LeakIX - Host 52.178.89.129

Host 52.178.89.129

The Netherlands

MICROSOFT-CORP-MSN-AS-BLOCK

Software information

Apache Apache

tcp/443

Kestrel Kestrel

tcp/443

Microsoft-IIS 10.0

tcp/443 tcp/80

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: connect-evaluationentitlementservice.bentley.com
Port: 443
URL: https://connect-evaluationentitlementservice.bentley.com

First seen 2025-11-03 15:44
Last seen 2026-02-14 08:04
Open for 102 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549d3344a622edd00e47016a2a964263527e6feae7d
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /v1/Testing/Products/{id}
DELETE /v1/Testing/Relationships/{id}
GET /v1/Evaluations/Entitlement/Organization/{ultimateId}/{countryIso}
GET /v1/Evaluations/Entitlement/User/{principalId}
GET /v1/Evaluations/Entitlement/User/{principalId}/Products
GET /v1/Evaluations/Entitlement/{evalEntitlementId}
GET /v1/Evaluations/Grants/Organization/{ultimateId}/{countryIso}
GET /v1/Evaluations/Grants/{grantId}
GET /v1/ExtendedFullVersionProducts
GET /v1/ExtendedProducts
GET /v1/FullVersionProducts
GET /v1/FullVersionProducts/{productId}
GET /v1/Products
GET /v1/Testing/Relationships/{parentId}/{childId}
POST /v1/Policy/Entitlements
POST /v1/Testing/Products
POST /v1/Testing/Relationships
```
  Found on 2026-02-14 08:04
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: func.bedrijfsrelaties.nl
Port: 80
URL: http://func.bedrijfsrelaties.nl

First seen 2025-12-22 06:00
Last seen 2026-02-09 23:16
Open for 49 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f5e22fb42e74d5ff2e74d5ff2e74d5ff2e74d5ff2e74d5ff
```
Public Swagger UI/API detected at path: /api/swagger.json - sample paths:
GET /JobApi/GetActive
```
  Found on 2026-02-09 23:16
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: customer-updates-notifications-test.collectordev.se
Port: 443
URL: https://customer-updates-notifications-test.collectordev.se

First seen 2025-12-08 06:08
Last seen 2026-02-09 20:01
Open for 63 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035494c34d45c4c34d45c4c34d45c4c34d45c4c34d45c
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
POST /api/v1/cm1
```
  Found on 2026-02-09 20:01
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: notification-api-test.collectordev.se
Port: 443
URL: https://notification-api-test.collectordev.se

First seen 2026-01-03 11:36
Last seen 2026-02-09 18:43
Open for 37 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035492c0bffeed46b9278d46b9278d46b9278d46b9278
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
POST /api/v1/Sms
POST /api/v1/Sms/Batch
```
  Found on 2026-02-09 18:43
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: alexandria-test.collectordev.se
Port: 443
URL: https://alexandria-test.collectordev.se

First seen 2026-01-02 07:30
Last seen 2026-02-09 18:34
Open for 38 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549b3f9c6c3946681397a8d9bd77a8d9bd77a8d9bd7
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/v1/Data/{system}/{id}
GET /api/v1/Documents
GET /api/v1/Documents/{id}
```
  Found on 2026-02-09 18:34
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: client-api-v2.vitaminw.no
Port: 443
URL: https://client-api-v2.vitaminw.no

First seen 2026-01-10 07:15
Last seen 2026-02-09 18:33
Open for 30 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549b83a8a271faf4c496fdfe66301e9a4ac2f69d857

