1 404 Not Found Date: Fri, 09 Jan 2026 18:38:33 GMT Content-Type: application/json; charset=utf-8 Content-Length: 33 Connection: close cache-control: max-age=0, private, must-revalidate x-request-id: 2a88e1c9da73d2b341456bcd0822a423 Strict-Transport-Security: max-age=31536000; includeSubDomains {"errors":{"detail":"Not Found"}}Found 2026-01-09 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · platform-kafka-api.mdwng.dev
2026-01-02 16:21
HTTP/1.1 503 Service Temporarily Unavailable Date: Fri, 02 Jan 2026 16:21:56 GMT Content-Type: text/html Content-Length: 190 Connection: close Strict-Transport-Security: max-age=31536000; includeSubDomains Page title: 503 Service Temporarily Unavailable <html> <head><title>503 Service Temporarily Unavailable</title></head> <body> <center><h1>503 Service Temporarily Unavailable</h1></center> <hr><center>nginx</center> </body> </html>
Found 2026-01-02 by HttpPluginCreate report
-
Open service 3.77.115.210:80 · platform-kafka-api.mdwng.dev
2026-01-02 16:21
HTTP/1.1 308 Permanent Redirect Date: Fri, 02 Jan 2026 16:21:55 GMT Content-Type: text/html Content-Length: 164 Connection: close Location: https://platform-kafka-api.mdwng.dev Page title: 308 Permanent Redirect <html> <head><title>308 Permanent Redirect</title></head> <body> <center><h1>308 Permanent Redirect</h1></center> <hr><center>nginx</center> </body> </html>
Found 2026-01-02 by HttpPluginCreate report
-
Open service 3.77.115.210:80 · kafka-api.mdwng.dev
2026-01-02 16:20
HTTP/1.1 308 Permanent Redirect Date: Fri, 02 Jan 2026 16:20:36 GMT Content-Type: text/html Content-Length: 164 Connection: close Location: https://kafka-api.mdwng.dev Page title: 308 Permanent Redirect <html> <head><title>308 Permanent Redirect</title></head> <body> <center><h1>308 Permanent Redirect</h1></center> <hr><center>nginx</center> </body> </html>
Found 2026-01-02 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · kafka-api.mdwng.dev
2026-01-02 16:20
HTTP/1.1 503 Service Temporarily Unavailable Date: Fri, 02 Jan 2026 16:20:35 GMT Content-Type: text/html Content-Length: 190 Connection: close Strict-Transport-Security: max-age=31536000; includeSubDomains Page title: 503 Service Temporarily Unavailable <html> <head><title>503 Service Temporarily Unavailable</title></head> <body> <center><h1>503 Service Temporarily Unavailable</h1></center> <hr><center>nginx</center> </body> </html>
Found 2026-01-02 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · candidates-backend.mdwng.dev
2026-01-02 06:20
HTTP/1.1 404 Not Found Date: Fri, 02 Jan 2026 06:20:51 GMT Content-Type: application/json; charset=utf-8 Content-Length: 33 Connection: close cache-control: max-age=0, private, must-revalidate x-request-id: ae9c1dc9ff2846f65e622fdbe3e9a89b Strict-Transport-Security: max-age=31536000; includeSubDomains {"errors":{"detail":"Not Found"}}Found 2026-01-02 by HttpPluginCreate report
-
Open service 3.77.115.210:80 · rabbit.insitwoqa.dev
2025-12-30 11:45
HTTP/1.1 308 Permanent Redirect Date: Tue, 30 Dec 2025 11:45:37 GMT Content-Type: text/html Content-Length: 164 Connection: close Location: https://rabbit.insitwoqa.dev Page title: 308 Permanent Redirect <html> <head><title>308 Permanent Redirect</title></head> <body> <center><h1>308 Permanent Redirect</h1></center> <hr><center>nginx</center> </body> </html>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · rabbit.insitwoqa.dev
2025-12-30 11:45
HTTP/1.1 200 OK Date: Tue, 30 Dec 2025 11:45:36 GMT Content-Type: text/html Content-Length: 2884 Connection: close Vary: Accept-Encoding content-security-policy: script-src 'self' 'unsafe-eval' 'unsafe-inline'; object-src 'self' etag: "1753291913" last-modified: Thu, 24 Jul 2025 08:56:35 GMT vary: origin Strict-Transport-Security: max-age=31536000; includeSubDomains Page title: RabbitMQ Management <!DOCTYPE html> <html> <head> <meta http-equiv="X-UA-Compatible" content="IE=edge" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <title>RabbitMQ Management</title> <script src="js/ejs-1.0.min.js" type="text/javascript"></script> <script src="js/jquery-3.5.1.min.js"></script> <script