LeakIX - Host 34.204.163.91

Host 34.204.163.91

United States

AMAZON-AES

Software information

awselb awselb 2.0

tcp/443

GraphQL introspection is enabled.

This could leak to data leak if not properly configured.

IP: 95.100.104.8
Domain: admin-shop.thebump.com
Port: 443
URL: https://admin-shop.thebump.com

First seen 2025-10-21 19:57
Last seen 2026-02-07 21:20
Open for 109 days

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d62337d3d62337d3d62337d3d62337d3d62337d3d6
```
GraphQL introspection enabled at /api/graphql
```
Found on 2026-02-07 21:20

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6c3e711b4f542be38a6bba0dd167ba1c0cf5566b0

GraphQL introspection enabled at /api/graphql
Types: 4345 (by kind: ENUM: 33, INPUT_OBJECT: 477, OBJECT: 3824, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: Brand, Brands, Category, countBrands, docAccessBrand
- Mutation: Mutation | fields: createBrand, createCategory, deleteBrand, duplicateBrand, updateBrand
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-11-23 21:35

2.8 MBytes

Severity: medium
Fingerprint: c2db3a1c40d490db2337d3d6a385fb5158d0bb9342a4e39cd88ce41dfc7d5939

GraphQL introspection enabled at /api/graphql
Types: 3902 (by kind: ENUM: 33, INPUT_OBJECT: 431, OBJECT: 3427, SCALAR: 8, UNION: 3)
Operations:
- Query: Query | fields: Brand, Brands, Category, countBrands, docAccessBrand
- Mutation: Mutation | fields: createBrand, createCategory, deleteBrand, duplicateBrand, updateBrand
Directives: deprecated, include, oneOf, skip, specifiedBy (total: 5)

Found on 2025-10-21 19:57

2.5 MBytes

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.6.209.157
Domain: prod-convo-api.localsolutions.theknot.com
Port: 443
URL: https://prod-convo-api.localsolutions.theknot.com

First seen 2025-10-21 06:25
Last seen 2026-02-01 19:50
Open for 103 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549dbbfbbaad174b29b7659ed88d995700cbf90b0a6

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/Scan/JobStatus
GET /api/ScanAsync
GET /health
POST /api/Classify
POST /api/Classify/Existing
POST /api/Classify/url
POST /api/Scan
POST /api/Scan/Existing
POST /api/Scan/url
POST /api/ScanAsync/Cancel
POST /api/ScanAsync/Existing
POST /api/ScanAsync/url
POST /api/Token

Found on 2026-02-01 19:50

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43849c35327055d3bbdf26c63ec725fd95bb191b25

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /quickreply/delete/{id}
DELETE /whitelist/{whitelistId}/{email}
GET /conversations/count/{memberId}
GET /conversations/message/{conversationId}/{messageId}
GET /conversations/messages/count/conversation/{conversationId}
GET /conversations/messages/count/member/{memberId}
GET /conversations/messages/count/storefront/{storefrontId}
GET /conversations/messages/threadPosition/{messageId}
GET /conversations/messages/{conversationId}
GET /conversations/ubx
GET /conversations/{memberId}
GET /healthy
GET /quickreply/read/{identityId}
GET /whitelist/displayId/{displayId}
GET /whitelist/storefrontId/{storefrontId}
POST /conversations/associateParticipant
POST /conversations/block-conversations/{reasonCode}
POST /conversations/message
POST /conversations/message/read/{memberId}
POST /conversations/notInterested
POST /conversations/scheduleFollowUp
POST /conversations/tags
POST /conversations/unblock-conversations/{reasonCode}
POST /quickreply/create
POST /sign/s3/get-object
POST /sign/s3/put-object
POST /whitelist
PUT /conversations/message/read/conversation/{conversationId}/{memberId}
PUT /conversations/message/read/{messageId}/{memberId}
PUT /conversations/report-abuse/{conversationId}/{memberId}
PUT /conversations/tag/{conversationId}/{memberId}/{tag}
PUT /quickreply/update

Found on 2025-12-24 23:11

Severity: info
Fingerprint: 5733ddf49ff49cd1b885ff43849c35327055d3bbdf26c63ec725fd95ccbf89f1

Public Swagger UI/API detected at path: /swagger.json - sample paths:
DELETE /quickreply/delete/{id}
DELETE /whitelist/{whitelistId}/{email}
GET /conversations/count/{memberId}
GET /conversations/message/{conversationId}/{messageId}
GET /conversations/messages/count/conversation/{conversationId}
GET /conversations/messages/count/member/{memberId}
GET /conversations/messages/count/storefront/{storefrontId}
GET /conversations/messages/threadPosition/{messageId}
GET /conversations/messages/{conversationId}
GET /conversations/ubx
GET /conversations/{memberId}
GET /healthy
GET /quickreply/read/{identityId}
GET /whitelist/displayId/{displayId}
GET /whitelist/storefrontId/{storefrontId}
POST /conversations/associateParticipant
POST /conversations/message
POST /conversations/message/read/{memberId}
POST /conversations/notInterested
POST /conversations/scheduleFollowUp
POST /conversations/tags
POST /conversations/unblock-conversations/{reasonCode}
POST /quickreply/create
POST /sign/s3/get-object
POST /sign/s3/put-object
POST /whitelist
PUT /conversations/message/read/conversation/{conversationId}/{memberId}
PUT /conversations/message/read/{messageId}/{memberId}
PUT /conversations/report-abuse/{conversationId}/{memberId}
PUT /conversations/tag/{conversationId}/{memberId}/{tag}
PUT /quickreply/update

Found on 2025-10-21 06:25

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 34.204.163.91
Domain: production-k8-status.eng.theknotww.com
Port: 443
URL: https://production-k8-status.eng.theknotww.com

First seen 2025-10-20 14:40
Last seen 2025-12-19 13:44
Open for 59 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1b885ff43714a58ce162d53254fd205594fd205594fd20559
```
Public Swagger UI/API detected at path: /swagger.json - sample paths:
GET /
GET /colors
GET /delay
```
  Found on 2025-12-19 13:44
Create report

Open service 34.204.163.91:443 · production-k8-status.eng.theknotww.com

2026-01-22 20:30

HTTP/1.1 403 Forbidden
Server: awselb/2.0
Date: Thu, 22 Jan 2026 20:30:59 GMT
Content-Type: text/html
Content-Length: 118
Connection: close

Page title: 403 Forbidden

<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
</body>
</html>

Found 2026-01-22 by HttpPlugin

Create report

.aspiringminds.com.shl.com

Fingerprint:

a518967fcfaaca4cdd686c4a8b7a6a86b9ee90a499a2bb5ca5b9fa3dbefc2983

CN:

*.aspiringminds.com

Key:

RSA-2048

Issuer:

Amazon RSA 2048 M02

Not before:

2025-03-19 00:00

Not after:

2026-04-17 23:59

Domain summary

admin-shop.thebump.com 3 prod-convo-api.localsolutions.theknot.com 3 production-k8-status.eng.theknotww.com 1

3 recorded

Host 34.204.163.91

United States

Software information

GraphQL introspection is enabled.

Swagger API description is publicly available

Swagger API description is publicly available

Create report

*.aspiringminds.com*.shl.com

Domain summary

.aspiringminds.com.shl.com