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /cache
DELETE /cache/clear/{departmentId}
DELETE /calendarevent/unattend
DELETE /gamification/activity/{id}
DELETE /identity/delete-me
DELETE /user/{userId}/external-login/{providerName}
GET /cache/keys
GET /cache/{key}
GET /cache/{key}/{departmentId}
GET /calendarevent
GET /calendarevent/attendees/{eventId}
GET /calendarevent/attendeesCount/{eventId}
GET /calendarevent/attendingevents/{userId}/{entityConnectionId}/{calendarId}
GET /calendarevent/menuPath
GET /calendarevent/singleEvent
GET /calendarevent/user
GET /claim
GET /claim/user/{id}
GET /claim/{id}
GET /client
GET /comment
GET /comment/count
GET /comment/{id}
GET /department/client/{id}
GET /department/{id}
GET /entity/connected
GET /entity/connected/{id}
GET /gamification/activity
GET /gamification/function
GET /gamification/function/{id}
GET /gamification/reward
GET /gamification/reward/current-user
GET /gamification/reward/user/{id}
GET /gamification/reward/{id}
GET /gamification/rule
GET /gamification/rule/{id}
GET /gamification/rulereward
GET /gamification/rulereward/{id}
GET /globalization
GET /globalization/resourcegroup/{resourceGroupId}
GET /like
GET /like/count
GET /like/existsForUser/{entityId}
GET /menu
GET /menu/{id}
GET /menuitem
GET /menuitem/{id}
GET /notification/current-user
GET /order
GET /order/{id}
GET /page
GET /page/connectedEntity/{id}/entityConnection/{entityConnectionId}
GET /page/imageControls/{pageId}
GET /page/template/{pageTemplateId}
GET /page/{id}
GET /pageStats/mostPopularItemsForUser
GET /pageStats/{id}
GET /product
GET /product/{id}
GET /search
GET /search/types
GET /tag
GET /tenantInfo
GET /user
GET /user/external-login-provider/{provider}/{externalId}
GET /user/{id}
POST /calendarevent/isJoining
POST /claim/entity/{id}
POST /entity
POST /form
POST /identity/accessToken
POST /identity/token
POST /identity/userinfo
POST /notification/broadcast
POST /notification/broadcast/user/{userId}
POST /notification/user/{userId}/seen
POST /notification/{id}/seen
POST /order/{orderNumber}/cancel
POST /pageStats
POST /transactionLog
POST /user/{userId}/external-login
PUT /calendarevent/attend
PUT /user/password
PUT /user/password/recover
PUT /user/password/recover/initiate

Found on 2026-02-09 18:33

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: skotsel-dev.marbit.se
Port: 443
URL: https://skotsel-dev.marbit.se

First seen 2026-01-10 08:08
Last seen 2026-02-09 18:32
Open for 30 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 18:32
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: identityservice-admin.cncdev.net
Port: 443
URL: https://identityservice-admin.cncdev.net