src="js/jquery.flot-0.8.1.min.js" type="text/javascript"></script> <script src="js/jquery.flot-0.8.1.time.min.js" type="text/javascript"></script> <script src="js/sammy-0.7.6.min.js" type="text/javascript"></script> <script src="js/json2-2016.10.28.js" type="text/javascript"></script> <script src="js/base64.js" type="text/javascript"></script> <script src="js/global.js" type="text/javascript"></script> <script src="js/main.js" type="text/javascript"></script> <script src="js/prefs.js" type="text/javascript"></script> <script src="js/formatters.js" type="text/javascript"></script> <script src="js/charts.js" type="text/javascript"></script> <script src="js/singular/singular.js" type="application/javascript"></script> <link href="css/main.css" rel="stylesheet" type="text/css"/> <link href="favicon.ico" rel="shortcut icon" type="image/x-icon"/> <script type="application/javascript"> var uaa_logged_in = false; var uaa_invalid = false; var auth = JSON.parse(sync_get('/auth')); enable_uaa = auth.enable_uaa; uaa_client_id = auth.uaa_client_id; uaa_location = auth.uaa_location; if (enable_uaa) { Singular.init({ singularLocation: './js/singular/', uaaLocation: uaa_location, clientId: uaa_client_id, onIdentityChange: function (identity) { uaa_logged_in = true; start_app_login(); }, onLogout: function () { uaa_logged_in = false; var hash = window.location.hash.substring(1); var params = {} hash.split('&').map(hk => { let temp = hk.split('='); params[temp[0]] = temp[1] }); if (params.error) { uaa_invalid = true; replace_content('login-status', '<p class="warning">' + decodeURIComponent(params.error) + ':' + decodeURIComponent(params.error_description) + '</p> <button id="loginWindow" onclick="uaa_login_window()">Click here to log out</button>'); } else { replace_content('login-status', '<button id="loginWindow" onclick="uaa_login_window()">Click here to log in</button>'); } } }); } </script> <!--[if lte IE 8]> <script src="js/excanvas.min.js" type="text/javascript"></script> <link href="css/evil.css" rel="stylesheet" type="text/css"/> <![endif]--> </head> <body> <div id="outer"></div> <div id="debug"></div> <div id="scratch"></div> </body> </html>Found 2025-12-30 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · candidates-backend.mdwng.dev
2025-12-30 11:44
HTTP/1.1 404 Not Found Date: Tue, 30 Dec 2025 11:44:04 GMT Content-Type: application/json; charset=utf-8 Content-Length: 33 Connection: close cache-control: max-age=0, private, must-revalidate x-request-id: a6ee2c9b917b90a9f99912a3b129cc34 Strict-Transport-Security: max-age=31536000; includeSubDomains {"errors":{"detail":"Not Found"}}Found 2025-12-30 by HttpPluginCreate report
-
Open service 3.77.115.210:80 · k8s.insitwoqa.dev
2025-12-30 10:53
HTTP/1.1 308 Permanent Redirect Date: Tue, 30 Dec 2025 10:53:44 GMT Content-Type: text/html Content-Length: 164 Connection: close Location: https://k8s.insitwoqa.dev Page title: 308 Permanent Redirect <html> <head><title>308 Permanent Redirect</title></head> <body> <center><h1>308 Permanent Redirect</h1></center> <hr><center>nginx</center> </body> </html>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · k8s.insitwoqa.dev
2025-12-30 10:53
HTTP/1.1 404 Not Found Date: Tue, 30 Dec 2025 10:53:43 GMT Content-Type: text/html Content-Length: 146 Connection: close Strict-Transport-Security: max-age=31536000; includeSubDomains Page title: 404 Not Found <html> <head><title>404 Not Found</title></head> <body> <center><h1>404 Not Found</h1></center> <hr><center>nginx</center> </body> </html>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · consul.insitwoqa.dev
2025-12-30 10:50
HTTP/1.1 302 Moved Temporarily Date: Tue, 30 Dec 2025 10:50:43 GMT Content-Type: text/html Content-Length: 138 Connection: close Location: https://k8s.insitwoqa.dev/oauth2/start?rd=https://consul.insitwoqa.dev/ Page title: 302 Found <html> <head><title>302 Found</title></head> <body> <center><h1>302 Found</h1></center> <hr><center>nginx</center> </body> </html>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 3.77.115.210:80 · consul.insitwoqa.dev
2025-12-30 10:50