First seen 2026-01-02 07:14
Last seen 2026-02-09 18:31
Open for 38 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d60da4dc07661cb872b9b429447ab01e5038335d7b9
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /api/Application
GET /api/AzureB2CUser
GET /api/AzureB2CUsers
GET /api/Business
GET /api/BusinessAddress
GET /api/BusinessContactUsers
GET /api/BusinessUserAdmin
GET /api/BusinessUserServiceAccess
GET /api/Businesses
GET /api/CrmUser
GET /api/ServiceAccess
GET /api/ServiceAddress
GET /api/ServiceSubscription
GET /api/Status
GET /api/User
GET /api/UserAddress
GET /api/Users
POST /api/BusinessUserAccess
```
  Found on 2026-02-09 18:31
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: dev15.arcavis.ch
Port: 443
URL: https://dev15.arcavis.ch

First seen 2026-01-11 14:47
Last seen 2026-02-09 18:11
Open for 29 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549c5948d94ae44c6be7afd2d8cc5ee2e3213228faf

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/articlegroups/{id}
DELETE /api/articles/{id}/images/{imageNo}
DELETE /api/articlesets/{setArticleId}/{articleId}
DELETE /api/currencies/{currencyIsoCode}
GET /api/articlegroups
GET /api/articles
GET /api/articles/{articleId}/prices
GET /api/articles/{id}
GET /api/articlesets
GET /api/articlesets/{setArticleId}
GET /api/articlestocks
GET /api/articlestocks/{id}
GET /api/blobs/{fileName}
GET /api/branches
GET /api/branches/{id}
GET /api/currencies
GET /api/currencies/{isocode}
GET /api/customerbonuspoints
GET /api/customerbonuspoints/{id}
GET /api/customerprofiles
GET /api/customers
GET /api/customers/{id}
GET /api/invoices/status/{status}
GET /api/invoices/transactions/{transactionId}
GET /api/invoices/{id}
GET /api/login
GET /api/paymenttypes
GET /api/reservations
GET /api/reservations/{id}
GET /api/suppliers
GET /api/suppliers/{id}
GET /api/transactions
GET /api/transactions/{id}
GET /api/transactions/{id}/statuscode
GET /api/transactiontypes
GET /api/users
GET /api/users/{id}
GET /api/users/{userId}/workingtimes
GET /api/vouchers
GET /api/vouchers/{id}
GET /api/vouchertypes
GET /api/vouchertypes/{id}
POST /api/articles/{id}/images
POST /api/blobs
POST /api/currencies/{currencyIsoCode}/rate/{exchangeRate}
POST /api/transactions/{id}/statuscode/{statusCode}

Found on 2026-02-09 18:11

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: bankruptcy-monitor.scrape-it.com
Port: 443
URL: https://bankruptcy-monitor.scrape-it.com

First seen 2026-01-10 18:34
Last seen 2026-02-09 17:36
Open for 29 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 17:36
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: kyc-test.believeintheidea.io
Port: 443
URL: https://kyc-test.believeintheidea.io

First seen 2025-12-02 06:00
Last seen 2026-02-09 17:29
Open for 69 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-09 17:29
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: www.mywilink.be
Port: 443
URL: https://www.mywilink.be

First seen 2026-01-15 06:35
Last seen 2026-02-09 13:46
Open for 25 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad035498c1f9d2700543d2622f12368d672d4ec0280031b

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/documents/delete/{documentId}
GET /api/components/rosace/details
GET /api/debug/payment
GET /api/debug/tenant
GET /api/debug/test-email
GET /api/debug/user
GET /api/debug/workflows/purge
GET /api/documents
GET /api/dossiers
GET /api/lists/{codeName}
GET /api/migrations/applied
GET /api/migrations/current
GET /api/migrations/pending
GET /api/signing-requests
POST /api/auth/token
POST /api/dashboard/dossiers
POST /api/dashboard/notifications
POST /api/dashboard/persons
POST /api/documents/merge
POST /api/migrations/migrate
POST /api/payments
POST /api/payments/pom/callback
POST /api/payments/stripe/callback
POST /api/signing/connective/request
POST /api/signing/connective/update-status
POST /api/workflows/webhooks/dela/updateStatus
POST /api/workflows/webhooks/nn/updateStatus

Found on 2026-02-09 13:46

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: identityservice-admin.cncdev.net
Port: 80
URL: http://identityservice-admin.cncdev.net

First seen 2026-01-02 07:14
Last seen 2026-02-09 08:24
Open for 38 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1f3d88d60da4dc07661cb872b9b429447ab01e5038335d7b9
```
Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
GET /api/Application
GET /api/AzureB2CUser
GET /api/AzureB2CUsers
GET /api/Business
GET /api/BusinessAddress
GET /api/BusinessContactUsers
GET /api/BusinessUserAdmin
GET /api/BusinessUserServiceAccess
GET /api/Businesses
GET /api/CrmUser
GET /api/ServiceAccess
GET /api/ServiceAddress
GET /api/ServiceSubscription
GET /api/Status
GET /api/User
GET /api/UserAddress
GET /api/Users
POST /api/BusinessUserAccess
```
  Found on 2026-02-09 08:24
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: api-factoring-filestorage-test.collectordev.se
Port: 443
URL: https://api-factoring-filestorage-test.collectordev.se

First seen 2025-11-04 08:32
Last seen 2026-02-05 19:05
Open for 93 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549030d6068ba16fb08010587390fead9f90fead9f9
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/v1/files
GET /api/v1/files/{clientOrgNumber}/documents/{documentId}
GET /api/v1/files/{path}
POST /api/v1/files/cleanolddata
```
  Found on 2026-02-05 19:05
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: connect-contextentitlementsettings.bentley.com
Port: 443
URL: https://connect-contextentitlementsettings.bentley.com

First seen 2025-10-23 22:08
Last seen 2026-02-02 10:44
Open for 101 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035494523e2f2e0dfb1cf3995f82b3995f82b3995f82b
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /v1/ContextEntitlementSettings/Context/{contextId}
GET /v1/ContextEntitlementSettings/Context/{contextId}/PayForExternalContext
GET /v1/ContextEntitlementSettings/Context/{contextId}/PayForExternalUsers
```
  Found on 2026-02-02 10:44
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: notification-bypass-test.collectordev.se
Port: 443
URL: https://notification-bypass-test.collectordev.se

First seen 2025-12-29 12:07
Last seen 2026-02-02 06:18
Open for 34 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad0354980d1687bf63c8c66a2df82a9a2df82a9a2df82a9
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /Alive
POST /Sms/send
POST /Sms/sendbatch
```
  Found on 2026-02-02 06:18
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: connect-contextentitlementsettings-weu.bentley.com
Port: 443
URL: https://connect-contextentitlementsettings-weu.bentley.com

First seen 2025-11-03 15:43
Last seen 2026-02-02 01:47
Open for 90 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad035494523e2f2e0dfb1cf3995f82b3995f82b3995f82b
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /v1/ContextEntitlementSettings/Context/{contextId}
GET /v1/ContextEntitlementSettings/Context/{contextId}/PayForExternalContext
GET /v1/ContextEntitlementSettings/Context/{contextId}/PayForExternalUsers
```
  Found on 2026-02-02 01:47
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: connect-evaluationentitlementservice-weu.bentley.com
Port: 443
URL: https://connect-evaluationentitlementservice-weu.bentley.com

First seen 2025-11-03 15:44
Last seen 2026-02-02 01:47
Open for 90 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549d3344a622edd00e47016a2a964263527e6feae7d
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /v1/Testing/Products/{id}
DELETE /v1/Testing/Relationships/{id}
GET /v1/Evaluations/Entitlement/Organization/{ultimateId}/{countryIso}
GET /v1/Evaluations/Entitlement/User/{principalId}
GET /v1/Evaluations/Entitlement/User/{principalId}/Products
GET /v1/Evaluations/Entitlement/{evalEntitlementId}
GET /v1/Evaluations/Grants/Organization/{ultimateId}/{countryIso}
GET /v1/Evaluations/Grants/{grantId}
GET /v1/ExtendedFullVersionProducts
GET /v1/ExtendedProducts
GET /v1/FullVersionProducts
GET /v1/FullVersionProducts/{productId}
GET /v1/Products
GET /v1/Testing/Relationships/{parentId}/{childId}
POST /v1/Policy/Entitlements
POST /v1/Testing/Products
POST /v1/Testing/Relationships
```
  Found on 2026-02-02 01:47
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: api.proactive.aldautomotive.com
Port: 443
URL: https://api.proactive.aldautomotive.com

First seen 2026-01-08 05:58
Last seen 2026-02-02 00:44
Open for 24 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549f7b85f8c36a78097f1b1707b340a54760f83999b