HTTP/1.1 308 Permanent Redirect Date: Tue, 30 Dec 2025 10:50:43 GMT Content-Type: text/html Content-Length: 164 Connection: close Location: https://consul.insitwoqa.dev Page title: 308 Permanent Redirect <html> <head><title>308 Permanent Redirect</title></head> <body> <center><h1>308 Permanent Redirect</h1></center> <hr><center>nginx</center> </body> </html>
Found 2025-12-30 by HttpPluginCreate report
-
Open service 3.77.115.210:80 · t.insitwoqa.dev
2025-12-23 19:59
HTTP/1.1 308 Permanent Redirect Date: Tue, 23 Dec 2025 19:59:21 GMT Content-Type: text/html Content-Length: 164 Connection: close Location: https://t.insitwoqa.dev Page title: 308 Permanent Redirect <html> <head><title>308 Permanent Redirect</title></head> <body> <center><h1>308 Permanent Redirect</h1></center> <hr><center>nginx</center> </body> </html>
Found 2025-12-23 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · t.insitwoqa.dev
2025-12-23 19:59
HTTP/1.1 200 OK Date: Tue, 23 Dec 2025 19:59:21 GMT Content-Type: application/json; charset=utf-8 Content-Length: 194 Connection: close Vary: Origin Strict-Transport-Security: max-age=31536000; includeSubDomains {"appType":"EMBEDDED","server":"UP","db":"UP","acceptingEvents":"TRUE","routingEvents":"TRUE","mode":"NORMAL","backendConfigMode":"API","lastSync":"2025-12-10T08:33:54Z","lastRegulationSync":""}Found 2025-12-23 by HttpPluginCreate report
-
Open service 3.77.115.210:80 · core.mdwng.dev
2025-12-23 19:10
HTTP/1.1 308 Permanent Redirect Date: Tue, 23 Dec 2025 19:10:03 GMT Content-Type: text/html Content-Length: 164 Connection: close Location: https://core.mdwng.dev Page title: 308 Permanent Redirect <html> <head><title>308 Permanent Redirect</title></head> <body> <center><h1>308 Permanent Redirect</h1></center> <hr><center>nginx</center> </body> </html>
Found 2025-12-23 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · core.mdwng.dev
2025-12-23 19:10
HTTP/1.1 301 Moved Permanently Date: Tue, 23 Dec 2025 19:10:03 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 0 Connection: close Location: https://mdwng.dev Cache-Control: no-cache X-Request-Id: a36db40d5a1f787354ec3fd4f9450631 X-Runtime: 0.002956 vary: Origin Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2025-12-23 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · candidates-backend.mdwng.dev
2025-12-22 15:15
HTTP/1.1 404 Not Found Date: Mon, 22 Dec 2025 15:15:55 GMT Content-Type: application/json; charset=utf-8 Content-Length: 33 Connection: close cache-control: max-age=0, private, must-revalidate x-request-id: ae39749d76d3f5b7b45c79941759ea45 Strict-Transport-Security: max-age=31536000; includeSubDomains {"errors":{"detail":"Not Found"}}Found 2025-12-22 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · candidates-backend.mdwng.dev
2025-12-20 11:07
HTTP/1.1 404 Not Found Date: Sat, 20 Dec 2025 11:07:11 GMT Content-Type: application/json; charset=utf-8 Content-Length: 33 Connection: close cache-control: max-age=0, private, must-revalidate x-request-id: d4f460bc993d77490957cb7413c102b9 Strict-Transport-Security: max-age=31536000; includeSubDomains {"errors":{"detail":"Not Found"}}Found 2025-12-20 by HttpPluginCreate report
-
Open service 3.77.115.210:80 · crm.mdwng.dev
2025-12-19 20:20
HTTP/1.1 308 Permanent Redirect Date: Fri, 19 Dec 2025 20:20:09 GMT Content-Type: text/html Content-Length: 164 Connection: close Location: https://crm.mdwng.dev Page title: 308 Permanent Redirect <html> <head><title>308 Permanent Redirect</title></head> <body> <center><h1>308 Permanent Redirect</h1></center> <hr><center>nginx</center> </body> </html>
Found 2025-12-19 by HttpPluginCreate report
-
Open service 3.77.115.210:443 · crm.mdwng.dev
2025-12-19 20:20
HTTP/1.1 200 OK Date: Fri, 19 Dec 2025 20:20:08 GMT Content-Type: text/html Content-Length: 0 Connection: close X-Frame-Options: SAMEORIGIN X-XSS-Protection: 0 X-Content-Type-Options: nosniff X-Permitted-Cross-Domain-Policies: none Referrer-Policy: strict-origin-when-cross-origin Cache-Control: no-cache X-Request-Id: 4e727e1ce13d826ca85f7fe5bb457a5a X-Runtime: 0.001469 Strict-Transport-Security: max-age=31536000; includeSubDomains
Found 2025-12-19 by HttpPluginCreate report