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/Question/DeleteQuestion/{questionId}
DELETE /api/Survey/DeleteSurvey/{surveyId}
DELETE /api/User/Delete
GET /api/MailTemplate/GetCountryIdByGuid/{guid}
GET /api/MailTemplate/GetCountryTheme/{countryId}
GET /api/MailTemplate/GetEmailAddress/{countryId}
GET /api/MailTemplate/GetEmailById/{id}
GET /api/MailTemplate/GetEmailToUnsubscribe/{guid}
GET /api/MailTemplate/GetMailTemplate
GET /api/MailTemplate/GetMailTemplateByGuid/{GUID}/{languageId}
GET /api/MailTemplate/GetMailTemplateBySurvey/{surveyId}
GET /api/MailTemplate/GetMailTemplateBySurvey/{surveyId}/{languageId}
GET /api/Question/GetCustomerSurveyQuestions/{countryId}/{surveyId}
GET /api/Question/GetQuestion/{countryId}/{surveyId}
GET /api/Question/GetQuestionById/{id}
GET /api/Referential/AnswerTypes
GET /api/Referential/Country/{countryId}
GET /api/Referential/GetCountries
GET /api/Referential/GetCountry/{countryId}
GET /api/Referential/GetEmailTags
GET /api/Referential/GetLanguages
GET /api/Referential/GetRoles
GET /api/Referential/Translation/{countryId}
GET /api/Report/GetCharts
GET /api/Report/GetDashboardKPI
GET /api/Report/GetScore
GET /api/Report/GetUnsubscribedUsers
GET /api/Survey/DownoadTemplate
GET /api/Survey/GetCustomerSupplier
GET /api/Survey/GetSurvey/{countryId}/{languageId}
GET /api/Survey/GetSurveyById/{countryId}/{id}
GET /api/Survey/GetSurveyList/{countryId}
GET /api/Survey/GetSurveyParams/{guid}
GET /api/Survey/GetTouchpoints
GET /api/Survey/GetUploadResults/{fileId}
GET /api/Survey/ManualUpload
GET /api/Survey/ManualUpload/{countryId}
GET /api/Survey/PendingService/{countryId}
GET /api/Survey/SurveyAlreadySent/{email}/{surveyId}/{countryId}
GET /api/Survey/export/{paramExport}
GET /api/User/GetUser
GET /api/User/GetUsers
POST /api/MailTemplate/AddEmail
POST /api/MailTemplate/AddUnsubscribedEmail
POST /api/MailTemplate/SaveMailTemplate
POST /api/MailTemplate/SendNotification
POST /api/Question/AddQuestion
POST /api/Question/AddSurveyCustomer/{answeredLanguageId}
POST /api/Question/NotifyAdmin
POST /api/Report/GetBadScoreforSupplier
POST /api/Report/GetIssuestoCheck
POST /api/Report/GetNPS
POST /api/Report/GetSegmentedbyCustomer
POST /api/Report/GetSegmentedbySurvey
POST /api/Report/GetSurveys
POST /api/Survey/AddSurvey
POST /api/Survey/SaveFileLog
POST /api/Survey/SurveyUpload
POST /api/Survey/UpdateSurveyCustomer
POST /api/Survey/UploadFile
POST /api/User/Authenticate
POST /api/User/Create
POST /api/User/ForgotPassword
POST /api/User/ResetPassword
PUT /api/MailTemplate/UpdateEmail
PUT /api/Question/UpdateQuestion
PUT /api/Survey/DeactivateDuplicateSurvey
PUT /api/Survey/UpdateSurvey
PUT /api/Survey/UpdateSurveyEvents
PUT /api/Survey/UpdateSurveyStatus
PUT /api/Survey/UpdateUploadStatusCompleted
PUT /api/Survey/UpdateUploadStatusFailed
PUT /api/Survey/UpdateUploadStatusInprogress
PUT /api/Survey/UpdateUploadStatusQueued
PUT /api/User/Update

Found on 2026-02-02 00:44

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: www.bedrijfsrelaties.nl
Port: 443
URL: https://www.bedrijfsrelaties.nl

First seen 2026-01-05 01:04
Last seen 2026-02-01 23:27
Open for 27 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-02-01 23:27
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: berlin-ost-flohkids.arcavis.com
Port: 443
URL: https://berlin-ost-flohkids.arcavis.com

First seen 2025-12-20 13:29
Last seen 2026-02-01 22:30
Open for 43 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549c5948d94ae44c6be7afd2d8cc5ee2e3213228faf

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/articlegroups/{id}
DELETE /api/articles/{id}/images/{imageNo}
DELETE /api/articlesets/{setArticleId}/{articleId}
DELETE /api/currencies/{currencyIsoCode}
GET /api/articlegroups
GET /api/articles
GET /api/articles/{articleId}/prices
GET /api/articles/{id}
GET /api/articlesets
GET /api/articlesets/{setArticleId}
GET /api/articlestocks
GET /api/articlestocks/{id}
GET /api/blobs/{fileName}
GET /api/branches
GET /api/branches/{id}
GET /api/currencies
GET /api/currencies/{isocode}
GET /api/customerbonuspoints
GET /api/customerbonuspoints/{id}
GET /api/customerprofiles
GET /api/customers
GET /api/customers/{id}
GET /api/invoices/status/{status}
GET /api/invoices/transactions/{transactionId}
GET /api/invoices/{id}
GET /api/login
GET /api/paymenttypes
GET /api/reservations
GET /api/reservations/{id}
GET /api/suppliers
GET /api/suppliers/{id}
GET /api/transactions
GET /api/transactions/{id}
GET /api/transactions/{id}/statuscode
GET /api/transactiontypes
GET /api/users
GET /api/users/{id}
GET /api/users/{userId}/workingtimes
GET /api/vouchers
GET /api/vouchers/{id}
GET /api/vouchertypes
GET /api/vouchertypes/{id}
POST /api/articles/{id}/images
POST /api/blobs
POST /api/currencies/{currencyIsoCode}/rate/{exchangeRate}
POST /api/transactions/{id}/statuscode/{statusCode}

Found on 2026-02-01 22:30

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: hamburg-west-flohkids.arcavis.com
Port: 443
URL: https://hamburg-west-flohkids.arcavis.com

First seen 2025-12-20 13:28
Last seen 2026-02-01 19:15
Open for 43 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549c5948d94ae44c6be7afd2d8cc5ee2e3213228faf

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/articlegroups/{id}
DELETE /api/articles/{id}/images/{imageNo}
DELETE /api/articlesets/{setArticleId}/{articleId}
DELETE /api/currencies/{currencyIsoCode}
GET /api/articlegroups
GET /api/articles
GET /api/articles/{articleId}/prices
GET /api/articles/{id}
GET /api/articlesets
GET /api/articlesets/{setArticleId}
GET /api/articlestocks
GET /api/articlestocks/{id}
GET /api/blobs/{fileName}
GET /api/branches
GET /api/branches/{id}
GET /api/currencies
GET /api/currencies/{isocode}
GET /api/customerbonuspoints
GET /api/customerbonuspoints/{id}
GET /api/customerprofiles
GET /api/customers
GET /api/customers/{id}
GET /api/invoices/status/{status}
GET /api/invoices/transactions/{transactionId}
GET /api/invoices/{id}
GET /api/login
GET /api/paymenttypes
GET /api/reservations
GET /api/reservations/{id}
GET /api/suppliers
GET /api/suppliers/{id}
GET /api/transactions
GET /api/transactions/{id}
GET /api/transactions/{id}/statuscode
GET /api/transactiontypes
GET /api/users
GET /api/users/{id}
GET /api/users/{userId}/workingtimes
GET /api/vouchers
GET /api/vouchers/{id}
GET /api/vouchertypes
GET /api/vouchertypes/{id}
POST /api/articles/{id}/images
POST /api/blobs
POST /api/currencies/{currencyIsoCode}/rate/{exchangeRate}
POST /api/transactions/{id}/statuscode/{statusCode}

Found on 2026-02-01 19:15

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: bedrijfsrelaties.nl
Port: 443
URL: https://bedrijfsrelaties.nl

First seen 2025-10-22 04:46
Last seen 2026-01-30 00:05
Open for 99 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-30 00:05
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: geriaplus.at
Port: 443
URL: https://geriaplus.at

First seen 2026-01-16 02:35
Last seen 2026-01-23 00:38
Open for 6 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd1aad03549553d32749aaf9ebaa725f2824ff53ee8e5cc752c
```
Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
GET /api/v1/Patients/validationdates
GET /api/v1/Patients/{patientId}/dietryAdvices
GET /api/v1/Patients/{patientId}/dietryMeasures
GET /api/v1/Patients/{patientId}/products
GET /api/v1/Patients/{patientId}/weights
GET /api/v1/Products
GET /api/v1/Products/{productId}
GET /api/v1/Stations
POST /api/v1/Login/RetreiveAutologinUrl
POST /api/v1/Patients
POST /api/v1/Patients/Conversion/Height
PUT /api/v1/Patients/{patientId}
PUT /api/v1/Patients/{patientId}/mna
PUT /api/v1/Stations/{stationId}
```
  Found on 2026-01-23 00:38
Create report
Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: job-posting-monitor.scrape-it.com
Port: 443
URL: https://job-posting-monitor.scrape-it.com

First seen 2026-01-03 11:07
Last seen 2026-01-22 21:31
Open for 19 days
- Severity: info
  Fingerprint: 5733ddf49ff49cd12ec8532c2ec8532c2ec8532c2ec8532c2ec8532c2ec8532c
```
Public Swagger UI/API detected at path: /swagger/index.html
```
  Found on 2026-01-22 21:31
Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 104.102.58.144
Domain: licenseapi.xcelgo.com
Port: 443
URL: https://licenseapi.xcelgo.com

First seen 2025-12-04 12:46
Last seen 2026-01-16 23:17
Open for 43 days

Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d60ddcf52c7624bb1f0389827cc0d2b174de6e93ca0

Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
DELETE /api/v1/LicenseOwner/delete/{id}
GET /api/v1/db/AutoCheckin
GET /api/v1/db/Info/activeusers
GET /api/v1/db/Info/expiredlicenses
GET /api/v1/db/Info/licenses
GET /api/v1/db/Info/uniqueusers
GET /api/v1/db/Maintenance/runcleanactiveusers
GET /api/v1/db/ProfileData
GET /api/v1/db/User/generatehash
GET /api/v1/license/Info/activeusers
GET /api/v1/license/Info/activity
GET /api/v1/license/Info/details
GET /api/v1/license/Info/downloadfile
GET /api/v1/license/Info/mediacontent
GET /api/v1/license/Info/multiplelicensesseatcountlogs
GET /api/v1/license/Info/seatcountlogs
GET /api/v1/license/Info/usage
GET /api/v1/license/wipelogs
GET /api/v1/server/ServerStatus
GET /api/v1/server/ServerTime
POST /api/v1/Authentication/RequestToken
POST /api/v1/LicenseOwner/checkaccess
POST /api/v1/LicenseOwner/create
POST /api/v1/db/User/Create
POST /api/v1/license/create
POST /api/v1/license/createlicenseanduser
PUT /api/v1/License/forcecheckin
PUT /api/v1/License/forcecheckinall
PUT /api/v1/LicenseOwner/setpassword
PUT /api/v1/LicenseOwner/update/{id}
PUT /api/v1/LicenseOwner/{id}/generatepassword
PUT /api/v1/LicenseOwner/{id}/setpassword
PUT /api/v1/LicenseOwner/{id}/updatepassword
PUT /api/v1/license/update

Found on 2026-01-16 23:17

Severity: info
Fingerprint: 5733ddf49ff49cd1f3d88d60ddcf52c72d5bc01d9faa2cd68e3927b65d92d85e

Public Swagger UI/API detected at path: /swagger/v1/swagger.json - sample paths:
DELETE /api/v1/LicenseOwner/delete/{id}
GET /api/v1/Application/updatecheck
GET /api/v1/db/AutoCheckin
GET /api/v1/db/Info/activeusers
GET /api/v1/db/Info/expiredlicenses
GET /api/v1/db/Info/licenses
GET /api/v1/db/Info/uniqueusers
GET /api/v1/db/Maintenance/runcleanactiveusers
GET /api/v1/db/ProfileData
GET /api/v1/db/User/generatehash
GET /api/v1/license/Info/activeusers
GET /api/v1/license/Info/activity
GET /api/v1/license/Info/details
GET /api/v1/license/Info/downloadfile
GET /api/v1/license/Info/mediacontent
GET /api/v1/license/Info/multiplelicensesseatcountlogs
GET /api/v1/license/Info/seatcountlogs
GET /api/v1/license/Info/usage
GET /api/v1/license/wipelogs
GET /api/v1/server/ServerStatus
GET /api/v1/server/ServerTime
POST /api/v1/Authentication/RequestToken
POST /api/v1/LicenseOwner/checkaccess
POST /api/v1/LicenseOwner/create
POST /api/v1/db/User/Create
POST /api/v1/license/create
PUT /api/v1/Application/version
PUT /api/v1/License/forcecheckin
PUT /api/v1/License/forcecheckinall
PUT /api/v1/LicenseOwner/setpassword
PUT /api/v1/LicenseOwner/update/{id}
PUT /api/v1/LicenseOwner/{id}/generatepassword
PUT /api/v1/LicenseOwner/{id}/setpassword
PUT /api/v1/LicenseOwner/{id}/updatepassword
PUT /api/v1/license/update
PUT /api/v2/Application/version

Found on 2025-12-04 12:46

Create report

Swagger API description is publicly available

Exposing Swagger/OpenAPI documentation is primarily a risk if your API has underlying security flaws, as it gives attackers a precise roadmap to find them.

Those detail every endpoint, parameter, and data model, making it easier to discover and exploit vulnerabilities like broken access control or injection points.

While a perfectly secure API mitigates the danger, protecting your documentation is a critical layer of defense that forces attackers to work without a map.

IP: 52.178.89.129
Domain: apache-jeans.arcavis.com
Port: 443
URL: https://apache-jeans.arcavis.com

First seen 2025-12-20 13:26
Last seen 2026-01-16 02:36
Open for 26 days

Severity: info
Fingerprint: 5733ddf49ff49cd1aad03549c5948d94ae44c6be7afd2d8cc5ee2e3213228faf

Public Swagger UI/API detected at path: /swagger/index.html - sample paths:
DELETE /api/articlegroups/{id}
DELETE /api/articles/{id}/images/{imageNo}
DELETE /api/articlesets/{setArticleId}/{articleId}
DELETE /api/currencies/{currencyIsoCode}
GET /api/articlegroups
GET /api/articles
GET /api/articles/{articleId}/prices
GET /api/articles/{id}
GET /api/articlesets
GET /api/articlesets/{setArticleId}
GET /api/articlestocks
GET /api/articlestocks/{id}
GET /api/blobs/{fileName}
GET /api/branches
GET /api/branches/{id}
GET /api/currencies
GET /api/currencies/{isocode}
GET /api/customerbonuspoints
GET /api/customerbonuspoints/{id}
GET /api/customerprofiles
GET /api/customers
GET /api/customers/{id}
GET /api/invoices/status/{status}
GET /api/invoices/transactions/{transactionId}
GET /api/invoices/{id}
GET /api/login
GET /api/paymenttypes
GET /api/reservations
GET /api/reservations/{id}
GET /api/suppliers
GET /api/suppliers/{id}
GET /api/transactions
GET /api/transactions/{id}
GET /api/transactions/{id}/statuscode
GET /api/transactiontypes
GET /api/users
GET /api/users/{id}
GET /api/users/{userId}/workingtimes
GET /api/vouchers
GET /api/vouchers/{id}
GET /api/vouchertypes
GET /api/vouchertypes/{id}
POST /api/articles/{id}/images
POST /api/blobs
POST /api/currencies/{currencyIsoCode}/rate/{exchangeRate}
POST /api/transactions/{id}/statuscode/{statusCode}

Found on 2026-01-16 02:36

Create report

Open service 52.178.89.129:443 · www.jeld-wen.ee

2026-01-26 12:03

HTTP/1.1 301 Moved Permanently
Content-Length: 139
Connection: close
Content-Type: text/html; charset=utf-8
Date: Mon, 26 Jan 2026 12:04:14 GMT
Server: Microsoft-IIS/10.0
Access-Control-Expose-Headers: Request-Context
Location: https://www.swedoor.ee
Set-Cookie: CMSPreferredCulture=et-EE; expires=Tue, 26-Jan-2027 12:04:14 GMT; path=/; HttpOnly
Set-Cookie: ARRAffinity=6baab673920cdd72d5292ed70f53157373a58e78fa4d23722efa3ae6748c9e7b;Path=/;HttpOnly;Secure;Domain=www.jeld-wen.ee
Set-Cookie: ARRAffinitySameSite=6baab673920cdd72d5292ed70f53157373a58e78fa4d23722efa3ae6748c9e7b;Path=/;HttpOnly;SameSite=None;Secure;Domain=www.jeld-wen.ee
Content-Security-Policy: frame-ancestors 'self'
Request-Context: appId=cid-v1:724b7b5e-51b7-4689-a778-e257f1d4e1ef
X-Powered-By: ASP.NET

Page title: Object moved

<html><head><title>Object moved</title></head><body>
<h2>Object moved to <a href="https://www.swedoor.ee">here</a>.</h2>
</body></html>

Found 2026-01-26 by HttpPlugin